This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft File: AFA0jPYGQvVOyQck3niqoD3NOOE.mft (raw, json) Hash identifier: IDnLW6+FcFPcoK4h10GFeoQLpbCWaH+vTKc3N1aYvWc= Subject key identifier: F1:42:CB:58:E3:E8:5B:E9:1B:96:16:2D:0F:35:BB:C8:26:E1:28:F8 Authority key identifier: 00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1 Certificate issuer: /CN=0050348cf60642f54ec90724de78aaa03dcd38e1 Certificate serial: 019C432274153A01898E42CBF1B382E8ABE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft Manifest number: 0FBB Signing time: Mon 09 Feb 2026 16:00:57 +0000 Manifest this update: Mon 09 Feb 2026 16:00:57 +0000 Manifest next update: Tue 10 Feb 2026 16:00:57 +0000 Files and hashes: 1: AFA0jPYGQvVOyQck3niqoD3NOOE.crl (hash: 8obPTnVGgaC5v+kV5taArKgsBpTsT07FdISDisNTsxw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:74:15:3a:01:89:8e:42:cb:f1:b3:82:e8:ab:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0050348cf60642f54ec90724de78aaa03dcd38e1 Validity Not Before: Feb 9 16:00:57 2026 GMT Not After : Feb 10 16:00:57 2026 GMT Subject: CN=f142cb58e3e85be91b96162d0f35bbc826e128f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:6c:07:bf:1d:e4:9a:00:eb:95:70:7c:3d:6e: f1:18:9f:97:f7:30:c0:30:be:ad:6a:63:7d:27:dc: 12:b1:16:76:22:53:20:24:1b:62:85:1c:ab:04:19: b6:90:a1:2f:d8:b6:ed:60:d8:df:aa:d7:9f:a8:b7: f1:da:ea:34:01:8a:6d:21:96:d4:9e:01:32:c4:25: f8:f3:34:0f:c8:9f:2d:ba:10:ab:c9:f6:fa:bb:12: 82:ee:94:ea:22:ea:d0:fc:25:2a:b6:b0:64:84:1b: e3:32:78:36:db:7b:60:00:d5:d8:55:4d:aa:72:af: b1:64:d6:54:4a:15:c6:af:dd:d7:45:83:a2:c0:5b: 47:3d:1f:22:46:7c:be:df:ea:88:5c:ba:d5:2d:e2: 46:6c:0f:a5:ad:a0:75:cc:a6:aa:3d:b5:34:fa:b6: 6b:9e:e2:e0:a4:cf:48:e2:8c:78:ee:fe:ed:ad:af: a0:75:22:7b:73:72:6f:4a:95:f6:f1:77:85:18:3a: da:f6:d0:f9:5e:57:2e:03:42:52:8c:c9:b2:23:15: 0c:86:64:cf:cb:9c:b4:d8:94:a9:04:ab:b0:a7:8e: ed:84:dd:56:5a:42:44:90:38:aa:0d:2f:4b:24:a7: b5:d7:29:88:36:5f:07:9c:70:b4:19:25:3d:f3:29: 7c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:42:CB:58:E3:E8:5B:E9:1B:96:16:2D:0F:35:BB:C8:26:E1:28:F8 X509v3 Authority Key Identifier: keyid:00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:a5:63:b2:d7:0f:a0:ad:73:95:4a:97:aa:6e:0d:3b:f4:a6: 07:ad:4b:bb:f5:ee:48:87:11:b8:af:8c:97:fd:2d:8d:82:cc: ce:ef:4f:d4:48:a8:57:84:ee:83:29:74:21:cc:8a:82:8b:89: