This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft File: AVkheESIrdmgVmH_EXh-x1TmBeU.mft (raw, json) Hash identifier: ipcGsOwBzQnjjWAreUm65eV/GlDCf4C+WaTKG68JhbI= Subject key identifier: D1:95:46:82:6D:81:1E:DA:E5:2D:30:48:EB:A5:CF:8E:E6:4D:71:DD Authority key identifier: 01:59:21:78:44:88:AD:D9:A0:56:61:FF:11:78:7E:C7:54:E6:05:E5 Certificate issuer: /CN=015921784488add9a05661ff11787ec754e605e5 Certificate serial: 019C4133EFA1D48AC7CCEA07C82A592ECD3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 07:00:48 +0000 Manifest this update: Mon 09 Feb 2026 07:00:48 +0000 Manifest next update: Tue 10 Feb 2026 07:00:48 +0000 Files and hashes: 1: AVkheESIrdmgVmH_EXh-x1TmBeU.crl (hash: Y0nA4CL/6gBbx+Ix3M1OYd4hWmlfKZog1fs/0gN/h4s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:ef:a1:d4:8a:c7:cc:ea:07:c8:2a:59:2e:cd:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015921784488add9a05661ff11787ec754e605e5 Validity Not Before: Feb 9 07:00:48 2026 GMT Not After : Feb 10 07:00:48 2026 GMT Subject: CN=d19546826d811edae52d3048eba5cf8ee64d71dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a6:db:61:95:73:00:a7:e1:5e:82:27:4f:42: 46:e6:c5:0a:3d:b9:6a:08:8a:ad:77:33:6e:ec:58: 97:a4:d4:8f:89:3d:06:d6:11:d5:76:2b:68:3f:75: 53:cf:81:0c:e9:bd:25:36:93:64:32:13:fa:62:7e: 97:0c:7b:99:d9:51:97:70:1b:07:c6:d7:53:49:d7: 6b:4b:e2:10:4b:bd:9f:0e:e5:48:1e:2a:c9:5a:a9: 92:9f:45:f9:52:a1:bc:8b:a5:40:3d:5a:1c:69:54: 95:92:e1:01:f0:4e:0a:e7:92:34:84:8c:52:e6:fc: 53:85:f1:da:78:8b:78:ea:7b:58:ae:76:ee:f8:98: a4:b8:02:d9:1e:35:06:ed:2f:21:10:07:08:69:79: 38:17:7b:fd:fa:c8:58:15:b3:20:4c:bf:a1:f8:96: 80:7c:1f:b9:54:fa:c5:dd:ae:ee:34:2d:b8:96:cf: 58:a8:22:4d:44:bb:5f:70:08:b5:3a:40:86:bc:4b: 48:77:f8:f8:09:90:49:d7:ab:e0:fb:f1:e5:a6:ce: 0a:c0:42:02:73:55:16:0a:fb:bf:6a:99:20:1d:c1: 9b:25:ec:c7:c7:da:b8:16:a6:21:56:d2:88:28:45: 41:ff:2a:84:f3:da:89:1a:55:31:70:90:3b:5a:0d: a8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:95:46:82:6D:81:1E:DA:E5:2D:30:48:EB:A5:CF:8E:E6:4D:71:DD X509v3 Authority Key Identifier: keyid:01:59:21:78:44:88:AD:D9:A0:56:61:FF:11:78:7E:C7:54:E6:05:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:2a:4b:14:cc:c9:07:55:d2:3b:0b:08:0b:e7:73:22:24:09: f0:08:11:ea:57:8a:65:3b:31:3b:09:73:ce:fe:86:04:48:a6: 7d:34:e4:ab:bc:aa:10:2d:ad:67:cd:f7:3c:bf:ca:01:c1:86: 