This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft File: 2axioKJWftFz3CqtN25FXIW8trs.mft (raw, json) Hash identifier: AaD+ZIARMVjC7QHY832jSrKaLbgeUgP+xCt63KzbEt4= Subject key identifier: D4:14:9A:67:3C:88:C4:C5:8F:FE:3B:71:DD:33:CC:0D:8A:08:4A:C2 Authority key identifier: D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB Certificate issuer: /CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb Certificate serial: 019C451093A4B4873E2FD895B33F2052EB6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft Manifest number: 180D Signing time: Tue 10 Feb 2026 01:00:40 +0000 Manifest this update: Tue 10 Feb 2026 01:00:40 +0000 Manifest next update: Wed 11 Feb 2026 01:00:40 +0000 Files and hashes: 1: 2axioKJWftFz3CqtN25FXIW8trs.crl (hash: 5etDaEow0r9++bDEqT27Jtoit+FlF59tPQ+ZviQsU+E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:93:a4:b4:87:3e:2f:d8:95:b3:3f:20:52:eb:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb Validity Not Before: Feb 10 01:00:40 2026 GMT Not After : Feb 11 01:00:40 2026 GMT Subject: CN=d4149a673c88c4c58ffe3b71dd33cc0d8a084ac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:f4:41:6a:ef:5a:f1:dd:11:7a:ba:a1:b3:00: da:19:ae:5e:41:99:d7:a1:7c:35:e5:6b:61:13:e9: ff:7e:03:76:14:bf:fc:1b:c7:22:4d:ad:92:d0:fa: 8e:fa:2f:4e:c6:17:4c:eb:67:a4:96:e5:cb:85:e3: af:ea:27:ca:a4:9f:7a:f3:d7:61:d7:b4:1c:db:bc: e4:dd:85:d9:cd:8d:94:a6:ad:61:15:50:7c:cb:5c: b3:93:d8:04:58:2c:67:47:b7:7d:60:8d:4d:75:a8: e3:5b:de:59:4a:5d:1c:bc:9b:1b:62:4f:bc:65:67: d9:37:00:ec:d5:92:cf:ff:ad:27:d5:20:71:18:78: 54:43:d0:92:c9:0d:9d:82:ff:32:27:00:44:ac:f1: 62:87:cc:7d:ba:51:fc:11:39:d1:6d:17:8a:37:7e: 9d:a3:9f:94:20:11:a6:b3:15:f3:c5:ed:ee:ff:d5: 57:52:c3:c6:10:af:b1:d5:72:53:ae:f4:0f:2d:3d: 6b:00:3a:fb:49:55:16:b9:b3:2a:f7:7c:39:e3:e1: 3b:8d:6a:77:ad:e1:d4:3f:50:c8:63:d6:89:a0:d5: 39:bc:54:c2:c9:db:93:85:04:77:03:1b:84:c3:a2: 28:3c:22:8e:fe:6f:b0:27:97:60:24:37:5f:2c:91: 3d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:14:9A:67:3C:88:C4:C5:8F:FE:3B:71:DD:33:CC:0D:8A:08:4A:C2 X509v3 Authority Key Identifier: keyid:D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:6f:82:3a:83:1b:2b:ce:6d:92:35:e4:7c:91:fc:89:92:fc: aa:f7:a9:7b:5e:34:22:2f:5a:06:83:49:e4:2b:00:59:fb:3e: 47:97:4e:80:5a:54:e6:b3:74:35:4d:c7:3f:7c:4f:0e:19:11: 