This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft File: 2gKPaUMDSrdg84rkIJFU4iVciek.mft (raw, json) Hash identifier: LJSdjY0hH4Mp1Nszs0VGVvjDksifbZCVc01Ah9YD0Cs= Subject key identifier: 84:AE:73:9B:D3:A5:97:CC:BD:2F:81:09:A5:F8:2F:1A:AA:19:70:1D Authority key identifier: DA:02:8F:69:43:03:4A:B7:60:F3:8A:E4:20:91:54:E2:25:5C:89:E9 Certificate issuer: /CN=da028f6943034ab760f38ae4209154e2255c89e9 Certificate serial: 019C427D62303B856A97E75C1D8B170367A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft Manifest number: 0770 Signing time: Mon 09 Feb 2026 13:00:39 +0000 Manifest this update: Mon 09 Feb 2026 13:00:39 +0000 Manifest next update: Tue 10 Feb 2026 13:00:39 +0000 Files and hashes: 1: 2gKPaUMDSrdg84rkIJFU4iVciek.crl (hash: l3mKtUgTt+OYomKYN0dlxodYgvK7xjtuzG65FS30G18=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.crl rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:62:30:3b:85:6a:97:e7:5c:1d:8b:17:03:67:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da028f6943034ab760f38ae4209154e2255c89e9 Validity Not Before: Feb 9 13:00:39 2026 GMT Not After : Feb 10 13:00:39 2026 GMT Subject: CN=84ae739bd3a597ccbd2f8109a5f82f1aaa19701d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cf:3e:9d:6b:21:8d:0b:11:c6:10:6f:ce:9b: a2:20:29:83:c3:87:1f:a3:6c:38:04:46:b0:af:b4: f3:d4:36:99:91:2a:44:1f:71:d3:59:7f:3d:15:db: bf:2a:8a:6e:a8:ef:bf:58:87:5a:d4:31:3e:e5:f4: 45:51:d7:31:84:a1:de:2f:ba:71:9f:26:c2:67:87: 74:65:dc:d7:47:37:d4:a8:d5:3a:11:0b:23:8b:9c: 6b:ed:dd:44:7d:6c:60:41:ac:42:0a:3b:78:fd:ca: ce:98:da:ef:a3:cb:bc:7e:c1:cc:fc:d9:9c:31:dd: 00:ca:27:6f:d2:58:7a:dc:f2:0c:31:f6:cc:7f:51: 92:18:e7:80:22:0b:74:77:a6:8b:b7:5f:dc:9a:63: fa:23:da:d7:8f:fe:f5:9f:de:e1:ef:41:3f:69:03: 86:fc:ae:29:07:5b:cd:43:ca:39:d3:26:8f:a0:c5: d7:65:3f:96:0b:a3:4a:15:3c:f3:64:a4:ec:2b:d0: 3a:b2:be:f5:62:15:54:ed:44:2c:cc:fe:78:62:fd: e4:e9:b3:af:b1:e3:cb:fa:c5:82:6a:a9:4b:39:11: 23:24:e1:a1:a8:d9:f8:f3:0a:64:31:00:50:07:fc: 57:bd:bc:c4:e2:c0:26:0f:3b:6e:ee:20:0c:9f:61: 96:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:AE:73:9B:D3:A5:97:CC:BD:2F:81:09:A5:F8:2F:1A:AA:19:70:1D X509v3 Authority Key Identifier: keyid:DA:02:8F:69:43:03:4A:B7:60:F3:8A:E4:20:91:54:E2:25:5C:89:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:87:5f:05:31:11:55:54:ac:14:ff:f1:42:c7:29:9a:1d:42: 7d:a2:50:2a:c5:3f:f4:e1:d7:3e:74:01:c4:4a:52:4d:15:cd: 