This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft File: AVgEEYI7SHN2g27WavP4qrsgEZw.mft (raw, json) Hash identifier: hIzQ6V7jxUrCNn+/inBKD+XzWf/8c7/GF+b/n7vAq7c= Subject key identifier: CD:48:56:D4:BF:93:32:7B:62:86:3E:A9:39:E3:02:4F:4D:50:71:2B Authority key identifier: 01:58:04:11:82:3B:48:73:76:83:6E:D6:6A:F3:F8:AA:BB:20:11:9C Certificate issuer: /CN=01580411823b487376836ed66af3f8aabb20119c Certificate serial: 019C432230A3B33A9DFF9AAE8739D89EA9AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:39 +0000 Manifest this update: Mon 09 Feb 2026 16:00:39 +0000 Manifest next update: Tue 10 Feb 2026 16:00:39 +0000 Files and hashes: 1: AVgEEYI7SHN2g27WavP4qrsgEZw.crl (hash: /7UoUu76WpnGcQWDmMeRmOa9OW3IfESVt42fAOxrMjU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:30:a3:b3:3a:9d:ff:9a:ae:87:39:d8:9e:a9:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01580411823b487376836ed66af3f8aabb20119c Validity Not Before: Feb 9 16:00:39 2026 GMT Not After : Feb 10 16:00:39 2026 GMT Subject: CN=cd4856d4bf93327b62863ea939e3024f4d50712b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7a:6e:9b:70:19:4e:1d:0f:98:8c:8c:0f:69: ee:aa:ad:e9:5e:22:65:ac:6d:6c:3d:60:8d:02:b7: ba:8a:2d:69:13:05:cb:65:17:fd:f8:46:ba:f7:14: cd:02:af:c0:2a:45:56:27:3a:8c:91:69:19:07:a4: 88:20:19:35:35:7f:9f:58:8f:ff:72:50:d6:9b:b3: 3e:b5:80:00:74:0b:30:8c:5d:0a:80:57:93:46:02: ba:22:35:16:73:a7:3f:ef:65:96:3d:10:ae:e2:7e: b8:0b:1a:9d:72:49:4c:50:ba:bd:a4:93:a2:a3:01: 5d:5d:70:f0:79:8c:df:ad:58:35:55:05:da:5c:f0: 00:1c:14:16:b5:ab:47:73:e9:7a:38:46:35:f4:63: 07:49:9b:a4:90:df:da:62:77:52:4d:f5:7c:8a:b2: 8e:24:b6:27:3d:bd:da:a1:9a:a3:ae:5c:ec:de:3e: 85:7d:99:30:d2:b3:2c:9e:2f:35:88:81:15:2f:47: e3:43:59:63:c0:cc:57:be:b6:7a:40:25:ac:cb:c3: 60:16:d4:ab:01:97:35:0a:6e:67:b3:a3:20:c2:00: bb:57:c1:a2:5e:11:47:68:1c:37:a8:6b:14:9a:a0: da:54:62:f8:d0:53:0e:b1:c5:e4:53:fa:1c:5c:d3: 61:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:48:56:D4:BF:93:32:7B:62:86:3E:A9:39:E3:02:4F:4D:50:71:2B X509v3 Authority Key Identifier: keyid:01:58:04:11:82:3B:48:73:76:83:6E:D6:6A:F3:F8:AA:BB:20:11:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:8c:51:f5:0c:d9:4b:1d:a2:7f:d6:66:15:43:71:db:78:39: b0:59:a9:16:63:38:f2:c3:f4:9b:e8:53:5c:90:73:30:19:08: 00:38:db:fb:3e:be:6d:4f:40:93:92:3d:90:df:e9:f7:83:36: 