This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft File: 2wy7NfYw1Aytd1B_2r03_e3BIQM.mft (raw, json) Hash identifier: dlMfO12jG5HGixkPGx2fPp4729sYBwJGxALBre9lcrw= Subject key identifier: DD:BE:68:C7:FA:40:6D:6D:4A:06:70:19:9D:13:72:69:45:C7:F7:C0 Authority key identifier: DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03 Certificate issuer: /CN=db0cbb35f630d40cad77507fdabd37fdedc12103 Certificate serial: 019C43222D77E21867EB5B476B99B2A33C87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft Manifest number: 02C4 Signing time: Mon 09 Feb 2026 16:00:38 +0000 Manifest this update: Mon 09 Feb 2026 16:00:38 +0000 Manifest next update: Tue 10 Feb 2026 16:00:38 +0000 Files and hashes: 1: 2wy7NfYw1Aytd1B_2r03_e3BIQM.crl (hash: jVd2FhubkDf1J0E3Z1eOXlCoUZYiXcFHJBstH08vO30=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:2d:77:e2:18:67:eb:5b:47:6b:99:b2:a3:3c:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db0cbb35f630d40cad77507fdabd37fdedc12103 Validity Not Before: Feb 9 16:00:38 2026 GMT Not After : Feb 10 16:00:38 2026 GMT Subject: CN=ddbe68c7fa406d6d4a0670199d13726945c7f7c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e5:33:86:0f:33:9d:56:db:08:f6:3f:9b:99: 37:d9:1d:70:f8:c4:f5:41:4f:5d:53:81:3d:35:55: bf:e2:66:72:e1:0a:49:40:d8:10:a9:5d:ff:bb:9e: 23:cd:01:f1:ee:16:22:d6:f8:36:9f:32:4e:3d:75: 7b:c2:56:bd:b0:be:fb:2c:71:0b:84:cb:c7:90:e2: e1:6e:02:96:ec:38:f2:e0:18:02:a4:e5:6d:47:62: 0f:96:7a:02:fa:a0:07:ac:16:c6:87:e1:0e:27:1a: 7d:74:9f:82:e9:6e:69:8c:c6:37:a9:3c:18:ed:dc: 54:23:91:7d:9b:e3:32:71:a7:19:5c:07:11:fd:8d: a7:b3:09:1a:9a:54:b0:f3:4b:3b:3d:84:d7:ba:1e: ad:71:3f:a2:4f:4c:db:34:a4:ec:77:1a:65:92:a5: e4:df:83:a3:b9:7e:80:a7:a0:cc:64:78:04:94:ae: 89:40:67:c5:8c:f4:95:63:9b:14:ce:fe:f6:8b:69: 85:75:02:4d:9f:1d:2a:39:d0:5b:e2:0a:e4:5b:cd: 35:52:53:03:b2:42:56:f0:1b:5f:a4:dd:ff:38:55: 9c:c8:0a:3c:e7:e4:d1:8b:62:6e:78:25:81:4e:93: 67:ae:80:0a:b9:d4:03:08:2e:c2:bd:da:fb:4e:be: 3e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BE:68:C7:FA:40:6D:6D:4A:06:70:19:9D:13:72:69:45:C7:F7:C0 X509v3 Authority Key Identifier: keyid:DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:be:50:ff:04:c7:1f:0f:1c:d4:14:27:78:3e:cc:5c:b3:c4: f7:13:8b:56:86:6c:fe:85:69:41:83:5e:b6:47:72:9e:67:4e: 0f:66:2a:b7:4f:ef:63:e8:0e:ae:c6:c8:48:e5:3f:45:28:25: 