This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft File: 9aKRIk-CvG0mtRntevviXLMsEVw.mft (raw, json) Hash identifier: WNE+HZfm6Ust8b24pddfilYJsgZlUuQE5iUgJ94pxgk= Subject key identifier: 20:F4:D9:AC:16:C8:83:BF:01:EC:01:2A:85:7E:45:F7:A8:94:A8:F3 Authority key identifier: F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C Certificate issuer: /CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c Certificate serial: 019C42EB71FB547BB6AF30E547AA4D68ABA5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft Manifest number: 0CE1 Signing time: Mon 09 Feb 2026 15:00:52 +0000 Manifest this update: Mon 09 Feb 2026 15:00:52 +0000 Manifest next update: Tue 10 Feb 2026 15:00:52 +0000 Files and hashes: 1: 9aKRIk-CvG0mtRntevviXLMsEVw.crl (hash: /GJ7Y6BlAft3ONIocHDL4xqLy7U0lpk3j0h6Q3wkru8=) 2: xhDUoIsJaJCqOA6VTkyeMee_Z9s.roa (hash: bDCv1HCZJO4EbMKAw0lf46zS80bqNn1qKkmrw6hFSH0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:71:fb:54:7b:b6:af:30:e5:47:aa:4d:68:ab:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c Validity Not Before: Feb 9 15:00:52 2026 GMT Not After : Feb 10 15:00:52 2026 GMT Subject: CN=20f4d9ac16c883bf01ec012a857e45f7a894a8f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:89:6a:c0:91:95:21:40:92:00:c4:5c:27:60: 3a:78:98:86:62:b7:d4:cb:f2:bb:1a:b0:15:f5:87: ed:ac:e2:63:45:6d:36:77:26:05:3c:3e:ec:2a:af: 88:83:4d:d1:b8:39:4e:9e:4b:2c:cd:d8:58:11:b8: 68:65:2e:10:2a:c8:17:74:70:37:a5:c3:fb:93:ed: 1b:07:9c:e9:9a:19:7a:d7:14:9d:da:fa:61:25:21: 2c:1d:07:18:8d:98:b2:34:d0:e1:46:ce:a5:6f:3c: 41:39:d7:82:76:e6:2a:a7:84:bb:cc:b4:93:fd:73: 85:1b:0a:ac:27:d3:25:b2:b1:e7:44:90:ce:35:08: 21:4a:73:3b:60:52:a9:bd:be:13:1c:c1:50:5d:03: 6b:07:66:4c:c3:39:5a:06:54:8e:93:04:bc:0a:be: 90:2c:68:b1:fb:5b:ce:00:9b:8f:58:bf:dc:71:30: 51:39:e3:42:bb:4a:2e:f7:e9:a0:ef:90:14:c6:76: cc:78:9d:4c:06:46:83:bf:4a:d2:39:f8:1a:75:d0: 3e:eb:8d:b8:21:4f:77:09:ed:17:3e:53:fc:20:c6: 3f:8e:92:5e:62:a7:f7:33:89:f0:59:27:cf:36:8d: ca:6f:22:f9:01:5a:19:ac:03:4d:3b:c0:6a:ad:33: 3d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F4:D9:AC:16:C8:83:BF:01:EC:01:2A:85:7E:45:F7:A8:94:A8:F3 X509v3 Authority Key Identifier: keyid:F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:cd:5a:71:df:69:90:d3:72:03:e6:83:88:58:90:6f:c4:5b: 13:4b:9d:54:79:56:34:88:fa:b4:17:4d:d7:f5:38:73:a2:f2: 