This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft File: gXNntPK_jrMfbhYk7Vbtq6nwITs.mft (raw, json) Hash identifier: 9op6Ej4sDI2VCRwkfj85/j0EoBl2p8FexutxeZJWVZM= Subject key identifier: 34:34:B0:F3:13:5C:B3:06:09:27:11:4A:20:1E:AD:B1:BD:52:DD:31 Authority key identifier: 81:73:67:B4:F2:BF:8E:B3:1F:6E:16:24:ED:56:ED:AB:A9:F0:21:3B Certificate issuer: /CN=817367b4f2bf8eb31f6e1624ed56edaba9f0213b Certificate serial: 019C41A1FE53F9BB43903FB253D830651288 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gXNntPK_jrMfbhYk7Vbtq6nwITs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft Manifest number: 0F2A Signing time: Mon 09 Feb 2026 09:01:01 +0000 Manifest this update: Mon 09 Feb 2026 09:01:01 +0000 Manifest next update: Tue 10 Feb 2026 09:01:01 +0000 Files and hashes: 1: gXNntPK_jrMfbhYk7Vbtq6nwITs.crl (hash: eEYbqD/aA/kQcLBmOozXK6AzPcG6dqgPDRZYyzzeIB0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft rsync://rpki.ripe.net/repository/DEFAULT/gXNntPK_jrMfbhYk7Vbtq6nwITs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:fe:53:f9:bb:43:90:3f:b2:53:d8:30:65:12:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=817367b4f2bf8eb31f6e1624ed56edaba9f0213b Validity Not Before: Feb 9 09:01:01 2026 GMT Not After : Feb 10 09:01:01 2026 GMT Subject: CN=3434b0f3135cb3060927114a201eadb1bd52dd31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d0:a9:69:f9:1d:a0:8d:46:70:05:61:25:23: 03:fb:78:15:13:26:72:09:ff:58:95:a6:95:c9:df: 00:12:69:57:1a:4b:ec:17:a7:d1:cb:f3:5c:79:3d: aa:18:31:a5:4b:bc:ad:93:65:a0:4f:ed:97:00:23: c2:e9:2f:6c:92:83:d6:7f:70:59:83:26:88:a9:96: c8:70:f8:28:27:ea:69:52:12:cc:69:42:bb:ec:f5: c4:9f:4d:c8:73:ab:aa:de:df:e1:e6:5d:73:cf:52: 2c:3d:1b:c4:b5:d0:a3:c7:05:2c:54:9c:21:25:ed: c7:5c:71:14:7f:9a:ff:4d:51:c7:01:77:dd:cf:f9: 09:f1:13:c9:3e:5b:d5:01:61:30:98:ac:e3:8a:e8: 4f:a0:9f:b3:90:f4:1f:6a:d6:7a:50:3d:dc:95:84: 3c:62:81:a3:92:de:11:f0:45:02:8c:fd:69:aa:ae: d3:f7:65:d8:21:8a:84:48:d9:88:da:1b:5f:00:85: ab:72:c1:d0:3e:c1:04:ac:8e:67:fe:2a:f4:bf:3e: 4a:3b:6c:83:b9:4c:f0:aa:dd:b2:40:71:50:82:32: 42:0b:4c:bd:c8:47:03:f7:1e:60:5a:68:d1:f1:0b: 5c:9a:3f:fe:15:c2:72:ff:2d:8a:ea:82:9d:80:fb: d1:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:34:B0:F3:13:5C:B3:06:09:27:11:4A:20:1E:AD:B1:BD:52:DD:31 X509v3 Authority Key Identifier: keyid:81:73:67:B4:F2:BF:8E:B3:1F:6E:16:24:ED:56:ED:AB:A9:F0:21:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gXNntPK_jrMfbhYk7Vbtq6nwITs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:85:96:82:e3:4d:79:98:c0:cf:68:1a:18:ed:eb:05:3b:f4: 