70:a7:1e:92:8c:b2:d2:89:c9:89:12:8c:09:bc:74:71:d4:47: c4:4f:dc:53:d7:f2:b4:81:89:93:93:03:bc:96:a3:99:55:1a: 2f:12:e5:49:5a:1d:b4:f2:e7:bf:29:d9:4e:7f:08:e3:e0:8c: e4:90:87:7a:07:86:c7:2e:e1:ad:9b:1a:ee:71:c3:ac:51:a4: 85:f6:21:70:84:08:0a:01:81:67:32:8c:19:2e:5b:46:3a:8d: b0:d0:61:d6:13:be:27:38:ae:33:bc:ae:70:6b:85:1c:2b:f7: bd:bb:fc:5f:0b:d7:a4:a6:77:56:a0:2f:94:1b:e6:2c:c6:81: 43:2d:be:7a:8d:a9:46:76:f0:60:d5:4a:aa:3e:a9:2d:7b:f7: 25:a4:48:d8:19:d8:9c:1c:28:c7:08:e7:86:0f:45:7a:06:42: dd:33:88:71:49:65:eb:40:c3:42:47:1a:9e:e3:0e:34:3c:19: 22:30:4e:d6:1e:89:e6:e4:52:90:24:2f:01:06:f9:5d:91:19: cf:eb:07:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIjCjszqd/5quhznYnqmsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNTgwNDExODIzYjQ4NzM3NjgzNmVkNjZhZjNmOGFhYmIy MDExOWMwHhcNMjYwMjA5MTYwMDM5WhcNMjYwMjEwMTYwMDM5WjAzMTEwLwYDVQQD EyhjZDQ4NTZkNGJmOTMzMjdiNjI4NjNlYTkzOWUzMDI0ZjRkNTA3MTJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3pum3AZTh0PmIyMD2nuqq3pXiJl rG1sPWCNAre6ii1pEwXLZRf9+Ea69xTNAq/AKkVWJzqMkWkZB6SIIBk1NX+fWI// clDWm7M+tYAAdAswjF0KgFeTRgK6IjUWc6c/72WWPRCu4n64CxqdcklMULq9pJOi owFdXXDweYzfrVg1VQXaXPAAHBQWtatHc+l6OEY19GMHSZukkN/aYndSTfV8irKO JLYnPb3aoZqjrlzs3j6FfZkw0rMsni81iIEVL0fjQ1ljwMxXvrZ6QCWsy8NgFtSr AZc1Cm5ns6MgwgC7V8GiXhFHaBw3qGsUmqDaVGL40FMOscXkU/ocXNNh+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM1IVtS/kzJ7YoY+qTnjAk9NUHErMB8GA1UdIwQY MBaAFAFYBBGCO0hzdoNu1mrz+Kq7IBGcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVZnRUVZSTdTSE4yZzI3V2F2UDRxcnNnRVp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8wOWQ2NjctYjFjNS00NTIxLThiNWYt YzE4YWJlY2RkNTI0LzEvQVZnRUVZSTdTSE4yZzI3V2F2UDRxcnNnRVp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS8wOWQ2NjctYjFjNS00NTIxLThiNWYtYzE4YWJlY2RkNTI0 LzEvQVZnRUVZSTdTSE4yZzI3V2F2UDRxcnNnRVp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeoxR9QzZ Sx2if9ZmFUNx23g5sFmpFmM48sP0m+hTXJBzMBkIADjb+z6+bU9Ak5I9kN/p94M2 cKcekoyy0onJiRKMCbx0cdRHxE/cU9fytIGJk5MDvJajmVUaLxLlSVodtPLnvynZ Tn8I4+CM5JCHegeGxy7hrZsa7nHDrFGkhfYhcIQICgGBZzKMGS5bRjqNsNBh1hO+ JziuM7yucGuFHCv3vbv8XwvXpKZ3VqAvlBvmLMaBQy2+eo2pRnbwYNVKqj6pLXv3 JaRI2BnYnBwoxwjnhg9FegZC3TOIcUll60DDQkcanuMONDwZIjBO1h6J5uRSkCQv AQb5XZEZz+sHQg== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:57 2026 by rpki-client