This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft File: AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft (raw, json) Hash identifier: n4dA8qmjr0OpuUH88U0voMAIDPYQNcpOvD1Oo6Fiv4Q= Subject key identifier: 3E:03:B2:3B:8F:8B:6B:96:2F:CA:6F:CA:24:7F:52:B7:FA:D3:11:8D Authority key identifier: 01:3F:6D:B0:FD:57:D1:9F:9E:E1:52:42:A2:E4:16:7E:FB:52:2D:04 Certificate issuer: /CN=013f6db0fd57d19f9ee15242a2e4167efb522d04 Certificate serial: 019C43227D742544C36AC71D51A387DE3494 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft Manifest number: 0CE6 Signing time: Mon 09 Feb 2026 16:00:59 +0000 Manifest this update: Mon 09 Feb 2026 16:00:59 +0000 Manifest next update: Tue 10 Feb 2026 16:00:59 +0000 Files and hashes: 1: AT9tsP1X0Z-e4VJCouQWfvtSLQQ.crl (hash: pwbImuB0tu+E748CRBm0ewjy0fJxc+fUGX3UqP5H9ek=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft rsync://rpki.ripe.net/repository/DEFAULT/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:7d:74:25:44:c3:6a:c7:1d:51:a3:87:de:34:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=013f6db0fd57d19f9ee15242a2e4167efb522d04 Validity Not Before: Feb 9 16:00:59 2026 GMT Not After : Feb 10 16:00:59 2026 GMT Subject: CN=3e03b23b8f8b6b962fca6fca247f52b7fad3118d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:33:b8:91:07:f4:e0:ba:62:04:ea:d0:6f:a8: 8c:af:ad:51:ac:46:bb:f3:10:79:8c:27:90:ee:49: 3e:02:fe:4c:67:4d:52:8c:09:01:b0:4d:f3:e8:d6: 69:48:af:99:b7:4a:c9:70:7b:60:f3:38:3a:65:1c: 9e:8e:42:cf:21:ff:ca:7d:68:dd:57:da:d8:6b:4c: 13:d0:75:13:d0:bc:a1:8e:7c:07:3c:56:bc:41:d4: de:42:37:7a:51:93:84:43:ad:08:3a:4a:a6:8c:89: 12:7e:92:1f:3a:7a:47:9c:63:5c:02:7f:84:20:a9: 1c:51:65:b8:dd:2d:84:b5:90:a8:f4:98:71:33:cb: 66:7f:89:0f:72:08:f5:39:66:85:ed:44:9a:36:cc: 33:f9:26:6c:1a:3e:43:26:81:f2:7a:39:45:78:8d: 77:6a:53:a5:7c:4b:e7:9d:fe:1e:0a:da:ee:fb:0b: 40:f1:7b:57:db:58:09:fa:1b:16:c2:5a:51:df:03: f3:45:57:53:5b:61:c0:a5:40:ee:94:a3:6c:76:b3: a2:e1:3e:64:39:b8:0c:65:17:bb:cd:c4:df:e0:83: d6:7d:49:db:80:fd:7f:60:cd:19:72:94:fe:0c:a4: e7:7f:47:80:b5:61:7c:ea:6a:02:3c:e7:a8:d5:9e: f0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:03:B2:3B:8F:8B:6B:96:2F:CA:6F:CA:24:7F:52:B7:FA:D3:11:8D X509v3 Authority Key Identifier: keyid:01:3F:6D:B0:FD:57:D1:9F:9E:E1:52:42:A2:E4:16:7E:FB:52:2D:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:25:17:10:fb:e6:5e:0c:80:12:87:3c:e6:12:44:d1:a5:d1: 