This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft File: G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft (raw, json) Hash identifier: NJMEdrvcjjz4+uhvmHmv4NFTmSYq+Zc5i4NhCf4NMSc= Subject key identifier: 77:A4:94:9A:CE:92:BE:34:C7:85:13:43:B8:E1:CE:8D:20:DA:5C:2A Authority key identifier: 1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE Certificate issuer: /CN=1b69301fa8d788e02f7eb2fa8802109074206cfe Certificate serial: 019C4322D3E228C987BCC24CF4560DD63B41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft Manifest number: 03B6 Signing time: Mon 09 Feb 2026 16:01:21 +0000 Manifest this update: Mon 09 Feb 2026 16:01:21 +0000 Manifest next update: Tue 10 Feb 2026 16:01:21 +0000 Files and hashes: 1: G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl (hash: V/q32qPE2xQ4VyY+TVmSZsL+JjzRXkuVr9HcfCWEz+0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:d3:e2:28:c9:87:bc:c2:4c:f4:56:0d:d6:3b:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b69301fa8d788e02f7eb2fa8802109074206cfe Validity Not Before: Feb 9 16:01:21 2026 GMT Not After : Feb 10 16:01:21 2026 GMT Subject: CN=77a4949ace92be34c7851343b8e1ce8d20da5c2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:28:ee:ca:a9:46:d1:f6:0d:a4:38:1e:e6:cd: ff:e8:c4:be:8f:6a:e3:bd:4e:eb:90:1f:dd:a3:ec: 0d:53:55:4b:2f:63:e4:ea:a3:e2:a6:0c:a9:91:77: 76:e8:3f:13:c3:b7:11:2b:99:97:e8:e2:60:58:6e: e8:b6:a2:75:c8:d0:2d:f7:3d:a8:52:dd:01:1b:9d: 77:f8:1d:19:00:aa:81:4f:4e:b7:64:ff:57:aa:8f: 65:42:a0:9e:bb:4b:c9:a7:81:4b:10:26:01:fe:84: 46:bc:1f:fe:92:ef:94:0e:6b:51:cb:34:b3:3e:9f: 19:c1:d4:c2:c8:c8:7e:3e:d7:b8:17:59:f5:4e:35: b5:23:fd:48:e1:7f:a7:5b:37:4f:5d:2e:b2:a9:fe: 8c:03:fe:60:00:47:c0:75:62:f5:fc:9c:3e:2b:9b: 7c:69:12:86:5d:ee:ae:8f:80:79:6a:fc:b4:9d:3c: 1a:ea:95:f2:c0:e9:35:9c:95:f1:88:8d:76:d5:66: 48:40:c4:17:22:56:ed:c3:d6:f3:41:0d:4d:26:48: de:25:36:77:99:3f:d8:5b:19:4c:9e:5d:65:d8:73: 55:a1:5c:64:01:df:be:b5:62:9e:eb:b2:d8:1c:19: 81:1b:62:63:30:a5:58:05:b2:7c:a2:e0:7c:9b:fa: 3b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A4:94:9A:CE:92:BE:34:C7:85:13:43:B8:E1:CE:8D:20:DA:5C:2A X509v3 Authority Key Identifier: keyid:1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:6c:dc:a1:79:5d:53:ee:a4:25:ff:1a:7e:fb:2b:6d:17:bc: ed:05:d3:8a:e3:d8:36:0a:fa:5a:70:15:39:40:a3:11:7d:77: 