This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft File: Afp6rPiShM693j1MEkYvxE3rw4Q.mft (raw, json) Hash identifier: S1jy8X+uVOhlGuQ947p49x2kPj6jEYiNBHDCC1/hLCc= Subject key identifier: 4F:72:44:60:8E:FD:23:64:44:74:9F:B7:BD:3E:2A:6E:AD:82:99:57 Authority key identifier: 01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84 Certificate issuer: /CN=01fa7aacf89284cebdde3d4c12462fc44debc384 Certificate serial: 019C421029AC4114D79B3C7EDF4C321E207D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft Manifest number: 0DAB Signing time: Mon 09 Feb 2026 11:01:21 +0000 Manifest this update: Mon 09 Feb 2026 11:01:21 +0000 Manifest next update: Tue 10 Feb 2026 11:01:21 +0000 Files and hashes: 1: Afp6rPiShM693j1MEkYvxE3rw4Q.crl (hash: WbVsK8Ro8JtXO81SiYyntwbEptc/WTO2A9VCzSCuTyU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:29:ac:41:14:d7:9b:3c:7e:df:4c:32:1e:20:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01fa7aacf89284cebdde3d4c12462fc44debc384 Validity Not Before: Feb 9 11:01:21 2026 GMT Not After : Feb 10 11:01:21 2026 GMT Subject: CN=4f7244608efd236444749fb7bd3e2a6ead829957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0e:de:e6:c0:22:84:37:64:34:76:ef:3a:0c: d8:4a:23:4c:54:db:9c:44:46:0e:6f:15:06:43:b8: b3:ff:88:78:ed:20:ad:0d:7e:55:4d:86:f9:b0:c4: c3:0e:4c:3c:6f:52:d4:6f:1b:d6:e0:10:b5:6f:51: 58:37:bf:0b:f7:d2:81:47:d0:a7:53:f8:fc:24:1b: 3f:ec:5b:f2:8b:ba:33:b5:6f:9f:fa:09:90:ec:61: 48:0d:46:38:a7:3f:bf:08:69:f3:a1:65:49:fa:ab: e3:ef:e7:d5:b8:e1:5c:64:b1:4d:0c:23:e7:af:c8: ca:9e:f2:ae:7a:d8:b6:94:0f:bb:8f:2a:dd:d4:c4: 6c:e3:b4:e0:5c:1b:49:79:a4:6f:cb:37:82:f8:95: d9:d8:d3:ad:63:ec:8c:71:4d:57:8a:2d:dc:99:ca: a4:93:38:e6:fa:69:a9:68:d1:49:29:19:14:f8:94: db:b1:f8:9b:e6:df:0c:c2:a3:ea:6c:62:ca:9b:95: 9f:ec:49:35:b1:b0:15:41:6e:b8:d7:4d:4c:6f:57: 9c:72:fa:4d:dd:27:b8:b2:83:30:ec:90:90:c8:f8: 80:62:d2:91:d7:e2:40:6a:92:c0:6a:b9:84:2f:4f: cc:1c:c3:73:06:87:16:81:76:76:4f:f5:4d:9d:77: c2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:72:44:60:8E:FD:23:64:44:74:9F:B7:BD:3E:2A:6E:AD:82:99:57 X509v3 Authority Key Identifier: keyid:01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:de:48:ca:63:ab:f0:98:b3:32:8d:98:ec:f0:f1:51:8e:d3: d0:1b:2b:29:ce:4a:19:da:e9:a8:0a:4f:a3:80:4f:0e:3d:b8: c0:17:cf:36:73:4f:69:d5:6d:7d:e4:72:ef:1b:ea:bb:7a:c3: fd:fc:62:45:cf:7d:b4:e5:be:c3:00:01:a2:08:d1:69:17:ef: 46:7d:61:fd:f7:b3:40:7c:22:bc:70:43:c9:ec:8d:15:d7:ae: 74:30:e8:c7:d7:6f:b0:a6:46:0a:c9:63:f2:33:25:34:32:36: 58:db:62:07:24:10:b9:74:a9:b2:67:0a:5f:7c:f2:da:97:5b: 89:69:80:32:52:73:19:45:bf:29:b9:88:73:2b:1e:30:24:c2: 21:65:91:c0:b1:e9:71:54:bb:18:30:d1:16:2b:d7:1d:fa:c2: 51:67:7d:ff:e2:60:a2:3c:cb:1e:84:b1:51:0d:1f:65:83:de: 24:cb:84:fc:2d:84:30:c6:dd:29:77:09:fa:7e:31:51:90:f8: f0:fa:f1:d3:d2:5a:a6:8c:c1:95:66:f9:d8:3a:03:af:3b:49: 01:75:f7:69:e8:5c:f4:53:1a:7c:3b:7b:c2:06:04:a3:ba:c1: ef:6c:0e:26:e2:30:61:5f:54:39:66:ca:f6:4a:a6:18:f9:e5: 2d:b0:27:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCECmsQRTXmzx+30wyHiB9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxZmE3YWFjZjg5Mjg0Y2ViZGRlM2Q0YzEyNDYyZmM0NGRl YmMzODQwHhcNMjYwMjA5MTEwMTIxWhcNMjYwMjEwMTEwMTIxWjAzMTEwLwYDVQQD Eyg0ZjcyNDQ2MDhlZmQyMzY0NDQ3NDlmYjdiZDNlMmE2ZWFkODI5OTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvg7e5sAihDdkNHbvOgzYSiNMVNuc REYObxUGQ7iz/4h47SCtDX5VTYb5sMTDDkw8b1LUbxvW4BC1b1FYN78L99KBR9Cn U/j8JBs/7Fvyi7oztW+f+gmQ7GFIDUY4pz+/CGnzoWVJ+qvj7+fVuOFcZLFNDCPn r8jKnvKueti2lA+7jyrd1MRs47TgXBtJeaRvyzeC+JXZ2NOtY+yMcU1Xii3cmcqk kzjm+mmpaNFJKRkU+JTbsfib5t8MwqPqbGLKm5Wf7Ek1sbAVQW64101Mb1eccvpN 3Se4soMw7JCQyPiAYtKR1+JAapLAarmEL0/MHMNzBocWgXZ2T/VNnXfC0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE9yRGCO/SNkRHSft70+Km6tgplXMB8GA1UdIwQY MBaAFAH6eqz4koTOvd49TBJGL8RN68OEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWZwNnJQaVNoTTY5M2oxTUVrWXZ4RTNydzRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy82NDVlMWEtZWY3Mi00OTIyLWFhOWEt N2JlNDNlZGRmMmNhLzEvQWZwNnJQaVNoTTY5M2oxTUVrWXZ4RTNydzRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy82NDVlMWEtZWY3Mi00OTIyLWFhOWEtN2JlNDNlZGRmMmNh LzEvQWZwNnJQaVNoTTY5M2oxTUVrWXZ4RTNydzRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu95IymOr 8JizMo2Y7PDxUY7T0BsrKc5KGdrpqApPo4BPDj24wBfPNnNPadVtfeRy7xvqu3rD /fxiRc99tOW+wwABogjRaRfvRn1h/fezQHwivHBDyeyNFdeudDDox9dvsKZGCslj 8jMlNDI2WNtiByQQuXSpsmcKX3zy2pdbiWmAMlJzGUW/KbmIcyseMCTCIWWRwLHp cVS7GDDRFivXHfrCUWd9/+JgojzLHoSxUQ0fZYPeJMuE/C2EMMbdKXcJ+n4xUZD4 8Prx09JapozBlWb52DoDrztJAXX3aehc9FMafDt7wgYEo7rB72wOJuIwYV9UOWbK 9kqmGPnlLbAnYA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:53:38 2026 by rpki-client