This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft File: 2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft (raw, json) Hash identifier: 3N5rRGjiFoU2YtejqqZ3LhP2e/srrAQmAa05C3JM8IY= Subject key identifier: 9C:C3:86:FF:B8:72:02:7D:AC:A4:11:3B:67:47:BE:6A:9B:86:02:2C Authority key identifier: D8:68:2D:2C:CA:D4:E4:1A:55:20:94:97:EE:0F:E2:7F:39:01:BB:51 Certificate issuer: /CN=d8682d2ccad4e41a55209497ee0fe27f3901bb51 Certificate serial: 019C424670F57B1F9749ABB00CCE7D723D9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft Manifest number: 02AC Signing time: Mon 09 Feb 2026 12:00:38 +0000 Manifest this update: Mon 09 Feb 2026 12:00:38 +0000 Manifest next update: Tue 10 Feb 2026 12:00:38 +0000 Files and hashes: 1: 2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl (hash: koridg+mS6dIRVQEd65yH3HiA7PuGtKo/+HJp9tSu0Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:70:f5:7b:1f:97:49:ab:b0:0c:ce:7d:72:3d:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8682d2ccad4e41a55209497ee0fe27f3901bb51 Validity Not Before: Feb 9 12:00:38 2026 GMT Not After : Feb 10 12:00:38 2026 GMT Subject: CN=9cc386ffb872027daca4113b6747be6a9b86022c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:36:de:85:69:36:19:9d:11:fc:c9:c1:88:04: cd:f7:e8:3a:5b:24:c9:18:4a:4b:82:3b:a2:82:4a: c8:66:12:73:c7:54:b1:62:7d:8e:e7:b2:84:db:46: 58:f9:a0:10:19:1c:11:7d:08:21:cb:22:02:fb:bf: d5:96:68:eb:41:6c:d5:39:95:5e:47:c5:aa:29:c3: 86:19:1e:52:8b:b7:cc:79:a2:58:fd:0d:4f:7d:d8: c5:52:72:d2:83:5c:57:23:25:67:8f:ac:0e:88:9e: 7b:a8:06:7f:3e:a2:ce:cf:25:a4:fe:3e:72:ff:51: b8:3c:d3:0d:31:6a:c5:2c:dd:69:d7:8a:14:6b:1d: 24:4b:4a:f1:5f:fa:dd:b6:8f:ad:90:93:ea:6f:a5: 24:47:95:49:a8:be:0d:24:a8:18:33:e6:60:99:4a: 2c:7b:60:7d:1f:bf:1b:35:b0:85:27:1c:1e:0e:3b: 52:3d:da:4e:d4:8e:e7:db:06:57:f9:b9:34:e6:2d: a4:48:e0:8f:07:6d:ea:b1:a5:f7:e2:45:84:64:71: 5f:5c:34:0e:d8:8c:70:c7:11:18:60:bc:f6:e0:51: f1:c6:21:f3:f2:9a:ea:70:1b:25:35:14:21:dc:11: 91:51:06:8c:d5:50:a5:87:10:b8:47:f9:58:8d:99: 49:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C3:86:FF:B8:72:02:7D:AC:A4:11:3B:67:47:BE:6A:9B:86:02:2C X509v3 Authority Key Identifier: keyid:D8:68:2D:2C:CA:D4:E4:1A:55:20:94:97:EE:0F:E2:7F:39:01:BB:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:88:cd:4e:c4:d4:83:53:fe:93:d2:1c:c6:55:5a:c2:c0:9d: 4d:09:57:d1:5b:1b:9a:a5:7a:f2:4f:cb:06:e6:f3:db:ce:03: 