This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft File: 2bN6OM6IfTdjYEau84ehwjMVLkE.mft (raw, json) Hash identifier: xAqosCcoaBrXa7GU2KUfk19qaoxTX8n5x2Ft1Jioqjc= Subject key identifier: EF:C5:22:8E:AB:E8:77:0D:71:14:4F:27:E9:FC:67:7B:37:C0:B2:B9 Authority key identifier: D9:B3:7A:38:CE:88:7D:37:63:60:46:AE:F3:87:A1:C2:33:15:2E:41 Certificate issuer: /CN=d9b37a38ce887d37636046aef387a1c233152e41 Certificate serial: 019C41346BADDACCC4CFA30301F815585B5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2bN6OM6IfTdjYEau84ehwjMVLkE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft Manifest number: 08A0 Signing time: Mon 09 Feb 2026 07:01:20 +0000 Manifest this update: Mon 09 Feb 2026 07:01:20 +0000 Manifest next update: Tue 10 Feb 2026 07:01:20 +0000 Files and hashes: 1: 2bN6OM6IfTdjYEau84ehwjMVLkE.crl (hash: jT+w6CjuzvU+xGATYMcdQgTS8dPZZXZwIIQlCeBhVb8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft rsync://rpki.ripe.net/repository/DEFAULT/2bN6OM6IfTdjYEau84ehwjMVLkE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:6b:ad:da:cc:c4:cf:a3:03:01:f8:15:58:5b:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9b37a38ce887d37636046aef387a1c233152e41 Validity Not Before: Feb 9 07:01:20 2026 GMT Not After : Feb 10 07:01:20 2026 GMT Subject: CN=efc5228eabe8770d71144f27e9fc677b37c0b2b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ca:df:0b:5d:06:f1:83:8f:99:27:58:ae:85: 7e:84:76:f1:aa:93:33:9f:2b:da:ae:e9:5e:6e:c5: 11:63:41:ba:97:4c:f5:fa:85:b7:06:c0:f1:fe:34: a8:2b:63:31:de:48:24:53:40:6c:72:90:8f:52:2b: 00:2c:42:24:39:1b:3b:da:58:d8:7e:7d:10:8b:c6: f9:eb:b1:b5:4f:75:47:4f:24:73:e2:d9:e5:a4:55: 93:cb:71:69:4e:32:7b:c4:83:10:82:50:37:fd:4b: 87:91:67:ff:4a:71:f1:dc:60:5a:96:4d:08:bf:60: f6:f5:cb:d4:63:bf:ee:3f:f4:13:25:cb:06:a1:d4: e1:8c:c4:d0:b0:c8:05:0b:38:cf:44:1c:bc:ed:61: 49:0c:5a:11:a7:b5:85:bd:21:d9:59:76:18:80:ce: 9c:1c:ae:93:25:22:81:25:b2:07:33:49:61:b6:cc: 80:37:de:85:f7:c7:af:a7:0f:d9:47:0c:48:ee:87: b1:e3:32:90:5b:d6:91:6a:e2:14:e0:69:fd:a4:36: 45:4d:fc:f8:e9:71:d6:72:76:bc:d8:12:00:27:3e: 8e:7b:8f:92:44:fc:c4:54:bb:66:09:42:cd:06:5b: f1:16:77:81:7a:ac:2f:ea:d7:b6:ac:d8:d4:11:0d: c1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:C5:22:8E:AB:E8:77:0D:71:14:4F:27:E9:FC:67:7B:37:C0:B2:B9 X509v3 Authority Key Identifier: keyid:D9:B3:7A:38:CE:88:7D:37:63:60:46:AE:F3:87:A1:C2:33:15:2E:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2bN6OM6IfTdjYEau84ehwjMVLkE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:98:81:77:d4:73:29:0a:d3:cd:24:77:f7:5e:80:2a:37:1b: 