This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.mft File: a2o1zDDsMRZCDA_wTFnkeT6Rk_s.mft (raw, json) Hash identifier: dk5sfWTDxAqR4C5IcarjWvh7L8zWsDp6M7WT9c13cL4= Subject key identifier: 18:D4:FF:AC:40:76:EC:3D:F7:FC:B0:B7:BA:B0:E9:EB:FB:24:2D:63 Authority key identifier: 6B:6A:35:CC:30:EC:31:16:42:0C:0F:F0:4C:59:E4:79:3E:91:93:FB Certificate issuer: /CN=6b6a35cc30ec3116420c0ff04c59e4793e9193fb Certificate serial: 019C4322B9E61AF77BDB6D8D709F93458CAB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.mft Manifest number: 0415 Signing time: Mon 09 Feb 2026 16:01:15 +0000 Manifest this update: Mon 09 Feb 2026 16:01:15 +0000 Manifest next update: Tue 10 Feb 2026 16:01:15 +0000 Files and hashes: 1: a2o1zDDsMRZCDA_wTFnkeT6Rk_s.crl (hash: Hzu+KfXUCpqw4/HmiEVOHJF2zeMfG1g7R6zaBECT7QQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.mft rsync://rpki.ripe.net/repository/DEFAULT/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:b9:e6:1a:f7:7b:db:6d:8d:70:9f:93:45:8c:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b6a35cc30ec3116420c0ff04c59e4793e9193fb Validity Not Before: Feb 9 16:01:15 2026 GMT Not After : Feb 10 16:01:15 2026 GMT Subject: CN=18d4ffac4076ec3df7fcb0b7bab0e9ebfb242d63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:97:bd:40:13:f5:db:fb:e8:4c:86:d7:1b:b1: 24:b0:30:91:c1:84:be:f5:5c:99:d4:9c:79:54:9b: d9:d6:07:cd:e7:ae:b1:e4:f8:d9:41:da:17:82:17: 08:2d:9b:8a:c0:a5:e7:b7:7c:24:3f:5b:24:13:52: c3:2a:f6:fd:ea:b9:49:10:5e:8f:4c:cd:16:d3:3f: c1:b5:6e:70:8d:da:7d:62:fb:85:5e:d6:14:91:99: c4:bf:28:a4:5f:ca:84:8b:55:a3:05:0a:f0:0d:65: 4e:e5:a5:dd:39:00:9a:13:f6:67:eb:7e:75:3d:9a: d4:b4:29:a6:63:fe:0f:bd:04:fa:7f:55:71:e6:cb: 96:54:ab:df:b1:88:f3:1a:f2:4c:af:4f:ed:d3:fb: 7f:24:f0:74:59:ed:a7:ce:51:75:10:16:99:08:51: 77:dd:43:d0:fb:50:6e:14:37:e3:67:5d:b4:f5:47: 02:8e:46:1a:7f:d0:4c:e3:9a:6a:a1:31:54:03:72: 50:b3:bc:fe:cb:d1:cd:3e:f2:eb:58:bd:66:37:ff: 4d:f2:16:4f:4e:c4:c4:3d:98:f8:ec:2d:5f:b1:d6: 4e:4a:de:44:f1:e6:56:01:87:54:74:d9:ce:df:0f: ba:28:03:35:17:6a:da:a4:04:6a:5e:21:b4:72:6f: 55:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D4:FF:AC:40:76:EC:3D:F7:FC:B0:B7:BA:B0:E9:EB:FB:24:2D:63 X509v3 Authority Key Identifier: keyid:6B:6A:35:CC:30:EC:31:16:42:0C:0F:F0:4C:59:E4:79:3E:91:93:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:4b:2d:b9:75:e9:21:46:d7:83:34:d3:a8:d3:0b:d6:42:2e: 