This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft File: aVu9VCkSpm_uajQSijqM9wl9xps.mft (raw, json) Hash identifier: ohHl8yK6WhDhCU+jM+zyK+zRwJpEMde6vkUp1qkz92U= Subject key identifier: DB:D6:58:D4:C1:34:06:70:1C:2F:74:76:47:A9:45:66:0E:26:2A:51 Authority key identifier: 69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B Certificate issuer: /CN=695bbd542912a66fee6a34128a3a8cf7097dc69b Certificate serial: 019C40FD37A9FDA59137A06945DA9AB336C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft Manifest number: 082A Signing time: Mon 09 Feb 2026 06:01:02 +0000 Manifest this update: Mon 09 Feb 2026 06:01:02 +0000 Manifest next update: Tue 10 Feb 2026 06:01:02 +0000 Files and hashes: 1: aVu9VCkSpm_uajQSijqM9wl9xps.crl (hash: dhgeXytL/kpDRLMla8mNIdnSEtszSDPJ878PcGLbl8Y=) 2: kD6KbG2HjbabIdgR62fkFbl77WA.roa (hash: zAnnRMEkzTArkloWuwnMCm7SOof7tWB+G0YPKyy3r8Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:37:a9:fd:a5:91:37:a0:69:45:da:9a:b3:36:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=695bbd542912a66fee6a34128a3a8cf7097dc69b Validity Not Before: Feb 9 06:01:02 2026 GMT Not After : Feb 10 06:01:02 2026 GMT Subject: CN=dbd658d4c13406701c2f747647a945660e262a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a6:23:54:d7:2c:4b:48:70:ae:1d:8e:a0:a3: 45:10:14:1d:a2:37:a3:10:95:c2:40:41:27:cf:e8: 03:7e:e7:a0:b6:14:4e:3d:4a:98:2e:29:95:bc:10: 86:95:19:cc:dd:30:81:5f:d0:f5:1c:6f:25:72:0c: 19:3e:d4:13:fe:c5:6c:df:0f:9d:be:8c:7b:16:78: bb:b0:d0:17:46:f0:6e:20:a0:a4:3a:2b:4e:3e:08: 46:a2:34:cf:b6:39:c3:c7:a9:be:89:e1:d0:65:b2: b2:16:91:33:48:6a:7a:a6:15:1a:48:9f:d2:a2:7d: c7:56:74:f1:5c:23:92:cc:13:8b:f4:bb:1c:5f:1a: 54:ab:60:46:02:91:52:77:af:7e:6e:18:bb:b7:4b: 37:aa:7e:b4:72:8c:e0:f2:4a:83:cc:d2:be:ec:5e: 9b:77:2e:da:ce:1a:38:2f:34:c2:aa:5a:94:3d:98: 89:62:e8:a1:a5:0b:e6:04:89:0f:81:a3:17:bd:b9: 04:fe:6e:6f:fe:9b:82:79:06:6c:56:a9:02:f6:c6: d5:50:12:16:b0:f6:bc:dc:44:c4:7e:49:f2:48:ed: 06:5c:a4:a5:f9:30:b7:2e:d4:fd:8a:0b:fd:3d:35: 74:e0:c2:9e:ac:10:b1:0f:d8:fb:f7:16:71:9c:93: 49:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D6:58:D4:C1:34:06:70:1C:2F:74:76:47:A9:45:66:0E:26:2A:51 X509v3 Authority Key Identifier: keyid:69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:b1:95:87:f8:5f:67:22:a0:e6:50:c1:37:1e:b5:df:03:40: ed:99:02:34:fb:b8:ef:cf:44:3c:75:ae:0c:99:96:da:bf:d5: a7:7e:3c:7e:db:90:a7:9f:59:51:db:ad:73:03:2b:75:8a:cd: 56:76:f7:1e:04:19:af:be:c2:e2:ce:ea:f1:ff:c9:0e:19:96: 86:7f:57:fa:61:fe:e5:d0:d2:59:f8:a7:5a:88:b9:0e:1e:eb: 5a:5d:95:da:4e:07:aa:10:5f:b7:f1:04:98:91:18:2c:97:c2: c3:a2:7b:88:b6:f3:6d:f2:35:1f:f5:52:97:40:a5:03:9e:88: 1c:9f:dc:e8:3e:2e:18:74:9e:27:fe:75:91:d0:57:be:a0:f8: 51:1d:c9:a3:fc:8c:3a:f4:4f:00:45:60:14:ff:fe:62:a0:51: f2:21:4d:b8:e2:68:d6:5f:06:6e:5a:1e:57:0a:e4:fe:88:45: 11:af:ca:6c:af:23:65:5e:84:2d:42:03:e3:c8:6e:85:59:8b: 41:18:52:5f:f2:bc:3b:0f:8f:d7:07:40:42:1f:ba:11:39:07: 5f:b3:97:50:96:90:89:2d:09:48:4b:b3:a1:f1:f0:40:4c:96: 4f:bf:9d:c2:9d:3e:32:fc:88:a7:63:4e:48:74:63:52:4d:25: 8d:a3:d2:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/Tep/aWRN6BpRdqaszbBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NWJiZDU0MjkxMmE2NmZlZTZhMzQxMjhhM2E4Y2Y3MDk3 ZGM2OWIwHhcNMjYwMjA5MDYwMTAyWhcNMjYwMjEwMDYwMTAyWjAzMTEwLwYDVQQD EyhkYmQ2NThkNGMxMzQwNjcwMWMyZjc0NzY0N2E5NDU2NjBlMjYyYTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6YjVNcsS0hwrh2OoKNFEBQdojej EJXCQEEnz+gDfuegthROPUqYLimVvBCGlRnM3TCBX9D1HG8lcgwZPtQT/sVs3w+d vox7Fni7sNAXRvBuIKCkOitOPghGojTPtjnDx6m+ieHQZbKyFpEzSGp6phUaSJ/S on3HVnTxXCOSzBOL9LscXxpUq2BGApFSd69+bhi7t0s3qn60cozg8kqDzNK+7F6b dy7azho4LzTCqlqUPZiJYuihpQvmBIkPgaMXvbkE/m5v/puCeQZsVqkC9sbVUBIW sPa83ETEfknySO0GXKSl+TC3LtT9igv9PTV04MKerBCxD9j79xZxnJNJuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNvWWNTBNAZwHC90dkepRWYOJipRMB8GA1UdIwQY MBaAFGlbvVQpEqZv7mo0Eoo6jPcJfcabMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVZ1OVZDa1NwbV91YWpRU2lqcU05d2w5eHBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9jZDlmZDQtY2NjNS00M2Q2LTlkNTgt OTgxNmM2N2E5MjYyLzEvYVZ1OVZDa1NwbV91YWpRU2lqcU05d2w5eHBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi9jZDlmZDQtY2NjNS00M2Q2LTlkNTgtOTgxNmM2N2E5MjYy LzEvYVZ1OVZDa1NwbV91YWpRU2lqcU05d2w5eHBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa7GVh/hf ZyKg5lDBNx613wNA7ZkCNPu4789EPHWuDJmW2r/Vp348ftuQp59ZUdutcwMrdYrN Vnb3HgQZr77C4s7q8f/JDhmWhn9X+mH+5dDSWfinWoi5Dh7rWl2V2k4HqhBft/EE mJEYLJfCw6J7iLbzbfI1H/VSl0ClA56IHJ/c6D4uGHSeJ/51kdBXvqD4UR3Jo/yM OvRPAEVgFP/+YqBR8iFNuOJo1l8GbloeVwrk/ohFEa/KbK8jZV6ELUID48huhVmL QRhSX/K8Ow+P1wdAQh+6ETkHX7OXUJaQiS0JSEuzofHwQEyWT7+dwp0+MvyIp2NO SHRjUk0ljaPSaQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:59 2026 by rpki-client