This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.mft File: aMGCS-Cxb0bS_wEsWCWmcLuTKhc.mft (raw, json) Hash identifier: /piKU9UbnjPK5yWZ1R+EJVMG8jM2TuomQRIL7VImPZU= Subject key identifier: 28:66:F6:B9:78:E1:96:5E:72:7B:2A:F8:E0:08:EB:7E:94:23:16:E1 Authority key identifier: 68:C1:82:4B:E0:B1:6F:46:D2:FF:01:2C:58:25:A6:70:BB:93:2A:17 Certificate issuer: /CN=68c1824be0b16f46d2ff012c5825a670bb932a17 Certificate serial: 019C432214FA0D639E55EFDE6497E60AF7A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.mft Manifest number: 0521 Signing time: Mon 09 Feb 2026 16:00:32 +0000 Manifest this update: Mon 09 Feb 2026 16:00:32 +0000 Manifest next update: Tue 10 Feb 2026 16:00:32 +0000 Files and hashes: 1: aMGCS-Cxb0bS_wEsWCWmcLuTKhc.crl (hash: 9Ops9N5B2GailT58+rCu7suldUR/UxjhLZjrBlGea7Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.mft rsync://rpki.ripe.net/repository/DEFAULT/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:14:fa:0d:63:9e:55:ef:de:64:97:e6:0a:f7:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68c1824be0b16f46d2ff012c5825a670bb932a17 Validity Not Before: Feb 9 16:00:32 2026 GMT Not After : Feb 10 16:00:32 2026 GMT Subject: CN=2866f6b978e1965e727b2af8e008eb7e942316e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:58:d1:55:f1:61:04:0a:d1:7f:7e:8d:00:96: e6:4c:9a:ba:1d:51:73:97:f0:35:bb:cb:e2:ef:17: a1:a9:c7:21:ee:21:6e:d4:2d:36:72:d6:16:33:1a: e5:22:87:c8:63:0b:7b:dd:6d:07:a6:00:94:9a:fa: e5:27:6b:d5:03:5c:22:e2:dd:89:85:ea:15:a5:26: 2e:1a:e2:8a:38:0b:7f:5b:7c:4d:a2:11:c9:9c:5f: ca:7d:7b:7c:6d:83:0a:c1:b8:16:04:36:fb:0c:3a: d6:85:f5:7d:d5:ff:76:12:6d:c2:4d:8f:d8:46:b1: 19:08:2e:a9:f2:9e:f4:9a:2a:5e:bb:c5:3a:40:68: 22:2b:0b:35:91:b4:b4:d3:f8:a8:56:0d:1a:ad:5b: ea:65:7b:37:ec:15:1b:0b:01:80:52:10:0e:47:49: 14:c4:d8:be:48:88:5d:ed:ba:cd:62:bc:76:44:ec: 53:a2:78:ca:b9:a6:a2:6e:fa:71:ae:ba:ad:76:3c: 29:00:25:59:0d:8e:23:94:ee:ad:40:60:b9:9e:e2: 4d:ed:1c:b0:ef:4f:cf:bd:99:af:76:2a:7c:70:02: 2e:21:e7:a0:78:47:fd:6f:0f:86:30:2a:4b:49:5b: 9f:03:21:69:9c:5c:45:1a:7c:3e:b6:52:e7:79:99: 6a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:66:F6:B9:78:E1:96:5E:72:7B:2A:F8:E0:08:EB:7E:94:23:16:E1 X509v3 Authority Key Identifier: keyid:68:C1:82:4B:E0:B1:6F:46:D2:FF:01:2C:58:25:A6:70:BB:93:2A:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:9f:16:95:eb:16:0d:de:16:23:f5:3a:3c:2f:1e:9a:2d:9f: 