This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft File: afAHCvh31rmGswe5vATvGcRAQz0.mft (raw, json) Hash identifier: JQjBeClVg6pM8vJkfUflEzcwu58ls9BcEJU61paTKqQ= Subject key identifier: 9D:E8:CE:E0:5F:95:9E:3B:D6:04:92:05:92:69:70:19:97:FB:B4:D2 Authority key identifier: 69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D Certificate issuer: /CN=69f0070af877d6b986b307b9bc04ef19c440433d Certificate serial: 019C4210133B6672F4133E9B838BE9214D23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft Manifest number: 0A44 Signing time: Mon 09 Feb 2026 11:01:15 +0000 Manifest this update: Mon 09 Feb 2026 11:01:15 +0000 Manifest next update: Tue 10 Feb 2026 11:01:15 +0000 Files and hashes: 1: afAHCvh31rmGswe5vATvGcRAQz0.crl (hash: bNRolSP5nupE4jWcUt2e4jRlIebWjp+buxqxqGikVyI=) 2: dkw8BE0MteDejxs-2qVpeffd5cE.roa (hash: OLIzwrtSctTD4rRGWSFchziybsw/DjSgiuUvhAPMb0Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:13:3b:66:72:f4:13:3e:9b:83:8b:e9:21:4d:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69f0070af877d6b986b307b9bc04ef19c440433d Validity Not Before: Feb 9 11:01:15 2026 GMT Not After : Feb 10 11:01:15 2026 GMT Subject: CN=9de8cee05f959e3bd60492059269701997fbb4d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fc:fa:46:22:8c:2f:76:45:f0:26:94:ed:20: 08:75:d4:d8:e8:0c:d0:16:85:c0:c9:48:b7:09:f3: ca:3c:03:5a:b6:8b:78:6f:aa:5f:09:98:e3:b9:10: 31:1d:72:34:14:46:89:2a:c7:00:a2:ea:3f:78:0e: 7c:23:16:78:20:3d:bd:96:4d:55:89:47:7b:d8:94: 46:8b:9f:94:39:d9:42:05:8f:71:61:d1:3c:da:24: 32:35:0c:72:51:72:17:0f:27:1a:9c:08:03:7f:25: ce:20:17:78:18:ca:50:93:3b:01:07:ce:9a:42:2f: 5f:04:26:f3:8a:7e:f7:7c:85:e9:af:af:de:7d:09: fa:9a:2a:7d:61:4b:ef:9c:f6:bb:3c:30:67:97:8c: 28:32:9e:d1:e4:40:5f:6e:ab:08:da:3e:6f:c5:8e: 53:b9:46:4a:5e:0c:45:90:3b:ed:da:5e:a7:d2:4a: 27:12:23:ff:ea:46:d4:13:42:7a:76:f3:7c:af:98: ad:35:c3:17:e0:09:d7:d0:6e:07:cf:18:40:45:b1: 58:9c:96:ab:2d:82:16:a1:6b:d6:00:4b:f1:e9:ba: a9:db:a4:fe:95:49:a5:72:28:e2:90:e8:e9:a4:70: ef:c7:c4:de:1b:dc:e0:7d:2a:77:09:a3:5c:12:e0: 4e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E8:CE:E0:5F:95:9E:3B:D6:04:92:05:92:69:70:19:97:FB:B4:D2 X509v3 Authority Key Identifier: keyid:69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:fa:df:71:49:f0:8e:d1:fe:fb:d3:c3:c1:18:6f:c7:c5:39: 5e:18:8a:b8:53:67:58:93:72:c1:b1:a8:df:e7:0d:07:e3:ca: 