This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft File: 2pa1va-ygzLa_oR87RT3pfrUXmk.mft (raw, json) Hash identifier: dA++fvSykBtuBa7muNYl6ZZArgO1kZz7awfZKJX28jE= Subject key identifier: 8B:39:48:CB:9C:8B:F8:D5:65:10:67:39:2C:79:85:A4:10:64:B4:1D Authority key identifier: DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69 Certificate issuer: /CN=da96b5bdafb28332dafe847ced14f7a5fad45e69 Certificate serial: 019C438FF0DCBF1271AE56650D91BFE03FF9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 18:00:32 +0000 Manifest this update: Mon 09 Feb 2026 18:00:32 +0000 Manifest next update: Tue 10 Feb 2026 18:00:32 +0000 Files and hashes: 1: 2pa1va-ygzLa_oR87RT3pfrUXmk.crl (hash: 6O68nMapfu/AA3O3xP/KYuNNRFoEaWvtY0pq1HfMA6I=) 2: L2PV0X2D64oMo0GnEAuj-1lDAIc.roa (hash: kUPruxzCipMwCfnCm4k203rxKLbGUtvwDpyAt+2Wqic=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:f0:dc:bf:12:71:ae:56:65:0d:91:bf:e0:3f:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da96b5bdafb28332dafe847ced14f7a5fad45e69 Validity Not Before: Feb 9 18:00:32 2026 GMT Not After : Feb 10 18:00:32 2026 GMT Subject: CN=8b3948cb9c8bf8d5651067392c7985a41064b41d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:79:dc:34:0a:6f:1d:99:65:e8:aa:7c:ed:32: 09:53:4e:44:a9:95:dc:dc:58:29:de:d1:c0:b2:04: 3b:ac:1d:fd:5b:ba:1d:42:6e:63:33:52:26:62:93: b8:9e:e9:1c:6c:d0:fd:8a:e4:08:ca:e6:23:5b:f6: 10:0e:2a:ec:33:d2:96:93:f7:fe:d9:ba:30:17:44: 53:48:d0:19:53:bb:e9:80:7e:a2:6c:36:60:67:d7: 95:3f:bb:1c:cb:e6:7c:d5:3b:6a:21:2f:09:12:98: 8e:18:b8:83:79:1a:15:1c:dd:54:4a:04:a8:40:33: 87:36:62:32:87:0a:79:16:2d:0f:53:e3:d4:91:70: 83:54:24:2c:c0:01:d6:41:1d:7e:dd:7f:f3:69:f9: 2a:1d:08:98:eb:78:84:bf:8f:10:ba:64:8b:2f:a4: c5:88:f5:61:f0:32:4d:b1:e0:96:df:12:a0:fd:3f: 5b:b2:b1:28:1a:b8:6f:81:92:3e:10:4e:f2:f9:3f: e1:16:6f:a0:bd:44:dd:ff:f8:8b:de:c0:42:59:7e: cc:9b:02:29:b4:a7:65:ae:b0:33:0f:d0:7d:78:d4: bb:5a:83:1c:75:c2:c1:fc:cb:50:69:bc:63:0b:5c: 73:9e:0f:5f:2d:60:27:4f:f1:ea:0b:bf:61:2b:47: 9a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:39:48:CB:9C:8B:F8:D5:65:10:67:39:2C:79:85:A4:10:64:B4:1D X509v3 Authority Key Identifier: keyid:DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:fb:8a:0c:07:8d:64:6c:99:f3:3e:a2:0b:c4:df:5f:3f:8a: 35:00:42:69:10:00:27:8b:0f:6b:00:f7:fe:9e:74:fa:7c:84: 