This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft File: MlPNw--1IdnV5wqcxeRxsBWGA2o.mft (raw, json) Hash identifier: Xp6dRfcSGF8bB8DbazJ0TOiFRdoxwT2we7hy7BdBNMI= Subject key identifier: 01:55:32:84:39:07:10:22:A2:63:16:B1:A1:60:62:A7:70:C1:A5:9B Authority key identifier: 32:53:CD:C3:EF:B5:21:D9:D5:E7:0A:9C:C5:E4:71:B0:15:86:03:6A Certificate issuer: /CN=3253cdc3efb521d9d5e70a9cc5e471b01586036a Certificate serial: 019C41345A2600F645ACA98C5E53A70E7BB5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft Manifest number: 0B33 Signing time: Mon 09 Feb 2026 07:01:15 +0000 Manifest this update: Mon 09 Feb 2026 07:01:15 +0000 Manifest next update: Tue 10 Feb 2026 07:01:15 +0000 Files and hashes: 1: MlPNw--1IdnV5wqcxeRxsBWGA2o.crl (hash: Mkfbt1T/hLVwyljrWwa6RJHvSpUuPIRx7JmF7zohy8o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:5a:26:00:f6:45:ac:a9:8c:5e:53:a7:0e:7b:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3253cdc3efb521d9d5e70a9cc5e471b01586036a Validity Not Before: Feb 9 07:01:15 2026 GMT Not After : Feb 10 07:01:15 2026 GMT Subject: CN=0155328439071022a26316b1a16062a770c1a59b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:ae:b4:64:39:02:52:be:f9:13:9f:ad:73:d9: 24:76:93:c2:8e:30:8e:66:34:81:a2:d0:ba:af:0e: 01:a5:7c:d3:4e:0d:fb:33:ac:a9:b7:a7:3b:1c:90: 39:29:53:e9:01:3b:86:44:f1:a1:7f:1d:f4:66:d5: cd:82:61:fb:c7:cc:5b:9f:cb:e5:0b:08:5f:fd:65: 0c:7f:1a:95:05:ba:d0:d4:b0:6b:38:99:25:ae:7a: b0:9e:a7:a3:ef:fb:6f:ba:bc:b0:d5:6b:e3:28:e0: 02:fd:54:0e:1c:f0:49:60:20:d9:97:7e:06:b9:58: 25:30:13:18:f8:4c:a7:5b:82:10:13:12:73:fa:4e: a5:5d:6d:25:c0:1b:99:f5:06:31:19:55:e7:30:21: f6:65:ed:f9:f2:cb:63:0b:d9:91:5b:e6:0b:90:53: 71:48:b1:0d:11:d9:89:44:f1:f6:23:db:26:2b:16: 58:55:67:b9:9c:f3:b7:1e:98:b0:97:c2:04:4f:7c: b6:57:e0:b7:db:54:d3:39:25:85:61:61:99:81:3f: e3:f2:ae:e2:87:e2:0a:3d:69:79:54:ba:24:dd:55: f5:c7:cc:12:aa:b0:f6:80:41:fb:82:2b:4b:ca:36: a2:2e:bf:f8:61:ab:4e:e9:c1:09:d5:95:a9:e2:5e: 52:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:55:32:84:39:07:10:22:A2:63:16:B1:A1:60:62:A7:70:C1:A5:9B X509v3 Authority Key Identifier: keyid:32:53:CD:C3:EF:B5:21:D9:D5:E7:0A:9C:C5:E4:71:B0:15:86:03:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:b3:16:55:bd:b5:b4:6e:0e:2d:26:93:dd:e5:19:83:6d:01: 8f:0d:43:9d:c6:0d:45:b6:ef:d0:f9:18:52:68:ff:25:44:d2: 