This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/f4c354-80fb-4c39-a0f8-f18fbf596eba/1/K2s1AF0wIoBENtctw8nIZc-qoAM.mft File: K2s1AF0wIoBENtctw8nIZc-qoAM.mft (raw, json) Hash identifier: QX1/vxRCxJRJKDTYX+DfKgTUrCKs/Frmxh2pOi4U2ZU= Subject key identifier: 86:42:5C:21:AC:56:AE:F8:28:1C:00:59:07:B1:51:4C:8F:22:F4:0B Authority key identifier: 2B:6B:35:00:5D:30:22:80:44:36:D7:2D:C3:C9:C8:65:CF:AA:A0:03 Certificate issuer: /CN=2b6b35005d3022804436d72dc3c9c865cfaaa003 Certificate serial: 019C43907FD6E0BE65F9975BBF3E808FE749 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2s1AF0wIoBENtctw8nIZc-qoAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/f4c354-80fb-4c39-a0f8-f18fbf596eba/1/K2s1AF0wIoBENtctw8nIZc-qoAM.mft Manifest number: 0D3B Signing time: Mon 09 Feb 2026 18:01:09 +0000 Manifest this update: Mon 09 Feb 2026 18:01:09 +0000 Manifest next update: Tue 10 Feb 2026 18:01:09 +0000 Files and hashes: 1: K2s1AF0wIoBENtctw8nIZc-qoAM.crl (hash: /gWFnqo1DDeTMQbI3mm0HXB/rSG247s4qS5vWA7DhDg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/f4c354-80fb-4c39-a0f8-f18fbf596eba/1/K2s1AF0wIoBENtctw8nIZc-qoAM.crl rsync://rpki.ripe.net/repository/DEFAULT/64/f4c354-80fb-4c39-a0f8-f18fbf596eba/1/K2s1AF0wIoBENtctw8nIZc-qoAM.mft rsync://rpki.ripe.net/repository/DEFAULT/K2s1AF0wIoBENtctw8nIZc-qoAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:7f:d6:e0:be:65:f9:97:5b:bf:3e:80:8f:e7:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2b6b35005d3022804436d72dc3c9c865cfaaa003 Validity Not Before: Feb 9 18:01:09 2026 GMT Not After : Feb 10 18:01:09 2026 GMT Subject: CN=86425c21ac56aef8281c005907b1514c8f22f40b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:06:0f:8e:8b:3e:29:a7:c0:90:e8:c9:61:39: 3d:fb:ab:0f:64:32:7c:25:ec:bc:58:97:c8:36:4a: fa:ff:31:5d:58:ee:ea:24:fa:01:6f:ae:a9:09:f3: 41:12:2b:02:57:aa:d4:f3:f4:91:12:9e:10:6d:fe: 6b:ee:3b:90:d3:4e:b6:b6:cb:f8:30:61:9c:40:3b: 8d:2f:c0:82:ac:1a:a0:89:5b:71:21:aa:55:49:3a: 55:d5:fd:58:4b:62:9c:7e:4f:fc:74:ee:c9:23:3e: 27:65:a4:07:b7:93:fa:7a:d8:4b:71:82:55:34:10: e5:20:01:6a:4b:2c:9a:bf:43:52:84:4a:78:c2:f1: 9e:a4:40:cf:bd:38:75:b3:cb:7e:64:cd:06:2f:9a: f2:ee:72:ff:2f:f1:b7:1d:5c:0b:b6:01:c3:df:12: d3:5a:8f:7c:26:ea:cc:a2:38:03:b4:dc:13:1d:54: af:19:e1:86:36:aa:28:0c:96:88:50:4c:fe:08:95: 9f:8a:0f:a2:72:3f:51:42:a6:80:fa:a6:a3:a8:f8: fc:a0:61:04:98:b9:9e:59:f3:60:7a:fe:00:fe:74: 69:04:4a:3a:34:5d:2a:53:b7:ec:b3:4e:ee:bc:1b: 90:ec:0b:3c:6b:4f:40:b1:3a:43:01:f1:aa:7f:71: 63:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:42:5C:21:AC:56:AE:F8:28:1C:00:59:07:B1:51:4C:8F:22:F4:0B X509v3 Authority Key Identifier: