This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft File: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft (raw, json) Hash identifier: HDdMdWTIm7NLzzc0yI3jXyKyHJjQeeylJBbk5IeKr88= Subject key identifier: 76:A8:5A:82:C0:DE:10:21:BE:32:C5:93:7A:A1:41:30:58:FE:2C:45 Authority key identifier: DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C Certificate issuer: /CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c Certificate serial: 019C420F8EB8056AFC9F6E8B61D6F3BD2555 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft Manifest number: 0651 Signing time: Mon 09 Feb 2026 11:00:41 +0000 Manifest this update: Mon 09 Feb 2026 11:00:41 +0000 Manifest next update: Tue 10 Feb 2026 11:00:41 +0000 Files and hashes: 1: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl (hash: 35N1U5B80ozb43iB1rXiVDuvhjacrfW2DklvP63wgIU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:8e:b8:05:6a:fc:9f:6e:8b:61:d6:f3:bd:25:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c Validity Not Before: Feb 9 11:00:41 2026 GMT Not After : Feb 10 11:00:41 2026 GMT Subject: CN=76a85a82c0de1021be32c5937aa1413058fe2c45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b0:7c:b0:8b:a5:21:88:28:f7:b2:14:b3:06: 8c:6e:47:ce:de:db:89:bd:e8:9b:bb:23:dc:7a:29: 84:e0:24:9a:f5:da:e9:0c:40:f6:a9:0a:a6:a1:e7: 61:08:6c:fb:c3:37:b7:9c:72:f1:79:4c:9b:15:fd: 1b:0e:90:49:2d:ee:d0:c2:2c:c9:24:52:e8:9a:26: 83:f0:00:68:86:f8:f6:5d:cf:88:31:72:7d:f5:8a: d6:b5:a6:cf:56:2b:6f:43:ce:b9:16:62:f6:63:df: 6c:b6:68:f8:b6:df:80:cb:94:42:2b:48:e7:cb:83: 1f:a7:02:da:97:0a:e4:b4:f0:84:b9:8e:eb:45:77: aa:ff:67:d2:05:38:29:93:22:a0:b2:70:ec:05:00: 7a:99:46:cf:ec:c7:bc:88:79:57:27:ab:5a:9a:25: bf:f9:2b:5c:68:2d:b7:52:c0:1c:9b:83:a5:38:8e: b5:07:34:a3:73:88:3f:a0:32:8e:1b:e5:36:72:aa: 26:78:22:3c:78:80:73:4b:4d:0f:a8:c7:62:08:f7: e8:28:8a:5e:16:21:a5:6a:82:27:82:5d:20:46:07: 45:56:84:34:d1:62:94:30:bd:d0:9e:ab:ef:ad:21: 10:3c:43:e7:d2:93:28:ff:7d:77:33:9b:82:bc:cc: 0c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A8:5A:82:C0:DE:10:21:BE:32:C5:93:7A:A1:41:30:58:FE:2C:45 X509v3 Authority Key Identifier: keyid:DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:5c:8e:4d:8e:af:7a:bc:83:91:41:4e:87:67:be:f1:4d:3b: cc:ce:d2:b5:25:84:6e:f6:d0:97:93:14:ff:50:1a:5c:79:6d: d5:f2:15:78:23:4d:91:c7:f4:42:dd:7d:28:b4:d3:79:5f:0c: 10:79:23:2c:c7:8c:7b:ed:50:84:c4:94:66:51:d4:94:99:d1: 5b:2c:da:b8:3d:9b:13:c7:27:48:9c:a6:51:91:87:41:27:ad: a7:b1:7c:5b:ec:e1:12:2a:a7:7c:63:5d:da:53:56:eb:ba:2e: 77:d4:ac:75:42:f4:ab:7a:98:ab:bf:e2:0e:d2:ca:30:85:97: 35:56:88:e4:d9:95:3a:ef:e1:e7:24:3d:6e:c7:c3:c6:9f:4e: a2:4d:ae:94:77:b1:63:ad:6e:b3:c2:89:82:0f:08:bb:00:b9: a5:fb:ac:ba:19:0c:95:37:ac:ea:33:b6:82:e1:9e:89:d0:fa: 7c:f3:11:92:25:13:d7:2c:af:47:8b:4b:33:aa:7d:17:1d:e3: 74:5e:42:43:24:87:29:c2:e9:c4:f0:13:fb:b0:36:0e:d3:bd: 39:16:49:75:af:16:a3:40:9a:2f:a2:c5:ba:11:2f:8f:d0:02: 5c:43:52:76:a8:86:78:f6:d6:40:34:40:f5:4d:f2:1f:7c:88: c6:d1:b5:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD464BWr8n26LYdbzvSVVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYTY3YzU4YjRhNmZlMjEyZmMyMGZiNzU2OTQ5YWRkYzFh OWE2MmMwHhcNMjYwMjA5MTEwMDQxWhcNMjYwMjEwMTEwMDQxWjAzMTEwLwYDVQQD Eyg3NmE4NWE4MmMwZGUxMDIxYmUzMmM1OTM3YWExNDEzMDU4ZmUyYzQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8LB8sIulIYgo97IUswaMbkfO3tuJ veibuyPceimE4CSa9drpDED2qQqmoedhCGz7wze3nHLxeUybFf0bDpBJLe7QwizJ JFLomiaD8ABohvj2Xc+IMXJ99YrWtabPVitvQ865FmL2Y99stmj4tt+Ay5RCK0jn y4MfpwLalwrktPCEuY7rRXeq/2fSBTgpkyKgsnDsBQB6mUbP7Me8iHlXJ6tamiW/ +StcaC23UsAcm4OlOI61BzSjc4g/oDKOG+U2cqomeCI8eIBzS00PqMdiCPfoKIpe FiGlaoIngl0gRgdFVoQ00WKUML3QnqvvrSEQPEPn0pMo/313M5uCvMwMWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHaoWoLA3hAhvjLFk3qhQTBY/ixFMB8GA1UdIwQY MBaAFNqmfFi0pv4hL8IPt1aUmt3BqaYsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9mMjk1Y2UtODI2ZC00ZjU0LTk3MGYt NTBmMzRmNDM1ZjAzLzEvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9mMjk1Y2UtODI2ZC00ZjU0LTk3MGYtNTBmMzRmNDM1ZjAz LzEvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH1yOTY6v eryDkUFOh2e+8U07zM7StSWEbvbQl5MU/1AaXHlt1fIVeCNNkcf0Qt19KLTTeV8M EHkjLMeMe+1QhMSUZlHUlJnRWyzauD2bE8cnSJymUZGHQSetp7F8W+zhEiqnfGNd 2lNW67oud9SsdUL0q3qYq7/iDtLKMIWXNVaI5NmVOu/h5yQ9bsfDxp9Ook2ulHex Y61us8KJgg8IuwC5pfusuhkMlTes6jO2guGeidD6fPMRkiUT1yyvR4tLM6p9Fx3j dF5CQySHKcLpxPAT+7A2DtO9ORZJda8Wo0CaL6LFuhEvj9ACXENSdqiGePbWQDRA 9U3yH3yIxtG1aA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:56:12 2026 by rpki-client