This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft File: AhfGZs2iPpINFLkK6TY3EzUKrB4.mft (raw, json) Hash identifier: CbeEv39ldSk+zDvC0b8kRnBYkvnx9t4bipXBP2NbOK8= Subject key identifier: EF:FA:6A:5C:56:A3:B2:C3:5B:0C:8F:6F:63:02:5C:E0:E3:23:02:91 Authority key identifier: 02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E Certificate issuer: /CN=0217c666cda23e920d14b90ae9363713350aac1e Certificate serial: 019C4358F724A94CC22DECBAECF2BCFA8CA9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 17:00:29 +0000 Manifest this update: Mon 09 Feb 2026 17:00:29 +0000 Manifest next update: Tue 10 Feb 2026 17:00:29 +0000 Files and hashes: 1: AhfGZs2iPpINFLkK6TY3EzUKrB4.crl (hash: lRA7ZNeEAWtXADEQiyH5B+/OkPni8gdjukqLU8XqXhc=) 2: LbPyc4hAUlUzut2p0ZpxCw83HnE.roa (hash: cLTartZVu31Sy+PEywLeLASvzBKWyq6c9Am1NnMnkbU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:f7:24:a9:4c:c2:2d:ec:ba:ec:f2:bc:fa:8c:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0217c666cda23e920d14b90ae9363713350aac1e Validity Not Before: Feb 9 17:00:29 2026 GMT Not After : Feb 10 17:00:29 2026 GMT Subject: CN=effa6a5c56a3b2c35b0c8f6f63025ce0e3230291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f4:14:e9:3b:c3:df:f6:98:1c:7e:26:33:6c: 9c:95:67:f7:2a:1f:a6:70:78:5e:b8:d1:74:bf:f8: 29:e1:e4:ad:be:a0:c6:2e:a6:48:6d:4d:79:d0:14: c2:a7:bd:8d:99:8e:ed:e4:91:27:79:38:b1:2d:fe: 84:1c:b9:d6:aa:59:74:40:6c:52:98:77:3b:52:ed: 3c:bb:8a:5b:5d:bf:d9:7c:b9:35:ed:f7:7e:a1:68: 3d:7d:76:1b:02:b4:47:76:7a:2c:c6:1f:49:89:f5: ea:de:e5:fa:49:1f:15:ae:ed:c8:a9:c0:3c:a5:5a: f9:ed:bd:d5:44:e1:60:df:08:47:a8:97:29:71:50: 02:58:f4:fc:1d:de:17:4a:eb:61:53:83:76:05:9e: 85:32:7b:46:87:82:ac:13:78:c8:c2:89:4a:75:d4: bf:21:28:e5:08:a7:cd:10:bb:c4:8e:7f:29:14:d7: 8a:f8:a5:03:26:ef:b0:58:4d:a8:bd:72:2e:4b:8b: 79:39:4d:27:61:1a:cc:6b:5d:cd:0d:c0:09:49:49: 09:b2:4a:bb:39:5d:2b:3b:a4:ff:ed:e9:9b:f1:23: 81:be:3e:90:50:f5:4d:0b:5f:c0:cb:52:29:d6:7a: c9:06:73:51:8d:16:d9:d0:b5:f6:bc:93:fa:71:1b: 84:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:FA:6A:5C:56:A3:B2:C3:5B:0C:8F:6F:63:02:5C:E0:E3:23:02:91 X509v3 Authority Key Identifier: keyid:02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:71:87:cc:d2:dd:9a:93:5e:89:53:f1:8d:98:9b:88:37:b8: c2:19:cc:e0:6c:64:66:f9:a3:14:f3:b9:db:97:51:c3:c4:e6: