This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft File: aH2bViukcmGPk5jiZcoOcQj2h6M.mft (raw, json) Hash identifier: VpXrf6Xreyc+MZHNVs6oYBxgTdYXS2qfkNy7vtheLdc= Subject key identifier: 09:EB:12:69:A8:8E:01:90:AA:9F:EA:1B:0E:29:7F:E0:78:EB:A4:9E Authority key identifier: 68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3 Certificate issuer: /CN=687d9b562ba472618f9398e265ca0e7108f687a3 Certificate serial: 019C43FE96563955E010E1601596EDA4E26B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft Manifest number: 17A4 Signing time: Mon 09 Feb 2026 20:01:23 +0000 Manifest this update: Mon 09 Feb 2026 20:01:23 +0000 Manifest next update: Tue 10 Feb 2026 20:01:23 +0000 Files and hashes: 1: 7AOoMOGVRmNfzkuDKRu3Sk1W0eA.roa (hash: +394RmOY/Sxcv9d3Us94xh5+rW7+06GfmeDJKppUg3M=) 2: aH2bViukcmGPk5jiZcoOcQj2h6M.crl (hash: FAOi7AOkpgqHG8lY0aHs6XZV/XMuJorRlgX7MGL3p4o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:96:56:39:55:e0:10:e1:60:15:96:ed:a4:e2:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=687d9b562ba472618f9398e265ca0e7108f687a3 Validity Not Before: Feb 9 20:01:23 2026 GMT Not After : Feb 10 20:01:23 2026 GMT Subject: CN=09eb1269a88e0190aa9fea1b0e297fe078eba49e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:58:88:e4:46:3f:18:cd:59:7d:b5:50:70:c3: 86:1e:50:bc:2c:16:91:98:63:47:53:31:c5:2b:1c: 0e:77:ef:12:90:a4:c5:34:75:cf:fd:03:eb:b5:d9: 37:98:c0:43:e2:32:0b:83:88:3d:5f:f4:3d:a6:b8: 9c:00:b2:dc:f6:5e:ca:d3:a7:81:08:33:4d:b6:6c: 8f:77:2d:46:fb:c9:0d:51:e3:da:c5:b7:00:76:bc: f9:bd:63:e7:ad:17:35:a0:9b:f7:b0:73:6f:40:66: df:7a:0c:fb:b9:d8:6f:02:af:a1:44:8d:e3:d8:5b: 00:ef:18:a9:a5:47:63:f9:a1:e9:99:e8:b6:3b:a5: 4a:e9:e6:b9:f5:8d:4e:1e:73:b9:93:6f:85:22:63: ee:ba:28:7d:20:57:89:a4:22:ac:70:3f:37:27:ab: 39:48:84:1d:dc:50:f6:fd:6b:d1:21:8c:ce:ec:ed: ca:27:52:66:23:b1:9f:37:1e:88:25:37:71:86:e5: 8a:ed:ff:11:4a:39:77:ab:5a:83:2d:44:17:d9:f8: 64:27:19:51:a4:f9:ce:84:c0:a7:e4:a4:8a:50:21: be:59:9f:05:a3:b7:cc:14:26:98:04:f6:8b:5b:3d: 6a:2b:76:0f:ca:94:5b:6a:9a:72:8a:0e:39:e0:03: 2f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:EB:12:69:A8:8E:01:90:AA:9F:EA:1B:0E:29:7F:E0:78:EB:A4:9E X509v3 Authority Key Identifier: keyid:68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:3b:d2:5c:28:08:f0:e1:23:c1:fc:ad:7f:b5:17:cb:33:ab: 