This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.mft File: _x2DMuEYqaIYfqtYhCedZYDxGfc.mft (raw, json) Hash identifier: DCzevrB7AprT14krLYePgU5oPNr2N7bEkyFiCOE4kic= Subject key identifier: D2:2E:CF:8A:7F:06:DB:4D:9D:DF:71:4B:9C:BE:B5:2C:F7:03:B9:BB Authority key identifier: FF:1D:83:32:E1:18:A9:A2:18:7E:AB:58:84:27:9D:65:80:F1:19:F7 Certificate issuer: /CN=ff1d8332e118a9a2187eab5884279d6580f119f7 Certificate serial: 019C41D8B04FEC4DA8FE87512E2F08976A43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_x2DMuEYqaIYfqtYhCedZYDxGfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.mft Manifest number: 0669 Signing time: Mon 09 Feb 2026 10:00:45 +0000 Manifest this update: Mon 09 Feb 2026 10:00:45 +0000 Manifest next update: Tue 10 Feb 2026 10:00:45 +0000 Files and hashes: 1: _x2DMuEYqaIYfqtYhCedZYDxGfc.crl (hash: ZXJiLdjRq/24FW3WwsYftqlKSpbYRd3g2R5ZxKxXK5o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.mft rsync://rpki.ripe.net/repository/DEFAULT/_x2DMuEYqaIYfqtYhCedZYDxGfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:b0:4f:ec:4d:a8:fe:87:51:2e:2f:08:97:6a:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff1d8332e118a9a2187eab5884279d6580f119f7 Validity Not Before: Feb 9 10:00:45 2026 GMT Not After : Feb 10 10:00:45 2026 GMT Subject: CN=d22ecf8a7f06db4d9ddf714b9cbeb52cf703b9bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b2:95:e7:61:9f:63:9b:f5:d8:f1:64:02:38: 0f:75:b3:fe:86:cd:ca:94:ac:00:54:ba:b2:db:a5: 97:9f:31:93:f8:db:c2:db:f6:d9:b8:70:84:11:0a: 0d:10:6f:cb:37:6a:03:b9:0b:ab:d0:72:60:98:74: 50:ee:4a:9d:5e:c8:1d:95:f2:fd:c0:87:a5:fc:a8: 80:1a:15:a1:db:60:ac:e9:de:cc:3f:67:b6:c8:b6: d0:13:4b:8b:fb:72:ab:c0:93:5e:8e:92:f2:76:40: d9:bd:83:d4:21:39:c9:0e:18:af:59:17:fd:d5:ec: 19:6d:ea:1a:7e:a0:d1:99:a1:36:90:35:5c:22:0e: fa:73:cf:55:f5:41:c3:70:36:04:38:9f:3f:62:57: 3c:04:aa:ba:7c:2d:47:40:8f:be:56:ef:31:e1:32: f5:b3:4d:51:0f:db:c9:b9:c7:d7:27:82:00:3f:e0: 0b:c7:2e:03:d3:a9:9a:9f:a6:0c:ab:f5:1e:c7:f1: a9:c6:b8:dc:d7:f9:71:06:d3:bb:45:d8:b0:cd:79: e6:ae:c6:83:1d:cf:e1:fd:1f:31:69:55:b6:24:2e: 0a:f1:10:e0:66:c8:e6:36:08:9a:0c:4e:f7:b2:a0: 1a:ba:40:fc:ad:d4:4b:46:6f:f2:0f:3e:c8:f5:a9: be:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:2E:CF:8A:7F:06:DB:4D:9D:DF:71:4B:9C:BE:B5:2C:F7:03:B9:BB X509v3 Authority Key Identifier: keyid:FF:1D:83:32:E1:18:A9:A2:18:7E:AB:58:84:27:9D:65:80:F1:19:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_x2DMuEYqaIYfqtYhCedZYDxGfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:65:20:d8:05:bc:6c:a3:83:b5:99:a2:39:a4:ab:62:5d:06: ed:5f:d1:c8:9d:df:9f:49:49:b1:cb:78:27:e1:97:9b:2b:08: 9e:e1:7e:d7:48:22:8c:67:93:15:19:56:5a:df:60:e2:1d:0c: 12:ee:20:ac:c5:6e:0f:d8:c7:ad:69:1a:50:b0:ee:af:75:8f: f8:10:35:0a:3b:41:fb:8d:04:09:f8:cd:e1:9a:61:54:71:03: a9:2f:bd:db:e1:4e:7d:46:43:b2:86:bc:5f:4a:28:37:11:e4: e2:ea:fd:35:60:5b:f7:2f:55:09:f9:34:07:df:d5:d5:26:6c: 45:a8:1d:ed:bf:ea:da:51:10:74:82:e4:b8:12:9f:2e:18:c9: 45:1e:d3:0d:9e:fe:97:78:25:5e:05:ca:e3:b7:4c:8f:32:1a: 79:66:89:32:ff:0d:33:ac:24:ca:9b:1f:f0:cf:9b:ad:10:b6: e5:44:32:34:00:27:67:68:cf:62:8a:50:77:b7:d0:bb:91:bf: 32:31:e2:6a:09:b5:6f:6b:58:8f:ce:bc:2b:61:ec:b6:5e:2f: fd:dd:c5:db:73:01:04:83:df:78:1f:37:5b:a2:6a:00:56:60: 80:b1:a3:72:90:37:91:c6:48:29:b9:4d:f8:06:a6:29:9e:ab: ac:8e:37:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2LBP7E2o/odRLi8Il2pDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmMWQ4MzMyZTExOGE5YTIxODdlYWI1ODg0Mjc5ZDY1ODBm MTE5ZjcwHhcNMjYwMjA5MTAwMDQ1WhcNMjYwMjEwMTAwMDQ1WjAzMTEwLwYDVQQD EyhkMjJlY2Y4YTdmMDZkYjRkOWRkZjcxNGI5Y2JlYjUyY2Y3MDNiOWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybKV52GfY5v12PFkAjgPdbP+hs3K lKwAVLqy26WXnzGT+NvC2/bZuHCEEQoNEG/LN2oDuQur0HJgmHRQ7kqdXsgdlfL9 wIel/KiAGhWh22Cs6d7MP2e2yLbQE0uL+3KrwJNejpLydkDZvYPUITnJDhivWRf9 1ewZbeoafqDRmaE2kDVcIg76c89V9UHDcDYEOJ8/Ylc8BKq6fC1HQI++Vu8x4TL1 s01RD9vJucfXJ4IAP+ALxy4D06man6YMq/Uex/Gpxrjc1/lxBtO7RdiwzXnmrsaD Hc/h/R8xaVW2JC4K8RDgZsjmNgiaDE73sqAaukD8rdRLRm/yDz7I9am+xwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNIuz4p/BttNnd9xS5y+tSz3A7m7MB8GA1UdIwQY MBaAFP8dgzLhGKmiGH6rWIQnnWWA8Rn3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3gyRE11RVlxYUlZZnF0WWhDZWRaWUR4R2ZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9hYWM2YmUtMTg1NS00ODRiLTgwMjUt ZGVhMzBlY2I3MzZkLzEvX3gyRE11RVlxYUlZZnF0WWhDZWRaWUR4R2ZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9hYWM2YmUtMTg1NS00ODRiLTgwMjUtZGVhMzBlY2I3MzZk LzEvX3gyRE11RVlxYUlZZnF0WWhDZWRaWUR4R2ZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH2Ug2AW8 bKODtZmiOaSrYl0G7V/RyJ3fn0lJsct4J+GXmysInuF+10gijGeTFRlWWt9g4h0M Eu4grMVuD9jHrWkaULDur3WP+BA1CjtB+40ECfjN4ZphVHEDqS+92+FOfUZDsoa8 X0ooNxHk4ur9NWBb9y9VCfk0B9/V1SZsRagd7b/q2lEQdILkuBKfLhjJRR7TDZ7+ l3glXgXK47dMjzIaeWaJMv8NM6wkypsf8M+brRC25UQyNAAnZ2jPYopQd7fQu5G/ MjHiagm1b2tYj868K2Hstl4v/d3F23MBBIPfeB83W6JqAFZggLGjcpA3kcZIKblN +AamKZ6rrI43Qw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:19 2026 by rpki-client