This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft File: G2t-l-0j1mqR-4qRv9nGdxEpsas.mft (raw, json) Hash identifier: 17F5gGBtyW85RRwSNx8c0JLrkx1QL3LKIGSgIVv1fUM= Subject key identifier: 8A:74:94:68:F1:3B:0E:A2:73:D5:31:A2:25:E0:FB:5E:69:32:13:43 Authority key identifier: 1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB Certificate issuer: /CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab Certificate serial: 019C41A1FA23E9E8FA76683E39EDC14389D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft Manifest number: 1108 Signing time: Mon 09 Feb 2026 09:01:00 +0000 Manifest this update: Mon 09 Feb 2026 09:01:00 +0000 Manifest next update: Tue 10 Feb 2026 09:01:00 +0000 Files and hashes: 1: G2t-l-0j1mqR-4qRv9nGdxEpsas.crl (hash: coc1TQmVxnIy96ebgka0iSS8yWY87zvxi1o9Pv7OMp4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:fa:23:e9:e8:fa:76:68:3e:39:ed:c1:43:89:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab Validity Not Before: Feb 9 09:01:00 2026 GMT Not After : Feb 10 09:01:00 2026 GMT Subject: CN=8a749468f13b0ea273d531a225e0fb5e69321343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bc:9c:64:c2:c7:41:86:85:0e:72:27:80:63: a3:f3:45:55:cb:c9:82:75:0c:ab:db:ba:ae:10:ff: ce:d0:ed:f4:24:60:b9:d3:43:ba:ac:0d:64:89:da: 77:fa:e9:be:9d:d2:c5:b4:db:26:32:23:60:70:f8: ac:7b:16:d4:2f:3f:6b:11:f2:0f:35:93:a4:0a:aa: 4e:67:2c:a2:03:de:72:13:19:93:5a:a5:20:97:57: d9:d9:a6:15:9c:9e:c2:3b:53:2e:0b:d7:01:c0:16: c7:e2:78:bc:47:34:0c:a7:c7:dc:6f:ba:ea:7a:a6: 63:9e:31:b5:1f:52:8d:7d:49:fb:83:9b:23:f5:ae: 90:7d:9a:c9:6a:df:8e:85:e7:a4:ba:4e:40:a6:f9: 4a:97:cb:58:cd:4e:a4:df:b0:38:85:14:23:87:c4: 26:bb:e2:04:90:03:f8:66:db:6b:44:22:46:0b:9b: 95:de:d3:c6:54:08:de:59:78:9f:12:40:8a:eb:10: e5:7b:6e:60:08:15:c9:4b:c0:8e:e2:fe:85:27:30: 33:b3:28:33:0d:5d:7a:57:76:24:d5:a4:5d:98:0e: 14:96:fa:72:f0:b3:c7:af:10:20:3e:70:f7:c1:44: f1:be:68:16:b7:83:99:bf:22:75:1a:c5:94:dd:d1: b2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:74:94:68:F1:3B:0E:A2:73:D5:31:A2:25:E0:FB:5E:69:32:13:43 X509v3 Authority Key Identifier: keyid:1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:c7:5a:80:3f:17:4d:10:eb:94:a3:00:60:ed:5a:23:84:08: 2d:3b:10:53:4e:ec:fa:21:a7:1f:ef:87:0b:39:f7:e4:ee:c4: 5a:4c:1c:3f:7f:0f:4d:6b:ef:28:5e:4f:fd:c7:69:24:02:d4: 2f:dc:c3:80:1f:86:66:9f:7f:9c:11:c9:a4:5c:e8:d9:29:5a: 97:e0:d3:75:26:45:1d:c3:a7:1a:3f:84:8b:6d:ac:16:af:bc: a1:d1:a5:13:be:99:6d:e3:08:88:3e:2a:24:53:ba:30:40:29: ca:72:0e:04:a9:9c:69:72:3c:4a:ec:6e:a6:f5:0c:46:86:cf: e0:44:a7:1c:16:13:7c:99:c3:a4:e2:01:ff:74:03:31:d7:65: 95:98:c7:28:54:82:0c:6a:c1:97:a7:51:a6:89:21:08:3e:14: ee:ec:79:dc:5a:d0:95:09:6f:53:30:19:4e:32:ec:0a:f7:12: 7e:40:10:eb:6f:1b:38:63:58:de:00:c5:af:d6:7a:5c:c7:86: dc:40:56:65:e1:8f:04:c2:93:cb:04:fc:93:0a:28:66:41:8e: 20:7b:d8:de:69:c6:62:71:27:ad:f7:70:cc:fd:8a:69:8d:ab: 41:a5:f2:40:1d:e3:cc:d3:04:5e:c1:9e:5e:6d:6e:16:a3:77: 7c:fb:cf:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBofoj6ej6dmg+Oe3BQ4nYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiNmI3ZTk3ZWQyM2Q2NmE5MWZiOGE5MWJmZDljNjc3MTEy OWIxYWIwHhcNMjYwMjA5MDkwMTAwWhcNMjYwMjEwMDkwMTAwWjAzMTEwLwYDVQQD Eyg4YTc0OTQ2OGYxM2IwZWEyNzNkNTMxYTIyNWUwZmI1ZTY5MzIxMzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprycZMLHQYaFDnIngGOj80VVy8mC dQyr27quEP/O0O30JGC500O6rA1kidp3+um+ndLFtNsmMiNgcPisexbULz9rEfIP NZOkCqpOZyyiA95yExmTWqUgl1fZ2aYVnJ7CO1MuC9cBwBbH4ni8RzQMp8fcb7rq eqZjnjG1H1KNfUn7g5sj9a6QfZrJat+Oheekuk5ApvlKl8tYzU6k37A4hRQjh8Qm u+IEkAP4ZttrRCJGC5uV3tPGVAjeWXifEkCK6xDle25gCBXJS8CO4v6FJzAzsygz DV16V3Yk1aRdmA4Ulvpy8LPHrxAgPnD3wUTxvmgWt4OZvyJ1GsWU3dGyawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIp0lGjxOw6ic9UxoiXg+15pMhNDMB8GA1UdIwQY MBaAFBtrfpftI9ZqkfuKkb/ZxncRKbGrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzJ0LWwtMGoxbXFSLTRxUnY5bkdkeEVwc2FzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9iYjBlMDAtYTI0ZC00OTM1LThjMDct MTM2MTU1MGNiM2Q1LzEvRzJ0LWwtMGoxbXFSLTRxUnY5bkdkeEVwc2FzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9iYjBlMDAtYTI0ZC00OTM1LThjMDctMTM2MTU1MGNiM2Q1 LzEvRzJ0LWwtMGoxbXFSLTRxUnY5bkdkeEVwc2FzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqsdagD8X TRDrlKMAYO1aI4QILTsQU07s+iGnH++HCzn35O7EWkwcP38PTWvvKF5P/cdpJALU L9zDgB+GZp9/nBHJpFzo2Slal+DTdSZFHcOnGj+Ei22sFq+8odGlE76ZbeMIiD4q JFO6MEApynIOBKmcaXI8SuxupvUMRobP4ESnHBYTfJnDpOIB/3QDMddllZjHKFSC DGrBl6dRpokhCD4U7ux53FrQlQlvUzAZTjLsCvcSfkAQ628bOGNY3gDFr9Z6XMeG 3EBWZeGPBMKTywT8kwooZkGOIHvY3mnGYnEnrfdwzP2KaY2rQaXyQB3jzNMEXsGe Xm1uFqN3fPvPuw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:40 2026 by rpki-client