8b:3c:43:a0:73:36:6a:eb:33:65:aa:97:3a:89:a9:37:79:23: 87:51:cb:46:56:45:c1:86:90:da:e0:c5:57:77:53:a2:ac:81: f6:40:5b:e8:de:0c:27:7b:0b:a2:9e:bb:ac:5b:97:99:ab:90: e2:94:03:66:d1:23:25:10:f8:3d:d6:eb:d0:3d:6a:21:d5:a2: 13:05:7b:44:5e:ec:d7:44:27:aa:1c:0f:88:08:89:cf:43:f1: 51:e3:38:63:59:61:b6:af:23:46:25:b6:44:da:bc:b5:53:29: b8:00:4b:50:68:c7:19:3a:d8:ff:c7:b3:97:31:af:3f:e2:eb: be:78:10:57:55:f8:b8:99:3c:74:72:a1:a9:1f:be:ee:1d:4d: d7:4a:51:13:f9:a6:e5:6f:4a:ff:a4:f6:f4:51:60:f1:e9:d1: 0a:45:9e:dc:c9:1e:83:71:5e:70:b8:2f:d6:4f:99:91:d5:5e: df:ac:18:28:8f:4f:bf:84:81:a9:44:f3:4e:ef:6c:de:7b:00: 4c:81:1a:06:7f:53:e2:3b:bf:43:30:27:58:1c:d8:77:0b:f6: d8:b7:d5:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj/DcvxJxrlZlDZG/4D/5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhOTZiNWJkYWZiMjgzMzJkYWZlODQ3Y2VkMTRmN2E1ZmFk NDVlNjkwHhcNMjYwMjA5MTgwMDMyWhcNMjYwMjEwMTgwMDMyWjAzMTEwLwYDVQQD Eyg4YjM5NDhjYjljOGJmOGQ1NjUxMDY3MzkyYzc5ODVhNDEwNjRiNDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnncNApvHZll6Kp87TIJU05EqZXc 3Fgp3tHAsgQ7rB39W7odQm5jM1ImYpO4nukcbND9iuQIyuYjW/YQDirsM9KWk/f+ 2bowF0RTSNAZU7vpgH6ibDZgZ9eVP7scy+Z81TtqIS8JEpiOGLiDeRoVHN1USgSo QDOHNmIyhwp5Fi0PU+PUkXCDVCQswAHWQR1+3X/zafkqHQiY63iEv48QumSLL6TF iPVh8DJNseCW3xKg/T9bsrEoGrhvgZI+EE7y+T/hFm+gvUTd//iL3sBCWX7MmwIp tKdlrrAzD9B9eNS7WoMcdcLB/MtQabxjC1xzng9fLWAnT/HqC79hK0eaYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIs5SMuci/jVZRBnOSx5haQQZLQdMB8GA1UdIwQY MBaAFNqWtb2vsoMy2v6EfO0U96X61F5pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnBhMXZhLXlnekxhX29SODdSVDNwZnJVWG1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC84MTkwODktNDczYi00NjNmLWI4N2It NDI1Mzk1MGYxMTU1LzEvMnBhMXZhLXlnekxhX29SODdSVDNwZnJVWG1rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC84MTkwODktNDczYi00NjNmLWI4N2ItNDI1Mzk1MGYxMTU1 LzEvMnBhMXZhLXlnekxhX29SODdSVDNwZnJVWG1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdvuKDAeN ZGyZ8z6iC8TfXz+KNQBCaRAAJ4sPawD3/p50+nyEizxDoHM2auszZaqXOompN3kj h1HLRlZFwYaQ2uDFV3dToqyB9kBb6N4MJ3sLop67rFuXmauQ4pQDZtEjJRD4Pdbr 0D1qIdWiEwV7RF7s10QnqhwPiAiJz0PxUeM4Y1lhtq8jRiW2RNq8tVMpuABLUGjH GTrY/8ezlzGvP+LrvngQV1X4uJk8dHKhqR++7h1N10pRE/mm5W9K/6T29FFg8enR CkWe3Mkeg3FecLgv1k+ZkdVe36wYKI9Pv4SBqUTzTu9s3nsATIEaBn9T4ju/QzAn WBzYdwv22LfVzw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:24 2026 by rpki-client