72:00:0a:6c:46:68:be:b3:02:24:31:ff:e9:67:7c:0e:71:fe: 71:d8:88:9f:86:e0:e5:1f:c4:aa:64:3d:8e:7a:a2:d9:58:5f: 71:8d:f7:76:40:92:b4:ef:d6:46:21:66:9b:0c:23:16:cf:5e: ef:69:26:f4:7b:c9:16:9e:1c:c9:c8:30:de:b2:9c:e3:4a:0b: 16:cb:a4:cf:c0:0c:a9:e5:64:56:8c:8a:4f:95:48:97:d4:c4: 63:75:5f:91:61:75:5f:d7:e9:79:d0:b2:f2:83:6b:e7:8d:b5: 80:7a:3d:8f:6f:62:be:f9:c1:7f:d2:29:2f:9c:f2:46:58:19: 64:0d:90:8b:9e:97:99:03:2d:93:ed:27:7d:b9:0f:6f:d6:f6: e6:4e:8d:53:25:eb:fd:54:09:5e:ac:dc:c6:d5:da:83:a6:06: 6a:65:1e:8c:93:4b:46:71:d1:24:38:cf:c8:c3:4f:5b:fa:c7: 8b:68:95:df:ca:ed:5e:6d:6c:90:2f:53:32:11:d6:eb:33:1a: e2:5e:48:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEJOktIc+L9iVsz8gUutqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5YWM2MmEwYTI1NjdlZDE3M2RjMmFhZDM3NmU0NTVjODVi Y2I2YmIwHhcNMjYwMjEwMDEwMDQwWhcNMjYwMjExMDEwMDQwWjAzMTEwLwYDVQQD EyhkNDE0OWE2NzNjODhjNGM1OGZmZTNiNzFkZDMzY2MwZDhhMDg0YWMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPRBau9a8d0RerqhswDaGa5eQZnX oXw15WthE+n/fgN2FL/8G8ciTa2S0PqO+i9OxhdM62ekluXLheOv6ifKpJ9689dh 17Qc27zk3YXZzY2Upq1hFVB8y1yzk9gEWCxnR7d9YI1NdajjW95ZSl0cvJsbYk+8 ZWfZNwDs1ZLP/60n1SBxGHhUQ9CSyQ2dgv8yJwBErPFih8x9ulH8ETnRbReKN36d o5+UIBGmsxXzxe3u/9VXUsPGEK+x1XJTrvQPLT1rADr7SVUWubMq93w54+E7jWp3 reHUP1DIY9aJoNU5vFTCyduThQR3AxuEw6IoPCKO/m+wJ5dgJDdfLJE9QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNQUmmc8iMTFj/47cd0zzA2KCErCMB8GA1UdIwQY MBaAFNmsYqCiVn7Rc9wqrTduRVyFvLa7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmF4aW9LSldmdEZ6M0NxdE4yNUZYSVc4dHJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81Y2U4NmUtMjdkMi00OGMyLTg4YjUt ZjE4MWI2ZTgwYTYyLzEvMmF4aW9LSldmdEZ6M0NxdE4yNUZYSVc4dHJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi81Y2U4NmUtMjdkMi00OGMyLTg4YjUtZjE4MWI2ZTgwYTYy LzEvMmF4aW9LSldmdEZ6M0NxdE4yNUZYSVc4dHJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa2+COoMb K85tkjXkfJH8iZL8qvepe140Ii9aBoNJ5CsAWfs+R5dOgFpU5rN0NU3HP3xPDhkR cgAKbEZovrMCJDH/6Wd8DnH+cdiIn4bg5R/EqmQ9jnqi2VhfcY33dkCStO/WRiFm mwwjFs9e72km9HvJFp4cycgw3rKc40oLFsukz8AMqeVkVoyKT5VIl9TEY3VfkWF1 X9fpedCy8oNr5421gHo9j29ivvnBf9IpL5zyRlgZZA2Qi56XmQMtk+0nfbkPb9b2 5k6NUyXr/VQJXqzcxtXag6YGamUejJNLRnHRJDjPyMNPW/rHi2iV38rtXm1skC9T MhHW6zMa4l5IMg== -----END CERTIFICATE-----Generated at Tue Feb 10 03:15:46 2026 by rpki-client