This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft File: AyHqOVCODhemUf6SrCnqOIMtC_8.mft (raw, json) Hash identifier: XamRxa9AXEa9NJoOavX9ndGDGIdVgodtivR16pvkPJ0= Subject key identifier: E2:BC:DD:B6:BA:67:AD:91:9F:37:3F:35:22:71:70:95:6A:14:78:06 Authority key identifier: 03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF Certificate issuer: /CN=0321ea39508e0e17a651fe92ac29ea38832d0bff Certificate serial: 019C41D8B76AB24826991E0ED19B9872101D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft Manifest number: 16AE Signing time: Mon 09 Feb 2026 10:00:47 +0000 Manifest this update: Mon 09 Feb 2026 10:00:47 +0000 Manifest next update: Tue 10 Feb 2026 10:00:47 +0000 Files and hashes: 1: 8UGI1s0WR4wlzQNu5QcJqIgdD6o.roa (hash: 0o0yTMQX8eIMkMe3RKQudDE1yMjJHai1D53A4eswsuo=) 2: AyHqOVCODhemUf6SrCnqOIMtC_8.crl (hash: YAc5N49/hEhZbqUhoPLn5kP7vtq+SwsUnO+296ZYflk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:b7:6a:b2:48:26:99:1e:0e:d1:9b:98:72:10:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321ea39508e0e17a651fe92ac29ea38832d0bff Validity Not Before: Feb 9 10:00:47 2026 GMT Not After : Feb 10 10:00:47 2026 GMT Subject: CN=e2bcddb6ba67ad919f373f35227170956a147806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5a:48:d5:3d:8d:a4:b6:5a:3f:06:e9:9c:13: 20:01:c5:e9:7d:24:71:8f:2c:51:42:2a:5f:73:24: 70:88:92:61:c1:4c:21:8d:35:4b:f2:60:3d:32:ed: 36:5a:6c:76:fc:b7:57:20:59:36:06:98:e5:fd:73: b9:c3:72:42:79:35:aa:55:03:05:b1:65:1c:de:f9: 5e:bf:08:80:c5:74:db:70:57:d8:61:22:a5:8d:9e: 3f:86:4f:6e:30:17:2e:9f:74:38:94:9a:66:a6:31: c4:70:14:de:99:5e:b8:ef:9a:06:62:9c:49:ae:9d: 4f:69:20:7f:af:8f:23:c2:f1:31:fd:bc:0e:34:77: ac:36:aa:63:d7:40:0e:7c:62:8a:e7:22:47:67:01: 06:dc:ed:64:55:97:a4:94:2e:f1:e8:5a:dd:d4:c3: da:88:93:a9:b6:83:15:f3:6e:ef:d2:f0:ca:23:f3: 56:7a:4c:94:f2:43:4e:31:b6:60:8f:72:ce:84:23: f6:02:c3:aa:cf:1c:8c:a3:ca:f7:35:22:46:33:0d: 49:c8:e3:47:53:35:d4:c6:e9:2e:56:ba:13:3b:f8: b5:a0:ee:ce:95:2e:54:85:cd:9f:e6:5c:e9:c4:72: 3e:1b:36:1c:55:3f:e1:7e:63:d9:e3:70:0d:70:50: 89:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:BC:DD:B6:BA:67:AD:91:9F:37:3F:35:22:71:70:95:6A:14:78:06 X509v3 Authority Key Identifier: keyid:03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:3c:f4:22:b7:48:06:1a:8e:41:88:32:d2:8b:02:bf:fb:88: 79:66:ae:f1:3b:07:4a:a4:5a:22:8c:d5:04:53:1c:8a:94:9e: 