4d:7f:0c:4f:3f:25:36:2e:1c:f4:c1:68:ef:bc:6f:f0:de:79: ff:4e:a6:e7:11:6e:15:5c:d2:e5:28:1d:ba:83:1b:61:40:1a: 55:ca:18:a7:20:00:b1:7a:3f:cf:97:40:19:55:db:2e:5c:8f: df:10:96:c1:78:5a:97:8a:31:61:f5:78:90:53:26:fa:9d:1b: eb:24:2c:6b:5a:98:bb:a2:40:81:be:af:fd:f0:5c:71:be:f0: 94:63:af:c5:e4:a4:55:96:f7:54:b6:08:62:00:43:bf:b1:b5: 14:1d:f0:a8:b2:cb:6b:ae:aa:5e:61:b7:84:66:9d:31:be:59: b8:05:1b:2a:e3:b1:00:10:62:8a:70:36:c8:74:48:5a:a1:ee: 0d:56:e2:49:cc:7b:c2:54:03:f5:9c:59:2b:b6:a3:de:66:e3: ec:5b:c1:73:68:5e:31:51:0a:bc:ec:b5:a5:99:10:82:65:a7: d0:1d:d6:0e:26:f6:cc:bb:71:b5:1c:9d:7e:a0:7c:96:e3:bb: be:77:d3:ab:19:0a:48:be:d8:46:6d:36:ae:dc:51:a6:4e:45: a9:46:8e:fa:4a:2a:c8:c2:59:00:0a:2f:68:20:09:9c:8c:ec: 0f:a9:c7:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNGut2szEz6MDAfgVWFtcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5YjM3YTM4Y2U4ODdkMzc2MzYwNDZhZWYzODdhMWMyMzMx NTJlNDEwHhcNMjYwMjA5MDcwMTIwWhcNMjYwMjEwMDcwMTIwWjAzMTEwLwYDVQQD EyhlZmM1MjI4ZWFiZTg3NzBkNzExNDRmMjdlOWZjNjc3YjM3YzBiMmI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMrfC10G8YOPmSdYroV+hHbxqpMz nyvarulebsURY0G6l0z1+oW3BsDx/jSoK2Mx3kgkU0BscpCPUisALEIkORs72ljY fn0Qi8b567G1T3VHTyRz4tnlpFWTy3FpTjJ7xIMQglA3/UuHkWf/SnHx3GBalk0I v2D29cvUY7/uP/QTJcsGodThjMTQsMgFCzjPRBy87WFJDFoRp7WFvSHZWXYYgM6c HK6TJSKBJbIHM0lhtsyAN96F98evpw/ZRwxI7oex4zKQW9aRauIU4Gn9pDZFTfz4 6XHWcna82BIAJz6Oe4+SRPzEVLtmCULNBlvxFneBeqwv6te2rNjUEQ3B+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO/FIo6r6HcNcRRPJ+n8Z3s3wLK5MB8GA1UdIwQY MBaAFNmzejjOiH03Y2BGrvOHocIzFS5BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmJONk9NNklmVGRqWUVhdTg0ZWh3ak1WTGtFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS85NTQ1ZjItZmI2MC00ODc4LWFlNTgt ZDZhYWM2MTM4MzBiLzEvMmJONk9NNklmVGRqWUVhdTg0ZWh3ak1WTGtFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS85NTQ1ZjItZmI2MC00ODc4LWFlNTgtZDZhYWM2MTM4MzBi LzEvMmJONk9NNklmVGRqWUVhdTg0ZWh3ak1WTGtFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYZiBd9Rz KQrTzSR3916AKjcbTX8MTz8lNi4c9MFo77xv8N55/06m5xFuFVzS5SgduoMbYUAa VcoYpyAAsXo/z5dAGVXbLlyP3xCWwXhal4oxYfV4kFMm+p0b6yQsa1qYu6JAgb6v /fBccb7wlGOvxeSkVZb3VLYIYgBDv7G1FB3wqLLLa66qXmG3hGadMb5ZuAUbKuOx ABBiinA2yHRIWqHuDVbiScx7wlQD9ZxZK7aj3mbj7FvBc2heMVEKvOy1pZkQgmWn 0B3WDib2zLtxtRydfqB8luO7vnfTqxkKSL7YRm02rtxRpk5FqUaO+koqyMJZAAov aCAJnIzsD6nHHg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:24 2026 by rpki-client