80:39:24:04:5c:e0:c7:9a:64:d6:1d:c1:f3:62:d4:57:9d:f3: 7c:6e:24:eb:99:e5:4f:e3:de:c5:26:48:93:3f:eb:9c:e7:02: b8:e4:eb:ab:68:08:55:d4:73:8a:72:72:a1:d3:94:b9:e1:43: 8e:47:fd:dc:92:97:22:61:b1:df:0a:5b:90:1a:27:e1:54:92: 77:ed:e4:1d:2e:dc:c4:4f:df:e4:41:a1:60:33:c0:68:23:64: 89:13:c5:dd:6b:18:c0:f1:e2:24:b2:eb:d8:72:af:6d:2d:8c: b4:99:ac:62:52:4e:53:5c:6b:5b:57:e0:15:50:8e:9a:87:2d: 0e:c4:40:08:ed:97:c0:b6:e1:d8:e3:a8:b4:30:49:41:6e:23: 54:ee:a8:30:12:24:1d:72:39:e4:6b:26:c1:e9:fb:14:17:29: c4:7f:81:5b:cc:6c:7f:51:3f:4e:48:c1:01:5b:4b:6b:e2:6d: 5e:70:4b:41:f3:c1:8d:b3:b3:48:84:28:6e:f9:79:03:34:00: c5:d4:dc:82:e1:91:a6:44:75:84:2d:70:64:df:9f:0b:cc:b9: df:3d:86:b7:52:56:3e:2e:a0:3b:3c:45:4c:9c:4b:83:80:97: c1:d8:d4:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIn10JUTDascdUaOH3jSUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxM2Y2ZGIwZmQ1N2QxOWY5ZWUxNTI0MmEyZTQxNjdlZmI1 MjJkMDQwHhcNMjYwMjA5MTYwMDU5WhcNMjYwMjEwMTYwMDU5WjAzMTEwLwYDVQQD EygzZTAzYjIzYjhmOGI2Yjk2MmZjYTZmY2EyNDdmNTJiN2ZhZDMxMThkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwTO4kQf04LpiBOrQb6iMr61RrEa7 8xB5jCeQ7kk+Av5MZ01SjAkBsE3z6NZpSK+Zt0rJcHtg8zg6ZRyejkLPIf/KfWjd V9rYa0wT0HUT0LyhjnwHPFa8QdTeQjd6UZOEQ60IOkqmjIkSfpIfOnpHnGNcAn+E IKkcUWW43S2EtZCo9JhxM8tmf4kPcgj1OWaF7USaNswz+SZsGj5DJoHyejlFeI13 alOlfEvnnf4eCtru+wtA8XtX21gJ+hsWwlpR3wPzRVdTW2HApUDulKNsdrOi4T5k ObgMZRe7zcTf4IPWfUnbgP1/YM0ZcpT+DKTnf0eAtWF86moCPOeo1Z7wTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD4DsjuPi2uWL8pvyiR/Urf60xGNMB8GA1UdIwQY MBaAFAE/bbD9V9GfnuFSQqLkFn77Ui0EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVQ5dHNQMVgwWi1lNFZKQ291UVdmdnRTTFFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi9mNjMzMDctNGEwZi00MDUzLThmYzMt ZjUzNTU3ODk4NGMyLzEvQVQ5dHNQMVgwWi1lNFZKQ291UVdmdnRTTFFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi9mNjMzMDctNGEwZi00MDUzLThmYzMtZjUzNTU3ODk4NGMy LzEvQVQ5dHNQMVgwWi1lNFZKQ291UVdmdnRTTFFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgSUXEPvm XgyAEoc85hJE0aXRgDkkBFzgx5pk1h3B82LUV53zfG4k65nlT+PexSZIkz/rnOcC uOTrq2gIVdRzinJyodOUueFDjkf93JKXImGx3wpbkBon4VSSd+3kHS7cxE/f5EGh YDPAaCNkiRPF3WsYwPHiJLLr2HKvbS2MtJmsYlJOU1xrW1fgFVCOmoctDsRACO2X wLbh2OOotDBJQW4jVO6oMBIkHXI55Gsmwen7FBcpxH+BW8xsf1E/TkjBAVtLa+Jt XnBLQfPBjbOzSIQobvl5AzQAxdTcguGRpkR1hC1wZN+fC8y53z2Gt1JWPi6gOzxF TJxLg4CXwdjUVQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:29 2026 by rpki-client