This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft File: 2xTnpr6Xzsb1vBpninbqbRYZwwY.mft (raw, json) Hash identifier: CG25K0/yCXisDrAXbQ5D+dY0CzOCVgo1lPR2Q6/1y+Y= Subject key identifier: 65:DA:99:D6:57:BC:98:D2:B2:48:C7:31:21:65:90:EE:8A:D2:D4:3D Authority key identifier: DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06 Certificate issuer: /CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306 Certificate serial: 019C43FDC18295C61B7C78A45D6BE7A532DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft Manifest number: 15D4 Signing time: Mon 09 Feb 2026 20:00:29 +0000 Manifest this update: Mon 09 Feb 2026 20:00:29 +0000 Manifest next update: Tue 10 Feb 2026 20:00:29 +0000 Files and hashes: 1: 2xTnpr6Xzsb1vBpninbqbRYZwwY.crl (hash: rzYuJnP2WLM1iyIhp2EqRCl2/V6rZrg3zapgIZtUuYA=) 2: hJR5NdWu4-Lv4WFC0Lu_BxFdjI8.roa (hash: N6VCG9vXtUWHshJ3njO134sBkm0kEo7esti0M/kqZCQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:c1:82:95:c6:1b:7c:78:a4:5d:6b:e7:a5:32:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306 Validity Not Before: Feb 9 20:00:29 2026 GMT Not After : Feb 10 20:00:29 2026 GMT Subject: CN=65da99d657bc98d2b248c731216590ee8ad2d43d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ed:5d:74:03:40:21:fd:bf:3a:e1:7a:1f:c6: 8c:17:8b:54:b6:e4:27:01:50:7a:00:00:5e:04:c6: 42:87:bb:bf:1b:e0:df:8c:69:a6:80:fc:65:6f:8d: a9:9e:05:45:b5:df:fe:c4:5e:24:9e:51:73:b7:0d: d2:8d:8e:f8:04:48:d3:37:f3:a9:22:ca:38:b5:86: c0:63:54:0c:56:fb:a9:9b:6e:ce:b9:9d:63:6d:de: 11:d8:76:ed:31:17:05:ef:42:5a:28:47:a2:51:50: 83:b0:27:c9:e7:24:15:e7:b1:f0:90:47:e2:14:10: e3:f8:25:41:0a:c2:60:55:d1:97:53:26:12:40:1f: ce:a2:04:86:7c:77:03:50:a7:30:58:49:cb:17:d1: bc:76:56:e6:a5:c6:bc:a8:05:c2:36:90:33:17:89: d9:6c:34:96:c3:55:49:20:3a:d5:6c:a4:cc:91:a3: 2e:53:da:a4:a3:e3:58:f4:1d:0f:16:a1:a3:46:22: 72:8a:c8:46:b9:67:29:b7:e0:95:10:55:15:c9:95: 53:9a:f6:8f:f9:21:c9:46:a7:26:16:14:4b:65:dd: f8:01:84:09:6f:27:3a:63:05:f1:bd:75:b4:b7:08: 32:f0:13:86:78:28:b4:5a:f5:56:a4:28:33:e4:e9: 72:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DA:99:D6:57:BC:98:D2:B2:48:C7:31:21:65:90:EE:8A:D2:D4:3D X509v3 Authority Key Identifier: keyid:DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:63:f5:d1:e4:44:a9:2a:4b:d3:59:f1:b5:0d:36:e8:4a:8f: 0b:0c:50:b4:39:a7:3f:32:7b:75:04:ae:5d:42:99:42:b2:72: 