This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/dc7117-8851-4322-9c79-e0755f089c1a/1/A2x42XMHxhcQhWc4FBzAvTlczJ4.mft File: A2x42XMHxhcQhWc4FBzAvTlczJ4.mft (raw, json) Hash identifier: 9WH2QzIp+9qeUfQYhEOZ7NItHq3hiIxwDMGGcIewZ40= Subject key identifier: 56:2F:48:EF:2A:56:9F:C9:84:79:37:7E:48:A5:EE:99:4B:78:53:34 Authority key identifier: 03:6C:78:D9:73:07:C6:17:10:85:67:38:14:1C:C0:BD:39:5C:CC:9E Certificate issuer: /CN=036c78d97307c61710856738141cc0bd395ccc9e Certificate serial: 019C424672077F25186CF653B9F1A32EF8AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2x42XMHxhcQhWc4FBzAvTlczJ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/dc7117-8851-4322-9c79-e0755f089c1a/1/A2x42XMHxhcQhWc4FBzAvTlczJ4.mft Manifest number: 029E Signing time: Mon 09 Feb 2026 12:00:38 +0000 Manifest this update: Mon 09 Feb 2026 12:00:38 +0000 Manifest next update: Tue 10 Feb 2026 12:00:38 +0000 Files and hashes: 1: A2x42XMHxhcQhWc4FBzAvTlczJ4.crl (hash: 2DYeaEXEsTqpVRIPH+izSNstmLCllWGGVl2gBL5zJq8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/dc7117-8851-4322-9c79-e0755f089c1a/1/A2x42XMHxhcQhWc4FBzAvTlczJ4.crl rsync://rpki.ripe.net/repository/DEFAULT/56/dc7117-8851-4322-9c79-e0755f089c1a/1/A2x42XMHxhcQhWc4FBzAvTlczJ4.mft rsync://rpki.ripe.net/repository/DEFAULT/A2x42XMHxhcQhWc4FBzAvTlczJ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:72:07:7f:25:18:6c:f6:53:b9:f1:a3:2e:f8:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=036c78d97307c61710856738141cc0bd395ccc9e Validity Not Before: Feb 9 12:00:38 2026 GMT Not After : Feb 10 12:00:38 2026 GMT Subject: CN=562f48ef2a569fc98479377e48a5ee994b785334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:e4:68:68:18:51:c7:60:3b:b1:1b:9d:fd:cf: 2f:bc:86:b3:ff:15:8f:fe:f3:fc:b4:9d:4b:d4:36: b8:cb:83:e6:41:88:ec:0b:91:4c:59:dc:2b:a9:aa: a6:a1:ab:48:63:bf:1c:67:e4:ca:cf:45:fa:05:dc: cc:17:4c:f1:2e:df:03:b4:79:7e:7d:fd:32:62:c9: 07:54:45:53:4a:21:a6:86:f9:0a:a7:78:55:c5:73: f3:32:d8:df:ca:d7:63:5c:c9:4a:73:3f:15:84:35: 3c:3d:b1:a5:3f:90:64:c8:19:98:52:e0:38:cd:fb: dd:aa:c4:9e:f3:4c:fa:ae:2f:b6:95:e5:17:5f:3f: 07:57:5c:4f:03:58:84:9e:3e:a5:69:38:33:73:e8: 3c:13:51:4e:60:7a:2a:0a:e7:81:5b:d7:9d:5c:71: da:f3:68:4c:ea:2b:68:33:85:f9:01:60:2e:27:4c: 44:95:01:ee:58:5e:0f:63:d9:f2:62:79:5e:46:30: 88:15:5d:ea:b5:b6:b5:c9:02:d7:89:0a:dd:93:aa: f5:f0:c6:bb:96:e9:ef:a5:17:1b:d4:82:7f:ab:bd: e3:65:57:0c:72:60:53:5c:a3:2f:bf:fc:8a:cc:75: 6a:16:e9:05:39:25:70:89:96:15:94:58:3c:19:b4: d0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:2F:48:EF:2A:56:9F:C9:84:79:37:7E:48:A5:EE:99:4B:78:53:34 X509v3 Authority Key Identifier: