This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.mft File: avKqUEvzdkSAPC7vFgTThgsd74Y.mft (raw, json) Hash identifier: 7YjJh3vytGwNak3GS2u2feVM1xsMv/0MSAb7IWP1Ls8= Subject key identifier: DD:FF:D6:E7:34:0A:97:B7:60:FC:5A:55:36:8C:2B:B7:AE:28:05:CD Authority key identifier: 6A:F2:AA:50:4B:F3:76:44:80:3C:2E:EF:16:04:D3:86:0B:1D:EF:86 Certificate issuer: /CN=6af2aa504bf37644803c2eef1604d3860b1def86 Certificate serial: 019C41D8DF23B3BDBC5F9CA171A5222AA56E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avKqUEvzdkSAPC7vFgTThgsd74Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.mft Manifest number: 076E Signing time: Mon 09 Feb 2026 10:00:57 +0000 Manifest this update: Mon 09 Feb 2026 10:00:57 +0000 Manifest next update: Tue 10 Feb 2026 10:00:57 +0000 Files and hashes: 1: avKqUEvzdkSAPC7vFgTThgsd74Y.crl (hash: jmaVK5dwcYp3RGKGDzo2/P4I/eMY3qJaHZEzR1ohYFI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.crl rsync://rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.mft rsync://rpki.ripe.net/repository/DEFAULT/avKqUEvzdkSAPC7vFgTThgsd74Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:df:23:b3:bd:bc:5f:9c:a1:71:a5:22:2a:a5:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6af2aa504bf37644803c2eef1604d3860b1def86 Validity Not Before: Feb 9 10:00:57 2026 GMT Not After : Feb 10 10:00:57 2026 GMT Subject: CN=ddffd6e7340a97b760fc5a55368c2bb7ae2805cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:73:35:4c:f8:c8:a9:cf:80:ad:4f:41:f4:b7: 25:75:ce:ef:d7:41:a0:2d:9b:6b:0d:41:6f:65:8f: 39:66:5f:ea:3c:df:86:b6:dc:66:8a:5e:cc:4f:11: 55:3d:6f:ec:fc:cb:ba:b7:0e:98:f5:cd:f6:a5:d3: 51:07:06:07:a0:62:38:8e:5a:d2:32:b8:39:39:b3: 53:83:0b:4e:dc:e4:ba:79:9e:7a:27:5d:79:28:af: a1:98:b8:1c:a8:d0:73:ed:df:fe:0e:46:a8:0f:3c: 44:94:fc:c9:d5:66:bc:86:c0:85:2b:5f:62:2d:e7: 39:fc:75:7f:12:48:2c:35:6b:d3:35:71:d4:18:d0: 76:f7:e8:fa:f0:c1:01:ed:c2:ac:75:90:a0:78:f8: d1:3c:1f:30:7e:ef:e0:e9:9b:f0:ed:f3:0d:d4:c2: a2:e5:75:87:b1:dd:f5:81:c2:0e:ad:95:be:2b:60: c7:43:0c:ce:85:4f:e7:2c:da:49:00:af:50:a6:01: 76:ad:d1:03:33:ba:05:89:f0:8f:b9:0d:97:e5:a6: 3e:9a:88:1e:02:67:4c:f3:e9:1a:0f:26:83:11:4e: bd:d5:8f:33:30:af:97:90:54:5c:6d:7b:71:f0:20: 26:58:62:2d:f9:26:d7:96:95:55:65:4a:99:43:5c: de:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:FF:D6:E7:34:0A:97:B7:60:FC:5A:55:36:8C:2B:B7:AE:28:05:CD X509v3 Authority Key Identifier: keyid:6A:F2:AA:50:4B:F3:76:44:80:3C:2E:EF:16:04:D3:86:0B:1D:EF:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avKqUEvzdkSAPC7vFgTThgsd74Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:51:58:9d:06:71:f0:62:3d:94:d4:94:3a:5b:9d:e4:33:41: e2:df:3e:06:ea:22:3c:f6:bd:b3:e1:94:7c:1a:6a:eb:04:62: 34:14:6e:44:96:31:c4:63:12:9e:2e:73:40:93:63:0a:ad:d9: 05:85:12:2e:28:59:e4:89:65:08:2e:e1:aa:16:b7:45:61:e0: 3b:40:9d:4f:b3:f6:4c:2f:ad:13:d4:44:7e:68:d5:d6:89:5b: fc:20:1b:72:58:e1:0f:52:79:ab:13:f4:f4:81:97:e0:28:7a: 00:cb:00:95:3d:26:33:84:fe:d6:c9:86:65:35:1a:90:7f:cb: 3c:88:12:fb:58:a6:5b:4c:5b:12:f9:e0:bf:f8:2e:43:3b:de: 7e:04:22:c6:92:fc:2b:3f:10:a5:f2:4c:84:cc:1d:4f:7e:05: f6:20:d1:8b:a7:46:10:b6:c1:be:ed:28:58:da:a2:28:69:ca: 4b:4c:67:e9:97:10:ed:f9:5d:1a:dc:1a:02:03:0e:de:a6:66: 3e:8c:52:4a:5a:3f:8b:4e:ea:9a:6a:3c:46:d9:54:23:e0:08: 4b:e0:d2:ee:69:f7:ef:0e:85:11:f8:f6:d2:32:71:9d:73:fe: 54:8d:f3:2b:a1:85:b9:ef:4d:5f:c0:24:c4:48:63:fd:f9:48: 0e:e2:2a:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2N8js728X5yhcaUiKqVuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhZjJhYTUwNGJmMzc2NDQ4MDNjMmVlZjE2MDRkMzg2MGIx ZGVmODYwHhcNMjYwMjA5MTAwMDU3WhcNMjYwMjEwMTAwMDU3WjAzMTEwLwYDVQQD EyhkZGZmZDZlNzM0MGE5N2I3NjBmYzVhNTUzNjhjMmJiN2FlMjgwNWNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHM1TPjIqc+ArU9B9Lcldc7v10Gg LZtrDUFvZY85Zl/qPN+Gttxmil7MTxFVPW/s/Mu6tw6Y9c32pdNRBwYHoGI4jlrS Mrg5ObNTgwtO3OS6eZ56J115KK+hmLgcqNBz7d/+DkaoDzxElPzJ1Wa8hsCFK19i Lec5/HV/EkgsNWvTNXHUGNB29+j68MEB7cKsdZCgePjRPB8wfu/g6Zvw7fMN1MKi 5XWHsd31gcIOrZW+K2DHQwzOhU/nLNpJAK9QpgF2rdEDM7oFifCPuQ2X5aY+moge AmdM8+kaDyaDEU691Y8zMK+XkFRcbXtx8CAmWGIt+SbXlpVVZUqZQ1zeGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN3/1uc0Cpe3YPxaVTaMK7euKAXNMB8GA1UdIwQY MBaAFGryqlBL83ZEgDwu7xYE04YLHe+GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXZLcVVFdnpka1NBUEM3dkZnVFRoZ3NkNzRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9hMDE5MzgtZmFiYy00MzYyLTlmZDAt ZDQzNDNkOWU0N2JmLzEvYXZLcVVFdnpka1NBUEM3dkZnVFRoZ3NkNzRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9hMDE5MzgtZmFiYy00MzYyLTlmZDAtZDQzNDNkOWU0N2Jm LzEvYXZLcVVFdnpka1NBUEM3dkZnVFRoZ3NkNzRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATVFYnQZx 8GI9lNSUOlud5DNB4t8+BuoiPPa9s+GUfBpq6wRiNBRuRJYxxGMSni5zQJNjCq3Z BYUSLihZ5IllCC7hqha3RWHgO0CdT7P2TC+tE9REfmjV1olb/CAbcljhD1J5qxP0 9IGX4Ch6AMsAlT0mM4T+1smGZTUakH/LPIgS+1imW0xbEvngv/guQzvefgQixpL8 Kz8QpfJMhMwdT34F9iDRi6dGELbBvu0oWNqiKGnKS0xn6ZcQ7fldGtwaAgMO3qZm PoxSSlo/i07qmmo8RtlUI+AIS+DS7mn37w6FEfj20jJxnXP+VI3zK6GFue9NX8Ak xEhj/flIDuIquA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:07 2026 by rpki-client