84:7f:5d:ce:a4:8b:67:e9:ea:41:9c:9d:59:89:ba:94:45:60: 83:33:b1:88:d4:7a:a4:aa:50:a5:44:df:80:26:de:b3:98:2f: 35:fe:0b:65:e0:ba:dc:97:29:b1:a5:ef:1e:3c:b0:dc:fe:f7: e7:89:24:4b:28:0e:97:d4:f5:48:c5:4d:3a:56:09:6b:55:66: ee:a3:62:c1:5c:99:3f:b3:dd:69:40:bf:69:8b:05:43:82:5c: 09:d6:7e:40:8b:2b:bb:9b:92:37:66:2a:47:4e:d6:9c:d7:41: f1:4b:fa:a6:bb:5a:c4:3b:44:f3:08:6c:74:42:88:04:46:3a: 3e:3f:1d:43:ba:e8:9e:d4:a7:0d:5c:d1:d7:62:1f:41:44:96: 98:28:c0:3e:5a:d3:b0:15:ce:db:b8:d7:a9:d7:7c:f4:e7:ca: 4b:3b:7f:2a:3b:ef:1e:46:84:74:ba:1c:67:d5:b2:95:28:11: b8:5c:9c:36:18:0d:af:a9:37:4d:ca:a0:d5:ca:f7:13:c0:07: 74:c9:67:f5:1c:2b:a9:15:aa:a3:a0:3a:6d:c4:58:41:2f:d9: 92:6a:a4:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfWIwO4Vql+dcHYsXA2elMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMDI4ZjY5NDMwMzRhYjc2MGYzOGFlNDIwOTE1NGUyMjU1 Yzg5ZTkwHhcNMjYwMjA5MTMwMDM5WhcNMjYwMjEwMTMwMDM5WjAzMTEwLwYDVQQD Eyg4NGFlNzM5YmQzYTU5N2NjYmQyZjgxMDlhNWY4MmYxYWFhMTk3MDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwc8+nWshjQsRxhBvzpuiICmDw4cf o2w4BEawr7Tz1DaZkSpEH3HTWX89Fdu/KopuqO+/WIda1DE+5fRFUdcxhKHeL7px nybCZ4d0ZdzXRzfUqNU6EQsji5xr7d1EfWxgQaxCCjt4/crOmNrvo8u8fsHM/Nmc Md0Ayidv0lh63PIMMfbMf1GSGOeAIgt0d6aLt1/cmmP6I9rXj/71n97h70E/aQOG /K4pB1vNQ8o50yaPoMXXZT+WC6NKFTzzZKTsK9A6sr71YhVU7UQszP54Yv3k6bOv sePL+sWCaqlLOREjJOGhqNn48wpkMQBQB/xXvbzE4sAmDztu7iAMn2GWyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFISuc5vTpZfMvS+BCaX4LxqqGXAdMB8GA1UdIwQY MBaAFNoCj2lDA0q3YPOK5CCRVOIlXInpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmdLUGFVTURTcmRnODRya0lKRlU0aVZjaWVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9lYWZhNjEtN2ZlOS00YjE2LWJjOWIt ZjZmM2MyNTc5YzYwLzEvMmdLUGFVTURTcmRnODRya0lKRlU0aVZjaWVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9lYWZhNjEtN2ZlOS00YjE2LWJjOWItZjZmM2MyNTc5YzYw LzEvMmdLUGFVTURTcmRnODRya0lKRlU0aVZjaWVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgIdfBTER VVSsFP/xQscpmh1CfaJQKsU/9OHXPnQBxEpSTRXNhH9dzqSLZ+nqQZydWYm6lEVg gzOxiNR6pKpQpUTfgCbes5gvNf4LZeC63JcpsaXvHjyw3P7354kkSygOl9T1SMVN OlYJa1Vm7qNiwVyZP7PdaUC/aYsFQ4JcCdZ+QIsru5uSN2YqR07WnNdB8Uv6prta xDtE8whsdEKIBEY6Pj8dQ7rontSnDVzR12IfQUSWmCjAPlrTsBXO27jXqdd89OfK Szt/KjvvHkaEdLocZ9WylSgRuFycNhgNr6k3Tcqg1cr3E8AHdMln9RwrqRWqo6A6 bcRYQS/ZkmqkJQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:05 2026 by rpki-client