This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft File: rlAYJxRKMYi-oczuWGVv1kKdj5U.mft (raw, json) Hash identifier: T/wCJ0uThFU+HXxGFc6xZNyipZ20Ux/AT2KuNCaAEbs= Subject key identifier: 16:D1:3F:41:E2:4E:7F:89:9F:A8:B3:B8:97:9C:14:76:BB:C8:02:82 Authority key identifier: AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95 Certificate issuer: /CN=ae501827144a3188bea1ccee58656fd6429d8f95 Certificate serial: 019C42102BCDFE97CFDCE52DE91CEE04CB70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft Manifest number: 1815 Signing time: Mon 09 Feb 2026 11:01:21 +0000 Manifest this update: Mon 09 Feb 2026 11:01:21 +0000 Manifest next update: Tue 10 Feb 2026 11:01:21 +0000 Files and hashes: 1: dNleK7oqqS4JYOVbb6S3XLVUiBA.roa (hash: eOgBYtYMR3J+l0721Hpv5YsWUbXa/qSUakud5H58TI8=) 2: rlAYJxRKMYi-oczuWGVv1kKdj5U.crl (hash: 6ZaUz/7QNfV0+Be0YhvhJy6F2zBaxhW/M/3rWhOEx1E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:2b:cd:fe:97:cf:dc:e5:2d:e9:1c:ee:04:cb:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae501827144a3188bea1ccee58656fd6429d8f95 Validity Not Before: Feb 9 11:01:21 2026 GMT Not After : Feb 10 11:01:21 2026 GMT Subject: CN=16d13f41e24e7f899fa8b3b8979c1476bbc80282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:20:9a:a3:db:e3:5d:9c:ee:49:67:11:a8:d5: 57:34:45:eb:d2:36:b6:74:54:33:02:4a:4e:ba:8f: 12:ce:de:7c:7e:7c:06:36:25:98:d5:6e:bf:a8:40: c8:cc:b9:37:3f:12:bd:c6:48:66:b2:14:67:37:86: a8:c4:a8:13:86:c8:19:32:c2:24:54:94:d4:c7:b4: 7c:54:c5:75:aa:07:8c:70:b3:5d:17:f4:9e:87:29: 0c:6f:d2:dc:59:28:5c:ef:34:aa:17:b8:c3:64:b6: 76:50:0e:76:af:a7:ad:91:22:2a:9f:95:34:19:98: 4d:8a:f9:d7:e3:8b:0c:0d:0c:cb:7c:ae:0d:92:4b: 6a:21:03:1a:4e:71:ee:86:2d:9a:11:af:aa:28:5c: a9:b8:d4:a0:2b:01:4c:38:cd:13:0a:b2:aa:51:38: 3e:4a:e4:d9:48:b3:53:d5:d3:9b:db:95:ba:e1:a3: 37:f6:7d:d4:7c:e6:8b:5f:f9:86:d0:b1:58:8d:29: e6:ae:ba:da:c4:6b:f0:ef:92:39:34:91:31:26:ab: 72:51:e2:f0:93:38:a3:a3:9a:58:5c:2c:46:b9:c0: 87:a2:7c:30:b3:eb:cd:f8:ac:a2:fd:7e:f7:a0:48: 45:5b:e1:1e:91:4f:dc:df:d5:d2:fd:d1:3d:1d:7c: 1d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:D1:3F:41:E2:4E:7F:89:9F:A8:B3:B8:97:9C:14:76:BB:C8:02:82 X509v3 Authority Key Identifier: keyid:AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:04:f8:81:30:29:ed:30:1e:59:ec:9d:97:79:d5:35:24:99: d2:7a:18:d2:e1:73:6a:f8:a6:6d:1c:d5:64:38:28:02:14:e0: 