This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.mft File: 2aI0hf7YyFB0UjLj3FHM6tRyVKQ.mft (raw, json) Hash identifier: Hskp8tD+qlgn4UqXxLSPNLK5sYu9rxKO+HDYyjPxgTQ= Subject key identifier: F3:85:73:55:A3:84:79:FE:9A:BE:3E:85:15:6F:EF:F4:DA:4C:9A:29 Authority key identifier: D9:A2:34:85:FE:D8:C8:50:74:52:32:E3:DC:51:CC:EA:D4:72:54:A4 Certificate issuer: /CN=d9a23485fed8c850745232e3dc51ccead47254a4 Certificate serial: 019C432253980DD6BDA200D1DD671FEC1F42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.mft Manifest number: 0C1E Signing time: Mon 09 Feb 2026 16:00:48 +0000 Manifest this update: Mon 09 Feb 2026 16:00:48 +0000 Manifest next update: Tue 10 Feb 2026 16:00:48 +0000 Files and hashes: 1: 2aI0hf7YyFB0UjLj3FHM6tRyVKQ.crl (hash: omqkc2ohh2ipfyg7pOUrfYCT+QPSJo0kHhoRhwlYbdY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.crl rsync://rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.mft rsync://rpki.ripe.net/repository/DEFAULT/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:53:98:0d:d6:bd:a2:00:d1:dd:67:1f:ec:1f:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9a23485fed8c850745232e3dc51ccead47254a4 Validity Not Before: Feb 9 16:00:48 2026 GMT Not After : Feb 10 16:00:48 2026 GMT Subject: CN=f3857355a38479fe9abe3e85156feff4da4c9a29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:44:5c:67:63:b4:4e:4d:8b:93:d0:6a:db:bd: 4a:1d:91:e9:c7:9f:4a:0b:df:ad:c5:5a:e1:18:16: ea:f1:4b:c6:c9:a7:58:4e:04:59:be:38:4f:41:9a: f5:35:9c:54:49:db:ed:64:73:b0:c6:7a:a8:72:79: 3f:03:e4:cd:48:3c:0c:e6:a7:20:2d:4f:94:e4:1a: 0c:8b:05:6d:b2:1c:f8:43:03:8a:67:ae:ea:5d:d8: 43:42:d1:4f:c1:58:16:be:8a:39:7e:a4:6e:ea:65: 14:56:0a:4c:a3:2b:97:b8:6a:ef:3d:b0:c8:5f:0e: 06:19:d7:bc:6b:1c:98:e3:72:bd:b2:8b:94:7a:a2: 57:51:3d:9e:12:3f:7c:55:39:0b:8d:2d:44:b3:10: d5:16:3a:7b:e9:fc:96:63:3a:cc:af:15:70:a8:b4: b5:50:22:7e:48:e5:61:72:80:37:b2:f6:63:e8:ad: a0:8c:ba:32:71:fd:4c:60:98:9f:d8:7b:d8:da:04: 98:8d:56:2c:45:2c:61:b7:15:90:67:f4:41:5a:dd: 8f:5b:7d:19:13:57:79:d1:14:03:13:d3:d2:ae:cb: d7:a5:15:73:95:96:ea:04:da:f2:d4:c1:c0:25:1e: 19:08:09:a5:3e:f3:47:73:98:f4:75:86:6c:ca:d3: 8f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:85:73:55:A3:84:79:FE:9A:BE:3E:85:15:6F:EF:F4:DA:4C:9A:29 X509v3 Authority Key Identifier: keyid:D9:A2:34:85:FE:D8:C8:50:74:52:32:E3:DC:51:CC:EA:D4:72:54:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/eda3ef-cda6-43fa-b8a6-a2461e431c44/1/2aI0hf7YyFB0UjLj3FHM6tRyVKQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:49:7a:58:6d:0b:65:2d:ff:09:11:3f:70:a0:55:fb:d2:73: 