2d:23:48:a0:c5:90:15:bf:4e:3f:04:54:8d:81:0d:d9:0b:87: b3:72:01:d3:aa:c0:2d:88:83:9f:cb:75:bc:75:da:0c:eb:39: ea:ee:8b:32:76:dc:a5:2b:25:fc:f1:ee:3d:d2:cb:70:92:83: e6:5e:b4:c0:3d:9f:09:24:6d:0c:d5:2e:0d:fd:05:cf:b2:2d: 07:e0:61:bb:1c:3a:f0:d3:da:04:a9:b9:5e:b6:6f:43:93:9d: 09:a7:3c:c7:5a:c6:79:1b:6d:7b:15:d3:7e:f2:79:2f:9f:2e: 81:63:1f:06:6b:bb:85:cd:3b:3e:bc:ce:fc:10:7c:e6:1b:b4: 8d:d6:47:f7:cb:d2:25:84:30:ca:da:0e:e2:cd:59:1f:ea:39: 9f:29:60:90:a5:6a:08:b9:df:a4:49:ba:33:df:1b:d9:f3:0b: f2:4a:3b:fd:7f:a3:cf:08:fe:6a:60:b3:fd:10:5a:49:21:07: 71:f6:88:22:fd:ea:58:cd:64:bf:c7:af:8b:8f:86:f0:06:78: 48:7c:ec:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIi134hhn61tHa5myozyHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMGNiYjM1ZjYzMGQ0MGNhZDc3NTA3ZmRhYmQzN2ZkZWRj MTIxMDMwHhcNMjYwMjA5MTYwMDM4WhcNMjYwMjEwMTYwMDM4WjAzMTEwLwYDVQQD EyhkZGJlNjhjN2ZhNDA2ZDZkNGEwNjcwMTk5ZDEzNzI2OTQ1YzdmN2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAweUzhg8znVbbCPY/m5k32R1w+MT1 QU9dU4E9NVW/4mZy4QpJQNgQqV3/u54jzQHx7hYi1vg2nzJOPXV7wla9sL77LHEL hMvHkOLhbgKW7Djy4BgCpOVtR2IPlnoC+qAHrBbGh+EOJxp9dJ+C6W5pjMY3qTwY 7dxUI5F9m+MycacZXAcR/Y2nswkamlSw80s7PYTXuh6tcT+iT0zbNKTsdxplkqXk 34OjuX6Ap6DMZHgElK6JQGfFjPSVY5sUzv72i2mFdQJNnx0qOdBb4grkW801UlMD skJW8BtfpN3/OFWcyAo85+TRi2JueCWBTpNnroAKudQDCC7Cvdr7Tr4+uwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN2+aMf6QG1tSgZwGZ0TcmlFx/fAMB8GA1UdIwQY MBaAFNsMuzX2MNQMrXdQf9q9N/3twSEDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnd5N05mWXcxQXl0ZDFCXzJyMDNfZTNCSVFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy80MTRlNDMtMDJlMS00NzRjLTg2YjQt MmM4ZTBiNDk3MzgwLzEvMnd5N05mWXcxQXl0ZDFCXzJyMDNfZTNCSVFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy80MTRlNDMtMDJlMS00NzRjLTg2YjQtMmM4ZTBiNDk3Mzgw LzEvMnd5N05mWXcxQXl0ZDFCXzJyMDNfZTNCSVFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY75Q/wTH Hw8c1BQneD7MXLPE9xOLVoZs/oVpQYNetkdynmdOD2Yqt0/vY+gOrsbISOU/RSgl LSNIoMWQFb9OPwRUjYEN2QuHs3IB06rALYiDn8t1vHXaDOs56u6LMnbcpSsl/PHu PdLLcJKD5l60wD2fCSRtDNUuDf0Fz7ItB+Bhuxw68NPaBKm5XrZvQ5OdCac8x1rG eRttexXTfvJ5L58ugWMfBmu7hc07PrzO/BB85hu0jdZH98vSJYQwytoO4s1ZH+o5 nylgkKVqCLnfpEm6M98b2fML8ko7/X+jzwj+amCz/RBaSSEHcfaIIv3qWM1kv8ev i4+G8AZ4SHzsBw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:10 2026 by rpki-client