03:e3:0c:68:5e:38:2a:63:2b:23:7a:db:32:45:ec:b3:0e:b8: 7a:f4:42:ff:0c:69:d4:9c:f0:56:d5:77:c3:d2:7a:d6:e3:f9: bd:78:ba:a2:6d:d8:cc:12:57:d9:7e:cc:b8:22:f7:87:be:83: 5c:ad:fa:c5:a3:9b:61:5c:f4:20:80:3e:5f:12:02:61:4f:b5: d8:2e:c9:39:dd:92:73:fd:ff:f3:0b:19:1f:de:2a:15:27:7a: af:fd:07:8d:be:b5:ec:64:df:6d:5d:98:8b:94:85:51:1a:fa: e4:10:eb:6c:b7:8b:7d:28:fe:14:3c:43:07:0b:c5:1c:fc:19: 0c:e3:1b:63:8b:8f:14:bc:8b:b5:bd:62:cf:28:57:f2:c7:69: db:43:e5:ab:de:7d:71:06:a7:3f:c8:76:95:8b:c3:01:44:57: 10:1b:b6:12:5d:43:6d:10:5b:9d:a6:83:dd:f4:51:6f:78:2f: c1:4e:a4:35:18:64:80:e5:5f:f1:f8:53:11:1b:de:95:ca:62: f5:56:cb:a8:61:dc:e0:3f:d5:25:55:71:cf:f0:f0:01:54:27: 47:23:d7:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2LdqskgmmR4O0ZuYchAdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzMjFlYTM5NTA4ZTBlMTdhNjUxZmU5MmFjMjllYTM4ODMy ZDBiZmYwHhcNMjYwMjA5MTAwMDQ3WhcNMjYwMjEwMTAwMDQ3WjAzMTEwLwYDVQQD EyhlMmJjZGRiNmJhNjdhZDkxOWYzNzNmMzUyMjcxNzA5NTZhMTQ3ODA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5FpI1T2NpLZaPwbpnBMgAcXpfSRx jyxRQipfcyRwiJJhwUwhjTVL8mA9Mu02Wmx2/LdXIFk2Bpjl/XO5w3JCeTWqVQMF sWUc3vlevwiAxXTbcFfYYSKljZ4/hk9uMBcun3Q4lJpmpjHEcBTemV6475oGYpxJ rp1PaSB/r48jwvEx/bwONHesNqpj10AOfGKK5yJHZwEG3O1kVZeklC7x6Frd1MPa iJOptoMV827v0vDKI/NWekyU8kNOMbZgj3LOhCP2AsOqzxyMo8r3NSJGMw1JyONH UzXUxukuVroTO/i1oO7OlS5Uhc2f5lzpxHI+GzYcVT/hfmPZ43ANcFCJTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOK83ba6Z62Rnzc/NSJxcJVqFHgGMB8GA1UdIwQY MBaAFAMh6jlQjg4XplH+kqwp6jiDLQv/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXlIcU9WQ09EaGVtVWY2U3JDbnFPSU10Q184LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9jNDgxN2UtODI4MS00MmY3LTlmNGQt OGNmODA1NTExMDAyLzEvQXlIcU9WQ09EaGVtVWY2U3JDbnFPSU10Q184Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9jNDgxN2UtODI4MS00MmY3LTlmNGQtOGNmODA1NTExMDAy LzEvQXlIcU9WQ09EaGVtVWY2U3JDbnFPSU10Q184LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAczz0IrdI BhqOQYgy0osCv/uIeWau8TsHSqRaIozVBFMcipSeA+MMaF44KmMrI3rbMkXssw64 evRC/wxp1JzwVtV3w9J61uP5vXi6om3YzBJX2X7MuCL3h76DXK36xaObYVz0IIA+ XxICYU+12C7JOd2Sc/3/8wsZH94qFSd6r/0Hjb617GTfbV2Yi5SFURr65BDrbLeL fSj+FDxDBwvFHPwZDOMbY4uPFLyLtb1izyhX8sdp20Plq959cQanP8h2lYvDAURX EBu2El1DbRBbnaaD3fRRb3gvwU6kNRhkgOVf8fhTERvelcpi9VbLqGHc4D/VJVVx z/DwAVQnRyPXVw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:45 2026 by rpki-client