1a:17:e7:ec:45:1e:10:4b:1a:28:7f:b5:bc:4c:61:d5:11:73: d2:d8:2d:9d:4a:be:9c:e4:87:0f:bd:bb:e6:f6:b2:dd:1d:0b: 9a:33:91:68:1d:a3:e4:43:ab:9a:42:18:f5:7c:2f:1b:ec:a2: 56:cf:d3:fd:de:09:a5:06:80:c7:6c:3c:ec:b1:56:ea:10:88: 27:cd:34:55:e2:6e:e3:99:2b:9d:fa:73:7b:8f:0d:8a:c9:dd: c6:38:ca:c8:af:86:31:e2:4f:c4:44:e7:06:8c:c3:c4:d7:a0: 82:6b:0b:34:35:6f:df:ed:ad:43:f1:38:29:68:04:a0:e9:43: 7e:c6:82:5d:7a:56:43:66:34:f9:ca:ad:59:3a:f8:d4:71:b3: 43:bd:e4:f4:b7:1f:76:61:9b:ac:ae:a6:6d:bf:fb:39:e4:2d: 13:65:6f:7a:ec:82:de:dd:b6:72:1d:eb:07:31:d7:75:ea:3a: 82:92:38:08:36:2b:cc:db:6c:df:22:28:ac:7c:0e:04:ac:ae: ac:bc:38:75:99:e7:77:da:e8:64:18:2c:b3:ce:ed:a3:48:62: 57:88:1f:ad:8f:9c:fc:b0:90:bd:17:b7:75:1e:08:7d:15:5a: 31:d2:fb:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/pZWOVXgEOFgFZbtpOJrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4N2Q5YjU2MmJhNDcyNjE4ZjkzOThlMjY1Y2EwZTcxMDhm Njg3YTMwHhcNMjYwMjA5MjAwMTIzWhcNMjYwMjEwMjAwMTIzWjAzMTEwLwYDVQQD EygwOWViMTI2OWE4OGUwMTkwYWE5ZmVhMWIwZTI5N2ZlMDc4ZWJhNDllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFiI5EY/GM1ZfbVQcMOGHlC8LBaR mGNHUzHFKxwOd+8SkKTFNHXP/QPrtdk3mMBD4jILg4g9X/Q9pricALLc9l7K06eB CDNNtmyPdy1G+8kNUePaxbcAdrz5vWPnrRc1oJv3sHNvQGbfegz7udhvAq+hRI3j 2FsA7xippUdj+aHpmei2O6VK6ea59Y1OHnO5k2+FImPuuih9IFeJpCKscD83J6s5 SIQd3FD2/WvRIYzO7O3KJ1JmI7GfNx6IJTdxhuWK7f8RSjl3q1qDLUQX2fhkJxlR pPnOhMCn5KSKUCG+WZ8Fo7fMFCaYBPaLWz1qK3YPypRbappyig454AMvZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAnrEmmojgGQqp/qGw4pf+B466SeMB8GA1UdIwQY MBaAFGh9m1YrpHJhj5OY4mXKDnEI9oejMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iODljMWYtOGRjYi00MzhiLThhZmQt NjA1ZDEzNTEzNmY3LzEvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9iODljMWYtOGRjYi00MzhiLThhZmQtNjA1ZDEzNTEzNmY3 LzEvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjjvSXCgI 8OEjwfytf7UXyzOrGhfn7EUeEEsaKH+1vExh1RFz0tgtnUq+nOSHD7275vay3R0L mjORaB2j5EOrmkIY9XwvG+yiVs/T/d4JpQaAx2w87LFW6hCIJ800VeJu45krnfpz e48NisndxjjKyK+GMeJPxETnBozDxNeggmsLNDVv3+2tQ/E4KWgEoOlDfsaCXXpW Q2Y0+cqtWTr41HGzQ73k9LcfdmGbrK6mbb/7OeQtE2VveuyC3t22ch3rBzHXdeo6 gpI4CDYrzNts3yIorHwOBKyurLw4dZnnd9roZBgss87to0hiV4gfrY+c/LCQvRe3 dR4IfRVaMdL75w== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:50 2026 by rpki-client