This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft File: N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft (raw, json) Hash identifier: ewsr0lDOvIf9ebcpAVicplFf0u+ZcuX7+nkcLAbsPbU= Subject key identifier: 45:01:B2:37:1A:AB:99:E2:DB:13:23:FE:C4:3F:B8:CD:7E:F2:65:9A Authority key identifier: 37:69:8B:4F:37:D8:08:1C:35:05:AD:A0:BA:A8:52:21:93:43:41:BE Certificate issuer: /CN=37698b4f37d8081c3505ada0baa85221934341be Certificate serial: 019C432255EFFA85012C855F54E695F4D78C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2mLTzfYCBw1Ba2guqhSIZNDQb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft Manifest number: 106C Signing time: Mon 09 Feb 2026 16:00:49 +0000 Manifest this update: Mon 09 Feb 2026 16:00:49 +0000 Manifest next update: Tue 10 Feb 2026 16:00:49 +0000 Files and hashes: 1: N2mLTzfYCBw1Ba2guqhSIZNDQb4.crl (hash: j5s8cVCsjr90bYCwtXa/OI0LyMGB2ndgQjJNMnP/Vew=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft rsync://rpki.ripe.net/repository/DEFAULT/N2mLTzfYCBw1Ba2guqhSIZNDQb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:55:ef:fa:85:01:2c:85:5f:54:e6:95:f4:d7:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37698b4f37d8081c3505ada0baa85221934341be Validity Not Before: Feb 9 16:00:49 2026 GMT Not After : Feb 10 16:00:49 2026 GMT Subject: CN=4501b2371aab99e2db1323fec43fb8cd7ef2659a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:74:18:21:f7:5b:d3:2a:36:09:1f:b6:c0:51: c5:21:22:10:2e:9d:ea:e2:84:7e:2d:f1:4a:9c:49: 11:4b:f9:75:69:c8:a0:a2:9c:b8:a7:74:9e:d6:fe: 7b:73:9b:04:cd:61:e2:93:34:77:ec:49:e1:56:a6: ba:ac:dd:aa:9e:aa:e4:13:c1:37:2f:f4:eb:70:b1: 67:9f:99:12:ed:47:93:41:9f:9d:c7:16:84:50:be: a3:c9:92:1f:15:6c:37:5e:8f:e1:40:7a:61:81:87: 12:c3:73:63:ab:52:ea:eb:a4:4a:cf:bd:71:4c:f6: ab:f2:56:15:6c:b6:19:91:9a:c1:68:c7:39:6d:0c: 86:2f:4c:59:62:7c:cd:ac:7d:78:fc:70:e5:83:2f: 6c:03:a0:a7:f1:bd:a0:3e:e6:8c:ea:76:2e:1a:c7: 6c:67:65:a0:01:5f:d7:fa:ea:16:03:53:5c:f8:e1: 0f:dd:cc:53:b2:be:69:69:27:96:77:8e:05:b7:ef: 0a:ec:e3:eb:2d:0d:b7:e0:46:9e:91:1d:63:1e:f0: a6:11:f1:ec:7c:0d:11:ae:0d:b9:e8:bd:3d:4c:90: 07:84:3d:5d:07:d0:92:af:86:db:4e:1c:7b:8f:7c: 66:cd:23:ff:ca:4e:38:e9:fd:85:dd:71:3a:12:60: 48:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:01:B2:37:1A:AB:99:E2:DB:13:23:FE:C4:3F:B8:CD:7E:F2:65:9A X509v3 Authority Key Identifier: keyid:37:69:8B:4F:37:D8:08:1C:35:05:AD:A0:BA:A8:52:21:93:43:41:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2mLTzfYCBw1Ba2guqhSIZNDQb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:6f:a5:4a:ea:c9:2b:fd:2a:f4:b9:57:30:fa:fb:2e:da:5a: 