This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json) Hash identifier: R0oHTDeiF4zcW7vmRl2VqGEbBq0g5+CDs1ISEUY9mls= Subject key identifier: 66:17:0A:2C:EE:67:15:93:E1:5C:CE:83:50:31:42:F7:F9:0B:31:03 Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99 Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999 Certificate serial: 019C4358B7F5CA58260B7E321289CB7F7347 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft Manifest number: 169A Signing time: Mon 09 Feb 2026 17:00:13 +0000 Manifest this update: Mon 09 Feb 2026 17:00:13 +0000 Manifest next update: Tue 10 Feb 2026 17:00:13 +0000 Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: On7wThjCzZzip4zNnf6MrHRPVJnezWLuaStD/nL6yAI=) 2: LbDAcjZRmfBvnYit-qN-3rlzTKY.roa (hash: +vYoAsDEQG/i2Ib8tFZBcU6HYqtLxdIh9g5RpOOfFc0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:b7:f5:ca:58:26:0b:7e:32:12:89:cb:7f:73:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999 Validity Not Before: Feb 9 17:00:13 2026 GMT Not After : Feb 10 17:00:13 2026 GMT Subject: CN=66170a2cee671593e15cce83503142f7f90b3103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:98:a2:e6:9e:ec:f4:3a:c8:d6:5d:f0:ed:53: c0:0c:33:ed:36:a2:33:55:ec:3b:7b:fd:d5:6d:1c: 4c:27:7e:c6:0c:d0:0d:77:fe:92:f3:24:d0:f3:33: c2:99:18:5c:37:ec:0d:8e:d1:cf:9b:f4:99:0d:5a: 74:55:cd:96:9e:72:12:ab:66:a9:40:48:fb:9b:2e: 63:e5:02:1c:13:08:d2:04:aa:4a:e8:6c:97:c0:e5: 94:72:7e:8a:49:4a:d1:8e:fb:23:af:81:bf:6c:17: 80:51:5a:09:d6:e5:c4:97:c3:de:f4:38:9b:cf:6c: 51:2a:3a:fc:6c:17:b9:6e:ef:1f:35:06:4a:6b:f7: 3b:c8:dc:81:e6:57:2e:6a:7e:f4:d7:11:d0:9d:db: 9a:bc:85:eb:15:33:fe:0d:b7:68:3b:b1:4c:ca:50: 2e:b8:9a:1d:72:9e:be:1d:34:2a:3d:82:94:9c:22: 9a:bd:44:61:45:7a:5c:55:55:f5:b0:70:99:06:86: fb:a9:e0:11:4a:93:5f:0b:5a:1e:cd:80:30:cc:1f: a6:fd:e3:02:41:1d:b9:f7:4a:37:d8:60:d4:90:d0: a3:4d:4b:19:6f:39:05:be:eb:e6:96:bf:d9:b3:9a: 0f:34:13:bf:fc:a7:25:79:96:33:82:75:6b:0e:f4: a0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:17:0A:2C:EE:67:15:93:E1:5C:CE:83:50:31:42:F7:F9:0B:31:03 X509v3 Authority Key Identifier: keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:0c:64:18:26:56:5a:39:ba:bb:e3:e1:f3:a3:d3:2f:b3:88: 08:05:68:02:23:fe:4d:d2:4c:a7:20:1f:d8:8f:1d:5d:b1:23: f7:a9:ca:2d:18:ca:a1:96:f0:7c:ef:a6:3f:9a:ab:2f:47:8e: e9:5f:b9:b8:01:4b:5b:92:c2:8b:26:89:45:53:29:7c:61:99: 4d:bf:5a:5f:e3:f2:07:aa:b3:ce:79:cb:4c:d4:cd:3f:d1:7f: 74:81:10:2e:06:13:d4:19:ca:7c:ae:3d:11:d7:4f:5d:e6:c4: 00:3f:2c:ca:2f:cc:5e:2d:d0:bb:06:27:77:1e:58:a8:7a:c9: 18:83:52:b7:9f:4e:61:0a:da:74:0c:4e:fb:f8:22:7f:fc:6f: 87:9f:69:ce:f4:53:42:74:b2:33:e0:e9:7e:00:e6:26:62:ea: e1:32:9e:4b:50:b3:8e:65:6b:3e:9e:57:63:d7:fb:33:60:8a: 2d:68:68:69:a4:6d:c4:95:2b:93:f7:15:0a:34:56:2e:02:dd: be:8d:3f:72:d1:23:d6:be:d5:8f:25:1e:65:01:6a:c1:72:c9: 65:a7:cf:2a:d5:c2:13:21:35:2c:c5:6c:ee:a4:ad:30:25:98: d9:65:27:66:4d:e6:b5:dd:68:e9:87:e9:2a:f0:dd:dd:a2:d7: e4:7e:f3:79 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWLf1ylgmC34yEonLf3NHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MDg3MjJhNzU1NWRkMTYyMWRkNmE2MjIwOWZhOGRhNTI5 NDI5OTkwHhcNMjYwMjA5MTcwMDEzWhcNMjYwMjEwMTcwMDEzWjAzMTEwLwYDVQQD Eyg2NjE3MGEyY2VlNjcxNTkzZTE1Y2NlODM1MDMxNDJmN2Y5MGIzMTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupii5p7s9DrI1l3w7VPADDPtNqIz Vew7e/3VbRxMJ37GDNANd/6S8yTQ8zPCmRhcN+wNjtHPm/SZDVp0Vc2WnnISq2ap QEj7my5j5QIcEwjSBKpK6GyXwOWUcn6KSUrRjvsjr4G/bBeAUVoJ1uXEl8Pe9Dib z2xRKjr8bBe5bu8fNQZKa/c7yNyB5lcuan701xHQnduavIXrFTP+DbdoO7FMylAu uJodcp6+HTQqPYKUnCKavURhRXpcVVX1sHCZBob7qeARSpNfC1oezYAwzB+m/eMC QR2590o32GDUkNCjTUsZbzkFvuvmlr/Zs5oPNBO//KcleZYzgnVrDvSgRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGYXCizuZxWT4VzOg1AxQvf5CzEDMB8GA1UdIwQY MBaAFNkIcip1Vd0WId1qYiCfqNpSlCmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8wODY2YjAtZmU2Yi00NjZmLWJiODYt MmQ5ZmNhNjYyZTUyLzEvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8wODY2YjAtZmU2Yi00NjZmLWJiODYtMmQ5ZmNhNjYyZTUy LzEvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcAxkGCZW Wjm6u+Ph86PTL7OICAVoAiP+TdJMpyAf2I8dXbEj96nKLRjKoZbwfO+mP5qrL0eO 6V+5uAFLW5LCiyaJRVMpfGGZTb9aX+PyB6qzznnLTNTNP9F/dIEQLgYT1BnKfK49 EddPXebEAD8syi/MXi3QuwYndx5YqHrJGINSt59OYQradAxO+/gif/xvh59pzvRT QnSyM+DpfgDmJmLq4TKeS1CzjmVrPp5XY9f7M2CKLWhoaaRtxJUrk/cVCjRWLgLd vo0/ctEj1r7VjyUeZQFqwXLJZafPKtXCEyE1LMVs7qStMCWY2WUnZk3mtd1o6Yfp KvDd3aLX5H7zeQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:31 2026 by rpki-client