This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9901fe-52c1-4d5b-9e0f-d325f6863343/1/aEdQ3w66d01LTWROyOM1CPj1OP4.mft File: aEdQ3w66d01LTWROyOM1CPj1OP4.mft (raw, json) Hash identifier: 623kE9sKW35jwnUGIxroEvs8HJyNQ5qTl8f7xeEY3v4= Subject key identifier: C4:89:CE:E8:EA:E0:A0:17:32:9D:05:10:1F:DF:DE:95:64:2B:4C:AA Authority key identifier: 68:47:50:DF:0E:BA:77:4D:4B:4D:64:4E:C8:E3:35:08:F8:F5:38:FE Certificate issuer: /CN=684750df0eba774d4b4d644ec8e33508f8f538fe Certificate serial: 019C43C6B9BB9BAD6B542CCEE04A0F32CF62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEdQ3w66d01LTWROyOM1CPj1OP4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9901fe-52c1-4d5b-9e0f-d325f6863343/1/aEdQ3w66d01LTWROyOM1CPj1OP4.mft Manifest number: 08B9 Signing time: Mon 09 Feb 2026 19:00:22 +0000 Manifest this update: Mon 09 Feb 2026 19:00:22 +0000 Manifest next update: Tue 10 Feb 2026 19:00:22 +0000 Files and hashes: 1: aEdQ3w66d01LTWROyOM1CPj1OP4.crl (hash: FsHltvSp9UMQuAK4C5WpUXeQ+roPZV6WGxpRBgDOxDs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9901fe-52c1-4d5b-9e0f-d325f6863343/1/aEdQ3w66d01LTWROyOM1CPj1OP4.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/9901fe-52c1-4d5b-9e0f-d325f6863343/1/aEdQ3w66d01LTWROyOM1CPj1OP4.mft rsync://rpki.ripe.net/repository/DEFAULT/aEdQ3w66d01LTWROyOM1CPj1OP4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:b9:bb:9b:ad:6b:54:2c:ce:e0:4a:0f:32:cf:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=684750df0eba774d4b4d644ec8e33508f8f538fe Validity Not Before: Feb 9 19:00:22 2026 GMT Not After : Feb 10 19:00:22 2026 GMT Subject: CN=c489cee8eae0a017329d05101fdfde95642b4caa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:53:ad:83:2a:fa:1d:e2:b9:68:b9:df:cf:e9: fb:f7:f9:8f:13:0b:61:be:29:7a:f5:2a:1b:77:86: 08:7a:8a:9e:51:6f:30:5e:ac:b9:ed:99:63:01:bf: 5b:54:14:53:6e:9c:ff:32:b0:b7:df:50:88:6b:c0: de:04:00:bb:9a:c8:66:4b:c7:d8:28:fc:51:d1:6c: 73:d8:92:ac:bc:d6:1f:d2:77:58:12:5f:48:23:dd: 69:73:b7:1e:ef:c9:09:70:6a:49:c5:61:35:0e:4a: f0:15:02:60:52:79:9e:63:5f:fc:13:db:3d:2b:cf: cb:13:e7:5a:06:9a:8a:0e:91:d8:0a:be:52:9d:f8: 09:54:c1:0a:44:30:51:db:2b:83:a3:ac:68:d0:4b: 9b:79:31:c4:93:07:76:bd:c6:fe:59:e2:d5:04:c5: ea:5b:ea:f3:87:8a:02:cb:0e:53:8a:7c:58:95:bc: bb:59:81:9d:15:89:8d:a0:96:b3:70:3d:6c:13:ea: a5:e9:3e:18:6c:f9:cc:85:e4:48:1c:00:3e:04:39: cc:f7:5d:8f:7b:2a:dc:5e:7f:76:73:87:60:cd:3d: ce:5e:cc:0c:43:91:ad:3b:0e:89:7c:fb:b5:93:7b: 2a:a5:db:2d:01:08:10:07:1a:a4:94:d9:27:0f:ac: c2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:89:CE:E8:EA:E0:A0:17:32:9D:05:10:1F:DF:DE:95:64:2B:4C:AA X509v3 Authority Key Identifier: keyid:68:47:50:DF:0E:BA:77:4D:4B:4D:64:4E:C8:E3:35:08:F8:F5:38:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEdQ3w66d01LTWROyOM1CPj1OP4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9901fe-52c1-4d5b-9e0f-d325f6863343/1/aEdQ3w66d01LTWROyOM1CPj1OP4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9901fe-52c1-4d5b-9e0f-d325f6863343/1/aEdQ3w66d01LTWROyOM1CPj1OP4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ca:a6:31:b3:64:88:58:2e:2e:fe:63:81:26:fa:28:e2:c0:a0: 5c:3c:06:10:5f:84:07:f2:41:ea:c0:3a:76:18:91:f2:26:03: 3e:15:68:2d:b6:79:be:34:5b:6c:4f:31:a7:3f:9f:3f:fe:ff: f3:60:0c:2b:c3:a2:00:00:72:d6:d3:f1:7b:65:87:39:82:3a: 85:bf:30:4d:c5:00:3e:a5:99:61:7b:69:d5:00:d4:2e:25:4a: bd:a6:01:10:d8:50:73:fb:d4:4d:c7:47:eb:2b:a2:ca:f8:f4: 13:4f:79:e9:34:9b:b1:a2:6c:e2:e8:c8:f4:0d:da:b7:cd:17: 23:00:a3:61:21:34:bb:dc:ba:5e:ec:ba:6b:c8:22:0a:d7:9e: 4b:80:9e:34:e1:9f:e6:9f:55:5f:79:0f:e6:93:c5:cf:04:60: 5b:4d:97:0d:26:be:ee:71:20:3f:cd:99:f3:43:57:7d:8e:98: d2:e1:62:93:4a:aa:af:58:0e:96:bf:f4:4c:9f:c9:b7:96:ff: 5c:74:c8:dd:4b:7d:36:a4:75:2f:56:7e:55:bd:d7:be:76:fe: ba:b8:6d:2b:08:50:bf:70:d2:1f:41:94:c2:ce:00:09:f5:e8: 21:bc:3e:93:6c:41:df:fb:16:1e:99:5e:32:53:bf:13:d2:11: 57:14:78:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxrm7m61rVCzO4EoPMs9iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4NDc1MGRmMGViYTc3NGQ0YjRkNjQ0ZWM4ZTMzNTA4Zjhm NTM4ZmUwHhcNMjYwMjA5MTkwMDIyWhcNMjYwMjEwMTkwMDIyWjAzMTEwLwYDVQQD EyhjNDg5Y2VlOGVhZTBhMDE3MzI5ZDA1MTAxZmRmZGU5NTY0MmI0Y2FhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzVOtgyr6HeK5aLnfz+n79/mPEwth vil69Sobd4YIeoqeUW8wXqy57ZljAb9bVBRTbpz/MrC331CIa8DeBAC7mshmS8fY KPxR0Wxz2JKsvNYf0ndYEl9II91pc7ce78kJcGpJxWE1DkrwFQJgUnmeY1/8E9s9 K8/LE+daBpqKDpHYCr5SnfgJVMEKRDBR2yuDo6xo0EubeTHEkwd2vcb+WeLVBMXq W+rzh4oCyw5TinxYlby7WYGdFYmNoJazcD1sE+ql6T4YbPnMheRIHAA+BDnM912P eyrcXn92c4dgzT3OXswMQ5GtOw6JfPu1k3sqpdstAQgQBxqklNknD6zC0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMSJzujq4KAXMp0FEB/f3pVkK0yqMB8GA1UdIwQY MBaAFGhHUN8OundNS01kTsjjNQj49Tj+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUVkUTN3NjZkMDFMVFdST3lPTTFDUGoxT1A0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85OTAxZmUtNTJjMS00ZDViLTllMGYt ZDMyNWY2ODYzMzQzLzEvYUVkUTN3NjZkMDFMVFdST3lPTTFDUGoxT1A0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi85OTAxZmUtNTJjMS00ZDViLTllMGYtZDMyNWY2ODYzMzQz LzEvYUVkUTN3NjZkMDFMVFdST3lPTTFDUGoxT1A0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyqYxs2SI WC4u/mOBJvoo4sCgXDwGEF+EB/JB6sA6dhiR8iYDPhVoLbZ5vjRbbE8xpz+fP/7/ 82AMK8OiAABy1tPxe2WHOYI6hb8wTcUAPqWZYXtp1QDULiVKvaYBENhQc/vUTcdH 6yuiyvj0E0956TSbsaJs4ujI9A3at80XIwCjYSE0u9y6Xuy6a8giCteeS4CeNOGf 5p9VX3kP5pPFzwRgW02XDSa+7nEgP82Z80NXfY6Y0uFik0qqr1gOlr/0TJ/Jt5b/ XHTI3Ut9NqR1L1Z+Vb3Xvnb+urhtKwhQv3DSH0GUws4ACfXoIbw+k2xB3/sWHple MlO/E9IRVxR4FA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:14 2026 by rpki-client