This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft File: AlY31IiO4AWN6a06cMQtxGmWmpk.mft (raw, json) Hash identifier: 8joNdpwX5YrCUjpmlCvZhkkV0XJofkRYnvn+R/Ct5m4= Subject key identifier: 47:C9:C1:95:C1:59:63:FF:8E:ED:C7:8D:EC:9F:0A:56:37:77:7D:5D Authority key identifier: 02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99 Certificate issuer: /CN=025637d4888ee0058de9ad3a70c42dc469969a99 Certificate serial: 019C4390C61D00F647E72B444FFC686A59B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft Manifest number: 0C86 Signing time: Mon 09 Feb 2026 18:01:27 +0000 Manifest this update: Mon 09 Feb 2026 18:01:27 +0000 Manifest next update: Tue 10 Feb 2026 18:01:27 +0000 Files and hashes: 1: AlY31IiO4AWN6a06cMQtxGmWmpk.crl (hash: OIzl2T5p9QBoZiurlhul19wVZ7/I+Y4Tr8ljx9ddgW0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:c6:1d:00:f6:47:e7:2b:44:4f:fc:68:6a:59:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=025637d4888ee0058de9ad3a70c42dc469969a99 Validity Not Before: Feb 9 18:01:27 2026 GMT Not After : Feb 10 18:01:27 2026 GMT Subject: CN=47c9c195c15963ff8eedc78dec9f0a5637777d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:46:60:27:cc:21:80:2b:dc:e8:81:d8:0f:6e: 57:8c:06:2a:c9:b2:22:7d:27:53:b5:e1:17:b2:68: 04:94:9e:d2:b7:54:80:ee:e9:a5:72:c2:dc:78:a6: 32:18:c0:1f:20:ae:36:bf:30:3a:81:a3:9d:a2:fb: 81:2c:a2:43:35:31:92:c3:dd:66:98:a6:76:20:23: 02:63:d0:c1:7c:6a:9f:54:6b:45:3a:f9:61:a9:db: b3:9f:b4:14:ef:af:cc:bc:f1:bf:79:91:84:38:14: 1a:49:8d:8a:69:86:93:97:f7:d6:01:34:06:80:0e: be:58:54:6f:fb:fe:a2:7a:79:6a:40:91:65:98:6e: 28:2d:54:72:3a:49:15:8d:1c:8d:6a:91:ce:c9:a0: b8:fa:89:40:31:59:38:44:d5:34:2e:24:e3:a4:f4: d8:c6:3a:b3:50:15:ad:0f:3e:8c:53:43:b9:aa:77: fb:86:b6:8f:fe:fb:d8:3f:f1:22:ae:4f:24:b7:c0: be:86:f8:e5:a8:c2:fb:71:c9:91:36:d3:15:2c:47: a9:8c:c0:52:2e:05:df:d6:a9:e1:ee:ff:19:de:ac: 68:0d:27:b7:a9:12:c3:09:ab:60:17:9e:07:ae:76: b1:ea:2e:6d:4e:c5:7b:ff:d2:e8:a1:35:0e:8f:09: 82:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C9:C1:95:C1:59:63:FF:8E:ED:C7:8D:EC:9F:0A:56:37:77:7D:5D X509v3 Authority Key Identifier: keyid:02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:fa:52:88:fd:11:fa:f5:1b:c5:a6:64:10:18:d5:3f:a1:1e: 71:be:57:92:a5:9b:55:8a:b0:e0:67:16:ea:b6:c2:66:e0:7a: ad:ca:4d:ba:1d:94:9d:06:ef:f3:d5:eb:8c:42:c6:34:82:aa: f5:dd:df:ac:3c:7c:07:8e:f4:4c:00:b7:48:99:53:04:b1:18: 85:34:5f:5d:de:d4:a2:05:ed:6b:50:df:8e:31:85:91:93:0d: b8:06:7b:2f:b7:3b:38:48:f5:2d:ad:a0:bc:9a:7c:bf:7b:25: 05:e4:7c:19:24:ef:be:7f:05:49:1c:b7:fb:c9:a2:b8:87:66: 4e:c8:d8:2d:6f:5b:e9:fc:71:a7:7e:53:8a:17:4b:eb:26:36: c1:61:5d:88:7a:84:ea:82:9b:b8:01:6b:1c:04:62:7d:de:49: 2a:7d:e1:51:15:de:32:af:0f:eb:9e:3b:75:fa:a5:06:2e:9e: af:5a:d8:39:ef:85:4d:ef:bf:2b:d7:48:b7:40:87:b6:07:37: ed:f8:ca:a0:43:04:a5:1f:f1:56:10:eb:37:0b:65:a2:d5:61: cf:55:dd:49:1d:1d:1e:b9:26:1a:52:2e:1a:61:2c:e2:23:90: 67:e5:64:cf:e5:5f:37:0f:c1:71:05:81:ec:7d:b3:a0:11:02: 39:12:80:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkMYdAPZH5ytET/xoalm2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNTYzN2Q0ODg4ZWUwMDU4ZGU5YWQzYTcwYzQyZGM0Njk5 NjlhOTkwHhcNMjYwMjA5MTgwMTI3WhcNMjYwMjEwMTgwMTI3WjAzMTEwLwYDVQQD Eyg0N2M5YzE5NWMxNTk2M2ZmOGVlZGM3OGRlYzlmMGE1NjM3Nzc3ZDVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEZgJ8whgCvc6IHYD25XjAYqybIi fSdTteEXsmgElJ7St1SA7umlcsLceKYyGMAfIK42vzA6gaOdovuBLKJDNTGSw91m mKZ2ICMCY9DBfGqfVGtFOvlhqduzn7QU76/MvPG/eZGEOBQaSY2KaYaTl/fWATQG gA6+WFRv+/6ienlqQJFlmG4oLVRyOkkVjRyNapHOyaC4+olAMVk4RNU0LiTjpPTY xjqzUBWtDz6MU0O5qnf7hraP/vvYP/Eirk8kt8C+hvjlqML7ccmRNtMVLEepjMBS LgXf1qnh7v8Z3qxoDSe3qRLDCatgF54Hrnax6i5tTsV7/9LooTUOjwmCfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEfJwZXBWWP/ju3HjeyfClY3d31dMB8GA1UdIwQY MBaAFAJWN9SIjuAFjemtOnDELcRplpqZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9iMjk5MGQtNGM1Mi00MmZhLWI2Yjct ZTBhNGE0ZjljYWJjLzEvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC9iMjk5MGQtNGM1Mi00MmZhLWI2YjctZTBhNGE0ZjljYWJj LzEvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKvpSiP0R +vUbxaZkEBjVP6Eecb5XkqWbVYqw4GcW6rbCZuB6rcpNuh2UnQbv89XrjELGNIKq 9d3frDx8B470TAC3SJlTBLEYhTRfXd7UogXta1DfjjGFkZMNuAZ7L7c7OEj1La2g vJp8v3slBeR8GSTvvn8FSRy3+8miuIdmTsjYLW9b6fxxp35TihdL6yY2wWFdiHqE 6oKbuAFrHARifd5JKn3hURXeMq8P6547dfqlBi6er1rYOe+FTe+/K9dIt0CHtgc3 7fjKoEMEpR/xVhDrNwtlotVhz1XdSR0dHrkmGlIuGmEs4iOQZ+Vkz+VfNw/BcQWB 7H2zoBECORKAaQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:13 2026 by rpki-client