30:87:ff:bf:dd:8b:10:33:32:f9:05:e2:8b:5b:70:e0:6a:97: 90:ff:83:f7:85:8c:f1:f2:6f:b3:91:d7:8e:51:77:79:3e:e9: 58:1d:10:ca:cb:95:a1:c8:ec:93:68:51:e9:e8:6b:4d:32:ab: 7b:95:11:5e:71:9c:1c:1c:2b:84:3a:5e:d1:cc:07:f0:04:78: bd:f1:19:a7:6c:0f:c7:34:9f:fc:7b:b3:73:75:65:6a:b0:9b: 41:f8:d1:84:28:f2:d8:b7:d3:89:f0:bc:0f:7f:12:8f:65:4f: 60:63:46:3c:2e:80:f7:0a:9e:45:e6:ce:88:a7:aa:54:a3:8b: 0b:a1:82:0c:78:92:01:ce:1b:69:0f:a9:21:b6:60:43:1e:24: c9:42:38:08:3c:f8:8c:ca:16:d8:d9:4e:6c:34:69:38:d6:c3: e8:02:35:63:1c:17:ed:13:60:6e:e6:43:00:65:31:8b:42:8c: 18:f2:d6:5d:77:fe:5c:5c:d4:fa:ae:df:94:84:c3:7a:13:0d: 21:b4:cd:3b:96:c0:f8:d1:7e:93:a2:6b:12:62:76:8f:d3:d8: 7a:01:4d:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/cGClcYbfHikXWvnpTLcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMTRlN2E2YmU5N2NlYzZmNWJjMWE2NzhhNzZlYTZkMTYx OWMzMDYwHhcNMjYwMjA5MjAwMDI5WhcNMjYwMjEwMjAwMDI5WjAzMTEwLwYDVQQD Eyg2NWRhOTlkNjU3YmM5OGQyYjI0OGM3MzEyMTY1OTBlZThhZDJkNDNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmu1ddANAIf2/OuF6H8aMF4tUtuQn AVB6AABeBMZCh7u/G+DfjGmmgPxlb42pngVFtd/+xF4knlFztw3SjY74BEjTN/Op Iso4tYbAY1QMVvupm27OuZ1jbd4R2HbtMRcF70JaKEeiUVCDsCfJ5yQV57HwkEfi FBDj+CVBCsJgVdGXUyYSQB/OogSGfHcDUKcwWEnLF9G8dlbmpca8qAXCNpAzF4nZ bDSWw1VJIDrVbKTMkaMuU9qko+NY9B0PFqGjRiJyishGuWcpt+CVEFUVyZVTmvaP +SHJRqcmFhRLZd34AYQJbyc6YwXxvXW0twgy8BOGeCi0WvVWpCgz5OlyfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGXamdZXvJjSskjHMSFlkO6K0tQ9MB8GA1UdIwQY MBaAFNsU56a+l87G9bwaZ4p26m0WGcMGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnhUbnByNlh6c2IxdkJwbmluYnFiUllad3dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8xMDY0NWQtMzU0Mi00ZTVkLThlNzAt MTFmOTFkMDczOWM5LzEvMnhUbnByNlh6c2IxdkJwbmluYnFiUllad3dZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8xMDY0NWQtMzU0Mi00ZTVkLThlNzAtMTFmOTFkMDczOWM5 LzEvMnhUbnByNlh6c2IxdkJwbmluYnFiUllad3dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAumP10eRE qSpL01nxtQ026EqPCwxQtDmnPzJ7dQSuXUKZQrJyMIf/v92LEDMy+QXii1tw4GqX kP+D94WM8fJvs5HXjlF3eT7pWB0QysuVocjsk2hR6ehrTTKre5URXnGcHBwrhDpe 0cwH8AR4vfEZp2wPxzSf/Huzc3VlarCbQfjRhCjy2LfTifC8D38Sj2VPYGNGPC6A 9wqeRebOiKeqVKOLC6GCDHiSAc4baQ+pIbZgQx4kyUI4CDz4jMoW2NlObDRpONbD 6AI1YxwX7RNgbuZDAGUxi0KMGPLWXXf+XFzU+q7flITDehMNIbTNO5bA+NF+k6Jr EmJ2j9PYegFNUg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:27 2026 by rpki-client