This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json) Hash identifier: pyhUBjAuDK3xm3JGzVQa+64ZWv/b6ZFpTTLODAsEolg= Subject key identifier: BD:53:6B:E8:FD:B6:90:D2:12:4A:8D:CB:1B:F5:D3:E8:B6:6E:25:58 Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55 Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955 Certificate serial: 019C4246849358FA9096EBCC186C16F6B0C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft Manifest number: 0D68 Signing time: Mon 09 Feb 2026 12:00:43 +0000 Manifest this update: Mon 09 Feb 2026 12:00:43 +0000 Manifest next update: Tue 10 Feb 2026 12:00:43 +0000 Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: pJuP8aiqIOuE+SXmvd4cLYqxqsZLg/CzW768gxUZA2k=) 2: 55I-KJfDZCQf3-WIzaOmHLDw0UA.roa (hash: CHL8cZMB7OLAW5NGioo9AKdHll+9RPJn2SB7b3DCiOk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:84:93:58:fa:90:96:eb:cc:18:6c:16:f6:b0:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955 Validity Not Before: Feb 9 12:00:43 2026 GMT Not After : Feb 10 12:00:43 2026 GMT Subject: CN=bd536be8fdb690d2124a8dcb1bf5d3e8b66e2558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:12:76:94:5f:7e:9e:cc:4e:ae:31:b5:c6:82: 3b:7a:12:82:0d:e2:c9:8c:8b:b7:58:30:f1:36:57: 23:1d:24:a2:e1:3b:32:11:d2:18:78:5f:58:f4:bf: 2b:d7:fc:23:b9:25:ac:91:c1:93:55:b3:9f:44:b5: 2e:de:6f:48:4d:1a:27:00:ae:1e:5f:8e:65:12:19: 78:0e:c4:43:9d:60:99:46:9b:61:f1:13:03:28:33: f0:93:32:f2:e1:a4:ba:8d:28:29:eb:92:4b:9a:22: 1a:a6:8c:bf:45:51:27:bb:1b:e2:3d:4d:26:dc:ee: 95:8b:6c:2d:43:73:92:06:a1:99:31:98:f8:7a:9a: f0:3e:83:9b:59:14:d9:bf:6f:a5:9d:be:29:96:0f: 60:4c:47:d2:4d:8a:74:7c:43:22:f0:35:f5:5b:ea: 18:43:b2:ea:63:bf:cd:af:e1:91:5a:53:49:22:be: bd:0f:42:97:61:23:a8:ba:8a:68:b4:7f:57:3e:be: 14:33:b3:cc:a9:47:ad:3f:26:45:30:76:b2:c2:b1: c6:06:37:6f:b7:51:e6:54:88:d2:cf:00:b9:95:a6: 21:be:50:03:bc:df:5e:31:ba:1e:08:83:d0:6e:85: d5:8c:72:e8:8f:7a:76:31:89:d2:2a:b5:c8:85:43: fd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:53:6B:E8:FD:B6:90:D2:12:4A:8D:CB:1B:F5:D3:E8:B6:6E:25:58 X509v3 Authority Key Identifier: keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:34:28:48:73:55:50:7a:91:93:6d:6f:82:82:4f:db:8c:33: 39:98:13:18:d5:26:5f:84:46:65:3f:73:93:e2:98:bd:2f:7c: 35:ae:97:23:a1:91:a7:78:6e:87:1e:c5:38:49:c4:d1:45:61: 20:1e:6a:81:4c:d7:52:77:69:3d:92:14:6e:ff:32:6a:9c:b8: ee:52:fe:21:2a:2e:5f:29:5b:1f:5b:90:fb:fe:2a:6d:a5:43: cd:45:30:f8:e1:fc:37:f8:3a:40:9b:36:42:c1:70:cf:ee:84: a6:eb:3a:60:82:2a:81:31:c7:ca:d2:12:81:e4:02:eb:db:cc: 36:0c:70:95:ec:5b:39:67:3a:5e:b7:b3:7d:4f:7a:e9:0a:1c: 4c:f7:53:6c:a8:01:fb:9a:21:64:f8:8a:b4:42:9b:1c:e4:7d: df:6f:2f:76:f0:47:ef:2c:26:a1:e8:ba:a4:d4:9e:82:9b:75: b7:06:c7:78:22:7b:94:04:62:c3:e2:7c:46:15:db:f4:d0:0f: 49:04:09:82:31:4b:f3:d0:b8:a6:35:3c:40:d4:9d:f9:0b:c8: 73:10:c3:16:53:33:90:43:b9:ad:64:a7:c5:47:00:6a:72:3e: 71:d1:3c:6d:e9:ae:4a:30:06:af:e7:ee:7c:9d:61:0d:ab:6a: 76:d9:c9:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRoSTWPqQluvMGGwW9rDBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4YTNjYWNkZjhmMzM1MTRiZTNhYmRjNTJjNTBlYzg2NDY3 NWU5NTUwHhcNMjYwMjA5MTIwMDQzWhcNMjYwMjEwMTIwMDQzWjAzMTEwLwYDVQQD EyhiZDUzNmJlOGZkYjY5MGQyMTI0YThkY2IxYmY1ZDNlOGI2NmUyNTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xJ2lF9+nsxOrjG1xoI7ehKCDeLJ jIu3WDDxNlcjHSSi4TsyEdIYeF9Y9L8r1/wjuSWskcGTVbOfRLUu3m9ITRonAK4e X45lEhl4DsRDnWCZRpth8RMDKDPwkzLy4aS6jSgp65JLmiIapoy/RVEnuxviPU0m 3O6Vi2wtQ3OSBqGZMZj4eprwPoObWRTZv2+lnb4plg9gTEfSTYp0fEMi8DX1W+oY Q7LqY7/Nr+GRWlNJIr69D0KXYSOouopotH9XPr4UM7PMqUetPyZFMHaywrHGBjdv t1HmVIjSzwC5laYhvlADvN9eMboeCIPQboXVjHLoj3p2MYnSKrXIhUP9TQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL1Ta+j9tpDSEkqNyxv10+i2biVYMB8GA1UdIwQY MBaAFNijys348zUUvjq9xSxQ7IZGdelVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zMzNjMWEtZTRhNS00OTZkLTlhODEt Yjc5MWI5ODlhZjI5LzEvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8zMzNjMWEtZTRhNS00OTZkLTlhODEtYjc5MWI5ODlhZjI5 LzEvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlDQoSHNV UHqRk21vgoJP24wzOZgTGNUmX4RGZT9zk+KYvS98Na6XI6GRp3huhx7FOEnE0UVh IB5qgUzXUndpPZIUbv8yapy47lL+ISouXylbH1uQ+/4qbaVDzUUw+OH8N/g6QJs2 QsFwz+6Epus6YIIqgTHHytISgeQC69vMNgxwlexbOWc6XrezfU966QocTPdTbKgB +5ohZPiKtEKbHOR9328vdvBH7ywmoei6pNSegpt1twbHeCJ7lARiw+J8RhXb9NAP SQQJgjFL89C4pjU8QNSd+QvIcxDDFlMzkEO5rWSnxUcAanI+cdE8bemuSjAGr+fu fJ1hDatqdtnJmA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:42 2026 by rpki-client