This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft File: 2lNAluw_e_xU1lT84PAWitlmIs0.mft (raw, json) Hash identifier: UOxB4jiKU+5bPFiRQB1bgDv0YXiV9zw+Y2/zOWy9b1M= Subject key identifier: D6:49:F3:C5:50:8E:7B:08:53:92:5F:82:00:03:E5:51:67:F9:FF:63 Authority key identifier: DA:53:40:96:EC:3F:7B:FC:54:D6:54:FC:E0:F0:16:8A:D9:66:22:CD Certificate issuer: /CN=da534096ec3f7bfc54d654fce0f0168ad96622cd Certificate serial: 019C42B4621A0027539088900E8EAEEAB96D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft Manifest number: 0575 Signing time: Mon 09 Feb 2026 14:00:43 +0000 Manifest this update: Mon 09 Feb 2026 14:00:43 +0000 Manifest next update: Tue 10 Feb 2026 14:00:43 +0000 Files and hashes: 1: 2lNAluw_e_xU1lT84PAWitlmIs0.crl (hash: NHqjCgf1r/seWbEYPLhrm++YP2DyngcFGtZ6WaYgmjw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:62:1a:00:27:53:90:88:90:0e:8e:ae:ea:b9:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da534096ec3f7bfc54d654fce0f0168ad96622cd Validity Not Before: Feb 9 14:00:43 2026 GMT Not After : Feb 10 14:00:43 2026 GMT Subject: CN=d649f3c5508e7b0853925f820003e55167f9ff63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c4:ff:0a:40:0d:29:17:7d:14:28:47:28:fa: 55:46:34:ce:99:31:dd:62:e3:84:47:f7:de:a1:b3: 65:e4:cd:fc:41:0c:45:b3:de:71:5b:ad:ef:c1:ea: e7:80:cb:a1:12:91:03:c4:5f:19:5e:5a:4a:a1:2d: 7f:82:47:90:40:d6:0b:9c:4f:e3:33:82:2f:81:f8: 4b:6c:c0:db:57:ea:fc:ae:ab:3d:4c:5b:c7:4a:21: bc:39:67:1d:1c:89:16:87:f5:0c:c1:7c:fe:9c:1b: ca:23:92:e5:b7:7e:fd:f8:8b:d4:00:d4:e3:b1:16: 08:cf:45:2e:cf:3f:cb:df:ee:c5:10:bc:19:b7:bc: 7f:4e:3e:80:35:91:88:15:7e:02:a5:19:9f:3d:35: 13:05:14:77:8e:71:46:32:0d:ee:79:53:f7:fa:f5: 2e:cb:9d:a1:c3:55:9e:59:b4:be:76:4a:c7:33:61: 6b:e9:2d:54:97:98:20:29:6b:7b:d1:b6:90:76:23: 6c:ea:05:0e:90:f8:c4:8b:43:e9:22:b6:95:5d:6d: 82:09:94:1e:7b:1f:2a:a3:54:a3:c6:86:e0:8b:03: 41:fd:fd:2e:19:95:ca:cb:d6:7a:1c:12:a6:44:05: 77:ef:b8:8a:dc:49:e3:e2:3c:4f:0a:c2:6f:1a:12: 13:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:49:F3:C5:50:8E:7B:08:53:92:5F:82:00:03:E5:51:67:F9:FF:63 X509v3 Authority Key Identifier: keyid:DA:53:40:96:EC:3F:7B:FC:54:D6:54:FC:E0:F0:16:8A:D9:66:22:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:e9:91:97:1f:e2:33:f0:46:9b:0e:62:6e:34:91:e8:b1:bd: 1c:54:2a:10:ad:fb:ab:8a:27:73:17:07:7a:62:ad:4a:f1:2f: b3:94:c1:0b:97:a4:db:95:4d:4b:50:06:0f:28:7a:a6:30:d4: fa:6d:70:d7:8a:17:3b:03:6d:06:2e:b5:1a:70:44:b0:1a:38: 74:81:1b:19:f5:a7:17:fb:b6:7e:80:eb:d8:8f:a5:45:29:c1: 20:10:a4:c0:c1:d9:8b:3f:68:7d:64:76:bf:af:05:b6:e5:c7: cf:8c:57:f9:1e:8b:26:2b:b8:14:d1:c8:77:c5:25:62:03:c8: 69:b5:9b:6f:dc:0f:98:44:ec:81:ae:60:7d:41:31:52:08:10: 0d:78:6a:b0:42:ab:fd:9d:f4:99:1f:80:a0:60:aa:dc:be:61: 17:41:62:fe:ea:7b:8f:09:ac:e5:38:00:c8:26:f4:11:c2:db: f5:50:c9:5a:fa:1a:0b:a0:dc:79:94:c3:c0:3b:f0:97:c8:38: 24:dc:ea:92:35:5f:3a:85:fc:94:f2:9a:ba:51:e8:5a:47:14: 02:90:0c:88:cb:3f:d7:77:68:f5:8c:aa:3f:09:0d:2c:6c:07: 01:74:c2:06:72:9e:72:e4:89:91:c8:d6:28:8d:0a:30:cc:86: 36:e6:ad:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtGIaACdTkIiQDo6u6rltMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhNTM0MDk2ZWMzZjdiZmM1NGQ2NTRmY2UwZjAxNjhhZDk2 NjIyY2QwHhcNMjYwMjA5MTQwMDQzWhcNMjYwMjEwMTQwMDQzWjAzMTEwLwYDVQQD EyhkNjQ5ZjNjNTUwOGU3YjA4NTM5MjVmODIwMDAzZTU1MTY3ZjlmZjYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8T/CkANKRd9FChHKPpVRjTOmTHd YuOER/feobNl5M38QQxFs95xW63vwerngMuhEpEDxF8ZXlpKoS1/gkeQQNYLnE/j M4IvgfhLbMDbV+r8rqs9TFvHSiG8OWcdHIkWh/UMwXz+nBvKI5Llt379+IvUANTj sRYIz0Uuzz/L3+7FELwZt7x/Tj6ANZGIFX4CpRmfPTUTBRR3jnFGMg3ueVP3+vUu y52hw1WeWbS+dkrHM2Fr6S1Ul5ggKWt70baQdiNs6gUOkPjEi0PpIraVXW2CCZQe ex8qo1SjxobgiwNB/f0uGZXKy9Z6HBKmRAV377iK3Enj4jxPCsJvGhITxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNZJ88VQjnsIU5JfggAD5VFn+f9jMB8GA1UdIwQY MBaAFNpTQJbsP3v8VNZU/ODwForZZiLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmxOQWx1d19lX3hVMWxUODRQQVdpdGxtSXMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi80MDUyYjUtYjU5ZS00MzNmLTg3YWEt ODZmMmExYWY0ZDc5LzEvMmxOQWx1d19lX3hVMWxUODRQQVdpdGxtSXMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi80MDUyYjUtYjU5ZS00MzNmLTg3YWEtODZmMmExYWY0ZDc5 LzEvMmxOQWx1d19lX3hVMWxUODRQQVdpdGxtSXMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHOmRlx/i M/BGmw5ibjSR6LG9HFQqEK37q4oncxcHemKtSvEvs5TBC5ek25VNS1AGDyh6pjDU +m1w14oXOwNtBi61GnBEsBo4dIEbGfWnF/u2foDr2I+lRSnBIBCkwMHZiz9ofWR2 v68FtuXHz4xX+R6LJiu4FNHId8UlYgPIabWbb9wPmETsga5gfUExUggQDXhqsEKr /Z30mR+AoGCq3L5hF0Fi/up7jwms5TgAyCb0EcLb9VDJWvoaC6DceZTDwDvwl8g4 JNzqkjVfOoX8lPKaulHoWkcUApAMiMs/13do9YyqPwkNLGwHAXTCBnKecuSJkcjW KI0KMMyGNuatMA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:41 2026 by rpki-client