This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft File: 2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft (raw, json) Hash identifier: /l6uThRzEtU023inndW8DWJ/Y3U2IRqXdyhbLwvpPQ0= Subject key identifier: 1D:1B:41:6E:E5:01:90:FF:FA:B8:60:62:1A:0F:E3:EB:F4:79:0B:E7 Authority key identifier: D8:50:B9:60:AD:E9:44:9F:1E:80:81:43:A3:71:CE:2E:3A:18:7E:48 Certificate issuer: /CN=d850b960ade9449f1e808143a371ce2e3a187e48 Certificate serial: 019C1CBA036D7E106004BE5EF6C1153CB3D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FC5YK3pRJ8egIFDo3HOLjoYfkg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft Manifest number: C4 Signing time: Mon 02 Feb 2026 05:01:18 +0000 Manifest this update: Mon 02 Feb 2026 05:01:18 +0000 Manifest next update: Tue 03 Feb 2026 05:01:18 +0000 Files and hashes: 1: 2FC5YK3pRJ8egIFDo3HOLjoYfkg.crl (hash: lJqn+OwAkAxP21KpIwNkUgnFcX1iKOiWiC9bYTSXQ0A=) 2: hW7s4O9TdBAfT4Osak2Oj5BJAz4.asa (hash: R04Z5dzTVpp/mJ118ZonHq/GgrG1tGSGF8iWqD8/YV8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft rsync://rpki.ripe.net/repository/DEFAULT/2FC5YK3pRJ8egIFDo3HOLjoYfkg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:ba:03:6d:7e:10:60:04:be:5e:f6:c1:15:3c:b3:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d850b960ade9449f1e808143a371ce2e3a187e48 Validity Not Before: Feb 2 05:01:18 2026 GMT Not After : Feb 3 05:01:18 2026 GMT Subject: CN=1d1b416ee50190fffab860621a0fe3ebf4790be7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:20:0e:cf:e9:66:f8:66:ce:34:8b:8d:97:fd: ea:fd:cd:2f:0f:0c:d3:00:99:eb:63:21:5e:e3:4b: 3f:80:fa:89:9f:6e:fc:be:bd:b7:16:ca:6e:88:59: 45:51:6e:d6:5f:56:ab:7e:55:ee:7c:73:da:12:92: 2e:6c:7f:50:c4:4f:4d:06:c8:bd:3f:2f:2a:42:78: a8:7a:ce:94:dc:50:85:04:93:e6:8a:08:cf:46:3c: 9a:07:88:57:b7:ca:68:f3:ed:45:fe:6f:34:86:d6: 99:76:0b:71:01:de:c1:fb:41:9f:52:2a:c1:2e:db: cf:82:c2:c9:ad:a8:ea:d1:b5:aa:f4:a9:48:31:40: 60:a1:6e:13:a8:f0:f6:95:d2:c3:ae:0b:f3:2f:8d: 84:f7:3f:4e:b7:10:a8:dd:2b:2a:2c:a3:f9:ef:6e: e5:b9:42:d2:9f:36:1d:0a:81:ec:20:9e:fe:6a:ec: 69:ca:35:36:dc:06:8a:f3:57:94:99:5e:10:c2:be: 56:32:4d:14:7e:77:51:f2:46:8c:f6:c5:b0:f7:87: d5:18:98:bb:5e:d1:54:12:68:70:6b:d0:75:e5:30: 31:81:11:f5:61:1e:43:80:3a:92:ff:e4:ad:7d:20: 99:c5:47:e3:5d:6a:81:51:21:40:ce:4a:b0:a8:4c: bd:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:1B:41:6E:E5:01:90:FF:FA:B8:60:62:1A:0F:E3:EB:F4:79:0B:E7 X509v3 Authority Key Identifier: keyid:D8:50:B9:60:AD:E9:44:9F:1E:80:81:43:A3:71:CE:2E:3A:18:7E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FC5YK3pRJ8egIFDo3HOLjoYfkg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:0e:03:81:52:eb:22:32:49:dc:75:99:3c:cc:9d:b2:f2:ba: b4:05:d8:0f:af:39:b0:1d:74:b9:b8:6c:36:6e:db:cf:fe:0e: 58:ad:c2:81:24:16:01:57:0b:be:da:01:5d:78:5d:8b:e1:cc: 89:cf:89:7d:94:03:32:c4:1b:1e:86:11:bd:57:e9:90:c3:7d: 5e:62:68:f5:72:9b:74:79:98:05:08:bb:76:32:a7:38:5d:a9: 71:a4:8c:a0:46:c2:f8:7b:55:e9:1a:c6:59:12:bd:56:d7:51: 34:f7:19:a2:97:44:dc:ab:bb:76:23:53:57:d4:31:f0:29:88: ba:ca:e7:b4:c7:34:78:77:32:9f:fa:50:c8:07:48:54:40:df: a7:f1:1e:bc:12:7a:14:d1:59:0f:1b:a8:df:64:69:25:29:4d: b1:5a:b4:d8:27:f4:e1:55:2b:ea:73:86:51:04:54:2d:d4:75: d0:b3:15:a8:e9:ea:8f:1b:87:04:8f:24:47:8d:e0:20:04:e7: 23:88:f5:aa:14:97:0e:6d:eb:f6:33:46:26:56:d3:49:ef:ea: 08:58:2e:e4:cc:ee:ce:15:06:d7:90:c4:ab:8f:27:29:a3:c3: bc:2b:8f:46:30:57:22:25:c4:25:75:64:a6:77:eb:1c:2f:0f: 0b:bd:0a:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwcugNtfhBgBL5e9sEVPLPSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NTBiOTYwYWRlOTQ0OWYxZTgwODE0M2EzNzFjZTJlM2Ex ODdlNDgwHhcNMjYwMjAyMDUwMTE4WhcNMjYwMjAzMDUwMTE4WjAzMTEwLwYDVQQD EygxZDFiNDE2ZWU1MDE5MGZmZmFiODYwNjIxYTBmZTNlYmY0NzkwYmU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1CAOz+lm+GbONIuNl/3q/c0vDwzT AJnrYyFe40s/gPqJn278vr23FspuiFlFUW7WX1arflXufHPaEpIubH9QxE9NBsi9 Py8qQnioes6U3FCFBJPmigjPRjyaB4hXt8po8+1F/m80htaZdgtxAd7B+0GfUirB LtvPgsLJrajq0bWq9KlIMUBgoW4TqPD2ldLDrgvzL42E9z9OtxCo3SsqLKP5727l uULSnzYdCoHsIJ7+auxpyjU23AaK81eUmV4Qwr5WMk0UfndR8kaM9sWw94fVGJi7 XtFUEmhwa9B15TAxgRH1YR5DgDqS/+StfSCZxUfjXWqBUSFAzkqwqEy9qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB0bQW7lAZD/+rhgYhoP4+v0eQvnMB8GA1UdIwQY MBaAFNhQuWCt6USfHoCBQ6Nxzi46GH5IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkZDNVlLM3BSSjhlZ0lGRG8zSE9Mam9ZZmtnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC85OGIyZjUtNzVlMS00MjQ1LTk3NmQt MDE1MGM5NGY5NDBkLzEvMkZDNVlLM3BSSjhlZ0lGRG8zSE9Mam9ZZmtnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC85OGIyZjUtNzVlMS00MjQ1LTk3NmQtMDE1MGM5NGY5NDBk LzEvMkZDNVlLM3BSSjhlZ0lGRG8zSE9Mam9ZZmtnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfg4DgVLr IjJJ3HWZPMydsvK6tAXYD685sB10ubhsNm7bz/4OWK3CgSQWAVcLvtoBXXhdi+HM ic+JfZQDMsQbHoYRvVfpkMN9XmJo9XKbdHmYBQi7djKnOF2pcaSMoEbC+HtV6RrG WRK9VtdRNPcZopdE3Ku7diNTV9Qx8CmIusrntMc0eHcyn/pQyAdIVEDfp/EevBJ6 FNFZDxuo32RpJSlNsVq02Cf04VUr6nOGUQRULdR10LMVqOnqjxuHBI8kR43gIATn I4j1qhSXDm3r9jNGJlbTSe/qCFgu5MzuzhUG15DEq48nKaPDvCuPRjBXIiXEJXVk pnfrHC8PC70KUg== -----END CERTIFICATE-----Generated at Mon Feb 2 08:14:42 2026 by rpki-client