51:2a:7a:52:ab:7c:cb:77:c5:d7:38:84:82:30:57:98:b0:49: 74:06:4d:45:0d:d3:dc:cb:f1:2e:76:10:fe:09:4e:24:0c:9d: 05:21:be:70:ad:cf:74:ca:26:4c:a8:d2:5b:8a:b3:08:20:bb: 11:dc:f2:a5:26:bc:1b:8e:c2:fb:6a:36:58:ff:0d:14:a3:48: a1:6a:ae:f3:eb:83:83:64:ac:cf:83:d5:e8:e4:7c:d5:8d:68: 94:e0:13:f5:5c:42:4a:e8:48:cc:22:4f:1e:db:f8:f6:8a:67: c4:11:62:99:ea:75:e7:57:36:cd:74:19:cd:5b:c8:3e:aa:13: 72:59:58:2a:97:95:65:5a:ec:82:2c:f0:56:8d:b5:d7:e1:c7: 24:46:47:fa:6c:79:ec:fa:dc:c5:d7:45:73:d4:e8:14:c7:3b: 67:57:62:dc:42:a3:7c:ce:d5:88:bb:b4:58:f6:15:e1:39:b9: 9f:91:bc:03:a7:fb:f5:ba:69:e5:f4:1e:03:bd:79:e6:26:b1: 99:8f:24:b9:b4:a3:e9:66:34:e6:e8:8d:a8:c7:f1:99:dc:9f: c8:11:06:dd:08:2a:b6:58:e3:ca:e8:ee:ff:7d:93:70:89:c4: 2d:84:58:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIhT6DWOeVe/eZJfmCveoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YzE4MjRiZTBiMTZmNDZkMmZmMDEyYzU4MjVhNjcwYmI5 MzJhMTcwHhcNMjYwMjA5MTYwMDMyWhcNMjYwMjEwMTYwMDMyWjAzMTEwLwYDVQQD EygyODY2ZjZiOTc4ZTE5NjVlNzI3YjJhZjhlMDA4ZWI3ZTk0MjMxNmUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVjRVfFhBArRf36NAJbmTJq6HVFz l/A1u8vi7xehqcch7iFu1C02ctYWMxrlIofIYwt73W0HpgCUmvrlJ2vVA1wi4t2J heoVpSYuGuKKOAt/W3xNohHJnF/KfXt8bYMKwbgWBDb7DDrWhfV91f92Em3CTY/Y RrEZCC6p8p70mipeu8U6QGgiKws1kbS00/ioVg0arVvqZXs37BUbCwGAUhAOR0kU xNi+SIhd7brNYrx2ROxTonjKuaaibvpxrrqtdjwpACVZDY4jlO6tQGC5nuJN7Ryw 70/PvZmvdip8cAIuIeegeEf9bw+GMCpLSVufAyFpnFxFGnw+tlLneZlqRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFChm9rl44ZZecnsq+OAI636UIxbhMB8GA1UdIwQY MBaAFGjBgkvgsW9G0v8BLFglpnC7kyoXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU1HQ1MtQ3hiMGJTX3dFc1dDV21jTHVUS2hjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC85ODY2MzQtYzU3My00ZmM0LWFkYTQt N2ZkZWI4ZjUwNTAzLzEvYU1HQ1MtQ3hiMGJTX3dFc1dDV21jTHVUS2hjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC85ODY2MzQtYzU3My00ZmM0LWFkYTQtN2ZkZWI4ZjUwNTAz LzEvYU1HQ1MtQ3hiMGJTX3dFc1dDV21jTHVUS2hjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApp8WlesW Dd4WI/U6PC8emi2fUSp6Uqt8y3fF1ziEgjBXmLBJdAZNRQ3T3MvxLnYQ/glOJAyd BSG+cK3PdMomTKjSW4qzCCC7EdzypSa8G47C+2o2WP8NFKNIoWqu8+uDg2Ssz4PV 6OR81Y1olOAT9VxCSuhIzCJPHtv49opnxBFimep151c2zXQZzVvIPqoTcllYKpeV ZVrsgizwVo211+HHJEZH+mx57PrcxddFc9ToFMc7Z1di3EKjfM7ViLu0WPYV4Tm5 n5G8A6f79bpp5fQeA7155iaxmY8kubSj6WY05uiNqMfxmdyfyBEG3Qgqtljjyuju /32TcInELYRYxQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:03 2026 by rpki-client