d0:5e:0a:38:c7:43:8c:fc:f5:d5:38:ae:d7:cb:04:e4:cd:fc: 59:18:74:b9:45:1e:1f:8d:ef:2f:b9:95:7e:c9:47:97:6d:c7: 3d:7e:9b:d0:c7:43:63:85:6a:5b:0a:26:a2:fb:ce:a7:e6:aa: d3:09:65:fb:89:03:c7:df:b7:86:3a:57:88:30:ae:6c:51:7c: 07:40:34:d9:21:84:a7:a7:79:0a:cf:05:e0:b0:83:f9:59:9e: 99:f6:4a:be:19:c6:ad:e7:e5:3e:b1:34:6d:1b:8a:93:fe:f9: 42:6f:e9:76:59:bc:56:8e:37:ce:e6:96:54:57:6e:95:4f:1f: eb:8f:63:54:db:3a:4f:67:df:91:52:1a:ed:22:36:17:fd:49: 68:6c:e8:dd:6c:5a:10:2c:6d:32:6b:61:e4:71:b0:0c:1a:15: 89:ef:30:19:2a:df:cb:1a:5c:71:8f:46:7a:c8:c2:6b:e0:5a: 09:11:ca:44:d7:38:f2:67:f1:af:89:8e:2b:c7:21:6b:cd:61: 86:63:a9:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDInQVOgGJjkLL8bOC6KvpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwNTAzNDhjZjYwNjQyZjU0ZWM5MDcyNGRlNzhhYWEwM2Rj ZDM4ZTEwHhcNMjYwMjA5MTYwMDU3WhcNMjYwMjEwMTYwMDU3WjAzMTEwLwYDVQQD EyhmMTQyY2I1OGUzZTg1YmU5MWI5NjE2MmQwZjM1YmJjODI2ZTEyOGY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4mwHvx3kmgDrlXB8PW7xGJ+X9zDA ML6tamN9J9wSsRZ2IlMgJBtihRyrBBm2kKEv2LbtYNjfqtefqLfx2uo0AYptIZbU ngEyxCX48zQPyJ8tuhCryfb6uxKC7pTqIurQ/CUqtrBkhBvjMng223tgANXYVU2q cq+xZNZUShXGr93XRYOiwFtHPR8iRny+3+qIXLrVLeJGbA+lraB1zKaqPbU0+rZr nuLgpM9I4ox47v7tra+gdSJ7c3JvSpX28XeFGDra9tD5XlcuA0JSjMmyIxUMhmTP y5y02JSpBKuwp47thN1WWkJEkDiqDS9LJKe11ymINl8HnHC0GSU98yl84QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPFCy1jj6FvpG5YWLQ81u8gm4Sj4MB8GA1UdIwQY MBaAFABQNIz2BkL1TskHJN54qqA9zTjhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUZBMGpQWUdRdlZPeVFjazNuaXFvRDNOT09FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9mMTI0YjItNDc0ZS00NWEwLWI3M2Et ZTU0YjA2YTkzNTI2LzEvQUZBMGpQWUdRdlZPeVFjazNuaXFvRDNOT09FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC9mMTI0YjItNDc0ZS00NWEwLWI3M2EtZTU0YjA2YTkzNTI2 LzEvQUZBMGpQWUdRdlZPeVFjazNuaXFvRDNOT09FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlaVjstcP oK1zlUqXqm4NO/SmB61Lu/XuSIcRuK+Ml/0tjYLMzu9P1EioV4Tugyl0IcyKgouJ 0F4KOMdDjPz11Tiu18sE5M38WRh0uUUeH43vL7mVfslHl23HPX6b0MdDY4VqWwom ovvOp+aq0wll+4kDx9+3hjpXiDCubFF8B0A02SGEp6d5Cs8F4LCD+VmemfZKvhnG reflPrE0bRuKk/75Qm/pdlm8Vo43zuaWVFdulU8f649jVNs6T2ffkVIa7SI2F/1J aGzo3WxaECxtMmth5HGwDBoVie8wGSrfyxpccY9GesjCa+BaCRHKRNc48mfxr4mO K8cha81hhmOphQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:02 2026 by rpki-client