23:d4:45:8a:09:73:ff:2b:57:b1:87:c3:de:c9:da:13:28:32: ca:4c:3b:97:49:19:21:a2:71:e1:ba:12:01:e5:c2:fa:a2:64: c3:f1:df:47:a1:02:fc:21:2e:0d:6a:8d:91:6a:2e:14:87:0c: c6:0b:35:b5:3d:c3:65:d3:4f:0d:b6:ec:13:67:84:c4:36:b1: 59:c2:c2:48:fa:24:59:dc:12:6c:29:b0:c9:87:0a:11:95:13: 05:3c:8f:ad:0e:71:08:b7:72:5a:6f:7e:9e:46:a5:c9:05:a0: 9b:a4:99:c5:45:fb:e0:52:62:ff:e7:2c:3d:1f:01:52:0c:1b: 05:9b:83:ea:71:c5:08:66:b1:c0:e5:06:e6:d4:81:79:da:4e: 37:04:9e:56:e6:7a:74:b3:a9:cf:ab:0f:aa:78:f0:9a:ed:65: d6:77:b9:45:b3:aa:e4:43:2c:44:9f:32:98:27:75:60:af:96: 0f:43:31:00:58:76:ef:9d:4a:0f:eb:67:85:0f:60:06:77:20: 77:98:01:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM++h1IrHzOoHyCpZLs09MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNTkyMTc4NDQ4OGFkZDlhMDU2NjFmZjExNzg3ZWM3NTRl NjA1ZTUwHhcNMjYwMjA5MDcwMDQ4WhcNMjYwMjEwMDcwMDQ4WjAzMTEwLwYDVQQD EyhkMTk1NDY4MjZkODExZWRhZTUyZDMwNDhlYmE1Y2Y4ZWU2NGQ3MWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0KbbYZVzAKfhXoInT0JG5sUKPblq CIqtdzNu7FiXpNSPiT0G1hHVditoP3VTz4EM6b0lNpNkMhP6Yn6XDHuZ2VGXcBsH xtdTSddrS+IQS72fDuVIHirJWqmSn0X5UqG8i6VAPVocaVSVkuEB8E4K55I0hIxS 5vxThfHaeIt46ntYrnbu+JikuALZHjUG7S8hEAcIaXk4F3v9+shYFbMgTL+h+JaA fB+5VPrF3a7uNC24ls9YqCJNRLtfcAi1OkCGvEtId/j4CZBJ16vg+/Hlps4KwEIC c1UWCvu/apkgHcGbJezHx9q4FqYhVtKIKEVB/yqE89qJGlUxcJA7Wg2ozQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNGVRoJtgR7a5S0wSOulz47mTXHdMB8GA1UdIwQY MBaAFAFZIXhEiK3ZoFZh/xF4fsdU5gXlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVZraGVFU0lyZG1nVm1IX0VYaC14MVRtQmVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8xMjlkNjItZDFjOC00ODQyLTk1NDkt OGE5MTg0MDBmMjYwLzEvQVZraGVFU0lyZG1nVm1IX0VYaC14MVRtQmVVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8xMjlkNjItZDFjOC00ODQyLTk1NDktOGE5MTg0MDBmMjYw LzEvQVZraGVFU0lyZG1nVm1IX0VYaC14MVRtQmVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASypLFMzJ B1XSOwsIC+dzIiQJ8AgR6leKZTsxOwlzzv6GBEimfTTkq7yqEC2tZ833PL/KAcGG I9RFiglz/ytXsYfD3snaEygyykw7l0kZIaJx4boSAeXC+qJkw/HfR6EC/CEuDWqN kWouFIcMxgs1tT3DZdNPDbbsE2eExDaxWcLCSPokWdwSbCmwyYcKEZUTBTyPrQ5x CLdyWm9+nkalyQWgm6SZxUX74FJi/+csPR8BUgwbBZuD6nHFCGaxwOUG5tSBedpO NwSeVuZ6dLOpz6sPqnjwmu1l1ne5RbOq5EMsRJ8ymCd1YK+WD0MxAFh2751KD+tn hQ9gBncgd5gBvw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:42 2026 by rpki-client