This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft File: Ay1SsyOaHOPN00MxNIzngN3xZMA.mft (raw, json) Hash identifier: tHy03CVYmFIl8Sw+nRGCCAf8jLa/PSULa6BgfaJ+SiE= Subject key identifier: B5:17:A6:7C:56:DF:51:9B:CB:68:55:12:21:82:21:7E:8C:9E:D9:C5 Authority key identifier: 03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0 Certificate issuer: /CN=032d52b3239a1ce3cdd34331348ce780ddf164c0 Certificate serial: 019C43225C6FCAE07E5224736DC0E65002AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft Manifest number: 08C1 Signing time: Mon 09 Feb 2026 16:00:51 +0000 Manifest this update: Mon 09 Feb 2026 16:00:51 +0000 Manifest next update: Tue 10 Feb 2026 16:00:51 +0000 Files and hashes: 1: Ay1SsyOaHOPN00MxNIzngN3xZMA.crl (hash: IHLrETOvWWjxzRyWT/bo2S2n9pF25EYUbJ+l9+CTMwo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:5c:6f:ca:e0:7e:52:24:73:6d:c0:e6:50:02:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032d52b3239a1ce3cdd34331348ce780ddf164c0 Validity Not Before: Feb 9 16:00:51 2026 GMT Not After : Feb 10 16:00:51 2026 GMT Subject: CN=b517a67c56df519bcb6855122182217e8c9ed9c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c7:6b:3a:1d:c8:4c:d9:bf:ab:e4:30:bd:4a: cd:92:f7:04:bd:2c:90:79:8f:0c:ac:7d:a0:27:13: e5:5e:05:b6:1b:70:46:08:9e:19:b2:a5:51:bf:b1: f7:45:0f:91:cf:6a:d8:f4:c1:18:1a:fb:f1:68:b4: 49:ad:97:3e:10:82:53:5a:40:f2:0e:a5:54:b2:ed: a4:70:30:59:af:a9:e4:09:69:60:dc:53:8e:6d:33: 55:cf:dd:58:59:b6:54:e4:73:dd:59:00:5d:2d:f1: 8d:d5:97:c6:1a:35:80:7e:81:b0:05:4c:52:16:1b: b9:8f:f3:5c:f8:21:d4:63:ef:06:e8:da:ea:1a:1a: ec:1b:31:0b:ca:4d:f9:e1:1c:6b:64:aa:fa:0c:f5: c5:cd:25:62:39:b5:65:52:fa:af:cc:50:f5:5a:4f: 17:78:e6:c8:f7:6b:31:34:7b:dd:2d:75:88:57:1c: fa:24:34:bf:eb:fe:61:2d:f0:c1:6b:97:1e:44:79: 82:e7:4f:9d:ee:2a:73:76:48:9c:dc:97:d9:bb:f6: 49:c3:48:13:65:84:b3:cb:ca:02:a6:45:d6:7c:9f: 02:e4:ff:30:07:69:2a:74:fc:84:3d:91:45:b5:1f: fe:72:75:6e:47:83:8f:8f:5c:80:8c:3f:aa:f4:80: 99:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:17:A6:7C:56:DF:51:9B:CB:68:55:12:21:82:21:7E:8C:9E:D9:C5 X509v3 Authority Key Identifier: keyid:03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:6e:24:58:76:ea:fe:c8:44:5d:28:4f:e0:81:b4:80:07:52: 14:6a:4f:91:21:f1:76:45:59:37:d3:74:a9:de:a1:90:7a:62: 02:24:f9:4c:96:ce:72:c9:e2:aa:a2:bb:bd:fe:4f:66:c9:92: 