57:9a:4d:13:dd:73:93:f5:83:13:5e:8c:b8:00:53:a6:36:3b: 7f:d9:79:4d:ac:c2:02:e6:2d:97:95:50:16:6f:0c:7d:81:d6: 2c:fe:55:2f:18:7f:aa:9c:51:fb:7c:e6:fc:74:57:57:c2:bd: 2a:60:ef:95:ff:77:98:42:81:bf:b3:cb:2a:7c:d1:95:75:4d: aa:8a:8f:b7:5d:15:ab:41:f0:c9:ca:e5:73:92:5c:86:49:72: 43:9c:0b:b6:f2:4a:5e:51:af:c2:f9:8b:69:07:d5:4d:1d:53: 7a:00:35:30:d1:b0:df:d6:bb:a2:83:73:07:dd:6c:a2:55:9d: c4:e2:21:6d:d7:a1:99:5e:55:90:1e:aa:ae:84:79:a9:bb:d5: a5:1a:16:5c:af:a1:b7:5f:49:58:37:1d:e7:3c:4c:b0:00:b2: ee:b7:ef:58:a7:1d:08:cc:e0:64:fe:0e:12:ab:fb:ec:a2:b5: 80:82:84:13:a8:9d:4b:06:35:30:4d:ec:11:51:e9:4d:c9:40: eb:bd:d6:f8:ea:70:9b:8f:57:22:f5:ae:12:fe:6d:99:39:4f: 7c:d9:07:ca:78:f2:7d:34:99:58:e7:5d:68:41:9a:6d:ee:e0: 2d:d3:ab:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBof5T+btDkD+yU9gwZRKIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxNzM2N2I0ZjJiZjhlYjMxZjZlMTYyNGVkNTZlZGFiYTlm MDIxM2IwHhcNMjYwMjA5MDkwMTAxWhcNMjYwMjEwMDkwMTAxWjAzMTEwLwYDVQQD EygzNDM0YjBmMzEzNWNiMzA2MDkyNzExNGEyMDFlYWRiMWJkNTJkZDMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2dCpafkdoI1GcAVhJSMD+3gVEyZy Cf9YlaaVyd8AEmlXGkvsF6fRy/NceT2qGDGlS7ytk2WgT+2XACPC6S9skoPWf3BZ gyaIqZbIcPgoJ+ppUhLMaUK77PXEn03Ic6uq3t/h5l1zz1IsPRvEtdCjxwUsVJwh Je3HXHEUf5r/TVHHAXfdz/kJ8RPJPlvVAWEwmKzjiuhPoJ+zkPQfatZ6UD3clYQ8 YoGjkt4R8EUCjP1pqq7T92XYIYqESNmI2htfAIWrcsHQPsEErI5n/ir0vz5KO2yD uUzwqt2yQHFQgjJCC0y9yEcD9x5gWmjR8Qtcmj/+FcJy/y2K6oKdgPvR6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDQ0sPMTXLMGCScRSiAerbG9Ut0xMB8GA1UdIwQY MBaAFIFzZ7Tyv46zH24WJO1W7aup8CE7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1hObnRQS19qck1mYmhZazdWYnRxNm53SVRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy85NTc1ZDAtOWM3Yy00NTcxLTg2M2Et NTU1MTMwYTU3MDQxLzEvZ1hObnRQS19qck1mYmhZazdWYnRxNm53SVRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy85NTc1ZDAtOWM3Yy00NTcxLTg2M2EtNTU1MTMwYTU3MDQx LzEvZ1hObnRQS19qck1mYmhZazdWYnRxNm53SVRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY4WWguNN eZjAz2gaGO3rBTv0V5pNE91zk/WDE16MuABTpjY7f9l5TazCAuYtl5VQFm8MfYHW LP5VLxh/qpxR+3zm/HRXV8K9KmDvlf93mEKBv7PLKnzRlXVNqoqPt10Vq0Hwycrl c5JchklyQ5wLtvJKXlGvwvmLaQfVTR1TegA1MNGw39a7ooNzB91solWdxOIhbdeh mV5VkB6qroR5qbvVpRoWXK+ht19JWDcd5zxMsACy7rfvWKcdCMzgZP4OEqv77KK1 gIKEE6idSwY1ME3sEVHpTclA673W+Opwm49XIvWuEv5tmTlPfNkHynjyfTSZWOdd aEGabe7gLdOrGA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:41 2026 by rpki-client