58:b0:94:38:34:ad:bf:bc:5b:60:a8:47:78:65:c2:57:37:f0: f7:11:42:fa:16:1e:1f:23:b6:5c:ea:d9:9a:00:19:89:98:2c: 78:fc:ec:f4:ef:ef:2d:ca:6d:c4:53:21:4a:ec:a6:4c:97:44: bd:d2:34:e7:af:ef:29:45:12:e1:ce:39:d7:aa:e8:39:99:8a: 8c:22:d3:fd:ce:e4:dd:d0:a0:c0:fb:17:f8:ec:4f:24:31:17: 96:18:0a:20:97:fa:79:f1:15:94:1a:de:4b:df:4e:ad:74:37: 4b:cd:89:b3:b2:18:18:ab:55:4e:85:15:5e:95:13:50:82:9f: b5:1a:39:a3:3b:cc:dd:a9:f8:cc:2e:5b:51:c6:a2:07:48:e8: 69:8a:89:bd:0e:c2:a2:c4:e2:29:9d:c2:c2:b9:92:ca:05:04: 4f:75:b2:41:bb:75:24:b2:35:d9:9b:dc:6a:10:e6:09:55:83: e7:a6:9d:38:0c:0f:cc:03:1e:f2:83:bc:87:9e:14:82:23:9a: 8a:23:4a:0c:57:1e:69:cd:68:3c:29:e0:54:9b:25:80:a5:19: f1:5d:70:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEBM7ZnL0Ez6bg4vpIU0jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZjAwNzBhZjg3N2Q2Yjk4NmIzMDdiOWJjMDRlZjE5YzQ0 MDQzM2QwHhcNMjYwMjA5MTEwMTE1WhcNMjYwMjEwMTEwMTE1WjAzMTEwLwYDVQQD Eyg5ZGU4Y2VlMDVmOTU5ZTNiZDYwNDkyMDU5MjY5NzAxOTk3ZmJiNGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0/z6RiKML3ZF8CaU7SAIddTY6AzQ FoXAyUi3CfPKPANatot4b6pfCZjjuRAxHXI0FEaJKscAouo/eA58IxZ4ID29lk1V iUd72JRGi5+UOdlCBY9xYdE82iQyNQxyUXIXDycanAgDfyXOIBd4GMpQkzsBB86a Qi9fBCbzin73fIXpr6/efQn6mip9YUvvnPa7PDBnl4woMp7R5EBfbqsI2j5vxY5T uUZKXgxFkDvt2l6n0konEiP/6kbUE0J6dvN8r5itNcMX4AnX0G4HzxhARbFYnJar LYIWoWvWAEvx6bqp26T+lUmlcijikOjppHDvx8TeG9zgfSp3CaNcEuBOCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ3ozuBflZ471gSSBZJpcBmX+7TSMB8GA1UdIwQY MBaAFGnwBwr4d9a5hrMHubwE7xnEQEM9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWZBSEN2aDMxcm1Hc3dlNXZBVHZHY1JBUXowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9hYjlmYTYtYTkwNi00YWM0LWFjMGMt NjM4OTIyMGIyNmM2LzEvYWZBSEN2aDMxcm1Hc3dlNXZBVHZHY1JBUXowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC9hYjlmYTYtYTkwNi00YWM0LWFjMGMtNjM4OTIyMGIyNmM2 LzEvYWZBSEN2aDMxcm1Hc3dlNXZBVHZHY1JBUXowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHfrfcUnw jtH++9PDwRhvx8U5XhiKuFNnWJNywbGo3+cNB+PKWLCUODStv7xbYKhHeGXCVzfw 9xFC+hYeHyO2XOrZmgAZiZgsePzs9O/vLcptxFMhSuymTJdEvdI056/vKUUS4c45 16roOZmKjCLT/c7k3dCgwPsX+OxPJDEXlhgKIJf6efEVlBreS99OrXQ3S82Js7IY GKtVToUVXpUTUIKftRo5ozvM3an4zC5bUcaiB0joaYqJvQ7CosTiKZ3CwrmSygUE T3WyQbt1JLI12ZvcahDmCVWD56adOAwPzAMe8oO8h54UgiOaiiNKDFceac1oPCng VJslgKUZ8V1wMQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:29 2026 by rpki-client