This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json) Hash identifier: dKNjB+JioGugP7X07eLpvwZVm7YZqMeQzQqmdiyv8WE= Subject key identifier: 91:87:87:7D:ED:87:4E:14:A9:D1:AB:86:BA:F6:29:55:1B:70:82:4C Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a Certificate serial: 019C42B47A337946E006498C54982E143BCD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft Manifest number: 13DE Signing time: Mon 09 Feb 2026 14:00:49 +0000 Manifest this update: Mon 09 Feb 2026 14:00:49 +0000 Manifest next update: Tue 10 Feb 2026 14:00:49 +0000 Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: AgA7kjAReevRrBS2wVuLvsQOQuoQBQ/HSJDcJWeHIvc=) 2: D5r66qCGlpT6UM1S2JZDnwLEq_g.roa (hash: AsE96zhoWPvQynJOqug2jdhORzzqgKtcCYsyjnQ29Aw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:7a:33:79:46:e0:06:49:8c:54:98:2e:14:3b:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a Validity Not Before: Feb 9 14:00:49 2026 GMT Not After : Feb 10 14:00:49 2026 GMT Subject: CN=9187877ded874e14a9d1ab86baf629551b70824c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:05:47:78:9b:0d:08:82:b4:96:99:a7:5c:4c: d9:6b:bd:51:46:50:9e:7a:5f:24:27:9d:06:b3:d5: 83:6d:40:70:fe:c0:cd:99:e9:b2:17:19:06:e8:e7: 62:e7:ba:f7:63:94:5a:23:b8:79:3f:01:88:bf:d5: ee:e4:0e:cf:84:5a:17:67:31:56:7d:43:f3:70:f2: d7:ec:bd:9b:8a:1b:94:6d:0a:64:82:df:ac:32:5c: 80:c8:fc:83:77:7e:42:f9:4b:61:93:65:f1:a2:d2: 9b:72:36:8b:3e:93:b3:5f:13:d4:4c:56:70:c1:d3: 14:68:0e:74:5e:61:83:7f:38:1a:93:bc:00:a0:0f: 73:ad:0b:b3:0d:20:ff:c9:33:07:c3:87:26:8a:a0: 8d:6d:18:39:f9:d3:66:2d:2a:e2:a6:34:5a:e5:81: 67:7f:11:90:55:df:4b:f3:8c:b8:81:32:50:90:72: 04:b6:38:a9:9a:35:90:cf:50:5a:1b:c9:1d:cf:1c: a5:5a:bc:be:be:71:dc:61:dc:47:2a:52:94:ef:fb: 7a:ea:e4:4b:5d:1b:40:33:02:60:95:de:9c:2e:8b: 82:9a:42:50:20:8f:6f:fe:90:6d:aa:51:98:a2:c8: d7:08:6a:9e:ff:c1:2d:2b:35:bf:ff:d1:f6:00:bd: 0d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:87:87:7D:ED:87:4E:14:A9:D1:AB:86:BA:F6:29:55:1B:70:82:4C X509v3 Authority Key Identifier: keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:2f:67:33:78:1e:63:20:01:43:a9:43:52:aa:e8:81:d3:7c: 54:e2:1c:4c:ff:14:39:4f:8b:da:84:74:c8:bd:2f:bc:b4:f9: ba:ae:ca:b9:30:69:20:39:62:1f:84:87:06:7d:01:6b:e3:88: b1:ae:61:f3:d9:a1:8a:83:c3:fe:76:b1:e0:f9:68:83:31:92: d2:43:e6:03:2d:71:be:27:e8:05:49:51:72:0b:f7:6b:09:b3: de:3a:6c:ec:34:37:cc:c7:1f:9e:53:aa:80:12:1f:e7:86:f9: 41:b1:a8:e9:60:7f:f0:63:6e:b7:f9:73:84:c1:f8:c1:e9:59: 0e:8c:98:57:dc:3c:fd:53:f1:01:76:58:5e:8d:61:93:da:4b: 60:89:1c:bf:e5:8e:f3:64:2d:c2:50:46:9e:9b:d1:25:11:4f: 5d:28:db:a1:db:ec:17:67:0f:e0:9d:ce:50:66:b1:b3:2d:88: 38:9f:55:a7:93:a6:36:f7:74:10:eb:c6:5f:aa:8d:0f:ce:83: c3:0c:9b:71:1c:89:f1:6f:ed:ab:15:9f:5b:8e:20:f9:4f:98: 4a:e6:44:d0:9b:ce:74:f7:5c:db:da:3e:42:3f:4c:6b:f7:57: 4f:18:78:47:bb:cb:f5:57:18:1b:25:64:0a:c0:ee:86:a2:19: d9:96:f7:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtHozeUbgBkmMVJguFDvNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZjE5ZjA1Y2NmMjIyMTM5ODQ2OWMwYmU4ZGRjMDRjZTE0 ZTEzNWEwHhcNMjYwMjA5MTQwMDQ5WhcNMjYwMjEwMTQwMDQ5WjAzMTEwLwYDVQQD Eyg5MTg3ODc3ZGVkODc0ZTE0YTlkMWFiODZiYWY2Mjk1NTFiNzA4MjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/AVHeJsNCIK0lpmnXEzZa71RRlCe el8kJ50Gs9WDbUBw/sDNmemyFxkG6Odi57r3Y5RaI7h5PwGIv9Xu5A7PhFoXZzFW fUPzcPLX7L2bihuUbQpkgt+sMlyAyPyDd35C+Uthk2XxotKbcjaLPpOzXxPUTFZw wdMUaA50XmGDfzgak7wAoA9zrQuzDSD/yTMHw4cmiqCNbRg5+dNmLSripjRa5YFn fxGQVd9L84y4gTJQkHIEtjipmjWQz1BaG8kdzxylWry+vnHcYdxHKlKU7/t66uRL XRtAMwJgld6cLouCmkJQII9v/pBtqlGYosjXCGqe/8EtKzW//9H2AL0NsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJGHh33th04UqdGrhrr2KVUbcIJMMB8GA1UdIwQY MBaAFNnxnwXM8iITmEacC+jdwEzhThNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmZHZkJjenlJaE9ZUnB3TDZOM0FUT0ZPRTFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS82ZTMyNDYtZmJhNi00ZTFkLTgwODkt NGZmMzMzMzgzNjFlLzEvMmZHZkJjenlJaE9ZUnB3TDZOM0FUT0ZPRTFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS82ZTMyNDYtZmJhNi00ZTFkLTgwODktNGZmMzMzMzgzNjFl LzEvMmZHZkJjenlJaE9ZUnB3TDZOM0FUT0ZPRTFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAni9nM3ge YyABQ6lDUqrogdN8VOIcTP8UOU+L2oR0yL0vvLT5uq7KuTBpIDliH4SHBn0Ba+OI sa5h89mhioPD/nax4PlogzGS0kPmAy1xvifoBUlRcgv3awmz3jps7DQ3zMcfnlOq gBIf54b5QbGo6WB/8GNut/lzhMH4welZDoyYV9w8/VPxAXZYXo1hk9pLYIkcv+WO 82QtwlBGnpvRJRFPXSjbodvsF2cP4J3OUGaxsy2IOJ9Vp5OmNvd0EOvGX6qND86D wwybcRyJ8W/tqxWfW44g+U+YSuZE0JvOdPdc29o+Qj9Ma/dXTxh4R7vL9VcYGyVk CsDuhqIZ2Zb3jA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:12 2026 by rpki-client