9b:63:45:8b:55:91:fe:12:0f:00:cd:8f:cf:aa:8c:67:07:a3: 53:26:34:4e:f3:ab:65:80:43:50:50:d3:b1:b3:e4:6a:6f:e0: fe:c5:b8:f9:3d:ed:92:25:35:9e:f1:ae:a1:bb:ed:b1:48:f0: 44:ac:56:1a:11:5f:3d:32:c0:53:30:ec:c0:83:5d:18:ff:1d: 04:aa:61:48:77:0e:7a:29:88:bc:8a:d9:9d:a1:42:8f:c6:e8: 1f:94:db:92:8e:cc:fe:39:45:33:b2:6e:d4:29:13:90:11:9a: f9:b8:33:15:85:0e:57:e8:6b:10:b5:2d:97:c7:7d:e0:d9:8f: fd:f7:ad:a9:c7:14:22:4a:fa:31:13:08:0e:5b:94:52:b2:fb: f8:50:b8:ca:98:be:09:70:7e:15:fc:aa:03:55:d9:43:d5:3e: a1:bb:b7:75:4e:d1:c9:5a:e9:b5:18:a4:85:d6:54:4a:0f:e5: 57:22:ec:39:30:c1:b1:9a:42:2c:64:d5:ef:c7:04:7d:0b:08: ea:7c:17:7d:09:9d:4c:67:b2:a0:ca:15:02:d4:18:2a:e2:49: 78:b9:b6:2a:0b:22:fe:59:53:0f:f7:80:01:1a:ec:24:9a:c7: b1:e6:98:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlXv+oUBLIVfVOaV9NeMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3Njk4YjRmMzdkODA4MWMzNTA1YWRhMGJhYTg1MjIxOTM0 MzQxYmUwHhcNMjYwMjA5MTYwMDQ5WhcNMjYwMjEwMTYwMDQ5WjAzMTEwLwYDVQQD Eyg0NTAxYjIzNzFhYWI5OWUyZGIxMzIzZmVjNDNmYjhjZDdlZjI2NTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXQYIfdb0yo2CR+2wFHFISIQLp3q 4oR+LfFKnEkRS/l1acigopy4p3Se1v57c5sEzWHikzR37EnhVqa6rN2qnqrkE8E3 L/TrcLFnn5kS7UeTQZ+dxxaEUL6jyZIfFWw3Xo/hQHphgYcSw3Njq1Lq66RKz71x TPar8lYVbLYZkZrBaMc5bQyGL0xZYnzNrH14/HDlgy9sA6Cn8b2gPuaM6nYuGsds Z2WgAV/X+uoWA1Nc+OEP3cxTsr5paSeWd44Ft+8K7OPrLQ234EaekR1jHvCmEfHs fA0Rrg256L09TJAHhD1dB9CSr4bbThx7j3xmzSP/yk446f2F3XE6EmBIKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEUBsjcaq5ni2xMj/sQ/uM1+8mWaMB8GA1UdIwQY MBaAFDdpi0832AgcNQWtoLqoUiGTQ0G+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjJtTFR6ZllDQncxQmEyZ3VxaFNJWk5EUWI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8xMGJmM2QtNGViNS00YTEzLTgzYjct MmJiODFkOTlkNWYxLzEvTjJtTFR6ZllDQncxQmEyZ3VxaFNJWk5EUWI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC8xMGJmM2QtNGViNS00YTEzLTgzYjctMmJiODFkOTlkNWYx LzEvTjJtTFR6ZllDQncxQmEyZ3VxaFNJWk5EUWI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGW+lSurJ K/0q9LlXMPr7Ltpam2NFi1WR/hIPAM2Pz6qMZwejUyY0TvOrZYBDUFDTsbPkam/g /sW4+T3tkiU1nvGuobvtsUjwRKxWGhFfPTLAUzDswINdGP8dBKphSHcOeimIvIrZ naFCj8boH5Tbko7M/jlFM7Ju1CkTkBGa+bgzFYUOV+hrELUtl8d94NmP/fetqccU Ikr6MRMIDluUUrL7+FC4ypi+CXB+FfyqA1XZQ9U+obu3dU7RyVrptRikhdZUSg/l VyLsOTDBsZpCLGTV78cEfQsI6nwXfQmdTGeyoMoVAtQYKuJJeLm2Kgsi/llTD/eA ARrsJJrHseaYJg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:24 2026 by rpki-client