This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft File: AOLDNzGtylfcwzsvuCM_wDiwlek.mft (raw, json) Hash identifier: McH9E4SMQ1FU48Mjw8bkAdHoGP2qriIg2bqStwybrJM= Subject key identifier: 36:BF:CE:CF:EE:B8:60:D3:A8:AD:36:3E:57:A6:2C:FB:B3:42:62:A6 Authority key identifier: 00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9 Certificate issuer: /CN=00e2c33731adca57dcc33b2fb8233fc038b095e9 Certificate serial: 019C4358FAA3610888CD107FEDB4A581D4B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft Manifest number: 134F Signing time: Mon 09 Feb 2026 17:00:30 +0000 Manifest this update: Mon 09 Feb 2026 17:00:30 +0000 Manifest next update: Tue 10 Feb 2026 17:00:30 +0000 Files and hashes: 1: 6tZKYli0xFjSrMTaPxgthKbfu_g.roa (hash: lqL9qb+FKGUxGrpBLb7Tf9OnZbQiDT4OvdfFGjgah0c=) 2: AOLDNzGtylfcwzsvuCM_wDiwlek.crl (hash: 7xL9pbV+rcb4K3bgsmcsZHnl5+dF8qrUboYT5NRuA0I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:fa:a3:61:08:88:cd:10:7f:ed:b4:a5:81:d4:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e2c33731adca57dcc33b2fb8233fc038b095e9 Validity Not Before: Feb 9 17:00:30 2026 GMT Not After : Feb 10 17:00:30 2026 GMT Subject: CN=36bfcecfeeb860d3a8ad363e57a62cfbb34262a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:81:c2:79:dd:17:0a:c9:bc:e4:37:7e:b3:a1: 82:17:7d:32:08:65:1d:5e:94:f9:ab:a6:72:13:c9: db:ed:76:9b:da:ef:e9:e0:65:8a:ec:60:ae:79:11: 09:c5:3c:e0:1b:8f:42:3d:54:93:31:a0:96:9a:41: 0b:cf:9d:4f:88:d0:7f:ac:6e:8a:05:06:96:0b:b9: 23:76:5b:25:7e:9d:83:36:5a:2f:1c:f6:23:be:e9: 8a:f1:70:e0:82:ee:af:ff:e9:ba:08:7c:8c:2c:00: 37:29:00:49:28:70:b6:ab:7f:a8:4b:37:91:ed:16: b3:98:c9:0e:58:0a:6a:ef:60:67:e5:b4:15:29:e2: 5c:5d:d5:97:26:77:86:6a:ec:50:eb:bf:47:0b:6c: 1a:82:b9:48:2e:d1:e4:d3:92:c2:0e:82:47:e3:74: 12:5e:75:27:72:2a:5a:1d:13:82:b9:34:fa:68:0b: 1d:7f:1b:25:ba:46:fd:2a:54:e6:f3:09:83:82:53: ed:33:8e:7a:49:17:2d:f9:ac:9d:c1:9e:00:c7:68: 37:1f:8b:25:5e:42:9c:c6:a1:7e:36:29:8b:d3:ff: 3f:2a:b6:8c:24:66:40:07:1d:a7:71:48:02:f2:5d: 43:e0:42:26:00:7d:b8:6e:e9:b2:11:3c:63:7d:4c: 67:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:BF:CE:CF:EE:B8:60:D3:A8:AD:36:3E:57:A6:2C:FB:B3:42:62:A6 X509v3 Authority Key Identifier: keyid:00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:92:97:ae:4c:42:e2:fc:3c:f6:16:1c:b5:91:0b:2e:32:6f: 81:ae:d1:d7:5d:8b:e9:9a:d2:d1:59:3a:ee:46:b2:51:a2:30: db:3f:8c:97:f0:dd:a9:0d:43:d5:2c:3c:f0:dc:12:52:44:36: 50:a7:c7:0b:85:43:12:5e:93:c7:73:d9:4e:0d:47:76:71:00: 4f:2e:fc:2f:44:9d:0d:88:d8:82:b9:88:5f:0a:7b:72:1f:92: 89:7a:55:6a:a9:68:97:48:c1:5b:31:95:11:59:33:ba:af:d1: 72:21:6c:19:c1:cd:58:82:67:e0:6a:4e:c9:be:ba:a6:64:a4: cb:63:0a:f1:ca:06:b9:27:f1:63:d8:83:2a:d5:60:92:7e:0b: 27:ae:8a:27:5a:b0:82:64:48:a0:3a:33:3e:3f:54:27:ea:9a: db:d4:c2:4a:fc:07:c2:59:e5:6e:78:c0:7a:a6:ec:3c:58:a4: 8e:49:a4:bc:ac:83:54:fd:b2:3a:5e:01:00:4f:98:5b:f3:de: 26:c5:84:45:38:f8:38:56:8c:04:17:3b:bc:7e:14:4e:25:bf: 4b:88:f3:03:19:88:10:e3:80:c6:0f:ad:7e:67:57:b4:5d:7b: 43:48:64:eb:4d:c3:2a:42:88:ac:09:f7:12:21:62:6a:42:ba: bc:79:1e:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWPqjYQiIzRB/7bSlgdS2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTJjMzM3MzFhZGNhNTdkY2MzM2IyZmI4MjMzZmMwMzhi MDk1ZTkwHhcNMjYwMjA5MTcwMDMwWhcNMjYwMjEwMTcwMDMwWjAzMTEwLwYDVQQD EygzNmJmY2VjZmVlYjg2MGQzYThhZDM2M2U1N2E2MmNmYmIzNDI2MmE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4HCed0XCsm85Dd+s6GCF30yCGUd XpT5q6ZyE8nb7Xab2u/p4GWK7GCueREJxTzgG49CPVSTMaCWmkELz51PiNB/rG6K BQaWC7kjdlslfp2DNlovHPYjvumK8XDggu6v/+m6CHyMLAA3KQBJKHC2q3+oSzeR 7RazmMkOWApq72Bn5bQVKeJcXdWXJneGauxQ679HC2wagrlILtHk05LCDoJH43QS XnUncipaHROCuTT6aAsdfxslukb9KlTm8wmDglPtM456SRct+aydwZ4Ax2g3H4sl XkKcxqF+NimL0/8/KraMJGZABx2ncUgC8l1D4EImAH24bumyETxjfUxn5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDa/zs/uuGDTqK02PlemLPuzQmKmMB8GA1UdIwQY MBaAFADiwzcxrcpX3MM7L7gjP8A4sJXpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9MRE56R3R5bGZjd3pzdnVDTV93RGl3bGVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS85ZDVmZWItYmVkYS00MTQ3LTlkODMt YzlhZDM3Zjk0Y2Q3LzEvQU9MRE56R3R5bGZjd3pzdnVDTV93RGl3bGVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS85ZDVmZWItYmVkYS00MTQ3LTlkODMtYzlhZDM3Zjk0Y2Q3 LzEvQU9MRE56R3R5bGZjd3pzdnVDTV93RGl3bGVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQpKXrkxC 4vw89hYctZELLjJvga7R112L6ZrS0Vk67kayUaIw2z+Ml/DdqQ1D1Sw88NwSUkQ2 UKfHC4VDEl6Tx3PZTg1HdnEATy78L0SdDYjYgrmIXwp7ch+SiXpVaqlol0jBWzGV EVkzuq/RciFsGcHNWIJn4GpOyb66pmSky2MK8coGuSfxY9iDKtVgkn4LJ66KJ1qw gmRIoDozPj9UJ+qa29TCSvwHwlnlbnjAeqbsPFikjkmkvKyDVP2yOl4BAE+YW/Pe JsWERTj4OFaMBBc7vH4UTiW/S4jzAxmIEOOAxg+tfmdXtF17Q0hk603DKkKIrAn3 EiFiakK6vHkeOg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:40:43 2026 by rpki-client