78:70:d5:ba:43:40:23:ea:5e:ef:aa:43:a4:e9:35:6f:c8:38: 53:7b:2d:3a:58:c4:bd:1e:1c:f8:46:d9:eb:51:1b:e0:73:c3: f7:79:0c:0d:21:12:26:b3:f2:7b:ea:63:8e:6c:0a:a4:47:66: 8d:93:79:a1:56:22:04:00:24:5e:eb:bd:ca:50:a4:93:5e:81: d2:ed:e1:83:0d:72:67:a6:98:dd:22:78:c1:6f:b9:01:b2:fb: 00:58:3b:8c:df:38:76:7b:da:19:51:3b:fe:56:7e:66:f6:64: 71:3b:58:60:8a:8c:9c:d6:6c:30:07:36:d0:8a:52:2a:8f:2e: f7:c3:b4:b4:59:54:7a:0d:01:e5:b8:99:08:c3:64:13:92:1f: 9b:36:cd:1a:0f:f8:a2:ab:46:2a:f5:19:30:e8:6f:0c:ed:17: 73:eb:45:0e:fd:db:8f:cd:86:a1:c3:e0:54:63:bb:01:98:7f: 31:b6:0c:72:a7:d5:b9:9b:d0:61:18:80:8f:e8:95:20:70:7b: f7:4f:3a:9c:b9:43:b3:bf:1f:bb:28:7f:c6:a2:0c:89:e2:09: cf:1f:f8:fa:fc:44:96:c8:eb:c3:13:90:41:b5:5c:d0:6b:f1: ef:8d:a7:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIrnmGvd7222NcJ+TRYyrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiNmEzNWNjMzBlYzMxMTY0MjBjMGZmMDRjNTllNDc5M2U5 MTkzZmIwHhcNMjYwMjA5MTYwMTE1WhcNMjYwMjEwMTYwMTE1WjAzMTEwLwYDVQQD EygxOGQ0ZmZhYzQwNzZlYzNkZjdmY2IwYjdiYWIwZTllYmZiMjQyZDYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5e9QBP12/voTIbXG7EksDCRwYS+ 9VyZ1Jx5VJvZ1gfN566x5PjZQdoXghcILZuKwKXnt3wkP1skE1LDKvb96rlJEF6P TM0W0z/BtW5wjdp9YvuFXtYUkZnEvyikX8qEi1WjBQrwDWVO5aXdOQCaE/Zn6351 PZrUtCmmY/4PvQT6f1Vx5suWVKvfsYjzGvJMr0/t0/t/JPB0We2nzlF1EBaZCFF3 3UPQ+1BuFDfjZ1209UcCjkYaf9BM45pqoTFUA3JQs7z+y9HNPvLrWL1mN/9N8hZP TsTEPZj47C1fsdZOSt5E8eZWAYdUdNnO3w+6KAM1F2rapARqXiG0cm9V8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBjU/6xAduw99/ywt7qw6ev7JC1jMB8GA1UdIwQY MBaAFGtqNcww7DEWQgwP8ExZ5Hk+kZP7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTJvMXpERHNNUlpDREFfd1RGbmtlVDZSa19zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC84OTIyNmQtMWZlZS00NTcxLTgxMDYt NTFmYjgyZWZmM2Q2LzEvYTJvMXpERHNNUlpDREFfd1RGbmtlVDZSa19zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC84OTIyNmQtMWZlZS00NTcxLTgxMDYtNTFmYjgyZWZmM2Q2 LzEvYTJvMXpERHNNUlpDREFfd1RGbmtlVDZSa19zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ0stuXXp IUbXgzTTqNML1kIueHDVukNAI+pe76pDpOk1b8g4U3stOljEvR4c+EbZ61Eb4HPD 93kMDSESJrPye+pjjmwKpEdmjZN5oVYiBAAkXuu9ylCkk16B0u3hgw1yZ6aY3SJ4 wW+5AbL7AFg7jN84dnvaGVE7/lZ+ZvZkcTtYYIqMnNZsMAc20IpSKo8u98O0tFlU eg0B5biZCMNkE5IfmzbNGg/4oqtGKvUZMOhvDO0Xc+tFDv3bj82GocPgVGO7AZh/ MbYMcqfVuZvQYRiAj+iVIHB79086nLlDs78fuyh/xqIMieIJzx/4+vxElsjrwxOQ QbVc0Gvx742n1A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:52 2026 by rpki-client