This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft File: 2o2nRADHVVq6J8Eon7-5CzO3miI.mft (raw, json) Hash identifier: Q7Ic+MsdyJD7DbHXWwlzb7XCkqPjUHCKOLAtZ+fOjkY= Subject key identifier: 65:83:C6:DF:73:9D:93:16:35:99:B8:AC:7F:89:21:BA:DB:2E:83:61 Authority key identifier: DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22 Certificate issuer: /CN=da8da74400c7555aba27c1289fbfb90b33b79a22 Certificate serial: 019C438FC7CFC6CD8F65803E8F844DD43CA3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft Manifest number: 169D Signing time: Mon 09 Feb 2026 18:00:22 +0000 Manifest this update: Mon 09 Feb 2026 18:00:22 +0000 Manifest next update: Tue 10 Feb 2026 18:00:22 +0000 Files and hashes: 1: 2o2nRADHVVq6J8Eon7-5CzO3miI.crl (hash: +6+V+rHx2ZHT0zm1+82gSsw3Z8Vd90cITrPuCNabGM0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:c7:cf:c6:cd:8f:65:80:3e:8f:84:4d:d4:3c:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da8da74400c7555aba27c1289fbfb90b33b79a22 Validity Not Before: Feb 9 18:00:22 2026 GMT Not After : Feb 10 18:00:22 2026 GMT Subject: CN=6583c6df739d93163599b8ac7f8921badb2e8361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:74:24:05:ac:cf:ee:ea:03:c7:d1:c4:2e:9f: 89:0c:98:fc:10:fb:2e:ff:82:b2:9f:bf:cd:8d:49: f2:56:6e:8f:7b:fd:95:7b:b9:b7:65:d9:5f:2d:4e: 6a:97:d1:ab:4c:99:ce:1b:82:e7:2e:29:91:84:a2: d1:8b:5d:93:1c:c5:24:ba:70:c3:1a:12:c3:fe:b4: 76:9e:9f:68:99:ae:ab:21:c2:6e:26:07:72:bf:ca: 61:bf:01:84:2f:3c:83:75:15:85:f1:e2:9c:0c:49: dc:e1:43:f7:58:49:bf:95:c9:71:63:8b:a3:e6:0f: 63:5b:00:ac:80:fc:10:d4:0c:b5:44:ed:2a:a8:47: f8:05:47:fc:71:2e:d8:07:e2:6c:7e:7d:69:8f:8f: 2e:91:48:dc:06:d6:42:37:8d:25:0e:6c:fc:b0:4e: e7:26:b6:19:9e:ad:2b:7f:aa:8b:64:cc:0f:e4:21: b1:64:3f:a2:06:ea:f4:76:60:39:9a:bf:50:8c:17: b8:0c:89:6d:69:bc:bb:97:cc:7c:32:06:fd:cc:fe: 8a:8f:27:88:00:a1:1b:a0:2b:62:f0:7b:27:e2:cb: 1a:55:0c:f5:5b:3e:b5:97:9f:b3:a3:05:2b:d9:5f: 23:10:81:ec:cc:75:96:bb:5c:72:b2:a8:a4:65:ce: 82:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:83:C6:DF:73:9D:93:16:35:99:B8:AC:7F:89:21:BA:DB:2E:83:61 X509v3 Authority Key Identifier: keyid:DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:23:cd:38:6b:67:cc:e4:56:3c:ba:f2:3c:07:6d:24:dd:d6: 3b:71:27:2e:14:9b:46:93:64:ac:57:59:26:ca:a2:12:c9:94: 7a:d0:13:fe:42:c0:29:2e:7e:b3:5f:7a:4c:04:7f:ec:5e:a4: 