This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft File: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft (raw, json) Hash identifier: M5aMKwTU/neNZFkX/wO+wGX+9q+0p4JoEgTTE7cibPk= Subject key identifier: E8:D9:B4:30:2E:2E:C6:EC:37:90:D5:C0:2A:BD:13:6D:F2:9B:E2:AC Authority key identifier: D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9 Certificate issuer: /CN=d94284b94325f5060f8a0e87c1be2827788f18f9 Certificate serial: 019C4358F1F312580DFEBBC1D31B0AD51CC5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft Manifest number: 1553 Signing time: Mon 09 Feb 2026 17:00:28 +0000 Manifest this update: Mon 09 Feb 2026 17:00:28 +0000 Manifest next update: Tue 10 Feb 2026 17:00:28 +0000 Files and hashes: 1: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl (hash: kQW9ffjg84u1rzjtxq9wx2K1dhMwxbfSRBPJ+UheNqg=) 2: wqVFEVjqEKEx9wlcMLA5-tVt-do.roa (hash: 26IFOLWA08mHoLUA2G9c2LdLUfKfMB5SGvlKCRZq35g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:f1:f3:12:58:0d:fe:bb:c1:d3:1b:0a:d5:1c:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d94284b94325f5060f8a0e87c1be2827788f18f9 Validity Not Before: Feb 9 17:00:28 2026 GMT Not After : Feb 10 17:00:28 2026 GMT Subject: CN=e8d9b4302e2ec6ec3790d5c02abd136df29be2ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:06:df:20:4b:eb:c7:1e:ff:5a:93:5d:3d:2e: e7:ca:65:71:4e:dd:90:27:f7:54:20:49:ca:89:60: 6e:5f:db:bd:4d:04:cc:1e:31:59:e7:39:e7:a3:9c: 10:68:fc:22:3a:81:7b:e5:4b:d8:49:fe:2b:78:3d: b8:f4:1b:b4:1f:5b:e0:20:4f:70:46:a7:3b:af:10: 06:b6:64:f5:b1:9c:04:6f:6a:68:dd:ef:9e:68:ae: 61:e4:aa:06:aa:0a:42:76:93:61:4d:53:03:2a:90: 1a:6a:8e:6d:6e:1b:cc:ac:ff:39:07:39:79:12:52: 4d:45:02:fd:0a:52:65:12:3b:4d:2d:cf:4b:2d:58: 3f:b4:0c:52:dc:17:ed:34:65:f6:06:4d:ed:db:94: 1a:fb:7f:e3:d4:bc:4d:c0:9e:7d:3d:24:a1:4b:9f: 21:ec:bb:2c:93:cb:db:69:43:d2:5e:63:15:ac:aa: 75:06:c5:ea:cc:06:64:c2:95:93:45:a1:bb:7a:c2: 43:fe:99:8f:c7:2e:8e:b7:71:0d:c8:57:55:87:30: 2d:12:79:c7:58:f0:64:ce:1d:64:50:33:96:9e:1e: 74:5b:b6:56:10:62:7c:3b:02:07:4d:d9:ad:4b:fd: a0:c7:35:ac:c5:28:fa:b2:8b:48:9f:1e:79:a5:7e: 26:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:D9:B4:30:2E:2E:C6:EC:37:90:D5:C0:2A:BD:13:6D:F2:9B:E2:AC X509v3 Authority Key Identifier: keyid:D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:da:ca:44:e5:06:0c:e5:d1:52:9b:68:80:63:56:f0:ed:e5: f1:74:c8:ad:8c:44:6c:5c:e8:07:db:bd:1f:da:8d:e9:ed:f9: ee:c4:95:11:5c:af:07:0b:ce:e7:50:9c:bd:8e:36:c8:87:e6: ca:03:ff:3e:91:4a:63:7b:57:92:04:ad:a4:78:89:82:1b:2f: 12:92:a0:05:f9:26:db:0f:7e:c1:d7:20:88:3d:91:7a:b8:35: 00:0e:bf:c2:aa:06:d4:67:c3:c5:16:9a:13:d2:95:1e:fb:01: 4a:0e:5b:e3:e0:82:c4:e9:da:5f:ff:68:23:19:b1:8e:68:17: 8e:f8:07:73:23:44:90:33:c7:48:b1:47:55:a9:9c:49:0f:02: 05:85:ed:10:66:29:bf:4b:b4:65:11:5e:2d:79:7f:7f:f1:19: fd:6f:8e:05:4a:a0:a4:9e:65:90:c3:d8:6e:6d:c2:b4:3c:e4: 0b:e1:00:95:e4:3e:04:1e:a9:7e:1c:e1:10:b7:35:8b:b4:9a: 54:d1:e0:95:1b:95:5a:dd:ce:5b:cd:0a:1e:c3:3e:66:d6:c8: 9f:0f:81:a5:74:86:67:53:f1:d1:34:d0:24:a9:c4:0a:4a:df: e2:d7:db:a1:59:35:66:ac:9d:46:1c:4b:de:34:de:0e:d5:82: a3:69:8c:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWPHzElgN/rvB0xsK1RzFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5NDI4NGI5NDMyNWY1MDYwZjhhMGU4N2MxYmUyODI3Nzg4 ZjE4ZjkwHhcNMjYwMjA5MTcwMDI4WhcNMjYwMjEwMTcwMDI4WjAzMTEwLwYDVQQD EyhlOGQ5YjQzMDJlMmVjNmVjMzc5MGQ1YzAyYWJkMTM2ZGYyOWJlMmFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoAbfIEvrxx7/WpNdPS7nymVxTt2Q J/dUIEnKiWBuX9u9TQTMHjFZ5znno5wQaPwiOoF75UvYSf4reD249Bu0H1vgIE9w Rqc7rxAGtmT1sZwEb2po3e+eaK5h5KoGqgpCdpNhTVMDKpAaao5tbhvMrP85Bzl5 ElJNRQL9ClJlEjtNLc9LLVg/tAxS3BftNGX2Bk3t25Qa+3/j1LxNwJ59PSShS58h 7Lssk8vbaUPSXmMVrKp1BsXqzAZkwpWTRaG7esJD/pmPxy6Ot3ENyFdVhzAtEnnH WPBkzh1kUDOWnh50W7ZWEGJ8OwIHTdmtS/2gxzWsxSj6sotInx55pX4mwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOjZtDAuLsbsN5DVwCq9E23ym+KsMB8GA1UdIwQY MBaAFNlChLlDJfUGD4oOh8G+KCd4jxj5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlVLRXVVTWw5UVlQaWc2SHdiNG9KM2lQR1BrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hMjQwOTUtMDkwOC00ODg0LTkyNDQt OTVkNTk0NjVlOWE4LzEvMlVLRXVVTWw5UVlQaWc2SHdiNG9KM2lQR1BrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9hMjQwOTUtMDkwOC00ODg0LTkyNDQtOTVkNTk0NjVlOWE4 LzEvMlVLRXVVTWw5UVlQaWc2SHdiNG9KM2lQR1BrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVdrKROUG DOXRUptogGNW8O3l8XTIrYxEbFzoB9u9H9qN6e357sSVEVyvBwvO51CcvY42yIfm ygP/PpFKY3tXkgStpHiJghsvEpKgBfkm2w9+wdcgiD2Rerg1AA6/wqoG1GfDxRaa E9KVHvsBSg5b4+CCxOnaX/9oIxmxjmgXjvgHcyNEkDPHSLFHVamcSQ8CBYXtEGYp v0u0ZRFeLXl/f/EZ/W+OBUqgpJ5lkMPYbm3CtDzkC+EAleQ+BB6pfhzhELc1i7Sa VNHglRuVWt3OW80KHsM+ZtbInw+BpXSGZ1Px0TTQJKnECkrf4tfboVk1ZqydRhxL 3jTeDtWCo2mM2w== -----END CERTIFICATE-----Generated at Mon Feb 9 20:13:32 2026 by rpki-client