This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft File: 2PWmbP0hpcrXopuOtc2SqkYDIMM.mft (raw, json) Hash identifier: LGIGcY9VGR5CJXmeIJnfP7zE3bdODDWpNo5PMyDIsXc= Subject key identifier: CA:53:B1:A7:B1:B3:37:1B:91:74:38:67:37:EB:8B:CF:D2:12:D3:5D Authority key identifier: D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3 Certificate issuer: /CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3 Certificate serial: 019C4511094A4AB3925FF4B8FA14EBCF3DCF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft Manifest number: 1812 Signing time: Tue 10 Feb 2026 01:01:10 +0000 Manifest this update: Tue 10 Feb 2026 01:01:10 +0000 Manifest next update: Wed 11 Feb 2026 01:01:10 +0000 Files and hashes: 1: 2PWmbP0hpcrXopuOtc2SqkYDIMM.crl (hash: PsVthHuu4UdnTrP3uBuJjsuMSFHWemr+5GNjUYpTcps=) 2: hSitky1wYRTLv14NEnwV-zxWb_o.roa (hash: PA0bbeChQyvoxmLwu2ifsRmhbm5WEw0zyVf1Uu/ZDBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:11:09:4a:4a:b3:92:5f:f4:b8:fa:14:eb:cf:3d:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3 Validity Not Before: Feb 10 01:01:10 2026 GMT Not After : Feb 11 01:01:10 2026 GMT Subject: CN=ca53b1a7b1b3371b9174386737eb8bcfd212d35d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6f:d3:a0:41:f9:f5:99:b2:73:39:79:8a:1c: d1:52:cb:83:fb:8c:89:e7:1a:2c:c0:e6:9a:c3:9d: c2:bc:b7:6e:2a:37:5f:dd:23:36:b8:94:fb:20:72: 23:5d:d0:80:cb:89:18:87:fc:0b:c6:3a:80:76:60: 34:05:7c:7e:c3:93:04:23:65:57:37:06:6c:d4:bb: 1b:16:e0:12:78:ff:bf:54:a5:e0:e6:a2:d1:85:90: 51:08:89:e6:85:3b:68:2e:8a:25:f2:60:3c:d6:4e: 64:4b:f8:fa:60:d8:74:9e:b7:8e:30:35:cd:75:d1: 39:99:36:6c:b3:e0:b4:93:96:aa:1f:3c:27:e4:68: 65:13:f3:f2:22:fc:6c:0a:ae:13:7c:48:87:5d:81: 27:a3:b8:84:8b:50:f4:7a:92:cf:b4:da:f6:92:a7: 08:c8:f4:13:5b:0e:6a:dd:b5:2b:de:11:82:a4:3b: 6a:29:d6:ca:fe:ed:de:63:8b:fa:66:ed:2b:41:12: ff:56:c3:17:f1:18:09:10:2a:55:8f:44:3b:65:56: 71:02:2a:c8:71:58:11:8f:50:d0:9c:0a:ea:ef:01: 43:42:dc:87:e8:4f:af:12:bf:d1:5f:b2:0e:da:27: db:06:46:7d:56:e0:81:0c:5c:90:ce:f6:46:78:d6: 4f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:53:B1:A7:B1:B3:37:1B:91:74:38:67:37:EB:8B:CF:D2:12:D3:5D X509v3 Authority Key Identifier: keyid:D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:4e:52:60:12:bb:23:77:d8:05:27:25:34:c9:f8:bc:b3:7c: 62:c8:06:87:48:f1:2b:1b:4d:04:31:7e:9e:06:ea:eb:be:eb: 70:95:1c:31:7c:52:91:ea:81:19:90:c5:e8:56:70:25:03:9c: 5c:b2:e7:93:f6:28:75:14:13:16:97:77:d6:d6:a0:4e:12:81: 6d:83:54:eb:04:b3:92:a6:8a:8d:00:f3:a9:cb:7e:70:16:2d: 2d:c5:d5:0a:d8:61:90:d1:e7:e0:02:41:10:30:38:31:32:a2: 88:49:9a:d8:cf:1b:d1:48:e4:af:a2:15:81:c6:65:57:a4:20: 24:91:11:ab:7c:af:f4:a4:48:6b:43:e7:a3:55:70:77:a8:90: 6d:5b:09:29:d1:e8:1d:2d:1a:e7:d1:9b:be:dc:7f:38:28:6b: c0:6a:d9:ac:a3:ae:46:6f:f0:f6:b0:33:fd:4b:b2:74:f7:49: 0f:a3:15:6c:72:98:14:a4:d7:3c:47:7b:4d:0a:67:bf:27:ab: b4:e7:f1:d6:15:72:b1:d7:99:aa:ab:d4:80:d3:1d:3c:f6:8f: 5b:05:df:f7:e9:50:24:2a:31:67:6a:35:2c:36:82:29:ec:d4: a5:b0:96:4c:49:7d:4d:d3:06:f4:f3:3f:29:09:ca:cf:fd:08: 95:d6:97:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEQlKSrOSX/S4+hTrzz3PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZjVhNjZjZmQyMWE1Y2FkN2EyOWI4ZWI1Y2Q5MmFhNDYw MzIwYzMwHhcNMjYwMjEwMDEwMTEwWhcNMjYwMjExMDEwMTEwWjAzMTEwLwYDVQQD EyhjYTUzYjFhN2IxYjMzNzFiOTE3NDM4NjczN2ViOGJjZmQyMTJkMzVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1W/ToEH59Zmyczl5ihzRUsuD+4yJ 5xoswOaaw53CvLduKjdf3SM2uJT7IHIjXdCAy4kYh/wLxjqAdmA0BXx+w5MEI2VX NwZs1LsbFuASeP+/VKXg5qLRhZBRCInmhTtoLool8mA81k5kS/j6YNh0nreOMDXN ddE5mTZss+C0k5aqHzwn5GhlE/PyIvxsCq4TfEiHXYEno7iEi1D0epLPtNr2kqcI yPQTWw5q3bUr3hGCpDtqKdbK/u3eY4v6Zu0rQRL/VsMX8RgJECpVj0Q7ZVZxAirI cVgRj1DQnArq7wFDQtyH6E+vEr/RX7IO2ifbBkZ9VuCBDFyQzvZGeNZPnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMpTsaexszcbkXQ4Zzfri8/SEtNdMB8GA1UdIwQY MBaAFNj1pmz9IaXK16KbjrXNkqpGAyDDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9mZTIwZmYtNjU5MC00ZmIwLWI2NTct ODIxMGRiNzA0OWIxLzEvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy9mZTIwZmYtNjU5MC00ZmIwLWI2NTctODIxMGRiNzA0OWIx LzEvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVU5SYBK7 I3fYBSclNMn4vLN8YsgGh0jxKxtNBDF+ngbq677rcJUcMXxSkeqBGZDF6FZwJQOc XLLnk/YodRQTFpd31tagThKBbYNU6wSzkqaKjQDzqct+cBYtLcXVCthhkNHn4AJB EDA4MTKiiEma2M8b0Ujkr6IVgcZlV6QgJJERq3yv9KRIa0Pno1Vwd6iQbVsJKdHo HS0a59Gbvtx/OChrwGrZrKOuRm/w9rAz/UuydPdJD6MVbHKYFKTXPEd7TQpnvyer tOfx1hVysdeZqqvUgNMdPPaPWwXf9+lQJCoxZ2o1LDaCKezUpbCWTEl9TdMG9PM/ KQnKz/0IldaXkw== -----END CERTIFICATE-----Generated at Tue Feb 10 05:50:47 2026 by rpki-client