This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json) Hash identifier: h5fmlAg514HUk+j2dJmvpSidLMvETq3Y2b8ifF2OBIE= Subject key identifier: 2F:2B:7F:5E:49:C4:A9:60:B7:43:F0:6F:4E:F5:BC:94:92:7D:8D:6D Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df Certificate serial: 019C439097CCFDCB21B3F2719CF2C3F9B34A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft Manifest number: 04BF Signing time: Mon 09 Feb 2026 18:01:15 +0000 Manifest this update: Mon 09 Feb 2026 18:01:15 +0000 Manifest next update: Tue 10 Feb 2026 18:01:15 +0000 Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: extMD+kXtD9Y13IHsOcd5z7Pjbf7um1rnDAb4ZRvIHA=) 2: 4vjv7ETAasx0tRKIpHxecSePkHs.roa (hash: 2AsMwZr9rbOc2Qfm0AhPalnC6K6xXB1YyB0oF7P/lrY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:97:cc:fd:cb:21:b3:f2:71:9c:f2:c3:f9:b3:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df Validity Not Before: Feb 9 18:01:15 2026 GMT Not After : Feb 10 18:01:15 2026 GMT Subject: CN=2f2b7f5e49c4a960b743f06f4ef5bc94927d8d6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:77:bf:ed:76:a8:a1:a9:35:57:06:a5:66: bf:85:03:1c:a3:58:74:8a:dd:46:aa:e6:2e:fb:48: ff:cf:40:82:19:37:a2:3f:3f:3e:73:fe:41:c5:0f: 8f:0d:fe:2e:22:a0:40:f7:23:e5:34:26:21:3a:9d: ac:e6:c2:7c:da:25:73:5f:74:33:e9:7a:d3:3b:13: da:e6:09:23:83:36:8e:27:14:1f:db:2f:35:4a:e3: 0e:93:46:c6:77:a7:91:a9:c8:79:20:b2:47:da:c4: 5f:f1:b1:55:41:08:ad:40:5f:3f:20:de:0a:d0:a4: bd:d4:c4:ab:02:5f:7a:31:be:88:33:53:88:bd:23: b7:fa:bf:4f:d9:c8:7a:cd:b8:d2:d2:05:b6:9d:66: 36:69:0c:8b:29:5c:ba:c7:43:54:43:03:50:96:ed: 3d:cb:9b:49:99:25:ae:41:54:bf:c9:53:6d:b7:f7: 6a:a5:b7:ab:9e:2d:0c:f8:1f:48:9d:48:9d:9f:e9: 6f:57:a3:18:03:fa:80:b2:1b:f9:5f:22:59:92:05: d3:e8:52:85:a8:e6:a5:bb:45:9b:43:38:6a:02:d7: e9:b8:98:a7:14:e7:87:03:8b:2a:29:1d:f9:3e:24: 23:4b:c2:89:94:07:4b:c3:ee:e2:b9:98:03:f1:c0: 65:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:2B:7F:5E:49:C4:A9:60:B7:43:F0:6F:4E:F5:BC:94:92:7D:8D:6D X509v3 Authority Key Identifier: keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:c1:84:ea:22:78:bd:1a:df:2a:96:ed:17:cb:43:f6:86:ae: 55:4b:c4:73:21:e7:ec:8d:d4:c1:72:34:b2:55:17:ca:87:0e: ce:9b:7b:f6:13:43:57:b7:09:88:ea:9b:19:4d:65:af:20:c0: 7c:ff:1d:68:d3:8c:86:36:2b:0d:63:82:ea:04:e7:6a:99:48: 5e:22:0e:70:5c:d8:63:24:df:5f:01:5d:46:e5:cc:e7:85:8b: 59:43:b3:c8:b9:5c:da:a7:0d:34:2c:7a:37:40:65:d0:4a:58: a7:31:6b:16:7d:e4:81:74:bd:07:99:e8:e9:5d:71:4c:b6:8e: 70:83:42:95:ac:89:3c:a1:a9:32:29:55:4d:81:6c:3b:6d:8e: 94:3c:f2:86:f0:4d:aa:ca:ef:c2:f6:7c:14:bd:78:4a:35:b2: 34:e6:a0:b0:64:ad:99:57:51:29:a7:e9:8b:e9:f5:3e:cf:6d: 61:1c:fc:95:64:e8:90:6b:d5:03:08:93:16:81:cd:31:03:c8: 42:f0:b5:e2:8e:ab:e3:ea:f7:91:57:cc:fc:3a:c0:fe:07:76: c8:e7:39:37:21:cb:ec:a9:25:d9:79:25:bf:0b:9c:d7:be:20: 01:29:be:c6:51:24:f3:ba:88:af:37:19:88:5d:bc:a8:3e:f9: cf:44:99:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkJfM/cshs/JxnPLD+bNKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4OWYxNmY1NzQ5MjQzMzc4ZjgxNGM5NGIyNDAzNGQ3NGIz OTI3ZGYwHhcNMjYwMjA5MTgwMTE1WhcNMjYwMjEwMTgwMTE1WjAzMTEwLwYDVQQD EygyZjJiN2Y1ZTQ5YzRhOTYwYjc0M2YwNmY0ZWY1YmM5NDkyN2Q4ZDZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUd3v+12qKGpNVcGpWa/hQMco1h0 it1GquYu+0j/z0CCGTeiPz8+c/5BxQ+PDf4uIqBA9yPlNCYhOp2s5sJ82iVzX3Qz 6XrTOxPa5gkjgzaOJxQf2y81SuMOk0bGd6eRqch5ILJH2sRf8bFVQQitQF8/IN4K 0KS91MSrAl96Mb6IM1OIvSO3+r9P2ch6zbjS0gW2nWY2aQyLKVy6x0NUQwNQlu09 y5tJmSWuQVS/yVNtt/dqpberni0M+B9InUidn+lvV6MYA/qAshv5XyJZkgXT6FKF qOalu0WbQzhqAtfpuJinFOeHA4sqKR35PiQjS8KJlAdLw+7iuZgD8cBlYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC8rf15JxKlgt0Pwb071vJSSfY1tMB8GA1UdIwQY MBaAFNifFvV0kkM3j4FMlLJANNdLOSffMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi83OTdlNjUtM2RhMC00ZDZlLWI2OTUt MzQ2YmQ5NzNjODQzLzEvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi83OTdlNjUtM2RhMC00ZDZlLWI2OTUtMzQ2YmQ5NzNjODQz LzEvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdsGE6iJ4 vRrfKpbtF8tD9oauVUvEcyHn7I3UwXI0slUXyocOzpt79hNDV7cJiOqbGU1lryDA fP8daNOMhjYrDWOC6gTnaplIXiIOcFzYYyTfXwFdRuXM54WLWUOzyLlc2qcNNCx6 N0Bl0EpYpzFrFn3kgXS9B5no6V1xTLaOcINClayJPKGpMilVTYFsO22OlDzyhvBN qsrvwvZ8FL14SjWyNOagsGStmVdRKafpi+n1Ps9tYRz8lWTokGvVAwiTFoHNMQPI QvC14o6r4+r3kVfM/DrA/gd2yOc5NyHL7Kkl2Xklvwuc174gASm+xlEk87qIrzcZ iF28qD75z0SZ+A== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:52 2026 by rpki-client