7f:a7:bd:d0:11:60:94:72:cf:75:56:4f:dc:f6:28:04:56:ba: 64:6b:b7:dd:cc:12:a0:4b:ab:9e:76:59:d7:5b:1a:35:01:80: d1:55:9a:06:08:e0:8b:a7:18:3a:88:b1:71:25:b3:91:cf:9c: a9:02:7b:6c:bb:22:4d:7a:85:b8:83:a1:5f:fc:1d:51:ed:d1: c8:98:ac:56:d5:0b:a4:8e:fd:6e:0d:cd:07:93:f4:9b:6d:89: 15:5e:d5:63:5d:c6:47:d7:1d:b3:c8:29:a5:be:c1:78:37:de: b1:8c:40:ed:f9:9e:d1:4d:fd:36:3d:ff:6b:fe:1a:71:97:1c: 35:77:1f:d8:04:f1:97:99:5a:e1:84:93:2f:c3:ea:bd:d1:f1: ee:c2:29:91:79:2c:10:86:c7:98:37:93:d9:01:6e:5d:ec:37: fd:e1:0f:03:20:c1:df:37:fa:55:de:b2:70:31:27:37:ae:ad: 50:6a:9f:19:ff:8d:17:7a:7e:a3:9c:16:e5:27:96:9d:9d:0a: 71:5b:d0:2d:25:eb:a9:f9:09:ff:c2:6b:96:bb:4b:5c:e8:fc: 2d:83:81:5a:e1:98:69:9a:f6:ab:49:a3:76:96:0b:9c:c5:81: 75:0a:b7:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlOYDda9ogDR3Wcf7B9CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5YTIzNDg1ZmVkOGM4NTA3NDUyMzJlM2RjNTFjY2VhZDQ3 MjU0YTQwHhcNMjYwMjA5MTYwMDQ4WhcNMjYwMjEwMTYwMDQ4WjAzMTEwLwYDVQQD EyhmMzg1NzM1NWEzODQ3OWZlOWFiZTNlODUxNTZmZWZmNGRhNGM5YTI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkRcZ2O0Tk2Lk9Bq271KHZHpx59K C9+txVrhGBbq8UvGyadYTgRZvjhPQZr1NZxUSdvtZHOwxnqocnk/A+TNSDwM5qcg LU+U5BoMiwVtshz4QwOKZ67qXdhDQtFPwVgWvoo5fqRu6mUUVgpMoyuXuGrvPbDI Xw4GGde8axyY43K9souUeqJXUT2eEj98VTkLjS1EsxDVFjp76fyWYzrMrxVwqLS1 UCJ+SOVhcoA3svZj6K2gjLoycf1MYJif2HvY2gSYjVYsRSxhtxWQZ/RBWt2PW30Z E1d50RQDE9PSrsvXpRVzlZbqBNry1MHAJR4ZCAmlPvNHc5j0dYZsytOPOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPOFc1WjhHn+mr4+hRVv7/TaTJopMB8GA1UdIwQY MBaAFNmiNIX+2MhQdFIy49xRzOrUclSkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmFJMGhmN1l5RkIwVWpMajNGSE02dFJ5VktRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9lZGEzZWYtY2RhNi00M2ZhLWI4YTYt YTI0NjFlNDMxYzQ0LzEvMmFJMGhmN1l5RkIwVWpMajNGSE02dFJ5VktRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC9lZGEzZWYtY2RhNi00M2ZhLWI4YTYtYTI0NjFlNDMxYzQ0 LzEvMmFJMGhmN1l5RkIwVWpMajNGSE02dFJ5VktRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcUl6WG0L ZS3/CRE/cKBV+9Jzf6e90BFglHLPdVZP3PYoBFa6ZGu33cwSoEurnnZZ11saNQGA 0VWaBgjgi6cYOoixcSWzkc+cqQJ7bLsiTXqFuIOhX/wdUe3RyJisVtULpI79bg3N B5P0m22JFV7VY13GR9cds8gppb7BeDfesYxA7fme0U39Nj3/a/4acZccNXcf2ATx l5la4YSTL8PqvdHx7sIpkXksEIbHmDeT2QFuXew3/eEPAyDB3zf6Vd6ycDEnN66t UGqfGf+NF3p+o5wW5SeWnZ0KcVvQLSXrqfkJ/8JrlrtLXOj8LYOBWuGYaZr2q0mj dpYLnMWBdQq3Bg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:10 2026 by rpki-client