bc:ba:64:80:ce:ea:f9:c4:8b:66:67:66:ad:2a:6c:3e:d0:ee: 21:2a:4e:72:f7:df:ff:31:b1:a5:b7:4c:f6:ae:df:aa:fc:11: 66:f7:f4:ae:bc:14:b0:0b:83:c7:3b:9c:9b:8e:cd:3f:da:c1: 5d:42:f3:30:cb:8f:01:b2:2b:66:74:71:ba:b3:7f:08:7f:50: 41:93:d8:fd:6d:fc:4b:50:d5:aa:df:35:95:b4:58:6e:88:e4: 08:b9:36:73:06:eb:9a:82:8c:06:4a:34:8d:66:69:f6:20:1d: 73:85:5e:50:18:1e:9e:dc:65:cd:fc:6b:e6:c7:3c:73:73:54: 20:9e:e4:9e:de:84:bb:cd:f9:6b:a5:74:2b:64:10:24:88:30: fc:82:2c:45:2e:8d:1d:10:32:31:96:8d:49:5e:a9:87:26:53: 21:b8:0d:3d:37:f6:fc:96:a1:be:19:95:bf:f1:d3:eb:a9:18: 84:fb:5d:08:93:6f:95:dd:3d:58:2b:36:18:ff:33:a5:ea:3e: e3:85:aa:d2:79:24:f4:c9:3d:34:3a:37:be:4d:e7:a7:23:a6: 1e:76:2b:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWPckqUzCLey67PK8+oypMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyMTdjNjY2Y2RhMjNlOTIwZDE0YjkwYWU5MzYzNzEzMzUw YWFjMWUwHhcNMjYwMjA5MTcwMDI5WhcNMjYwMjEwMTcwMDI5WjAzMTEwLwYDVQQD EyhlZmZhNmE1YzU2YTNiMmMzNWIwYzhmNmY2MzAyNWNlMGUzMjMwMjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6PQU6TvD3/aYHH4mM2yclWf3Kh+m cHheuNF0v/gp4eStvqDGLqZIbU150BTCp72NmY7t5JEneTixLf6EHLnWqll0QGxS mHc7Uu08u4pbXb/ZfLk17fd+oWg9fXYbArRHdnosxh9JifXq3uX6SR8Vru3IqcA8 pVr57b3VROFg3whHqJcpcVACWPT8Hd4XSuthU4N2BZ6FMntGh4KsE3jIwolKddS/ ISjlCKfNELvEjn8pFNeK+KUDJu+wWE2ovXIuS4t5OU0nYRrMa13NDcAJSUkJskq7 OV0rO6T/7emb8SOBvj6QUPVNC1/Ay1Ip1nrJBnNRjRbZ0LX2vJP6cRuEbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO/6alxWo7LDWwyPb2MCXODjIwKRMB8GA1UdIwQY MBaAFAIXxmbNoj6SDRS5Cuk2NxM1CqweMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWhmR1pzMmlQcElORkxrSzZUWTNFelVLckI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9jZmEwYjUtZTFhMS00MWZmLTg4Y2It MDI5NzE1ZGU0YzZmLzEvQWhmR1pzMmlQcElORkxrSzZUWTNFelVLckI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi9jZmEwYjUtZTFhMS00MWZmLTg4Y2ItMDI5NzE1ZGU0YzZm LzEvQWhmR1pzMmlQcElORkxrSzZUWTNFelVLckI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA3GHzNLd mpNeiVPxjZibiDe4whnM4GxkZvmjFPO525dRw8TmvLpkgM7q+cSLZmdmrSpsPtDu ISpOcvff/zGxpbdM9q7fqvwRZvf0rrwUsAuDxzucm47NP9rBXULzMMuPAbIrZnRx urN/CH9QQZPY/W38S1DVqt81lbRYbojkCLk2cwbrmoKMBko0jWZp9iAdc4VeUBge ntxlzfxr5sc8c3NUIJ7knt6Eu835a6V0K2QQJIgw/IIsRS6NHRAyMZaNSV6phyZT IbgNPTf2/JahvhmVv/HT66kYhPtdCJNvld09WCs2GP8zpeo+44Wq0nkk9Mk9NDo3 vk3npyOmHnYrEw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:49 2026 by rpki-client