keyid:03:6C:78:D9:73:07:C6:17:10:85:67:38:14:1C:C0:BD:39:5C:CC:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2x42XMHxhcQhWc4FBzAvTlczJ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/dc7117-8851-4322-9c79-e0755f089c1a/1/A2x42XMHxhcQhWc4FBzAvTlczJ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/dc7117-8851-4322-9c79-e0755f089c1a/1/A2x42XMHxhcQhWc4FBzAvTlczJ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:23:00:66:a3:27:e4:c7:c6:3c:bf:78:a1:69:2c:a2:56:3d: 00:de:a7:80:d2:09:ba:77:71:ee:22:ee:cc:a8:77:e4:5e:81: 7b:8e:a6:cd:a4:fa:23:38:55:d9:1f:81:0a:a4:d4:7c:24:d3: 55:a8:b5:89:95:2f:10:56:96:45:cc:35:e0:33:11:b7:d4:ef: 47:09:9d:50:57:9d:df:51:39:46:93:fe:22:3b:35:e8:0c:57: 5a:b2:ae:07:79:87:9d:0c:ce:f2:d9:c8:51:54:45:78:d6:24: fb:f0:b0:e3:c8:84:31:08:16:c8:48:60:a6:87:e1:8e:ff:17: 01:6e:82:a6:60:87:fb:8c:86:f1:6a:81:17:94:17:4b:de:f7: a5:53:93:7a:8d:bc:4d:d5:d9:f2:17:f3:ab:fb:72:b8:50:be: 4c:15:3b:16:b4:45:10:de:3e:1a:1c:06:ba:dd:6e:3c:7a:38: 54:75:79:c2:e3:6b:75:9c:db:87:b9:81:bf:4f:57:01:7f:54: 67:fd:25:ea:6e:0d:7e:e5:53:93:48:1c:e8:22:6c:94:e6:f6: 7a:3d:67:93:f4:5c:0a:82:ef:e4:42:cd:05:08:8e:5e:9d:fd: 8f:75:ec:89:67:b7:6e:a1:fa:af:68:ad:e5:41:75:60:d5:4c: 02:6c:d3:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRnIHfyUYbPZTufGjLvisMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzNmM3OGQ5NzMwN2M2MTcxMDg1NjczODE0MWNjMGJkMzk1 Y2NjOWUwHhcNMjYwMjA5MTIwMDM4WhcNMjYwMjEwMTIwMDM4WjAzMTEwLwYDVQQD Eyg1NjJmNDhlZjJhNTY5ZmM5ODQ3OTM3N2U0OGE1ZWU5OTRiNzg1MzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiuRoaBhRx2A7sRud/c8vvIaz/xWP /vP8tJ1L1Da4y4PmQYjsC5FMWdwrqaqmoatIY78cZ+TKz0X6BdzMF0zxLt8DtHl+ ff0yYskHVEVTSiGmhvkKp3hVxXPzMtjfytdjXMlKcz8VhDU8PbGlP5BkyBmYUuA4 zfvdqsSe80z6ri+2leUXXz8HV1xPA1iEnj6laTgzc+g8E1FOYHoqCueBW9edXHHa 82hM6itoM4X5AWAuJ0xElQHuWF4PY9nyYnleRjCIFV3qtba1yQLXiQrdk6r18Ma7 lunvpRcb1IJ/q73jZVcMcmBTXKMvv/yKzHVqFukFOSVwiZYVlFg8GbTQwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFYvSO8qVp/JhHk3fkil7plLeFM0MB8GA1UdIwQY MBaAFANseNlzB8YXEIVnOBQcwL05XMyeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQTJ4NDJYTUh4aGNRaFdjNEZCekF2VGxjeko0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9kYzcxMTctODg1MS00MzIyLTljNzkt ZTA3NTVmMDg5YzFhLzEvQTJ4NDJYTUh4aGNRaFdjNEZCekF2VGxjeko0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9kYzcxMTctODg1MS00MzIyLTljNzktZTA3NTVmMDg5YzFh LzEvQTJ4NDJYTUh4aGNRaFdjNEZCekF2VGxjeko0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPiMAZqMn 5MfGPL94oWksolY9AN6ngNIJundx7iLuzKh35F6Be46mzaT6IzhV2R+BCqTUfCTT Vai1iZUvEFaWRcw14DMRt9TvRwmdUFed31E5RpP+Ijs16AxXWrKuB3mHnQzO8tnI UVRFeNYk+/Cw48iEMQgWyEhgpofhjv8XAW6CpmCH+4yG8WqBF5QXS973pVOTeo28 TdXZ8hfzq/tyuFC+TBU7FrRFEN4+GhwGut1uPHo4VHV5wuNrdZzbh7mBv09XAX9U Z/0l6m4NfuVTk0gc6CJslOb2ej1nk/RcCoLv5ELNBQiOXp39j3XsiWe3bqH6r2it 5UF1YNVMAmzT8g== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:32 2026 by rpki-client