30:be:34:d2:af:bd:4a:cf:bb:d1:3b:d6:b5:1f:89:17:02:e9: 7c:be:6b:b3:fe:62:e6:c8:f7:01:7e:4c:a0:90:73:91:02:8a: 13:3c:e8:32:de:e8:24:9b:fb:98:e3:19:f7:9f:d0:fc:ab:65: a5:64:aa:82:95:1b:48:e0:a5:3b:bd:ad:e7:8c:31:49:6c:61: 09:b9:70:cf:66:25:e1:47:3b:20:b8:ad:d7:7f:02:45:c1:78: 80:dd:ea:2e:02:9e:2b:46:8a:f5:e6:d0:47:de:fc:54:2b:95: 49:f8:b2:53:30:f5:79:58:3e:90:ae:5c:56:be:86:b6:c9:43: 94:b7:d9:cb:33:eb:58:8e:c9:1d:ac:9e:d1:58:a5:53:db:71: 89:04:8f:86:62:43:7b:2f:c5:8f:1b:a7:4d:29:04:11:91:ed: 17:a8:60:07:94:1d:8a:2b:80:3a:9f:47:50:1b:59:a5:da:44: fa:85:6b:26:56:f8:bc:15:fc:f6:b3:e1:c5:e3:c0:d5:89:26: 7a:eb:2b:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlxvyuB+UiRzbcDmUAKsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzMmQ1MmIzMjM5YTFjZTNjZGQzNDMzMTM0OGNlNzgwZGRm MTY0YzAwHhcNMjYwMjA5MTYwMDUxWhcNMjYwMjEwMTYwMDUxWjAzMTEwLwYDVQQD EyhiNTE3YTY3YzU2ZGY1MTliY2I2ODU1MTIyMTgyMjE3ZThjOWVkOWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcdrOh3ITNm/q+QwvUrNkvcEvSyQ eY8MrH2gJxPlXgW2G3BGCJ4ZsqVRv7H3RQ+Rz2rY9MEYGvvxaLRJrZc+EIJTWkDy DqVUsu2kcDBZr6nkCWlg3FOObTNVz91YWbZU5HPdWQBdLfGN1ZfGGjWAfoGwBUxS Fhu5j/Nc+CHUY+8G6NrqGhrsGzELyk354RxrZKr6DPXFzSViObVlUvqvzFD1Wk8X eObI92sxNHvdLXWIVxz6JDS/6/5hLfDBa5ceRHmC50+d7ipzdkic3JfZu/ZJw0gT ZYSzy8oCpkXWfJ8C5P8wB2kqdPyEPZFFtR/+cnVuR4OPj1yAjD+q9ICZDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLUXpnxW31Gby2hVEiGCIX6MntnFMB8GA1UdIwQY MBaAFAMtUrMjmhzjzdNDMTSM54Dd8WTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXkxU3N5T2FIT1BOMDBNeE5Jem5nTjN4Wk1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9iYzVmMTUtNThhZS00ZGYwLTljNmQt ZTdhZDczYmJjYzg5LzEvQXkxU3N5T2FIT1BOMDBNeE5Jem5nTjN4Wk1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS9iYzVmMTUtNThhZS00ZGYwLTljNmQtZTdhZDczYmJjYzg5 LzEvQXkxU3N5T2FIT1BOMDBNeE5Jem5nTjN4Wk1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc24kWHbq /shEXShP4IG0gAdSFGpPkSHxdkVZN9N0qd6hkHpiAiT5TJbOcsniqqK7vf5PZsmS ML400q+9Ss+70TvWtR+JFwLpfL5rs/5i5sj3AX5MoJBzkQKKEzzoMt7oJJv7mOMZ 95/Q/KtlpWSqgpUbSOClO72t54wxSWxhCblwz2Yl4Uc7ILit138CRcF4gN3qLgKe K0aK9ebQR978VCuVSfiyUzD1eVg+kK5cVr6GtslDlLfZyzPrWI7JHaye0VilU9tx iQSPhmJDey/FjxunTSkEEZHtF6hgB5QdiiuAOp9HUBtZpdpE+oVrJlb4vBX89rPh xePA1YkmeusrWg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:56 2026 by rpki-client