This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft File: AguJY5thIAOqgSvktlIbVnhFao4.mft (raw, json) Hash identifier: DK86iBKz9F0LEPyre/qbo8kwrjukIcOFRIWOGX8kDKk= Subject key identifier: 0E:BE:09:8A:D0:AC:A0:D8:86:97:AF:7E:1C:83:26:40:4C:98:A0:CD Authority key identifier: 02:0B:89:63:9B:61:20:03:AA:81:2B:E4:B6:52:1B:56:78:45:6A:8E Certificate issuer: /CN=020b89639b612003aa812be4b6521b5678456a8e Certificate serial: 019C42B49FA0AA43EF638DE114B36AD6E936 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft Manifest number: 0571 Signing time: Mon 09 Feb 2026 14:00:59 +0000 Manifest this update: Mon 09 Feb 2026 14:00:59 +0000 Manifest next update: Tue 10 Feb 2026 14:00:59 +0000 Files and hashes: 1: AguJY5thIAOqgSvktlIbVnhFao4.crl (hash: RlmSgWqn7bFYDTIDpq6XJvgsYxHLoVGA51u+Ga20sL0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:9f:a0:aa:43:ef:63:8d:e1:14:b3:6a:d6:e9:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=020b89639b612003aa812be4b6521b5678456a8e Validity Not Before: Feb 9 14:00:59 2026 GMT Not After : Feb 10 14:00:59 2026 GMT Subject: CN=0ebe098ad0aca0d88697af7e1c8326404c98a0cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:41:c7:6c:f2:14:f3:5a:80:c8:fb:d9:57:8b: 0e:09:37:72:50:f4:ee:a2:4f:75:26:0e:c9:0b:12: e6:82:0a:fb:fa:8d:4d:b3:db:ce:c6:8d:5f:b2:e6: a6:8e:5b:04:30:f1:2c:9a:04:38:cf:42:bd:24:61: 96:e5:43:04:aa:f3:b1:c7:ee:bc:46:94:2a:fa:f1: f5:41:a6:f1:d6:f7:58:60:20:24:36:28:87:ad:db: 0f:07:91:74:eb:c6:41:6e:58:6d:20:ab:13:65:64: 3c:2e:8f:e0:a6:6d:65:5c:f9:9f:2f:7a:be:06:40: 5d:90:6e:fa:4b:0f:eb:0e:c9:06:03:5c:91:7b:0b: 41:e3:e4:cb:39:91:a8:1a:6b:44:51:97:2b:47:13: a6:b8:a1:4a:af:87:7c:ee:76:3f:5e:18:57:ed:2d: 29:8d:2e:f9:dd:fb:72:b9:92:e1:19:2e:de:e3:ec: 99:b2:8f:af:14:e9:16:46:cf:08:16:c3:bf:4a:47: c1:49:7c:2c:04:93:65:cc:07:b0:d6:8b:51:80:2a: 9b:58:57:e9:f3:b3:0e:1e:e8:47:fb:67:47:8a:54: 8f:67:c6:72:0d:1e:c4:9b:b1:26:ec:1b:14:95:72: be:12:36:5e:b3:08:08:b2:a2:a0:d1:ab:c7:73:f0: a9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:BE:09:8A:D0:AC:A0:D8:86:97:AF:7E:1C:83:26:40:4C:98:A0:CD X509v3 Authority Key Identifier: keyid:02:0B:89:63:9B:61:20:03:AA:81:2B:E4:B6:52:1B:56:78:45:6A:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:5d:17:ef:2e:57:93:43:04:74:fe:57:98:3e:f9:0f:c0:2e: 98:81:40:6c:39:bc:18:c6:4c:84:07:54:7a:fd:89:b9:66:75: c1:4e:59:5e:49:52:d7:f7:05:c0:26:a2:2c:3f:9d:ff:43:af: a2:83:8b:a3:10:6b:1a:e8:b4:23:d8:82:be:30:8a:ad:0f:3f: 26:62:a1:26:8c:a3:00:89:c3:ed:a6:4a:84:8a:06:e0:4a:88: a4:90:8a:f1:70:fa:e4:59:79:72:60:f5:ed:bd:14:c4:81:26: 6f:f6:0f:b4:9a:4b:7a:ec:33:c8:3e:55:9f:43:ff:5f:26:79: e1:5e:10:ae:29:6a:1c:ac:39:52:27:c7:0b:1f:a7:f8:0b:e4: 56:cb:d2:6d:6e:b4:07:74:64:fe:74:e2:ce:4a:1c:44:0a:38: 11:b7:d3:c0:cb:bd:82:8e:5c:b2:6b:35:26:9b:84:13:70:c4: be:7e:a9:63:e3:69:e6:e2:36:a9:c5:26:88:8a:91:bc:b6:62: 91:5d:02:99:cb:7c:a8:ce:67:a1:25:2c:80:01:2f:53:be:17: f2:bc:1f:48:b9:48:24:13:e8:58:d3:bd:3c:1f:ae:de:34:19: b5:18:7a:2a:38:bd:b3:b1:81:62:5b:8e:0d:6d:1e:b2:32:aa: 12:43:00:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtJ+gqkPvY43hFLNq1uk2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyMGI4OTYzOWI2MTIwMDNhYTgxMmJlNGI2NTIxYjU2Nzg0 NTZhOGUwHhcNMjYwMjA5MTQwMDU5WhcNMjYwMjEwMTQwMDU5WjAzMTEwLwYDVQQD EygwZWJlMDk4YWQwYWNhMGQ4ODY5N2FmN2UxYzgzMjY0MDRjOThhMGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0HHbPIU81qAyPvZV4sOCTdyUPTu ok91Jg7JCxLmggr7+o1Ns9vOxo1fsuamjlsEMPEsmgQ4z0K9JGGW5UMEqvOxx+68 RpQq+vH1Qabx1vdYYCAkNiiHrdsPB5F068ZBblhtIKsTZWQ8Lo/gpm1lXPmfL3q+ BkBdkG76Sw/rDskGA1yRewtB4+TLOZGoGmtEUZcrRxOmuKFKr4d87nY/XhhX7S0p jS753ftyuZLhGS7e4+yZso+vFOkWRs8IFsO/SkfBSXwsBJNlzAew1otRgCqbWFfp 87MOHuhH+2dHilSPZ8ZyDR7Em7Em7BsUlXK+EjZeswgIsqKg0avHc/CpDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA6+CYrQrKDYhpevfhyDJkBMmKDNMB8GA1UdIwQY MBaAFAILiWObYSADqoEr5LZSG1Z4RWqOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWd1Slk1dGhJQU9xZ1N2a3RsSWJWbmhGYW80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi83N2U5YzUtYWJjMi00YzM5LWI1MDIt ZWJmMzI5ZTk2ODQ2LzEvQWd1Slk1dGhJQU9xZ1N2a3RsSWJWbmhGYW80Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi83N2U5YzUtYWJjMi00YzM5LWI1MDItZWJmMzI5ZTk2ODQ2 LzEvQWd1Slk1dGhJQU9xZ1N2a3RsSWJWbmhGYW80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcF0X7y5X k0MEdP5XmD75D8AumIFAbDm8GMZMhAdUev2JuWZ1wU5ZXklS1/cFwCaiLD+d/0Ov ooOLoxBrGui0I9iCvjCKrQ8/JmKhJoyjAInD7aZKhIoG4EqIpJCK8XD65Fl5cmD1 7b0UxIEmb/YPtJpLeuwzyD5Vn0P/XyZ54V4QrilqHKw5UifHCx+n+AvkVsvSbW60 B3Rk/nTizkocRAo4EbfTwMu9go5csms1JpuEE3DEvn6pY+Np5uI2qcUmiIqRvLZi kV0Cmct8qM5noSUsgAEvU74X8rwfSLlIJBPoWNO9PB+u3jQZtRh6Kji9s7GBYluO DW0esjKqEkMA3g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:28 2026 by rpki-client