This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft File: A2loTGfKqZ_8AYS-rMrw6oipISk.mft (raw, json) Hash identifier: Wkrr05kkjbYuWu9RcDEXlYYp9qeOhF+W2zbNna1I1Ao= Subject key identifier: CA:01:84:74:2D:F4:85:6E:02:79:37:DC:F8:57:BA:51:E6:55:6A:D4 Authority key identifier: 03:69:68:4C:67:CA:A9:9F:FC:01:84:BE:AC:CA:F0:EA:88:A9:21:29 Certificate issuer: /CN=0369684c67caa99ffc0184beaccaf0ea88a92129 Certificate serial: 019C43900593F3E9EECC3BE2CC60892B56B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft Manifest number: 0AE7 Signing time: Mon 09 Feb 2026 18:00:37 +0000 Manifest this update: Mon 09 Feb 2026 18:00:37 +0000 Manifest next update: Tue 10 Feb 2026 18:00:37 +0000 Files and hashes: 1: A2loTGfKqZ_8AYS-rMrw6oipISk.crl (hash: Tjk8Rv6LMom1h+k/v0mBzw2Ku8/tOezggalnYFY9UEU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:05:93:f3:e9:ee:cc:3b:e2:cc:60:89:2b:56:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0369684c67caa99ffc0184beaccaf0ea88a92129 Validity Not Before: Feb 9 18:00:37 2026 GMT Not After : Feb 10 18:00:37 2026 GMT Subject: CN=ca0184742df4856e027937dcf857ba51e6556ad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:5a:e5:e7:0b:13:23:9e:18:e0:0a:51:9b: 62:70:ac:b3:fe:e9:0c:d3:33:31:0d:25:de:2a:d9: a3:77:a7:8f:f8:d0:d9:65:21:bc:c1:4e:42:20:25: ab:3d:33:37:d1:a2:28:9f:6d:2e:c7:b7:78:6a:97: b9:cf:7d:4a:0f:7c:7c:88:c3:11:c0:4c:8b:3c:6a: 57:8c:d5:a0:c9:2c:9f:cc:30:a7:d5:0e:0f:6a:4e: a6:3b:9c:83:15:01:5a:3a:2b:68:9b:22:66:6e:bc: 11:6f:f8:0d:ef:36:06:73:e1:aa:13:06:21:14:9c: 3e:3e:dd:70:59:23:ed:63:9f:9c:d9:a0:cb:b9:72: 59:2c:f1:f5:c7:61:85:1a:ca:5c:36:6c:e6:98:ab: 41:8b:20:d2:27:7c:37:01:31:db:ee:12:ba:0c:ee: e3:79:f1:03:dc:23:2b:0a:69:0d:1a:ff:aa:37:50: e0:42:36:ec:45:97:be:70:16:e4:40:ec:62:83:80: 86:19:36:ba:e4:ea:d4:4c:b6:fa:52:a2:1f:ca:f4: b3:58:c1:c2:28:6d:3b:3c:59:97:66:30:40:70:22: 48:6c:27:12:20:cf:cb:e4:c3:a2:bf:fd:5f:49:0c: 97:5a:d6:72:af:d9:2c:64:eb:c3:9c:5c:95:53:e7: 45:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:01:84:74:2D:F4:85:6E:02:79:37:DC:F8:57:BA:51:E6:55:6A:D4 X509v3 Authority Key Identifier: keyid:03:69:68:4C:67:CA:A9:9F:FC:01:84:BE:AC:CA:F0:EA:88:A9:21:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:1a:7e:ed:4c:b3:89:20:05:35:d8:8b:13:74:e0:77:3e:8c: 3d:82:cd:21:b7:37:79:12:98:74:76:1a:d8:36:cb:03:f4:4c: 