This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft File: aomTYnatLRhxB9-3QAeTADrBSac.mft (raw, json) Hash identifier: j3r0uR7i/9F1c0P6tPFu3YdJ2AzJ+87FYXIQ9qMh1Z0= Subject key identifier: 57:44:DF:25:7F:BA:A3:67:57:4E:48:71:E2:09:62:A2:0C:5E:CD:2E Authority key identifier: 6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7 Certificate issuer: /CN=6a89936276ad2d187107dfb7400793003ac149a7 Certificate serial: 019C427E0924DDE1DA6230DF460EFC2D17B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft Manifest number: 179E Signing time: Mon 09 Feb 2026 13:01:22 +0000 Manifest this update: Mon 09 Feb 2026 13:01:22 +0000 Manifest next update: Tue 10 Feb 2026 13:01:22 +0000 Files and hashes: 1: aomTYnatLRhxB9-3QAeTADrBSac.crl (hash: jWOsXEEBfrE7k7naLPZ+zFmg0jIRjZQm+4wIE91xiAI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:09:24:dd:e1:da:62:30:df:46:0e:fc:2d:17:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a89936276ad2d187107dfb7400793003ac149a7 Validity Not Before: Feb 9 13:01:22 2026 GMT Not After : Feb 10 13:01:22 2026 GMT Subject: CN=5744df257fbaa367574e4871e20962a20c5ecd2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d1:be:d6:55:b9:5c:41:ea:15:f5:22:77:37: 08:0f:99:1d:68:f4:3b:ff:3b:36:c3:f4:c6:1f:38: 48:d1:a5:29:fc:3f:29:ab:b8:04:fe:45:29:34:4e: 70:4a:54:52:a3:0d:2b:b2:12:36:a7:1c:96:9a:42: 2e:d3:8a:37:67:3b:3e:63:89:56:13:d8:0b:9a:c7: 05:1d:f1:26:9d:d9:7b:5c:d3:29:35:4b:2a:96:03: e1:6f:80:2b:3c:cf:f7:10:6f:6b:aa:5f:3d:6e:ad: 46:b4:ee:5c:16:60:8e:99:93:f0:b0:92:ec:6f:bb: 6e:ec:1f:18:23:5f:db:69:60:8e:b3:af:95:eb:d1: b4:25:44:3d:27:ca:3e:e4:8f:48:c6:59:46:15:55: 08:47:a6:cb:d9:7a:1d:90:3d:b9:40:e0:8b:e4:90: eb:71:d8:64:cd:05:ff:24:7e:29:cb:14:ec:08:03: 15:ba:0f:6e:2a:cb:ed:e1:e3:d3:8d:32:02:6c:00: e5:1a:53:fb:81:b2:4d:0c:dd:1c:1c:18:fe:26:3f: 69:aa:12:2a:70:d2:cb:7c:25:12:66:bd:6a:0d:b0: 6d:4b:fb:72:79:f5:89:8a:88:c7:79:89:a7:7d:71: 7e:55:6b:69:c2:e3:3f:75:f5:8e:a2:7a:bc:2e:39: f6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:44:DF:25:7F:BA:A3:67:57:4E:48:71:E2:09:62:A2:0C:5E:CD:2E X509v3 Authority Key Identifier: keyid:6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:dc:d0:4a:fd:f4:a2:0a:db:56:65:73:d6:c9:5a:15:59:ea: c8:71:4e:82:0d:11:92:86:57:ea:45:57:0b:8f:91:07:3f:4e: 80:3a:fe:5e:ef:ee:bb:48:7a:8c:36:5e:c5:3d:12:ed:00:55: 