This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json) Hash identifier: TuNOyf1gM4GB2H+4XxMhNfrB+QH+w5+Vbt4mmUEAJCw= Subject key identifier: 08:6D:BF:4D:E1:0A:88:06:4E:E6:04:DE:0E:3D:AA:96:A6:37:D1:B8 Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7 Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7 Certificate serial: 019C427DE779523C7975BE4C72D92377C568 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 13:01:13 +0000 Manifest this update: Mon 09 Feb 2026 13:01:13 +0000 Manifest next update: Tue 10 Feb 2026 13:01:13 +0000 Files and hashes: 1: CwgZcUkyKLt048Oqe9IkcFcNcGM.roa (hash: 863NNHY2dcVFVj1Sa4r+ACtbVTP+iPOTXWUzEVvig7k=) 2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: luaDdj92uKuaqhX3tsZbaWLaZq98Fu3neKKxYnKBJFI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:e7:79:52:3c:79:75:be:4c:72:d9:23:77:c5:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97f697013433b891d64697d928663be734dba4e7 Validity Not Before: Feb 9 13:01:13 2026 GMT Not After : Feb 10 13:01:13 2026 GMT Subject: CN=086dbf4de10a88064ee604de0e3daa96a637d1b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9d:1f:4a:69:37:bb:f4:6e:99:ac:4f:23:5d: a4:e1:cf:b9:41:ea:35:5f:30:ad:87:70:59:bc:ac: 65:49:d3:fe:8e:10:88:bc:32:48:6c:ea:9b:c8:10: 59:76:4d:df:53:ac:8b:4d:84:bb:20:c7:5c:a7:4e: 0a:e5:e2:06:0a:b4:7f:c1:bf:2b:96:00:fd:04:60: e5:8a:49:d4:96:d2:61:f9:38:55:7e:cf:61:65:ca: a4:13:6c:53:94:d5:70:2f:9f:7f:f9:7e:96:f9:f1: d1:11:f3:53:d7:c5:ae:d0:85:c2:96:37:6e:e9:37: 75:92:ee:d9:b3:eb:f9:79:66:c9:34:74:4c:6a:b3: 00:65:2e:5b:a6:4a:03:27:81:31:26:58:9d:9d:48: 4c:be:5d:dc:e0:8a:97:0c:42:86:5b:b5:5b:f1:e9: d9:82:61:7b:77:1a:3f:f2:41:39:ea:92:d6:7f:f0: c2:36:23:b0:af:a2:ed:4a:89:a1:af:43:29:21:22: 42:10:b2:05:47:5e:16:cb:83:08:09:8c:cf:d3:65: 89:6d:b1:24:f9:c2:99:d0:58:c3:91:ac:3e:22:14: ef:99:9d:02:c0:99:f8:e4:f9:24:9c:e7:e9:97:51: 0c:df:0c:3f:ca:ea:9b:fa:63:28:f8:cb:db:02:14: 9b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:6D:BF:4D:E1:0A:88:06:4E:E6:04:DE:0E:3D:AA:96:A6:37:D1:B8 X509v3 Authority Key Identifier: keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:5f:29:c3:02:f9:be:23:a3:71:96:f3:c1:50:8e:a2:15:c0: 4e:6d:a7:c2:86:79:95:42:0f:88:6b:34:38:eb:0d:e7:0e:8e: 47:51:c4:71:9a:fb:7b:71:5f:d8:b1:7d:f5:7f:24:36:0d:bf: 3e:6a:c4:59:48:f5:29:91:6c:87:13:0d:b4:b4:6c:0e:75:04: b1:d9:87:e3:11:f2:ee:3e:d7:87:42:19:b4:17:93:49:d6:6a: b8:ae:2b:7a:bd:f4:8c:5d:b4:ff:b4:d6:85:3e:16:12:80:1f: f5:41:9e:41:57:55:e7:2c:e6:28:e2:bc:2c:e0:66:d6:3a:45: 54:46:82:a9:2b:0f:19:07:e1:1d:9f:de:a0:64:dc:c7:ea:2a: 03:d3:1c:ae:6d:ff:17:0f:39:40:ab:d5:58:b8:4c:1e:54:8a: 55:73:c0:0c:96:ac:f6:01:cb:56:3d:7d:32:2b:7f:f8:5c:da: be:d3:a8:e1:41:7e:24:a5:8f:34:29:69:ac:a6:ff:03:25:63: ab:64:79:41:14:68:46:62:b8:1b:c2:ba:a2:26:39:46:36:17: 85:60:a6:f9:b7:19:dd:c1:63:e3:dc:6a:03:7d:9c:37:e4:6a: 15:3b:5b:af:76:c8:d6:8c:76:c8:d2:43:91:6f:da:cc:c2:46: 90:97:b2:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfed5Ujx5db5Mctkjd8VoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3ZjY5NzAxMzQzM2I4OTFkNjQ2OTdkOTI4NjYzYmU3MzRk YmE0ZTcwHhcNMjYwMjA5MTMwMTEzWhcNMjYwMjEwMTMwMTEzWjAzMTEwLwYDVQQD EygwODZkYmY0ZGUxMGE4ODA2NGVlNjA0ZGUwZTNkYWE5NmE2MzdkMWI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxp0fSmk3u/RumaxPI12k4c+5Qeo1 XzCth3BZvKxlSdP+jhCIvDJIbOqbyBBZdk3fU6yLTYS7IMdcp04K5eIGCrR/wb8r lgD9BGDliknUltJh+ThVfs9hZcqkE2xTlNVwL59/+X6W+fHREfNT18Wu0IXCljdu 6Td1ku7Zs+v5eWbJNHRMarMAZS5bpkoDJ4ExJlidnUhMvl3c4IqXDEKGW7Vb8enZ gmF7dxo/8kE56pLWf/DCNiOwr6LtSomhr0MpISJCELIFR14Wy4MICYzP02WJbbEk +cKZ0FjDkaw+IhTvmZ0CwJn45PkknOfpl1EM3ww/yuqb+mMo+MvbAhSbEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAhtv03hCogGTuYE3g49qpamN9G4MB8GA1UdIwQY MBaAFJf2lwE0M7iR1kaX2ShmO+c026TnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbF9hWEFUUXp1SkhXUnBmWktHWTc1elRicE9jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9hZTExNjYtZDYwNi00NWI3LTlhMjIt N2JjODMyMjBmYjYyLzEvbF9hWEFUUXp1SkhXUnBmWktHWTc1elRicE9jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9hZTExNjYtZDYwNi00NWI3LTlhMjItN2JjODMyMjBmYjYy LzEvbF9hWEFUUXp1SkhXUnBmWktHWTc1elRicE9jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGl8pwwL5 viOjcZbzwVCOohXATm2nwoZ5lUIPiGs0OOsN5w6OR1HEcZr7e3Ff2LF99X8kNg2/ PmrEWUj1KZFshxMNtLRsDnUEsdmH4xHy7j7Xh0IZtBeTSdZquK4rer30jF20/7TW hT4WEoAf9UGeQVdV5yzmKOK8LOBm1jpFVEaCqSsPGQfhHZ/eoGTcx+oqA9Mcrm3/ Fw85QKvVWLhMHlSKVXPADJas9gHLVj19Mit/+FzavtOo4UF+JKWPNClprKb/AyVj q2R5QRRoRmK4G8K6oiY5RjYXhWCm+bcZ3cFj49xqA32cN+RqFTtbr3bI1ox2yNJD kW/azMJGkJeyOg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:04 2026 by rpki-client