16:0c:25:51:44:5e:bf:9d:4f:97:91:35:9a:c9:4a:b8:5e:38: f4:7b:47:38:60:84:a0:dd:2d:f9:d4:cb:b3:4b:57:4a:95:31: 2f:fe:fc:eb:af:f8:6c:27:68:b2:c3:0e:e5:75:9c:e3:a2:d4: 24:a7:c1:66:92:c0:b0:7d:a7:b5:d4:52:c9:4d:bd:6d:ac:4c: 9b:60:0c:76:62:70:61:30:45:a5:2f:db:66:83:75:02:3f:59: bc:16:b8:c3:43:e5:b8:6a:2c:94:80:cb:9b:7a:21:a2:28:12: 56:1a:57:d3:14:c6:ae:1d:9a:c4:89:10:3c:a2:a3:63:a3:34: b7:58:29:a8:c7:48:96:90:a1:21:6e:c3:f6:50:58:ed:e7:1f: 7b:ea:da:82:3a:d1:63:b8:1f:6e:cc:c7:7f:46:26:62:56:52: 9c:71:dc:f9:5d:be:f8:fc:45:59:c0:81:a0:8a:b6:e0:3d:cb: 44:e8:36:ba:ff:ba:e6:14:f2:94:22:24:d5:04:ad:c6:38:8a: 67:ba:54:4c:0f:42:a1:7b:ab:e0:ba:43:46:59:3c:e7:1a:51: 8b:d9:7d:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC63H7VHu2rzDlR6pNaKulMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1YTI5MTIyNGY4MmJjNmQyNmI1MTllZDdhZmJlMjVjYjMy YzExNWMwHhcNMjYwMjA5MTUwMDUyWhcNMjYwMjEwMTUwMDUyWjAzMTEwLwYDVQQD EygyMGY0ZDlhYzE2Yzg4M2JmMDFlYzAxMmE4NTdlNDVmN2E4OTRhOGYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIlqwJGVIUCSAMRcJ2A6eJiGYrfU y/K7GrAV9YftrOJjRW02dyYFPD7sKq+Ig03RuDlOnksszdhYEbhoZS4QKsgXdHA3 pcP7k+0bB5zpmhl61xSd2vphJSEsHQcYjZiyNNDhRs6lbzxBOdeCduYqp4S7zLST /XOFGwqsJ9MlsrHnRJDONQghSnM7YFKpvb4THMFQXQNrB2ZMwzlaBlSOkwS8Cr6Q LGix+1vOAJuPWL/ccTBROeNCu0ou9+mg75AUxnbMeJ1MBkaDv0rSOfgaddA+6424 IU93Ce0XPlP8IMY/jpJeYqf3M4nwWSfPNo3KbyL5AVoZrANNO8BqrTM9fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCD02awWyIO/AewBKoV+RfeolKjzMB8GA1UdIwQY MBaAFPWikSJPgrxtJrUZ7Xr74lyzLBFcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWFLUklrLUN2RzBtdFJudGV2dmlYTE1zRVZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC84YTVjYzItYzU0Mi00YzliLTgwNzct YmM3OTc3Mzk2ZDliLzEvOWFLUklrLUN2RzBtdFJudGV2dmlYTE1zRVZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC84YTVjYzItYzU0Mi00YzliLTgwNzctYmM3OTc3Mzk2ZDli LzEvOWFLUklrLUN2RzBtdFJudGV2dmlYTE1zRVZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAds1acd9p kNNyA+aDiFiQb8RbE0udVHlWNIj6tBdN1/U4c6LyFgwlUURev51Pl5E1mslKuF44 9HtHOGCEoN0t+dTLs0tXSpUxL/7866/4bCdossMO5XWc46LUJKfBZpLAsH2ntdRS yU29baxMm2AMdmJwYTBFpS/bZoN1Aj9ZvBa4w0PluGoslIDLm3ohoigSVhpX0xTG rh2axIkQPKKjY6M0t1gpqMdIlpChIW7D9lBY7ecfe+ragjrRY7gfbszHf0YmYlZS nHHc+V2++PxFWcCBoIq24D3LROg2uv+65hTylCIk1QStxjiKZ7pUTA9CoXur4LpD Rlk85xpRi9l9Hg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:26 2026 by rpki-client