4f:20:68:f2:e7:d5:24:47:28:04:3a:8e:11:fc:f4:e0:93:ec: c4:e2:49:6b:2f:7f:b5:7f:eb:40:33:20:b6:67:f3:f6:b1:c0: 71:f6:78:2b:77:96:f3:d1:d9:e6:1e:2a:e1:97:9e:4e:8e:2f: 6d:01:b5:de:91:74:97:bb:88:bb:79:3f:24:1f:50:ac:d1:ab: 40:0d:46:f4:59:ef:c2:d3:43:bd:9f:21:c2:72:38:56:52:e0: a6:a7:fb:38:2b:54:67:3f:27:99:cc:7e:d7:01:bf:6c:3c:29: fc:79:36:73:66:fa:68:e2:4e:6c:c1:28:1d:23:a3:cd:45:07: 6b:9f:b0:4b:57:2a:2d:ce:d4:5d:2c:c1:4c:ba:78:74:ed:38: cc:fd:de:0c:d6:74:29:d0:fb:9e:29:29:2f:aa:2f:53:6c:f6: ef:6f:d7:09:98:c5:bc:40:a1:d6:a0:03:78:6e:67:5c:f4:00: 86:b4:2e:a4:af:b7:32:f5:25:8d:19:73:e0:02:12:83:bf:b8: ab:f5:14:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfgkk3eHaYjDfRg78LRexMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhODk5MzYyNzZhZDJkMTg3MTA3ZGZiNzQwMDc5MzAwM2Fj MTQ5YTcwHhcNMjYwMjA5MTMwMTIyWhcNMjYwMjEwMTMwMTIyWjAzMTEwLwYDVQQD Eyg1NzQ0ZGYyNTdmYmFhMzY3NTc0ZTQ4NzFlMjA5NjJhMjBjNWVjZDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtG+1lW5XEHqFfUidzcID5kdaPQ7 /zs2w/TGHzhI0aUp/D8pq7gE/kUpNE5wSlRSow0rshI2pxyWmkIu04o3Zzs+Y4lW E9gLmscFHfEmndl7XNMpNUsqlgPhb4ArPM/3EG9rql89bq1GtO5cFmCOmZPwsJLs b7tu7B8YI1/baWCOs6+V69G0JUQ9J8o+5I9IxllGFVUIR6bL2XodkD25QOCL5JDr cdhkzQX/JH4pyxTsCAMVug9uKsvt4ePTjTICbADlGlP7gbJNDN0cHBj+Jj9pqhIq cNLLfCUSZr1qDbBtS/tyefWJiojHeYmnfXF+VWtpwuM/dfWOonq8Ljn2wwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFdE3yV/uqNnV05IceIJYqIMXs0uMB8GA1UdIwQY MBaAFGqJk2J2rS0YcQfft0AHkwA6wUmnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYW9tVFluYXRMUmh4QjktM1FBZVRBRHJCU2FjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi8yYWI2MmQtMDcwYy00YjA2LWIzOGEt NzNhN2E0NzM2MDM4LzEvYW9tVFluYXRMUmh4QjktM1FBZVRBRHJCU2FjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi8yYWI2MmQtMDcwYy00YjA2LWIzOGEtNzNhN2E0NzM2MDM4 LzEvYW9tVFluYXRMUmh4QjktM1FBZVRBRHJCU2FjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFtzQSv30 ogrbVmVz1slaFVnqyHFOgg0RkoZX6kVXC4+RBz9OgDr+Xu/uu0h6jDZexT0S7QBV TyBo8ufVJEcoBDqOEfz04JPsxOJJay9/tX/rQDMgtmfz9rHAcfZ4K3eW89HZ5h4q 4ZeeTo4vbQG13pF0l7uIu3k/JB9QrNGrQA1G9FnvwtNDvZ8hwnI4VlLgpqf7OCtU Zz8nmcx+1wG/bDwp/Hk2c2b6aOJObMEoHSOjzUUHa5+wS1cqLc7UXSzBTLp4dO04 zP3eDNZ0KdD7nikpL6ovU2z272/XCZjFvECh1qADeG5nXPQAhrQupK+3MvUljRlz 4AISg7+4q/UUgA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:26 2026 by rpki-client