4b:01:78:49:ef:58:25:38:2f:47:f4:8a:33:f5:c7:18:7a:79: 19:a0:0c:e7:b0:5d:f3:0a:e6:02:f6:bd:d7:31:93:4a:e1:14: 66:81:68:5e:5c:81:fd:c0:30:95:ce:8d:7c:5e:15:61:28:e7: 10:c8:7a:10:37:39:bd:71:8f:14:63:0b:3b:60:39:37:d7:97: a9:e2:ff:1f:83:00:65:f8:24:09:26:31:f5:47:c7:fe:28:38: 95:b3:93:fc:ed:90:e3:4d:49:f9:75:56:26:84:9b:20:c3:41: f2:fe:40:ef:40:f5:a4:2c:e2:04:e0:d6:e8:6b:6a:86:e6:a1: d4:9f:04:24:94:c1:0f:0f:8f:23:c1:94:81:9d:58:dc:0c:fa: 30:3f:2d:1a:1c:99:a1:91:42:1d:eb:7b:dd:80:40:a8:57:03: 0c:05:55:6d:b0:36:16:dd:2a:1e:63:fd:09:4f:4e:c3:7c:5f: f2:07:a3:a3:e6:55:52:65:b7:0f:f3:e2:41:84:68:b0:72:c2: 88:2c:df:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj8fPxs2PZYA+j4RN1DyjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhOGRhNzQ0MDBjNzU1NWFiYTI3YzEyODlmYmZiOTBiMzNi NzlhMjIwHhcNMjYwMjA5MTgwMDIyWhcNMjYwMjEwMTgwMDIyWjAzMTEwLwYDVQQD Eyg2NTgzYzZkZjczOWQ5MzE2MzU5OWI4YWM3Zjg5MjFiYWRiMmU4MzYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm3QkBazP7uoDx9HELp+JDJj8EPsu /4Kyn7/NjUnyVm6Pe/2Ve7m3ZdlfLU5ql9GrTJnOG4LnLimRhKLRi12THMUkunDD GhLD/rR2np9oma6rIcJuJgdyv8phvwGELzyDdRWF8eKcDEnc4UP3WEm/lclxY4uj 5g9jWwCsgPwQ1Ay1RO0qqEf4BUf8cS7YB+Jsfn1pj48ukUjcBtZCN40lDmz8sE7n JrYZnq0rf6qLZMwP5CGxZD+iBur0dmA5mr9QjBe4DIltaby7l8x8Mgb9zP6KjyeI AKEboCti8Hsn4ssaVQz1Wz61l5+zowUr2V8jEIHszHWWu1xysqikZc6ClwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGWDxt9znZMWNZm4rH+JIbrbLoNhMB8GA1UdIwQY MBaAFNqNp0QAx1VauifBKJ+/uQszt5oiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMm8yblJBREhWVnE2SjhFb243LTVDek8zbWlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS83NTlhYjQtZWI0MC00MThjLThmMTEt MjVhNjgyNGUzMTU3LzEvMm8yblJBREhWVnE2SjhFb243LTVDek8zbWlJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS83NTlhYjQtZWI0MC00MThjLThmMTEtMjVhNjgyNGUzMTU3 LzEvMm8yblJBREhWVnE2SjhFb243LTVDek8zbWlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALyPNOGtn zORWPLryPAdtJN3WO3EnLhSbRpNkrFdZJsqiEsmUetAT/kLAKS5+s196TAR/7F6k SwF4Se9YJTgvR/SKM/XHGHp5GaAM57Bd8wrmAva91zGTSuEUZoFoXlyB/cAwlc6N fF4VYSjnEMh6EDc5vXGPFGMLO2A5N9eXqeL/H4MAZfgkCSYx9UfH/ig4lbOT/O2Q 401J+XVWJoSbIMNB8v5A70D1pCziBODW6Gtqhuah1J8EJJTBDw+PI8GUgZ1Y3Az6 MD8tGhyZoZFCHet73YBAqFcDDAVVbbA2Ft0qHmP9CU9Ow3xf8gejo+ZVUmW3D/Pi QYRosHLCiCzfrA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:05 2026 by rpki-client