keyid:2B:6B:35:00:5D:30:22:80:44:36:D7:2D:C3:C9:C8:65:CF:AA:A0:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2s1AF0wIoBENtctw8nIZc-qoAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/f4c354-80fb-4c39-a0f8-f18fbf596eba/1/K2s1AF0wIoBENtctw8nIZc-qoAM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/f4c354-80fb-4c39-a0f8-f18fbf596eba/1/K2s1AF0wIoBENtctw8nIZc-qoAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:69:fb:b1:6f:dc:5d:8f:dd:49:cd:e5:f1:e5:8a:d9:6b:94: 18:77:c0:0b:75:85:b7:c7:68:fc:5a:5c:f3:d9:4b:61:a6:53: e4:85:c7:54:90:09:75:7e:aa:57:fa:ec:04:40:e3:11:57:e1: 98:5d:ea:e4:8f:a7:6a:30:4e:9d:d4:09:10:dd:74:00:1e:ef: 49:82:00:66:95:db:b7:52:1e:ca:b7:92:d1:bd:82:8d:7d:b2: a9:f1:f4:c9:85:af:45:f2:86:8b:81:37:7e:df:39:2a:34:09: b1:6c:e7:76:40:7d:19:a4:9b:ac:10:1b:08:f9:2e:d8:2c:4f: 96:db:6d:c6:ec:1d:6d:78:25:b3:81:44:3c:79:a9:42:72:29: 9e:78:c5:d9:5e:08:f6:f7:3a:52:75:ac:b4:8a:df:ee:35:ae: c2:8f:3e:5f:10:18:b7:f0:1a:e7:0c:70:d3:78:b8:73:a1:d3: c2:0e:8f:74:e8:1e:8a:89:99:f6:81:87:75:94:f0:a7:39:74: 4f:b3:e7:37:28:58:75:90:9a:30:a1:37:b9:c8:67:58:75:08: d8:63:28:59:c9:2d:79:ef:da:47:19:c1:16:5a:01:93:14:33: cc:93:03:71:10:92:f1:68:ac:8c:af:96:b2:93:8e:56:45:47: 16:b9:21:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkH/W4L5l+Zdbvz6Aj+dJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiNmIzNTAwNWQzMDIyODA0NDM2ZDcyZGMzYzljODY1Y2Zh YWEwMDMwHhcNMjYwMjA5MTgwMTA5WhcNMjYwMjEwMTgwMTA5WjAzMTEwLwYDVQQD Eyg4NjQyNWMyMWFjNTZhZWY4MjgxYzAwNTkwN2IxNTE0YzhmMjJmNDBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwYPjos+KafAkOjJYTk9+6sPZDJ8 Jey8WJfINkr6/zFdWO7qJPoBb66pCfNBEisCV6rU8/SREp4Qbf5r7juQ0062tsv4 MGGcQDuNL8CCrBqgiVtxIapVSTpV1f1YS2Kcfk/8dO7JIz4nZaQHt5P6ethLcYJV NBDlIAFqSyyav0NShEp4wvGepEDPvTh1s8t+ZM0GL5ry7nL/L/G3HVwLtgHD3xLT Wo98JurMojgDtNwTHVSvGeGGNqooDJaIUEz+CJWfig+icj9RQqaA+qajqPj8oGEE mLmeWfNgev4A/nRpBEo6NF0qU7fss07uvBuQ7As8a09AsTpDAfGqf3FjxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIZCXCGsVq74KBwAWQexUUyPIvQLMB8GA1UdIwQY MBaAFCtrNQBdMCKARDbXLcPJyGXPqqADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzJzMUFGMHdJb0JFTnRjdHc4bklaYy1xb0FNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9mNGMzNTQtODBmYi00YzM5LWEwZjgt ZjE4ZmJmNTk2ZWJhLzEvSzJzMUFGMHdJb0JFTnRjdHc4bklaYy1xb0FNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9mNGMzNTQtODBmYi00YzM5LWEwZjgtZjE4ZmJmNTk2ZWJh LzEvSzJzMUFGMHdJb0JFTnRjdHc4bklaYy1xb0FNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVWn7sW/c XY/dSc3l8eWK2WuUGHfAC3WFt8do/Fpc89lLYaZT5IXHVJAJdX6qV/rsBEDjEVfh mF3q5I+najBOndQJEN10AB7vSYIAZpXbt1IeyreS0b2CjX2yqfH0yYWvRfKGi4E3 ft85KjQJsWzndkB9GaSbrBAbCPku2CxPltttxuwdbXgls4FEPHmpQnIpnnjF2V4I 9vc6UnWstIrf7jWuwo8+XxAYt/Aa5wxw03i4c6HTwg6PdOgeiomZ9oGHdZTwpzl0 T7PnNyhYdZCaMKE3uchnWHUI2GMoWcktee/aRxnBFloBkxQzzJMDcRCS8WisjK+W spOOVkVHFrkhFQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:19 2026 by rpki-client