This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json) Hash identifier: 4bwhFdk0LwDmE0p1qxzVOQ72u7uxJi1O/E0sMsgaPzc= Subject key identifier: 1D:66:56:75:B1:24:DE:C6:3F:F3:09:E5:AB:0D:B6:92:C5:E5:91:E7 Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02 Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402 Certificate serial: 019C43595B027AAFD9C2296ADE1CD1457D0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft Manifest number: 1635 Signing time: Mon 09 Feb 2026 17:00:55 +0000 Manifest this update: Mon 09 Feb 2026 17:00:55 +0000 Manifest next update: Tue 10 Feb 2026 17:00:55 +0000 Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: 62Dsvce2U+5PC7dTQBE8W+GcUCuCeG+CaGbGJ+F1fkw=) 2: JKIhvk4nR2Yatg3LSMzcvAB5gDY.roa (hash: Wu8o0XpgB80LZ5YT5dratdi0qOmv7LG2bN4vwgSeFRY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:5b:02:7a:af:d9:c2:29:6a:de:1c:d1:45:7d:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402 Validity Not Before: Feb 9 17:00:55 2026 GMT Not After : Feb 10 17:00:55 2026 GMT Subject: CN=1d665675b124dec63ff309e5ab0db692c5e591e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:42:42:01:bd:73:3b:78:89:c9:fd:f5:1c:59: d6:10:8d:9b:95:a8:0a:c4:64:33:ce:ea:74:5f:2a: c5:aa:93:c3:39:e7:91:d9:36:9d:46:32:74:d7:42: c1:a3:99:7f:04:f4:c5:da:63:f7:e4:d6:3c:4a:42: 69:81:11:60:9f:d5:d8:d6:0b:b6:5e:de:4a:b7:b2: f8:0f:df:2b:b3:1e:45:67:68:47:30:52:da:74:7a: c8:7e:88:07:07:81:b7:68:da:92:fd:b0:58:08:d6: 12:f5:43:79:3c:e2:4c:71:cb:bf:e1:42:0c:47:4f: 57:54:0f:30:f4:6c:24:92:f1:0f:43:dd:12:91:a2: 96:56:c9:ec:55:e2:0e:0a:57:8a:22:f6:5f:89:b1: e0:84:41:14:d5:ba:65:b0:c0:35:4e:30:76:0b:a2: 2c:15:8d:26:da:c0:74:40:3b:9b:48:1a:61:a9:da: f5:47:99:08:e1:29:a2:00:e5:df:c5:aa:c0:a6:fa: f2:8e:93:65:23:c6:12:59:9e:87:55:1c:b2:60:a8: 45:23:d5:79:38:99:9c:63:48:da:5a:8b:29:dd:36: 89:66:c8:62:71:37:05:2f:29:55:49:bc:a1:f4:e3: 98:1c:6d:82:c7:b4:c1:d8:b3:17:80:bd:30:1f:ef: d8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:66:56:75:B1:24:DE:C6:3F:F3:09:E5:AB:0D:B6:92:C5:E5:91:E7 X509v3 Authority Key Identifier: keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:e8:15:d4:6c:03:1a:33:9a:6b:ec:0b:2a:a9:c0:ac:12:5c: f9:ff:c2:22:d2:ed:37:47:21:a5:ce:86:67:52:8d:23:8d:4d: 53:3c:f4:03:d1:8b:95:65:57:c2:e9:ed:3d:1e:e5:1d:13:a6: e3:21:d4:c5:93:f1:4a:eb:34:9e:03:ca:a7:4c:9c:cf:6e:d9: c3:56:e4:e9:ec:ac:eb:5e:26:c4:f8:97:32:b9:14:b9:49:67: 7c:89:65:87:66:69:25:ba:13:aa:88:94:a2:5d:4e:bf:dc:e5: d1:85:e7:0c:b8:ce:f2:41:84:19:08:78:af:94:18:52:80:ea: a9:26:a0:58:95:af:60:b8:e3:57:27:d3:6a:04:35:1a:0b:f0: e9:ee:9c:7c:91:3b:f2:dd:20:c4:86:fb:90:6d:43:06:c2:f3: 21:6e:af:83:8e:5d:48:82:80:d0:45:f6:33:42:0e:b7:ce:98: 1d:ea:5c:90:da:60:a2:62:40:6a:cb:a1:fb:49:61:73:0e:6f: 9f:14:c9:64:cb:5d:5f:04:74:b4:73:f4:f4:73:62:9b:e5:99: a7:9d:4b:bf:de:e1:ef:0b:ca:0c:b1:c9:e1:c6:36:f7:af:bf: 7d:18:90:1f:0a:88:8d:05:1d:7e:49:77:e9:45:23:58:96:5f: a0:10:99:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWVsCeq/Zwilq3hzRRX0NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZmI5NmVhM2FmNTFjNTMyZDdlOGZlOGM5NDM3NmY1MWUx ZWE0MDIwHhcNMjYwMjA5MTcwMDU1WhcNMjYwMjEwMTcwMDU1WjAzMTEwLwYDVQQD EygxZDY2NTY3NWIxMjRkZWM2M2ZmMzA5ZTVhYjBkYjY5MmM1ZTU5MWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA40JCAb1zO3iJyf31HFnWEI2blagK xGQzzup0XyrFqpPDOeeR2TadRjJ010LBo5l/BPTF2mP35NY8SkJpgRFgn9XY1gu2 Xt5Kt7L4D98rsx5FZ2hHMFLadHrIfogHB4G3aNqS/bBYCNYS9UN5POJMccu/4UIM R09XVA8w9GwkkvEPQ90SkaKWVsnsVeIOCleKIvZfibHghEEU1bplsMA1TjB2C6Is FY0m2sB0QDubSBphqdr1R5kI4SmiAOXfxarApvryjpNlI8YSWZ6HVRyyYKhFI9V5 OJmcY0jaWosp3TaJZshicTcFLylVSbyh9OOYHG2Cx7TB2LMXgL0wH+/YgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB1mVnWxJN7GP/MJ5asNtpLF5ZHnMB8GA1UdIwQY MBaAFNj7luo69RxTLX6P6MlDdvUeHqQCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS81M2ZmYTAtOTA2MC00NzJjLWFhYzIt OGViODVlMzI4M2UyLzEvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS81M2ZmYTAtOTA2MC00NzJjLWFhYzItOGViODVlMzI4M2Uy LzEvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATOgV1GwD GjOaa+wLKqnArBJc+f/CItLtN0chpc6GZ1KNI41NUzz0A9GLlWVXwuntPR7lHROm 4yHUxZPxSus0ngPKp0ycz27Zw1bk6eys614mxPiXMrkUuUlnfIllh2ZpJboTqoiU ol1Ov9zl0YXnDLjO8kGEGQh4r5QYUoDqqSagWJWvYLjjVyfTagQ1Ggvw6e6cfJE7 8t0gxIb7kG1DBsLzIW6vg45dSIKA0EX2M0IOt86YHepckNpgomJAasuh+0lhcw5v nxTJZMtdXwR0tHP09HNim+WZp51Lv97h7wvKDLHJ4cY296+/fRiQHwqIjQUdfkl3 6UUjWJZfoBCZIA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:46 2026 by rpki-client