This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft File: 2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft (raw, json) Hash identifier: jNxoPJ/iz2RNmHK8a2H2NtefwfdUQZcD0U2pg8FzNxA= Subject key identifier: 60:40:AB:69:86:FE:2E:14:DA:AA:1C:81:1C:B7:1F:00:8F:4A:E4:FC Authority key identifier: DA:CA:83:EB:1F:AF:97:73:D3:50:C7:DC:E6:12:CA:28:14:84:E7:FC Certificate issuer: /CN=daca83eb1faf9773d350c7dce612ca281484e7fc Certificate serial: 019C42EB2AED6B628C236391E62F817AB918 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sqD6x-vl3PTUMfc5hLKKBSE5_w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft Manifest number: E4 Signing time: Mon 09 Feb 2026 15:00:34 +0000 Manifest this update: Mon 09 Feb 2026 15:00:34 +0000 Manifest next update: Tue 10 Feb 2026 15:00:34 +0000 Files and hashes: 1: 2sqD6x-vl3PTUMfc5hLKKBSE5_w.crl (hash: dK6hwH156K+vY8GFCHmxZWw95z9PvpTIUJROSp7dPCY=) 2: szRLM3Az0xzE-SZ2cP8IE4cXA8c.asa (hash: CVKDj1/53BYjcVJSpA6JPeV/CJrhFA+lF2cwIdYQJr8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.crl rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft rsync://rpki.ripe.net/repository/DEFAULT/2sqD6x-vl3PTUMfc5hLKKBSE5_w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:2a:ed:6b:62:8c:23:63:91:e6:2f:81:7a:b9:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daca83eb1faf9773d350c7dce612ca281484e7fc Validity Not Before: Feb 9 15:00:34 2026 GMT Not After : Feb 10 15:00:34 2026 GMT Subject: CN=6040ab6986fe2e14daaa1c811cb71f008f4ae4fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d9:34:4a:97:c0:2e:1a:77:c3:ac:db:9c:83: b8:e1:aa:e4:b5:f6:ce:4b:de:5b:56:ad:91:fa:6a: be:45:9a:2e:f3:85:89:5f:2d:35:a5:87:b4:d8:a2: 6e:20:c3:1a:05:4c:1a:bc:b4:97:28:ec:bf:41:46: 25:94:e4:2d:67:1b:f3:15:f3:0f:ea:c4:8f:40:d8: 8e:4c:d1:d7:85:2e:b9:4f:dc:d8:f5:33:57:44:bd: e0:a9:5a:e9:20:ed:e8:65:cf:d4:b0:0c:20:55:0f: 36:79:53:93:64:6e:92:4e:c1:cb:ff:df:18:13:75: c0:ed:77:92:26:24:ca:a6:75:3a:36:e9:bd:49:f5: bd:06:bb:79:f2:25:6f:c4:7e:30:b5:80:25:0c:b2: 89:56:c2:e3:11:3b:f2:7f:68:9a:f1:f6:2c:35:f9: 61:b9:fe:88:e3:f0:44:e1:9b:15:c4:25:2f:15:80: 50:56:3d:86:49:84:0b:c1:88:6b:88:7d:a0:a2:70: b6:19:75:c6:d2:9f:6a:d5:ba:a7:83:ed:be:b2:aa: f8:cb:f5:a5:b2:e1:fd:47:a5:fa:cf:09:db:c5:f2: 1b:98:58:fc:a8:50:5b:1e:72:f2:bf:c0:31:0b:bd: ec:9d:ef:fc:b1:b4:f3:28:7b:83:c5:b5:d9:cb:57: 62:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:40:AB:69:86:FE:2E:14:DA:AA:1C:81:1C:B7:1F:00:8F:4A:E4:FC X509v3 Authority Key Identifier: keyid:DA:CA:83:EB:1F:AF:97:73:D3:50:C7:DC:E6:12:CA:28:14:84:E7:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sqD6x-vl3PTUMfc5hLKKBSE5_w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:e4:21:4f:1f:26:7f:e0:71:a4:f8:7c:9d:79:2a:ed:d3:57: 00:2f:cf:02:a0:9f:85:16:42:0d:06:bf:e0:c4:d8:0e:ee:41: f5:54:e1:c6:ce:57:9f:d8:94:a8:ab:a2:07:ae:4c:e2:78:61: 14:f1:09:bb:f1:50:84:ee:5e:21:7d:95:fc:92:f4:71:cf:59: 12:cc:5f:03:eb:6f:97:d6:b3:3e:d5:ee:a5:02:0d:95:7b:ee: a3:b2:e2:f1:71:39:28:d0:fb:d0:6f:64:34:c8:2c:cd:12:b8: 01:79:43:dc:f3:35:49:da:28:36:50:ae:5e:7c:c1:02:2a:0a: 17:04:71:38:47:b3:93:38:d3:a0:a4:c8:ec:02:f5:7f:87:da: 13:3c:c2:e7:7b:0a:65:20:f2:c3:84:b6:d7:e9:ee:91:6d:f1: 45:e2:8e:4d:65:ab:cc:21:bb:c0:b0:6f:e3:88:5b:46:39:a2: 37:2b:a9:14:6b:88:00:2d:17:12:47:86:61:79:70:6f:61:51: 3f:dd:e5:bb:60:eb:29:b5:cf:bc:19:67:96:50:64:9e:79:b9: 85:fc:05:ae:98:db:46:d7:82:ea:04:9c:64:fa:74:42:38:8b: ec:7f:c1:e5:6c:08:a0:9f:19:4f:94:ac:6a:90:b3:52:ba:1b: b0:19:73:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6yrta2KMI2OR5i+BerkYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhY2E4M2ViMWZhZjk3NzNkMzUwYzdkY2U2MTJjYTI4MTQ4 NGU3ZmMwHhcNMjYwMjA5MTUwMDM0WhcNMjYwMjEwMTUwMDM0WjAzMTEwLwYDVQQD Eyg2MDQwYWI2OTg2ZmUyZTE0ZGFhYTFjODExY2I3MWYwMDhmNGFlNGZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Nk0SpfALhp3w6zbnIO44arktfbO S95bVq2R+mq+RZou84WJXy01pYe02KJuIMMaBUwavLSXKOy/QUYllOQtZxvzFfMP 6sSPQNiOTNHXhS65T9zY9TNXRL3gqVrpIO3oZc/UsAwgVQ82eVOTZG6STsHL/98Y E3XA7XeSJiTKpnU6Num9SfW9Brt58iVvxH4wtYAlDLKJVsLjETvyf2ia8fYsNflh uf6I4/BE4ZsVxCUvFYBQVj2GSYQLwYhriH2gonC2GXXG0p9q1bqng+2+sqr4y/Wl suH9R6X6zwnbxfIbmFj8qFBbHnLyv8AxC73sne/8sbTzKHuDxbXZy1diSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGBAq2mG/i4U2qocgRy3HwCPSuT8MB8GA1UdIwQY MBaAFNrKg+sfr5dz01DH3OYSyigUhOf8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnNxRDZ4LXZsM1BUVU1mYzVoTEtLQlNFNV93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9hZjJlMjItNmU4ZS00OTA1LTllNjUt YjVlYjRjNmI3ZWE4LzEvMnNxRDZ4LXZsM1BUVU1mYzVoTEtLQlNFNV93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9hZjJlMjItNmU4ZS00OTA1LTllNjUtYjVlYjRjNmI3ZWE4 LzEvMnNxRDZ4LXZsM1BUVU1mYzVoTEtLQlNFNV93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmeQhTx8m f+BxpPh8nXkq7dNXAC/PAqCfhRZCDQa/4MTYDu5B9VThxs5Xn9iUqKuiB65M4nhh FPEJu/FQhO5eIX2V/JL0cc9ZEsxfA+tvl9azPtXupQINlXvuo7Li8XE5KND70G9k NMgszRK4AXlD3PM1SdooNlCuXnzBAioKFwRxOEezkzjToKTI7AL1f4faEzzC53sK ZSDyw4S21+nukW3xReKOTWWrzCG7wLBv44hbRjmiNyupFGuIAC0XEkeGYXlwb2FR P93lu2DrKbXPvBlnllBknnm5hfwFrpjbRteC6gScZPp0QjiL7H/B5WwIoJ8ZT5Ss apCzUrobsBlz7g== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:25 2026 by rpki-client