This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft File: M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json) Hash identifier: MC6eDFQI8vAYPT47vQMqqXYVoGJjmp8Usq96RT+aJ4E= Subject key identifier: F8:16:42:CF:10:46:CC:FB:39:27:B7:59:AE:30:A3:0C:EA:D7:26:EC Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99 Certificate issuer: /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699 Certificate serial: 019C4321DFA5D4C1189F5658D7ADE7201867 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft Manifest number: 13F5 Signing time: Mon 09 Feb 2026 16:00:19 +0000 Manifest this update: Mon 09 Feb 2026 16:00:19 +0000 Manifest next update: Tue 10 Feb 2026 16:00:19 +0000 Files and hashes: 1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: voROXpd1yNnQr6qKmznJHD39pxVAWTEbnQUUsD8bHx8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:df:a5:d4:c1:18:9f:56:58:d7:ad:e7:20:18:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699 Validity Not Before: Feb 9 16:00:19 2026 GMT Not After : Feb 10 16:00:19 2026 GMT Subject: CN=f81642cf1046ccfb3927b759ae30a30cead726ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:45:79:61:8b:51:39:42:eb:88:ec:b3:83:d6: e2:15:df:90:d7:07:a7:98:7a:4c:e5:06:f4:1c:fc: d7:a3:f1:c3:4d:c6:eb:54:3f:d5:40:a4:d8:ee:36: e3:ee:4f:6c:35:65:e0:b0:25:5c:6b:d7:ad:1b:3d: 0d:7f:fb:17:68:12:3a:3d:27:c2:7a:44:dd:3d:95: 5a:2f:19:8d:40:87:99:6b:cf:e3:c5:2d:48:78:ce: 49:34:7a:26:f5:fe:62:af:9e:54:2b:49:5e:78:75: ed:f4:98:ba:72:40:41:4c:d7:be:39:39:9d:75:f3: 6c:f1:91:be:8e:3d:71:b5:38:db:31:33:01:6a:ed: fd:ff:ce:45:05:0f:3e:52:18:99:b0:f7:74:67:76: 8c:96:bf:51:28:83:52:a2:9c:de:45:3a:59:d7:a9: 48:f7:93:bf:5c:c4:3c:4b:aa:3e:2b:ba:17:b6:7d: 3c:6c:ac:db:cb:b9:7e:0a:78:d0:30:e1:a9:98:b4: 09:f4:ea:86:e2:f7:6b:24:0b:b9:6b:0e:3f:51:bc: 81:9c:05:fb:3c:34:02:fb:1b:c7:1a:57:61:42:c2: ad:c5:e9:18:40:84:d9:5e:0f:32:78:c3:43:27:87: e0:84:0b:e8:15:67:c7:ff:68:e1:75:83:48:5d:82: 24:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:16:42:CF:10:46:CC:FB:39:27:B7:59:AE:30:A3:0C:EA:D7:26:EC X509v3 Authority Key Identifier: keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:67:2b:63:67:3c:c9:3e:28:b4:10:9d:fb:75:3b:b1:7c:9e: f0:85:93:79:53:13:25:dd:ea:39:d3:f2:e7:a3:a5:ac:13:cc: 17:ba:b1:21:95:0e:ff:0b:94:75:96:12:1e:d1:fa:90:14:c5: e2:92:f0:f9:3f:1f:b5:08:4d:b2:af:5a:b1:9d:6a:fa:ac:c6: 06:56:a6:16:06:6a:08:57:27:05:1c:c9:3f:fb:8d:88:aa:4a: 88:3d:81:7d:13:73:89:83:13:20:88:5d:14:1e:55:d6:f3:7a: b1:19:92:9d:da:9b:ea:6e:ab:05:80:6a:0a:97:a7:8f:86:0d: a8:63:9f:50:da:36:4a:7d:63:04:b8:b8:c7:8a:85:21:f9:e1: 15:0d:8f:5c:10:70:3d:5f:2b:6c:94:2d:88:56:01:97:0c:12: 5b:87:4a:36:3b:aa:8b:0e:20:37:f0:ca:ea:c4:8f:75:d7:9c: 96:eb:f0:ec:1c:9b:1e:f1:1e:7c:09:d3:2d:b6:93:7c:a5:60: 75:ab:6b:54:23:41:c7:7a:9c:14:b6:61:d4:54:46:74:a6:e5: 16:b4:5c:dd:9e:c9:4b:5e:9a:08:0d:86:1b:a6:f1:9b:be:b2: ba:d4:05:d7:b1:a4:a0:e7:37:87:1b:cf:ac:5b:b3:d1:a7:0c: a2:e5:74:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDId+l1MEYn1ZY163nIBhnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzNjNkNzJjZGQ5M2FiMDJmZTNmNzg4ZDYyMWQ3MTVkOWVm ZDc2OTkwHhcNMjYwMjA5MTYwMDE5WhcNMjYwMjEwMTYwMDE5WjAzMTEwLwYDVQQD EyhmODE2NDJjZjEwNDZjY2ZiMzkyN2I3NTlhZTMwYTMwY2VhZDcyNmVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3kV5YYtROULriOyzg9biFd+Q1wen mHpM5Qb0HPzXo/HDTcbrVD/VQKTY7jbj7k9sNWXgsCVca9etGz0Nf/sXaBI6PSfC ekTdPZVaLxmNQIeZa8/jxS1IeM5JNHom9f5ir55UK0leeHXt9Ji6ckBBTNe+OTmd dfNs8ZG+jj1xtTjbMTMBau39/85FBQ8+UhiZsPd0Z3aMlr9RKINSopzeRTpZ16lI 95O/XMQ8S6o+K7oXtn08bKzby7l+CnjQMOGpmLQJ9OqG4vdrJAu5aw4/UbyBnAX7 PDQC+xvHGldhQsKtxekYQITZXg8yeMNDJ4fghAvoFWfH/2jhdYNIXYIkpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPgWQs8QRsz7OSe3Wa4wowzq1ybsMB8GA1UdIwQY MBaAFDNj1yzdk6sC/j94jWIdcV2e/XaZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9jOWMwZDgtNzAxMy00NmMzLTljMjgt NDM0ZjllMGQ3NTBjLzEvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS9jOWMwZDgtNzAxMy00NmMzLTljMjgtNDM0ZjllMGQ3NTBj LzEvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdWcrY2c8 yT4otBCd+3U7sXye8IWTeVMTJd3qOdPy56OlrBPMF7qxIZUO/wuUdZYSHtH6kBTF 4pLw+T8ftQhNsq9asZ1q+qzGBlamFgZqCFcnBRzJP/uNiKpKiD2BfRNziYMTIIhd FB5V1vN6sRmSndqb6m6rBYBqCpenj4YNqGOfUNo2Sn1jBLi4x4qFIfnhFQ2PXBBw PV8rbJQtiFYBlwwSW4dKNjuqiw4gN/DK6sSPddecluvw7BybHvEefAnTLbaTfKVg datrVCNBx3qcFLZh1FRGdKblFrRc3Z7JS16aCA2GG6bxm76yutQF17GkoOc3hxvP rFuz0acMouV00w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:32 2026 by rpki-client