This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft File: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft (raw, json) Hash identifier: bWw+j8wR1GYosC5ZICNGA3RI2qPkCENTPPSJOh5QJKE= Subject key identifier: CC:7B:42:11:7A:BA:B7:6C:66:6C:5A:4E:9C:38:BD:7A:9F:28:64:BE Authority key identifier: D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09 Certificate issuer: /CN=d90d2681514aefee9d3c86e1eae35736c84d1c09 Certificate serial: 019C2F64BD559730EC5D9CBE1827AA29C39F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft Manifest number: 1809 Signing time: Thu 05 Feb 2026 20:00:57 +0000 Manifest this update: Thu 05 Feb 2026 20:00:57 +0000 Manifest next update: Fri 06 Feb 2026 20:00:57 +0000 Files and hashes: 1: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl (hash: y6wcZ9axKF6WaqcwQ/pIg4cO6j8hPE+4Gf6omLpyz3U=) 2: ffYBPHr80VYEZ9nh35N1GnYUaq0.roa (hash: eJAJO7UVqMGX5rHA6v1I/gJpbdqT70QsYP5GPkz+BRE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 20:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:2f:64:bd:55:97:30:ec:5d:9c:be:18:27:aa:29:c3:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d90d2681514aefee9d3c86e1eae35736c84d1c09 Validity Not Before: Feb 5 20:00:57 2026 GMT Not After : Feb 6 20:00:57 2026 GMT Subject: CN=cc7b42117abab76c666c5a4e9c38bd7a9f2864be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:73:8b:f3:03:04:88:84:ec:5f:56:e8:0a:2d: cb:40:b0:af:e8:d4:32:59:ac:0e:d9:0a:e6:fb:db: 43:45:10:15:7f:cc:d9:62:5e:90:46:ac:c5:87:26: 62:bd:c8:10:a8:7a:35:40:fa:c1:31:1d:04:c5:58: 89:28:a2:9d:81:a7:8f:e2:f1:7d:54:23:41:c9:8f: b0:c2:a1:97:4a:5a:32:92:20:4b:c0:57:a7:1d:f5: 7c:66:89:3c:90:fc:ea:19:03:e1:7e:ba:8c:77:d1: 91:67:cf:a6:fc:83:77:c4:c8:2b:d2:3b:d6:56:99: 83:82:58:83:b9:c4:a1:bd:48:bd:4f:54:a3:29:23: 86:f1:32:7c:e5:e7:36:7f:c3:c5:02:41:30:5e:58: 22:c5:cb:c3:93:09:19:9d:74:a0:66:61:c8:dd:dd: c8:59:71:35:17:90:a3:e5:44:14:84:20:bc:7c:d3: bb:a0:37:cb:c8:e0:b2:99:52:4b:65:ad:df:b9:34: 25:9f:6c:a2:b8:4d:ab:d3:cb:43:76:61:1c:22:16: 62:47:1e:8e:f0:55:cd:65:b1:fd:e1:b6:74:c7:61: 9a:74:02:3b:de:1a:39:dc:95:04:b2:da:42:c7:0b: 12:51:91:fd:86:4d:a8:5f:b4:1d:58:1f:2c:66:4c: 35:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:7B:42:11:7A:BA:B7:6C:66:6C:5A:4E:9C:38:BD:7A:9F:28:64:BE X509v3 Authority Key Identifier: keyid:D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:9e:9d:30:24:92:90:fd:24:3d:e6:f7:67:08:3b:1c:0f:77: ab:4f:23:0d:16:d1:d5:44:d2:fc:ce:06:8a:6f:68:cc:44:e4: 84:79:4c:1c:a9:af:fa:14:82:07:be:7f:73:d3:28:ec:34:7e: 4e:2a:c2:20:f2:f9:71:e2:b9:d4:15:22:52:10:ab:21:8b:04: 92:f0:49:f6:88:28:62:40:21:62:33:80:66:cd:83:ac:99:47: 64:58:d4:d9:90:d8:cb:df:32:d6:4b:b1:cc:b7:93:0f:f7:34: 8d:44:47:70:38:7b:cf:8f:0d:d4:b1:a9:44:14:4e:32:ef:4b: 2a:8b:c0:3d:6c:6b:5a:e8:85:77:01:54:1c:fa:c1:8b:d0:09: cf:9a:c8:37:bf:03:1a:03:21:e5:c0:f0:a0:5c:17:36:1b:9d: af:98:71:a7:40:c7:00:8b:5f:d9:aa:97:f0:60:15:5f:a9:d5: e6:b6:68:53:c2:c8:06:ab:d9:81:98:52:9a:5d:dc:d7:08:7d: 8d:f5:2a:4b:38:c9:cb:ba:a1:72:6c:f6:4a:e7:bd:e0:a2:5b: e5:4b:82:57:b2:02:4e:fe:da:f5:3d:26:b8:1c:ee:9f:bd:df: f8:c1:70:8e:08:de:6c:96:57:21:ba:be:82:f3:65:57:59:38: a1:e4:cd:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwvZL1VlzDsXZy+GCeqKcOfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MGQyNjgxNTE0YWVmZWU5ZDNjODZlMWVhZTM1NzM2Yzg0 ZDFjMDkwHhcNMjYwMjA1MjAwMDU3WhcNMjYwMjA2MjAwMDU3WjAzMTEwLwYDVQQD EyhjYzdiNDIxMTdhYmFiNzZjNjY2YzVhNGU5YzM4YmQ3YTlmMjg2NGJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhXOL8wMEiITsX1boCi3LQLCv6NQy WawO2Qrm+9tDRRAVf8zZYl6QRqzFhyZivcgQqHo1QPrBMR0ExViJKKKdgaeP4vF9 VCNByY+wwqGXSloykiBLwFenHfV8Zok8kPzqGQPhfrqMd9GRZ8+m/IN3xMgr0jvW VpmDgliDucShvUi9T1SjKSOG8TJ85ec2f8PFAkEwXlgixcvDkwkZnXSgZmHI3d3I WXE1F5Cj5UQUhCC8fNO7oDfLyOCymVJLZa3fuTQln2yiuE2r08tDdmEcIhZiRx6O 8FXNZbH94bZ0x2GadAI73ho53JUEstpCxwsSUZH9hk2oX7QdWB8sZkw1YQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMx7QhF6urdsZmxaTpw4vXqfKGS+MB8GA1UdIwQY MBaAFNkNJoFRSu/unTyG4erjVzbITRwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9lMGQ5NTYtN2I4Ny00ZWRkLWI5NDQt MWQwZjI5YjRiOTdmLzEvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC9lMGQ5NTYtN2I4Ny00ZWRkLWI5NDQtMWQwZjI5YjRiOTdm LzEvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoZ6dMCSS kP0kPeb3Zwg7HA93q08jDRbR1UTS/M4Gim9ozETkhHlMHKmv+hSCB75/c9Mo7DR+ TirCIPL5ceK51BUiUhCrIYsEkvBJ9ogoYkAhYjOAZs2DrJlHZFjU2ZDYy98y1kux zLeTD/c0jURHcDh7z48N1LGpRBROMu9LKovAPWxrWuiFdwFUHPrBi9AJz5rIN78D GgMh5cDwoFwXNhudr5hxp0DHAItf2aqX8GAVX6nV5rZoU8LIBqvZgZhSml3c1wh9 jfUqSzjJy7qhcmz2Sue94KJb5UuCV7ICTv7a9T0muBzun73f+MFwjgjebJZXIbq+ gvNlV1k4oeTNDA== -----END CERTIFICATE-----Generated at Fri Feb 6 02:08:17 2026 by rpki-client