4d:bd:b1:73:04:4c:5a:38:94:c6:4f:2e:4d:e8:e9:f5:44:67: d8:7d:86:ca:79:bd:ce:d8:b6:70:22:63:64:a5:d3:32:a2:b2: 30:85:38:eb:84:9f:22:c3:fe:b4:e3:a3:33:26:8d:3c:b6:d2: 18:db:65:08:19:22:e4:3b:df:29:77:b2:dc:ea:16:91:68:34: e3:4b:c3:34:60:9a:68:ee:61:53:a0:8e:77:4e:d5:13:5b:2e: 83:dd:aa:2e:4d:b1:60:88:3e:4a:93:20:7a:2d:34:b7:48:75: 3f:1d:b6:bb:3b:6a:b7:29:94:26:ae:c6:19:62:92:e1:11:dc: a1:f9:19:2c:97:34:c6:73:9f:67:85:d1:4e:31:23:fb:19:c0: 0a:9f:0e:13:16:c4:02:09:5d:75:b4:36:29:00:3b:51:03:82: 5b:73:a3:48:ff:c6:17:bc:05:74:ce:5f:46:6d:79:32:21:14: 5f:9c:98:58:c6:23:b0:af:9c:01:2e:f7:88:f8:0b:b0:24:87: 14:d5:c1:a4:33:de:ca:fb:93:87:b3:e6:0a:18:a5:17:cc:d6: 3b:bc:0d:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCECvN/pfP3OUt6RzuBMtwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNTAxODI3MTQ0YTMxODhiZWExY2NlZTU4NjU2ZmQ2NDI5 ZDhmOTUwHhcNMjYwMjA5MTEwMTIxWhcNMjYwMjEwMTEwMTIxWjAzMTEwLwYDVQQD EygxNmQxM2Y0MWUyNGU3Zjg5OWZhOGIzYjg5NzljMTQ3NmJiYzgwMjgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3yCao9vjXZzuSWcRqNVXNEXr0ja2 dFQzAkpOuo8Szt58fnwGNiWY1W6/qEDIzLk3PxK9xkhmshRnN4aoxKgThsgZMsIk VJTUx7R8VMV1qgeMcLNdF/SehykMb9LcWShc7zSqF7jDZLZ2UA52r6etkSIqn5U0 GZhNivnX44sMDQzLfK4NkktqIQMaTnHuhi2aEa+qKFypuNSgKwFMOM0TCrKqUTg+ SuTZSLNT1dOb25W64aM39n3UfOaLX/mG0LFYjSnmrrraxGvw75I5NJExJqtyUeLw kzijo5pYXCxGucCHonwws+vN+Kyi/X73oEhFW+EekU/c39XS/dE9HXwdDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBbRP0HiTn+Jn6izuJecFHa7yAKCMB8GA1UdIwQY MBaAFK5QGCcUSjGIvqHM7lhlb9ZCnY+VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmxBWUp4UktNWWktb2N6dVdHVnYxa0tkajVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC81ZjU2YWYtZWJmYi00Yzg4LWEwODIt MDk4NmQ4YjBjNmQ5LzEvcmxBWUp4UktNWWktb2N6dVdHVnYxa0tkajVVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC81ZjU2YWYtZWJmYi00Yzg4LWEwODItMDk4NmQ4YjBjNmQ5 LzEvcmxBWUp4UktNWWktb2N6dVdHVnYxa0tkajVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvwT4gTAp 7TAeWeydl3nVNSSZ0noY0uFzavimbRzVZDgoAhTgTb2xcwRMWjiUxk8uTejp9URn 2H2Gynm9zti2cCJjZKXTMqKyMIU464SfIsP+tOOjMyaNPLbSGNtlCBki5DvfKXey 3OoWkWg040vDNGCaaO5hU6COd07VE1sug92qLk2xYIg+SpMgei00t0h1Px22uztq tymUJq7GGWKS4RHcofkZLJc0xnOfZ4XRTjEj+xnACp8OExbEAglddbQ2KQA7UQOC W3OjSP/GF7wFdM5fRm15MiEUX5yYWMYjsK+cAS73iPgLsCSHFNXBpDPeyvuTh7Pm ChilF8zWO7wNlw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:07 2026 by rpki-client