49:36:79:a3:b7:fb:d0:b1:6f:87:de:12:f1:fd:fa:d4:cd:2d: 6c:d7:29:97:b7:15:1f:48:25:39:b9:a4:4d:3b:f4:06:a3:59: 71:7c:71:28:b2:f6:66:ca:47:80:59:14:5b:dd:22:47:49:f3: 10:0b:bb:8e:17:8f:73:8a:d6:62:ed:a0:4b:c2:7e:b3:de:a9: 6f:bc:c1:65:a7:7a:a8:37:8b:bc:cf:6d:c4:32:ec:13:28:3e: 12:c4:2c:a5:b0:3d:5a:32:0d:94:2b:55:40:68:d8:91:2f:d5: 12:ef:3e:31:04:d8:65:e8:4b:ea:2a:c7:a1:24:52:da:20:b3: b6:ff:1f:97:91:2c:c3:ea:e1:25:7b:69:37:62:bc:a1:92:9a: 9b:c6:0c:26:d0:e6:16:cf:32:28:c8:ce:3a:28:49:f5:2a:d0: 88:c9:de:ab:2b:ab:ef:0d:da:06:a0:ca:14:03:98:e9:6a:18: cf:be:5a:c9:28:99:e1:6e:74:8b:fb:54:05:48:c6:eb:9a:b0: e9:03:b3:c0:c2:89:fb:3d:5d:89:1f:bb:d3:71:5d:94:6b:d0: ab:3f:7e:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkAWT8+nuzDvizGCJK1ayMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzNjk2ODRjNjdjYWE5OWZmYzAxODRiZWFjY2FmMGVhODhh OTIxMjkwHhcNMjYwMjA5MTgwMDM3WhcNMjYwMjEwMTgwMDM3WjAzMTEwLwYDVQQD EyhjYTAxODQ3NDJkZjQ4NTZlMDI3OTM3ZGNmODU3YmE1MWU2NTU2YWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhda5ecLEyOeGOAKUZticKyz/ukM 0zMxDSXeKtmjd6eP+NDZZSG8wU5CICWrPTM30aIon20ux7d4ape5z31KD3x8iMMR wEyLPGpXjNWgySyfzDCn1Q4Pak6mO5yDFQFaOitomyJmbrwRb/gN7zYGc+GqEwYh FJw+Pt1wWSPtY5+c2aDLuXJZLPH1x2GFGspcNmzmmKtBiyDSJ3w3ATHb7hK6DO7j efED3CMrCmkNGv+qN1DgQjbsRZe+cBbkQOxig4CGGTa65OrUTLb6UqIfyvSzWMHC KG07PFmXZjBAcCJIbCcSIM/L5MOiv/1fSQyXWtZyr9ksZOvDnFyVU+dFowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMoBhHQt9IVuAnk33PhXulHmVWrUMB8GA1UdIwQY MBaAFANpaExnyqmf/AGEvqzK8OqIqSEpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQTJsb1RHZktxWl84QVlTLXJNcnc2b2lwSVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wYjM2MjEtODBkMy00Nzk2LTg3MzUt MTU3NTYyNDk5OTA4LzEvQTJsb1RHZktxWl84QVlTLXJNcnc2b2lwSVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8wYjM2MjEtODBkMy00Nzk2LTg3MzUtMTU3NTYyNDk5OTA4 LzEvQTJsb1RHZktxWl84QVlTLXJNcnc2b2lwSVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwxp+7Uyz iSAFNdiLE3Tgdz6MPYLNIbc3eRKYdHYa2DbLA/RMSTZ5o7f70LFvh94S8f361M0t bNcpl7cVH0glObmkTTv0BqNZcXxxKLL2ZspHgFkUW90iR0nzEAu7jhePc4rWYu2g S8J+s96pb7zBZad6qDeLvM9txDLsEyg+EsQspbA9WjINlCtVQGjYkS/VEu8+MQTY ZehL6irHoSRS2iCztv8fl5Esw+rhJXtpN2K8oZKam8YMJtDmFs8yKMjOOihJ9SrQ iMneqyur7w3aBqDKFAOY6WoYz75aySiZ4W50i/tUBUjG65qw6QOzwMKJ+z1diR+7 03FdlGvQqz9+qQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:01:02 2026 by rpki-client