This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft File: gaaIASwSJngYX8634QN_Dh7ReGE.mft (raw, json) Hash identifier: t3xSmUcqS6I/DbFp8mBN0Igw7wea9bpL0d/BvhELB0Q= Subject key identifier: 38:E1:02:5B:F6:80:CA:C1:0B:A8:DD:7D:83:4F:02:4E:65:35:08:86 Authority key identifier: 81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61 Certificate issuer: /CN=81a688012c122678185fceb7e1037f0e1ed17861 Certificate serial: 019C427D1277F5679A4AEF706F13B8154B44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft Manifest number: 0EF6 Signing time: Mon 09 Feb 2026 13:00:18 +0000 Manifest this update: Mon 09 Feb 2026 13:00:18 +0000 Manifest next update: Tue 10 Feb 2026 13:00:18 +0000 Files and hashes: 1: 5GkzwsX2SAkCt9B6c4atkjd4rkM.roa (hash: 8XwwTszWSwQ0ODWiARrL0mvIBAeBsaR0WFrNoJhXWyY=) 2: gaaIASwSJngYX8634QN_Dh7ReGE.crl (hash: EopvuJk8S7QisCDlk5a8Hv46c9HS6MgbexWlZg3RDt4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:12:77:f5:67:9a:4a:ef:70:6f:13:b8:15:4b:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81a688012c122678185fceb7e1037f0e1ed17861 Validity Not Before: Feb 9 13:00:18 2026 GMT Not After : Feb 10 13:00:18 2026 GMT Subject: CN=38e1025bf680cac10ba8dd7d834f024e65350886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e8:4f:31:01:16:4e:ab:e5:53:5a:48:4c:94: 0b:ee:5f:88:36:5b:f0:09:bc:a4:09:b0:15:e2:98: cb:39:cf:8d:b5:3f:45:77:14:10:73:eb:e1:4d:b6: 54:c4:71:c6:a8:eb:4a:e4:c2:ec:bf:57:27:48:df: 5b:0f:56:39:a3:0d:7c:08:15:92:47:4b:8d:a6:af: 1a:36:4a:cc:9f:c2:a3:7a:4a:a6:cb:98:ff:f5:89: 1a:4b:73:a0:5e:e8:ce:d9:da:b3:d0:7a:83:d2:ae: 24:98:01:f2:d4:82:31:a3:61:83:ae:3b:64:45:3c: e9:0f:a2:ac:b0:4b:48:cb:70:91:61:b6:b2:5b:1e: 63:06:62:9a:58:23:09:2b:bb:50:b4:5f:7e:69:f6: e3:47:1d:68:85:a3:78:4a:46:b9:09:5d:f7:5e:20: 2d:d7:68:08:2d:51:e7:25:aa:99:b1:bb:aa:4c:19: 1e:32:bf:32:08:8d:a8:af:37:18:57:41:d1:26:50: 5c:f6:b0:d9:ac:65:eb:68:f4:90:d7:a6:52:32:bc: 41:8e:42:82:5f:df:e1:7e:df:35:37:ab:4b:c3:10: 1e:1d:2c:47:c9:3b:04:75:20:04:31:2a:bb:9e:df: 49:fa:2a:e8:4b:f5:79:5a:17:7c:81:54:68:89:88: 97:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:E1:02:5B:F6:80:CA:C1:0B:A8:DD:7D:83:4F:02:4E:65:35:08:86 X509v3 Authority Key Identifier: keyid:81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ad:1a:f7:e7:7b:87:2d:c6:ae:66:ee:05:7a:f0:2c:da:27: aa:98:0a:a3:ad:3b:44:09:2f:e0:da:84:bc:3a:1a:c7:a0:0b: a0:c0:fa:10:b1:93:d0:06:8e:a3:e7:31:f0:5d:20:d8:57:c7: 31:04:51:5f:d4:48:b5:d1:6f:13:d3:55:cb:3a:af:a4:e5:88: 6e:f6:1a:3f:e5:59:03:b8:c3:a0:50:15:a2:0e:9c:ef:ee:45: a5:df:ce:19:13:90:fa:41:e9:74:a1:3c:e6:12:13:f4:77:54: 2e:93:e0:26:09:79:eb:0c:9c:3a:f9:bd:0f:4f:0e:63:1f:5e: d8:bc:3f:16:0e:53:68:c7:22:21:38:f3:45:5c:a7:0a:d5:3b: 29:c6:97:6c:c5:73:d8:b9:2d:d1:19:23:c3:cf:44:f2:59:ca: 5d:f4:89:ba:d5:60:81:03:85:87:de:4c:0d:43:46:f3:43:36: 0e:fe:b9:63:36:63:5c:b7:6e:3a:11:30:dd:c6:fa:48:55:c9: 9c:24:0a:ea:e0:32:6d:13:f2:14:95:6d:15:5d:02:0f:8f:47: 20:85:b2:50:8c:ba:29:fb:ee:0a:c1:89:2d:50:dc:b0:e3:4e: 21:9f:6c:e6:ef:70:64:f3:a1:a4:94:d5:cc:30:99:70:19:87: 9c:a6:18:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfRJ39WeaSu9wbxO4FUtEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxYTY4ODAxMmMxMjI2NzgxODVmY2ViN2UxMDM3ZjBlMWVk MTc4NjEwHhcNMjYwMjA5MTMwMDE4WhcNMjYwMjEwMTMwMDE4WjAzMTEwLwYDVQQD EygzOGUxMDI1YmY2ODBjYWMxMGJhOGRkN2Q4MzRmMDI0ZTY1MzUwODg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAruhPMQEWTqvlU1pITJQL7l+INlvw CbykCbAV4pjLOc+NtT9FdxQQc+vhTbZUxHHGqOtK5MLsv1cnSN9bD1Y5ow18CBWS R0uNpq8aNkrMn8Kjekqmy5j/9YkaS3OgXujO2dqz0HqD0q4kmAHy1IIxo2GDrjtk RTzpD6KssEtIy3CRYbayWx5jBmKaWCMJK7tQtF9+afbjRx1ohaN4Ska5CV33XiAt 12gILVHnJaqZsbuqTBkeMr8yCI2orzcYV0HRJlBc9rDZrGXraPSQ16ZSMrxBjkKC X9/hft81N6tLwxAeHSxHyTsEdSAEMSq7nt9J+iroS/V5Whd8gVRoiYiXAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDjhAlv2gMrBC6jdfYNPAk5lNQiGMB8GA1UdIwQY MBaAFIGmiAEsEiZ4GF/Ot+EDfw4e0XhhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2FhSUFTd1NKbmdZWDg2MzRRTl9EaDdSZUdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9jN2MyMDctYTNiYS00OWM4LWE4OTQt MDg0ZDQ3NDhjMzg1LzEvZ2FhSUFTd1NKbmdZWDg2MzRRTl9EaDdSZUdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9jN2MyMDctYTNiYS00OWM4LWE4OTQtMDg0ZDQ3NDhjMzg1 LzEvZ2FhSUFTd1NKbmdZWDg2MzRRTl9EaDdSZUdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL60a9+d7 hy3GrmbuBXrwLNonqpgKo607RAkv4NqEvDoax6ALoMD6ELGT0AaOo+cx8F0g2FfH MQRRX9RItdFvE9NVyzqvpOWIbvYaP+VZA7jDoFAVog6c7+5Fpd/OGROQ+kHpdKE8 5hIT9HdULpPgJgl56wycOvm9D08OYx9e2Lw/Fg5TaMciITjzRVynCtU7KcaXbMVz 2Lkt0Rkjw89E8lnKXfSJutVggQOFh95MDUNG80M2Dv65YzZjXLduOhEw3cb6SFXJ nCQK6uAybRPyFJVtFV0CD49HIIWyUIy6KfvuCsGJLVDcsONOIZ9s5u9wZPOhpJTV zDCZcBmHnKYYjg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:39 2026 by rpki-client