00:60:ce:e2:03:a3:1c:8c:e9:09:7a:8f:c7:9a:ed:0f:44:a2: 92:7b:5b:b7:b3:e9:8e:6a:c0:5f:8f:9d:87:14:e1:a3:ed:e8: 58:c2:2e:3a:b3:9e:48:0a:55:9a:3f:92:ba:d0:88:a0:3f:fa: 18:5d:07:62:75:e2:23:3e:34:ac:8e:6a:c2:51:30:48:6f:b7: b5:70:61:80:71:37:9f:3f:ff:12:8d:0c:90:5b:f0:e5:21:de: 25:fe:93:0c:f6:9a:8a:0c:e9:c8:65:29:e5:da:6a:a8:ec:ab: 60:cf:24:01:ba:06:30:7b:52:bf:4e:a2:43:c0:c7:bf:f8:83: 3f:04:18:94:a3:54:33:48:5d:33:77:13:ad:8b:ff:d2:be:30: 04:8e:11:de:8d:cf:05:c3:8b:b2:c8:4c:88:0a:18:7e:53:51: bd:82:b1:33:c2:af:e5:18:fe:e8:21:b6:01:a4:00:c5:db:0c: 7a:e7:8d:c8:09:19:af:44:51:31:29:86:5e:26:32:b5:bd:5f: 38:fd:2c:d8:5f:ae:b1:d3:2d:05:df:ba:23:c4:9c:05:92:32: 06:45:98:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRnD1ex+XSauwDM59cj2eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NjgyZDJjY2FkNGU0MWE1NTIwOTQ5N2VlMGZlMjdmMzkw MWJiNTEwHhcNMjYwMjA5MTIwMDM4WhcNMjYwMjEwMTIwMDM4WjAzMTEwLwYDVQQD Eyg5Y2MzODZmZmI4NzIwMjdkYWNhNDExM2I2NzQ3YmU2YTliODYwMjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzbehWk2GZ0R/MnBiATN9+g6WyTJ GEpLgjuigkrIZhJzx1SxYn2O57KE20ZY+aAQGRwRfQghyyIC+7/VlmjrQWzVOZVe R8WqKcOGGR5Si7fMeaJY/Q1PfdjFUnLSg1xXIyVnj6wOiJ57qAZ/PqLOzyWk/j5y /1G4PNMNMWrFLN1p14oUax0kS0rxX/rdto+tkJPqb6UkR5VJqL4NJKgYM+ZgmUos e2B9H78bNbCFJxweDjtSPdpO1I7n2wZX+bk05i2kSOCPB23qsaX34kWEZHFfXDQO 2IxwxxEYYLz24FHxxiHz8prqcBslNRQh3BGRUQaM1VClhxC4R/lYjZlJ5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJzDhv+4cgJ9rKQRO2dHvmqbhgIsMB8GA1UdIwQY MBaAFNhoLSzK1OQaVSCUl+4P4n85AbtRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkdndExNclU1QnBWSUpTWDdnX2lmemtCdTFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9jNjlhYTItNDk4ZC00NDFiLThiMTct NWM3ZTlmZTZlMWE5LzEvMkdndExNclU1QnBWSUpTWDdnX2lmemtCdTFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9jNjlhYTItNDk4ZC00NDFiLThiMTctNWM3ZTlmZTZlMWE5 LzEvMkdndExNclU1QnBWSUpTWDdnX2lmemtCdTFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw4jNTsTU g1P+k9IcxlVawsCdTQlX0VsbmqV68k/LBubz284DAGDO4gOjHIzpCXqPx5rtD0Si kntbt7PpjmrAX4+dhxTho+3oWMIuOrOeSApVmj+SutCIoD/6GF0HYnXiIz40rI5q wlEwSG+3tXBhgHE3nz//Eo0MkFvw5SHeJf6TDPaaigzpyGUp5dpqqOyrYM8kAboG MHtSv06iQ8DHv/iDPwQYlKNUM0hdM3cTrYv/0r4wBI4R3o3PBcOLsshMiAoYflNR vYKxM8Kv5Rj+6CG2AaQAxdsMeueNyAkZr0RRMSmGXiYytb1fOP0s2F+usdMtBd+6 I8ScBZIyBkWYCA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:44 2026 by rpki-client