4c:1a:8a:d6:2e:92:0e:ae:cb:dd:71:b1:60:dd:39:fd:af:36: ee:88:c3:c3:04:15:8b:13:a5:ce:10:33:32:79:d7:8e:ef:95: e0:68:82:53:41:97:5a:18:d5:65:ab:3d:c6:64:62:ef:4c:63: 43:26:c1:19:26:60:07:22:a5:4f:3e:ab:9a:ce:63:5f:72:a1: 25:66:4f:4c:78:63:9a:60:d1:bf:ca:c0:2c:6f:2f:69:0a:32: 1a:0f:6f:c2:fb:3d:5e:c1:8c:ef:10:d1:f9:e0:fc:91:c8:b7: a9:21:38:11:9f:ad:a1:38:9e:7a:36:ec:4e:78:5a:51:b2:c7: 86:6a:dd:08:c9:d0:88:df:f8:56:ac:63:99:2c:be:1a:e7:ef: 01:14:56:53:02:b9:2d:74:e7:c1:52:32:d1:b5:eb:47:a7:24: 19:6b:a5:84:2b:a0:14:e8:e5:90:15:53:4d:38:1c:00:ec:42: e9:a7:a5:e7:cd:48:77:6a:2b:1a:39:33:f7:c4:55:b9:7e:b9: 06:be:34:1b:bd:4a:19:01:48:9a:b0:bb:e7:ca:7f:1b:45:d4: de:f2:3e:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDItPiKMmHvMJM9FYN1jtBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiNjkzMDFmYThkNzg4ZTAyZjdlYjJmYTg4MDIxMDkwNzQy MDZjZmUwHhcNMjYwMjA5MTYwMTIxWhcNMjYwMjEwMTYwMTIxWjAzMTEwLwYDVQQD Eyg3N2E0OTQ5YWNlOTJiZTM0Yzc4NTEzNDNiOGUxY2U4ZDIwZGE1YzJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSjuyqlG0fYNpDge5s3/6MS+j2rj vU7rkB/do+wNU1VLL2Pk6qPipgypkXd26D8Tw7cRK5mX6OJgWG7otqJ1yNAt9z2o Ut0BG513+B0ZAKqBT063ZP9Xqo9lQqCeu0vJp4FLECYB/oRGvB/+ku+UDmtRyzSz Pp8ZwdTCyMh+Pte4F1n1TjW1I/1I4X+nWzdPXS6yqf6MA/5gAEfAdWL1/Jw+K5t8 aRKGXe6uj4B5avy0nTwa6pXywOk1nJXxiI121WZIQMQXIlbtw9bzQQ1NJkjeJTZ3 mT/YWxlMnl1l2HNVoVxkAd++tWKe67LYHBmBG2JjMKVYBbJ8ouB8m/o75wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHeklJrOkr40x4UTQ7jhzo0g2lwqMB8GA1UdIwQY MBaAFBtpMB+o14jgL36y+ogCEJB0IGz+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzJrd0g2alhpT0F2ZnJMNmlBSVFrSFFnYlA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS81ZDcyOGEtOTNkYS00ODBiLWE3MzUt NDE2YzI4Nzk4ZmUyLzEvRzJrd0g2alhpT0F2ZnJMNmlBSVFrSFFnYlA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS81ZDcyOGEtOTNkYS00ODBiLWE3MzUtNDE2YzI4Nzk4ZmUy LzEvRzJrd0g2alhpT0F2ZnJMNmlBSVFrSFFnYlA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARWzcoXld U+6kJf8afvsrbRe87QXTiuPYNgr6WnAVOUCjEX13TBqK1i6SDq7L3XGxYN05/a82 7ojDwwQVixOlzhAzMnnXju+V4GiCU0GXWhjVZas9xmRi70xjQybBGSZgByKlTz6r ms5jX3KhJWZPTHhjmmDRv8rALG8vaQoyGg9vwvs9XsGM7xDR+eD8kci3qSE4EZ+t oTieejbsTnhaUbLHhmrdCMnQiN/4VqxjmSy+GufvARRWUwK5LXTnwVIy0bXrR6ck GWulhCugFOjlkBVTTTgcAOxC6ael581Id2orGjkz98RVuX65Br40G71KGQFImrC7 58p/G0XU3vI+tQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:02 2026 by rpki-client