This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft File: avqwkWjnzGa2Y8YWLVyNRUllzOI.mft (raw, json) Hash identifier: XmZFgW8hpV75KUiLYutZ/Vl5y9QjatWJqnq8prq0nGA= Subject key identifier: 4A:5D:1E:EB:B6:38:A6:D8:A3:A2:ED:87:FB:8B:50:83:6D:D2:35:20 Authority key identifier: 6A:FA:B0:91:68:E7:CC:66:B6:63:C6:16:2D:5C:8D:45:49:65:CC:E2 Certificate issuer: /CN=6afab09168e7cc66b663c6162d5c8d454965cce2 Certificate serial: 019C41D8356558E6ADCEFD85D144677CD665 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avqwkWjnzGa2Y8YWLVyNRUllzOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 10:00:14 +0000 Manifest this update: Mon 09 Feb 2026 10:00:14 +0000 Manifest next update: Tue 10 Feb 2026 10:00:14 +0000 Files and hashes: 1: avqwkWjnzGa2Y8YWLVyNRUllzOI.crl (hash: Qz/L19wR6TAY9+kxLI9yrldSEk4kmQ61+ta/CtJHVkc=) 2: hBPMfJjzisDLgAAy42OAPWTEtn4.roa (hash: 7+lbylCTdmTyru0tkrcTEDn3h1rEwAZ3WSEJuuLSstI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft rsync://rpki.ripe.net/repository/DEFAULT/avqwkWjnzGa2Y8YWLVyNRUllzOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:35:65:58:e6:ad:ce:fd:85:d1:44:67:7c:d6:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6afab09168e7cc66b663c6162d5c8d454965cce2 Validity Not Before: Feb 9 10:00:14 2026 GMT Not After : Feb 10 10:00:14 2026 GMT Subject: CN=4a5d1eebb638a6d8a3a2ed87fb8b50836dd23520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:46:f8:6c:c9:ca:31:fa:27:80:aa:28:50:0e: 8d:e3:88:37:c5:43:5f:cd:2d:cf:40:d1:d3:59:d6: 19:b2:41:6c:df:f1:27:be:49:17:29:08:34:17:7f: c0:ca:d4:e3:7e:cd:4d:70:23:b1:11:b1:86:61:ab: 74:03:1c:7a:d9:32:3b:7d:34:a3:64:d0:c7:7d:83: 2e:92:c8:48:43:ea:88:4f:d1:72:15:55:f9:27:44: ce:6b:82:f7:8e:a5:a6:58:22:38:f9:4e:50:6e:c4: a7:d3:65:f2:c6:73:82:bb:a8:70:43:61:9c:ba:44: 38:81:cf:39:d0:84:e6:8b:76:a1:bb:05:17:e7:fe: 27:db:26:ed:c3:1e:2c:ee:f2:b5:25:0b:9d:32:38: 85:1f:54:c2:06:1e:80:45:93:a2:e0:11:e6:ff:1b: 4b:c7:fe:91:83:b5:34:dc:c3:8a:28:fd:3a:cc:ec: 07:ec:fe:92:e8:24:38:9b:14:99:fd:76:78:3e:0b: a6:ae:43:bd:61:1b:21:20:d2:08:bd:c1:1f:30:3d: ac:e6:b8:2c:29:79:db:2a:5a:d4:7e:85:c8:b8:cb: 2b:e0:1a:af:ef:f9:60:15:fd:d2:11:df:6f:59:46: f2:5e:45:66:dd:36:90:4d:04:55:fd:64:9e:9b:33: 2b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:5D:1E:EB:B6:38:A6:D8:A3:A2:ED:87:FB:8B:50:83:6D:D2:35:20 X509v3 Authority Key Identifier: keyid:6A:FA:B0:91:68:E7:CC:66:B6:63:C6:16:2D:5C:8D:45:49:65:CC:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avqwkWjnzGa2Y8YWLVyNRUllzOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d5:8b:de:08:16:a6:14:85:02:35:fe:c7:11:80:da:40:aa:d0: d1:65:d2:58:2a:20:6f:8f:4b:e1:14:93:c7:e5:22:8d:29:38: ab:62:64:35:12:29:6b:e4:e1:25:bd:f4:f8:14:9b:ea:1c:66: 3c:c9:a2:3f:2f:b8:3c:57:69:48:36:c0:ed:37:56:32:96:b3: 9e:a0:65:3e:45:cb:28:b8:5f:f0:a6:9e:4f:2b:46:d2:14:5c: 39:0e:ce:cb:c8:5e:7b:97:1f:c5:ad:fd:27:a0:43:86:bf:90: 5f:f9:9c:4b:ca:13:ec:af:ab:a5:c9:13:fb:ad:67:0c:9a:42: 09:13:4c:76:e8:b2:fe:c1:5b:1e:e2:f8:25:c6:40:b8:41:4b: 6d:d8:a7:40:45:01:62:92:75:9c:38:02:bf:a0:fe:85:ae:f2: c0:4c:02:ac:ae:33:62:9f:2c:bd:6f:34:9c:90:45:0d:d8:ff: 98:a1:7f:9c:82:09:b7:20:c5:91:68:a1:30:f0:ee:b7:59:d6: 2a:40:a5:12:a9:7f:10:15:18:da:8f:12:13:a1:53:b6:e1:ec: 26:76:50:12:68:15:04:11:d0:7f:46:75:6d:c5:a9:b6:a5:24: 4f:8c:b0:f2:0a:93:5c:05:f9:6c:09:0d:b8:c3:83:23:8c:45: 38:c4:ee:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2DVlWOatzv2F0URnfNZlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhZmFiMDkxNjhlN2NjNjZiNjYzYzYxNjJkNWM4ZDQ1NDk2 NWNjZTIwHhcNMjYwMjA5MTAwMDE0WhcNMjYwMjEwMTAwMDE0WjAzMTEwLwYDVQQD Eyg0YTVkMWVlYmI2MzhhNmQ4YTNhMmVkODdmYjhiNTA4MzZkZDIzNTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA40b4bMnKMfongKooUA6N44g3xUNf zS3PQNHTWdYZskFs3/EnvkkXKQg0F3/AytTjfs1NcCOxEbGGYat0Axx62TI7fTSj ZNDHfYMukshIQ+qIT9FyFVX5J0TOa4L3jqWmWCI4+U5QbsSn02XyxnOCu6hwQ2Gc ukQ4gc850ITmi3ahuwUX5/4n2ybtwx4s7vK1JQudMjiFH1TCBh6ARZOi4BHm/xtL x/6Rg7U03MOKKP06zOwH7P6S6CQ4mxSZ/XZ4PgumrkO9YRshINIIvcEfMD2s5rgs KXnbKlrUfoXIuMsr4Bqv7/lgFf3SEd9vWUbyXkVm3TaQTQRV/WSemzMruwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEpdHuu2OKbYo6Lth/uLUINt0jUgMB8GA1UdIwQY MBaAFGr6sJFo58xmtmPGFi1cjUVJZcziMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXZxd2tXam56R2EyWThZV0xWeU5SVWxsek9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9hYWZjYjItNDkxZC00YjgwLTkxNjgt NWYzMzgxYjA3MWRhLzEvYXZxd2tXam56R2EyWThZV0xWeU5SVWxsek9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9hYWZjYjItNDkxZC00YjgwLTkxNjgtNWYzMzgxYjA3MWRh LzEvYXZxd2tXam56R2EyWThZV0xWeU5SVWxsek9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1YveCBam FIUCNf7HEYDaQKrQ0WXSWCogb49L4RSTx+UijSk4q2JkNRIpa+ThJb30+BSb6hxm PMmiPy+4PFdpSDbA7TdWMpaznqBlPkXLKLhf8KaeTytG0hRcOQ7Oy8hee5cfxa39 J6BDhr+QX/mcS8oT7K+rpckT+61nDJpCCRNMduiy/sFbHuL4JcZAuEFLbdinQEUB YpJ1nDgCv6D+ha7ywEwCrK4zYp8svW80nJBFDdj/mKF/nIIJtyDFkWihMPDut1nW KkClEql/EBUY2o8SE6FTtuHsJnZQEmgVBBHQf0Z1bcWptqUkT4yw8gqTXAX5bAkN uMODI4xFOMTuNg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:05 2026 by rpki-client