This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft File: 2f-H9S43t2bsv0s_nLJlWN0wiCA.mft (raw, json) Hash identifier: vjuopI8YLvezYsVDsCoKYVxBsJ+N4XDP1uS0fGU7UWk= Subject key identifier: B3:D0:4D:35:9A:0E:03:31:2C:31:16:37:D6:54:F4:0C:73:7E:CC:BE Authority key identifier: D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20 Certificate issuer: /CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820 Certificate serial: 019C43C6A599F9FD17D453C3C252F38B1E3B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft Manifest number: 0DDF Signing time: Mon 09 Feb 2026 19:00:17 +0000 Manifest this update: Mon 09 Feb 2026 19:00:17 +0000 Manifest next update: Tue 10 Feb 2026 19:00:17 +0000 Files and hashes: 1: 2f-H9S43t2bsv0s_nLJlWN0wiCA.crl (hash: pvgxEwQAAgZkm5Fl70jg0ohRY48UsABz3ZAmWRNcs3c=) 2: 4FYy4IVc0E0edu7Aspaqd269s3k.roa (hash: AewBAICqPk/AoyYo2Nui0QpeK5+BqYlSJNp/7pYYLxg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:a5:99:f9:fd:17:d4:53:c3:c2:52:f3:8b:1e:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820 Validity Not Before: Feb 9 19:00:17 2026 GMT Not After : Feb 10 19:00:17 2026 GMT Subject: CN=b3d04d359a0e03312c311637d654f40c737eccbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d6:0b:c1:56:ff:b1:ed:4d:68:7c:4b:32:ef: d6:f9:a4:67:73:a7:ce:2f:73:41:24:04:48:02:1b: 20:4e:9b:29:5e:40:67:51:66:4d:c6:60:5a:e7:52: be:c1:dc:90:cb:f1:0d:8c:6a:37:d5:e3:f9:18:d1: fd:09:fc:f1:dc:b9:65:80:cd:e7:ae:f1:2e:b6:61: b0:21:19:14:d3:ed:d6:48:21:b9:1a:99:60:36:8f: 96:8a:9a:1d:2a:0e:7d:00:df:02:d1:36:1d:cd:49: 02:04:ae:91:ea:06:73:ae:1a:7c:d6:e4:4f:d9:ef: 5b:b7:f5:0f:4a:33:93:0e:94:b2:83:c2:24:7a:e6: a8:d2:7a:72:5d:2e:c3:3d:2b:73:ff:44:93:1c:97: 58:a8:71:10:19:6e:5e:cc:fb:e1:98:4f:9f:f4:bb: c9:18:92:bc:b9:53:a5:a6:1e:43:b4:ed:6e:10:86: 9b:b3:3c:1d:49:8f:a9:7f:35:67:72:1b:89:6a:26: 7e:ff:84:65:e3:a8:a0:a0:1b:43:f8:6d:d1:6b:33: df:a3:b9:f5:1c:fe:67:2a:16:19:d3:b4:b0:46:58: 02:d7:a7:c1:da:cf:b1:57:e2:1e:0b:90:3b:52:03: 7b:86:e6:2d:62:94:b2:84:5d:bb:28:09:4a:a4:9e: 5c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D0:4D:35:9A:0E:03:31:2C:31:16:37:D6:54:F4:0C:73:7E:CC:BE X509v3 Authority Key Identifier: keyid:D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:42:58:b7:2b:bb:f8:3e:7b:32:77:fe:76:e9:17:77:85:eb: 15:1f:ea:b5:ab:fd:18:41:c8:5a:bb:da:33:1b:c9:68:4c:d5: a7:05:34:83:5d:04:d7:f9:03:28:47:08:67:0b:7b:f8:d9:31: 25:ec:07:79:1c:fe:af:b5:f0:ee:83:64:f7:4d:ad:6f:0a:f1: 8d:82:e7:18:04:a9:26:61:bd:a7:67:5d:95:aa:9e:22:38:d3: 00:ad:75:f2:95:d6:64:23:11:be:55:4b:a4:b2:f6:4a:3c:9c: b2:57:99:bb:77:16:8f:e3:ba:03:9b:82:7e:df:e9:91:32:9d: 18:f8:3c:c4:3f:3b:c0:58:dd:fa:5b:20:f8:a6:bc:03:c0:3c: ac:d0:29:73:71:21:0c:8e:e5:29:86:86:3a:4a:66:cf:34:89: 37:d2:7f:db:8e:fc:3b:ae:e9:63:c9:6a:ff:d4:15:ed:8d:e7: 20:88:4f:e5:1c:79:68:c4:2e:92:43:cb:f7:dc:50:92:e9:4d: 63:7b:3a:01:57:9f:7d:5b:48:7e:6b:98:fe:02:0b:bc:49:bf: e3:a7:f3:28:23:29:c8:cf:1b:f7:3b:54:6e:1f:2b:49:23:de: 1b:b2:c4:57:d2:4e:14:a6:d2:cf:34:27:ec:03:08:bd:e1:6d: a7:82:8f:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxqWZ+f0X1FPDwlLzix47MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZmY4N2Y1MmUzN2I3NjZlY2JmNGIzZjljYjI2NTU4ZGQz MDg4MjAwHhcNMjYwMjA5MTkwMDE3WhcNMjYwMjEwMTkwMDE3WjAzMTEwLwYDVQQD EyhiM2QwNGQzNTlhMGUwMzMxMmMzMTE2MzdkNjU0ZjQwYzczN2VjY2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdYLwVb/se1NaHxLMu/W+aRnc6fO L3NBJARIAhsgTpspXkBnUWZNxmBa51K+wdyQy/ENjGo31eP5GNH9Cfzx3LllgM3n rvEutmGwIRkU0+3WSCG5GplgNo+WipodKg59AN8C0TYdzUkCBK6R6gZzrhp81uRP 2e9bt/UPSjOTDpSyg8Ikeuao0npyXS7DPStz/0STHJdYqHEQGW5ezPvhmE+f9LvJ GJK8uVOlph5DtO1uEIabszwdSY+pfzVnchuJaiZ+/4Rl46igoBtD+G3RazPfo7n1 HP5nKhYZ07SwRlgC16fB2s+xV+IeC5A7UgN7huYtYpSyhF27KAlKpJ5c3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLPQTTWaDgMxLDEWN9ZU9Axzfsy+MB8GA1UdIwQY MBaAFNn/h/UuN7dm7L9LP5yyZVjdMIggMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmYtSDlTNDN0MmJzdjBzX25MSmxXTjB3aUNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9lMmFhZDgtZTIxMi00ODI4LWE1ZmMt MWU3MzAwY2NkYTM2LzEvMmYtSDlTNDN0MmJzdjBzX25MSmxXTjB3aUNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi9lMmFhZDgtZTIxMi00ODI4LWE1ZmMtMWU3MzAwY2NkYTM2 LzEvMmYtSDlTNDN0MmJzdjBzX25MSmxXTjB3aUNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtEJYtyu7 +D57Mnf+dukXd4XrFR/qtav9GEHIWrvaMxvJaEzVpwU0g10E1/kDKEcIZwt7+Nkx JewHeRz+r7Xw7oNk902tbwrxjYLnGASpJmG9p2ddlaqeIjjTAK118pXWZCMRvlVL pLL2SjycsleZu3cWj+O6A5uCft/pkTKdGPg8xD87wFjd+lsg+Ka8A8A8rNApc3Eh DI7lKYaGOkpmzzSJN9J/2478O67pY8lq/9QV7Y3nIIhP5Rx5aMQukkPL99xQkulN Y3s6AVeffVtIfmuY/gILvEm/46fzKCMpyM8b9ztUbh8rSSPeG7LEV9JOFKbSzzQn 7AMIveFtp4KPTg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:12 2026 by rpki-client