This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json) Hash identifier: eyIaj0Zf1KSmfRUjNGmcGcacUVTdG0gv2aOEj6YdrGk= Subject key identifier: CC:95:73:2E:E6:DB:7E:EB:0A:A2:E5:4C:73:74:FB:F1:6E:57:82:C6 Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1 Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1 Certificate serial: 019C40FCC7818AD95357A054E4F24C852D49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 06:00:33 +0000 Manifest this update: Mon 09 Feb 2026 06:00:33 +0000 Manifest next update: Tue 10 Feb 2026 06:00:33 +0000 Files and hashes: 1: 1-BTuYEiDE2mEIP2dyXdE1PSMv3c.roa (hash: tBxS565NzZV2f/vbdXm3F39V84JJovJ6zXMOf+itJ6Q=) 2: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: zUez5guzx7gwavzr4X12QnIvJ+a40r6VIb8ajdNmp2A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fc:c7:81:8a:d9:53:57:a0:54:e4:f2:4c:85:2d:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1 Validity Not Before: Feb 9 06:00:33 2026 GMT Not After : Feb 10 06:00:33 2026 GMT Subject: CN=cc95732ee6db7eeb0aa2e54c7374fbf16e5782c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e7:5b:97:eb:7b:3c:fc:7c:68:be:22:11:81: a5:f3:40:e1:03:c8:a4:a3:30:cc:60:f7:73:60:fa: ef:f7:52:28:30:77:aa:5a:c1:1d:3e:f7:45:cf:cc: e4:38:b1:7a:88:00:1f:df:a4:6e:f5:9b:b4:5b:a8: e8:96:56:84:18:ba:b9:db:32:58:92:42:f9:2a:21: 34:d1:85:da:fd:29:07:05:1e:4a:2b:9c:6d:ad:80: da:b5:aa:2e:d2:5b:9d:85:e4:b5:5b:4a:46:cf:af: da:a9:66:76:48:35:32:a4:c8:84:37:38:e0:23:9e: 4b:a8:51:27:92:f6:7b:a8:8e:af:e4:b8:a9:f8:e7: ee:0c:e4:4e:c0:eb:e5:e3:01:23:52:4b:13:0a:df: dd:52:2d:ab:d1:35:c3:fb:ea:06:1a:30:56:c4:89: f3:fb:25:19:6e:87:6e:b5:dd:95:16:18:7a:d7:3a: ff:72:3a:81:29:05:04:49:68:0f:e4:8e:97:7e:8f: 54:84:d1:a9:ae:3e:bd:2c:3d:8b:8d:81:3e:0e:f9: f0:94:dd:83:f9:95:4f:df:d3:58:29:dc:a0:a0:d1: 88:1e:51:6f:1a:90:20:f0:40:49:d0:01:47:41:63: 3e:0e:50:04:09:a2:78:d6:14:e7:b4:19:65:fc:e6: 33:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:95:73:2E:E6:DB:7E:EB:0A:A2:E5:4C:73:74:FB:F1:6E:57:82:C6 X509v3 Authority Key Identifier: keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:0f:b0:c2:74:98:c4:d4:9f:92:16:cf:37:29:70:8e:5e:b8: fe:fb:70:ca:da:0a:29:08:0e:27:ea:40:44:ac:2e:a4:8d:cd: 82:83:72:3b:b0:6c:dc:ec:80:f3:26:01:f5:66:c6:f1:89:ed: 90:f6:53:4a:70:bf:6a:5a:a4:07:bf:42:a9:f1:ca:29:0a:85: d8:19:1b:9b:c9:da:9a:00:de:8b:8b:da:f1:e8:6a:14:8b:b4: 83:1f:10:8d:10:9e:63:ff:19:b9:df:68:19:72:1c:9a:c0:7f: e5:39:fe:c2:f0:ae:1b:6f:a8:55:08:ce:73:22:c3:7c:9f:63: 91:3f:24:f7:8d:26:c6:ef:1c:07:02:4f:a4:c4:13:9e:b6:90: be:66:e6:a6:ed:d8:11:85:1d:c5:1d:da:32:b9:37:85:f2:96: 80:88:94:68:e5:ce:22:1c:4a:37:46:96:de:07:a9:ca:9c:ec: b3:4a:7c:28:7a:00:30:1f:db:71:3b:b9:07:eb:b1:36:ec:8c: 1c:1d:18:04:98:5c:74:76:6e:da:d6:fe:db:5d:a8:5d:ff:d5: 2e:38:cc:8f:b6:4d:78:49:59:10:b0:87:bd:ed:6e:92:47:d2: 88:e3:05:48:70:a0:a3:37:8a:32:2a:59:76:68:ae:c0:10:ef: 18:e0:60:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/MeBitlTV6BU5PJMhS1JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NDNmMWFhMDQ5OGQ4NGY3OTUzMjNjMWZmNmJhZTNhZjQw MjA2ZDEwHhcNMjYwMjA5MDYwMDMzWhcNMjYwMjEwMDYwMDMzWjAzMTEwLwYDVQQD EyhjYzk1NzMyZWU2ZGI3ZWViMGFhMmU1NGM3Mzc0ZmJmMTZlNTc4MmM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+dbl+t7PPx8aL4iEYGl80DhA8ik ozDMYPdzYPrv91IoMHeqWsEdPvdFz8zkOLF6iAAf36Ru9Zu0W6jollaEGLq52zJY kkL5KiE00YXa/SkHBR5KK5xtrYDataou0ludheS1W0pGz6/aqWZ2SDUypMiENzjg I55LqFEnkvZ7qI6v5Lip+OfuDOROwOvl4wEjUksTCt/dUi2r0TXD++oGGjBWxInz +yUZbodutd2VFhh61zr/cjqBKQUESWgP5I6Xfo9UhNGprj69LD2LjYE+DvnwlN2D +ZVP39NYKdygoNGIHlFvGpAg8EBJ0AFHQWM+DlAECaJ41hTntBll/OYzWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMyVcy7m237rCqLlTHN0+/FuV4LGMB8GA1UdIwQY MBaAFNhD8aoEmNhPeVMjwf9rrjr0AgbRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEt NzZhMTk0NTU0YjA1LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEtNzZhMTk0NTU0YjA1 LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKA+wwnSY xNSfkhbPNylwjl64/vtwytoKKQgOJ+pARKwupI3NgoNyO7Bs3OyA8yYB9WbG8Ynt kPZTSnC/alqkB79CqfHKKQqF2Bkbm8namgDei4va8ehqFIu0gx8QjRCeY/8Zud9o GXIcmsB/5Tn+wvCuG2+oVQjOcyLDfJ9jkT8k940mxu8cBwJPpMQTnraQvmbmpu3Y EYUdxR3aMrk3hfKWgIiUaOXOIhxKN0aW3gepypzss0p8KHoAMB/bcTu5B+uxNuyM HB0YBJhcdHZu2tb+212oXf/VLjjMj7ZNeElZELCHve1ukkfSiOMFSHCgozeKMipZ dmiuwBDvGOBgPg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:43 2026 by rpki-client