89:b8:5f:ac:c7:03:18:7e:49:5e:bd:4d:d4:f4:95:18:87:dc: 06:95:99:85:35:98:b1:68:dc:40:6f:60:a7:bf:2f:da:18:e8: 16:26:69:d2:77:8d:7b:f0:f3:92:cc:24:8f:91:49:5a:f1:02: f3:c7:b3:7f:cf:2f:56:5e:02:25:81:d9:a5:27:05:bd:82:61: 57:16:30:1b:b4:62:6b:d1:79:f8:70:03:15:c2:e8:c0:96:5f: be:da:72:48:d4:b6:ea:5d:6b:79:7d:08:70:a8:76:e7:a7:63: c7:d5:39:17:f6:75:f4:32:58:9e:95:66:01:38:19:9c:d6:44: 51:50:61:b1:f1:95:f7:60:f1:08:a3:c2:00:00:4f:e4:89:64: 6e:e5:be:a3:fc:c9:91:ab:b9:fb:66:d0:95:06:0c:8e:62:69: 7f:47:80:c0:f6:d5:9a:75:43:70:f2:d9:5d:27:e4:b1:c7:ff: c4:6f:74:e0:eb:12:06:2b:45:ca:78:f1:65:1c:8a:a7:0b:45: d1:6e:0e:29:d7:af:23:d0:bc:1b:a7:58:36:93:35:d9:8e:ef: f0:74:5c:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNFomAPZFrKmMXlOnDnu1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNTNjZGMzZWZiNTIxZDlkNWU3MGE5Y2M1ZTQ3MWIwMTU4 NjAzNmEwHhcNMjYwMjA5MDcwMTE1WhcNMjYwMjEwMDcwMTE1WjAzMTEwLwYDVQQD EygwMTU1MzI4NDM5MDcxMDIyYTI2MzE2YjFhMTYwNjJhNzcwYzFhNTliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+a60ZDkCUr75E5+tc9kkdpPCjjCO ZjSBotC6rw4BpXzTTg37M6ypt6c7HJA5KVPpATuGRPGhfx30ZtXNgmH7x8xbn8vl Cwhf/WUMfxqVBbrQ1LBrOJklrnqwnqej7/tvuryw1WvjKOAC/VQOHPBJYCDZl34G uVglMBMY+EynW4IQExJz+k6lXW0lwBuZ9QYxGVXnMCH2Ze358stjC9mRW+YLkFNx SLENEdmJRPH2I9smKxZYVWe5nPO3Hpiwl8IET3y2V+C321TTOSWFYWGZgT/j8q7i h+IKPWl5VLok3VX1x8wSqrD2gEH7gitLyjaiLr/4YatO6cEJ1ZWp4l5SAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAFVMoQ5BxAiomMWsaFgYqdwwaWbMB8GA1UdIwQY MBaAFDJTzcPvtSHZ1ecKnMXkcbAVhgNqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWxQTnctLTFJZG5WNXdxY3hlUnhzQldHQTJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS81MWExMTUtZGU4Ni00NDA3LWE5NjMt MWM1YzIwZDEzZWY4LzEvTWxQTnctLTFJZG5WNXdxY3hlUnhzQldHQTJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS81MWExMTUtZGU4Ni00NDA3LWE5NjMtMWM1YzIwZDEzZWY4 LzEvTWxQTnctLTFJZG5WNXdxY3hlUnhzQldHQTJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKrMWVb21 tG4OLSaT3eUZg20Bjw1DncYNRbbv0PkYUmj/JUTSibhfrMcDGH5JXr1N1PSVGIfc BpWZhTWYsWjcQG9gp78v2hjoFiZp0neNe/Dzkswkj5FJWvEC88ezf88vVl4CJYHZ pScFvYJhVxYwG7Ria9F5+HADFcLowJZfvtpySNS26l1reX0IcKh256djx9U5F/Z1 9DJYnpVmATgZnNZEUVBhsfGV92DxCKPCAABP5IlkbuW+o/zJkau5+2bQlQYMjmJp f0eAwPbVmnVDcPLZXSfkscf/xG904OsSBitFynjxZRyKpwtF0W4OKdevI9C8G6dY NpM12Y7v8HRcig== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:39 2026 by rpki-client