This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft File: AL8jAERknAbXXjAsUXUATb_GcmE.mft (raw, json) Hash identifier: Mk25MnrwQ6egDZjiqgbO3DndHnA0sdhCBV0OWsogegs= Subject key identifier: 49:97:C4:29:48:B0:F1:90:5D:B6:03:AE:10:D2:3C:65:F1:49:20:DC Authority key identifier: 00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61 Certificate issuer: /CN=00bf230044649c06d75e302c5175004dbfc67261 Certificate serial: 019C43FE72EB57A68B1CC2ACB981354C57CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft Manifest number: 0EB5 Signing time: Mon 09 Feb 2026 20:01:14 +0000 Manifest this update: Mon 09 Feb 2026 20:01:14 +0000 Manifest next update: Tue 10 Feb 2026 20:01:14 +0000 Files and hashes: 1: AL8jAERknAbXXjAsUXUATb_GcmE.crl (hash: fLYfSKM2eMvSJUX/pw3SR1a4bYUQYRFp4pS2pXX6CZs=) 2: LDfTHZtgg9SpOLAcUCBkRkR9ae8.roa (hash: 1t3+l57Hcn09X5UH0bRoB4dCslxZncJ1ud+DZIleEeo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:72:eb:57:a6:8b:1c:c2:ac:b9:81:35:4c:57:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00bf230044649c06d75e302c5175004dbfc67261 Validity Not Before: Feb 9 20:01:14 2026 GMT Not After : Feb 10 20:01:14 2026 GMT Subject: CN=4997c42948b0f1905db603ae10d23c65f14920dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1c:57:15:5a:70:a8:fa:34:86:19:f5:9f:d6: 5b:89:2d:c7:c8:ad:29:fd:3c:7a:ef:f4:1f:9e:39: 28:b6:8b:fb:a6:4c:e1:5d:f7:9f:25:7e:02:00:a2: df:07:90:26:70:88:f3:24:8e:56:bd:86:6a:db:14: f2:d9:2d:c8:3d:2b:38:9b:86:75:06:db:25:64:21: 6b:86:76:36:b3:ec:56:10:e4:c8:3a:aa:8d:ad:36: 7e:a5:b4:7f:e3:b1:32:5e:f2:83:35:51:fe:db:59: b2:1b:98:d5:2f:6d:48:6a:88:a5:d8:78:d3:5d:38: 17:6e:bf:8c:61:67:2a:eb:c8:6c:92:b5:96:f2:42: 2b:d6:2f:fd:a8:e1:fc:d5:7e:28:2e:63:e4:e9:85: 6e:bb:44:d7:fa:43:de:4a:27:50:04:66:38:d3:37: 3a:ec:ec:d0:e8:10:f8:cf:dc:53:51:04:3c:1b:33: ff:4b:0e:66:be:8f:3b:85:43:3a:e0:78:1f:e4:ea: 12:d4:19:32:5f:e1:40:d4:ef:4b:70:59:2d:4c:81: ad:db:bf:d9:dc:c7:08:2d:69:d9:fc:f4:1a:56:53: 8f:ab:9e:f3:34:cd:da:4d:7e:58:d9:ba:92:b8:5f: f7:15:36:59:1c:15:7f:eb:d5:fc:e2:be:2a:23:cd: 6a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:97:C4:29:48:B0:F1:90:5D:B6:03:AE:10:D2:3C:65:F1:49:20:DC X509v3 Authority Key Identifier: keyid:00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:5c:16:55:ec:c5:20:9e:8d:f3:7f:d6:f0:5f:a7:f0:19:4a: 5e:06:2a:36:dc:68:dd:c1:da:0e:de:2c:19:09:18:b9:74:92: a1:b9:01:49:2c:2c:6f:b4:7e:bd:c6:fc:eb:a8:97:8d:e3:39: ab:0e:c7:fe:cc:7b:38:4c:a1:36:6e:84:4a:fe:07:6d:90:65: 5f:90:aa:b6:28:13:5b:6e:ea:02:f5:7a:c1:fc:e0:e0:02:04: 7b:54:4c:e6:59:db:84:90:a6:d3:e1:22:24:7d:ec:28:33:a6: 58:d4:aa:42:1d:43:bd:56:40:a9:43:8f:89:04:ac:ab:99:44: ac:89:0e:92:30:97:5b:d9:34:67:a9:a6:e3:25:e0:aa:dd:82: b7:5a:64:ef:96:8e:26:b3:9e:f2:f4:74:c2:cb:e6:d0:31:a7: 53:7e:cf:fe:27:14:5d:ec:cc:4e:1e:e4:f4:bc:31:53:1a:77: 05:f1:d5:06:56:c1:2f:ac:b7:29:6a:27:4f:f5:fe:13:13:62: 2d:f2:b4:9b:c8:78:02:f5:27:d4:7a:54:67:36:ed:b8:15:da: d0:da:f9:bb:3f:68:a3:c0:bf:41:3a:73:b6:ae:17:93:d1:d3: 23:91:35:f2:12:0d:33:e3:ad:72:e9:4f:17:8b:ff:ee:70:ee: 88:f5:73:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/nLrV6aLHMKsuYE1TFfMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwYmYyMzAwNDQ2NDljMDZkNzVlMzAyYzUxNzUwMDRkYmZj NjcyNjEwHhcNMjYwMjA5MjAwMTE0WhcNMjYwMjEwMjAwMTE0WjAzMTEwLwYDVQQD Eyg0OTk3YzQyOTQ4YjBmMTkwNWRiNjAzYWUxMGQyM2M2NWYxNDkyMGRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3hxXFVpwqPo0hhn1n9ZbiS3HyK0p /Tx67/Qfnjkotov7pkzhXfefJX4CAKLfB5AmcIjzJI5WvYZq2xTy2S3IPSs4m4Z1 BtslZCFrhnY2s+xWEOTIOqqNrTZ+pbR/47EyXvKDNVH+21myG5jVL21Iaoil2HjT XTgXbr+MYWcq68hskrWW8kIr1i/9qOH81X4oLmPk6YVuu0TX+kPeSidQBGY40zc6 7OzQ6BD4z9xTUQQ8GzP/Sw5mvo87hUM64Hgf5OoS1BkyX+FA1O9LcFktTIGt27/Z 3McILWnZ/PQaVlOPq57zNM3aTX5Y2bqSuF/3FTZZHBV/69X84r4qI81qIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEmXxClIsPGQXbYDrhDSPGXxSSDcMB8GA1UdIwQY MBaAFAC/IwBEZJwG114wLFF1AE2/xnJhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUw4akFFUmtuQWJYWGpBc1VYVUFUYl9HY21FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9kODgxMjItZGVkYS00ZmQwLTlhNjct NmVmMWQ5NjgxM2EyLzEvQUw4akFFUmtuQWJYWGpBc1VYVUFUYl9HY21FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC9kODgxMjItZGVkYS00ZmQwLTlhNjctNmVmMWQ5NjgxM2Ey LzEvQUw4akFFUmtuQWJYWGpBc1VYVUFUYl9HY21FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJVwWVezF IJ6N83/W8F+n8BlKXgYqNtxo3cHaDt4sGQkYuXSSobkBSSwsb7R+vcb866iXjeM5 qw7H/sx7OEyhNm6ESv4HbZBlX5CqtigTW27qAvV6wfzg4AIEe1RM5lnbhJCm0+Ei JH3sKDOmWNSqQh1DvVZAqUOPiQSsq5lErIkOkjCXW9k0Z6mm4yXgqt2Ct1pk75aO JrOe8vR0wsvm0DGnU37P/icUXezMTh7k9LwxUxp3BfHVBlbBL6y3KWonT/X+ExNi LfK0m8h4AvUn1HpUZzbtuBXa0Nr5uz9oo8C/QTpztq4Xk9HTI5E18hINM+OtculP F4v/7nDuiPVzHw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:45 2026 by rpki-client