This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft File: 2iHQJGSziv86MckIeNYnI7nHQqY.mft (raw, json) Hash identifier: 87g11GEINToj7ho9T4R+uKKGhvc+5XBbRkhGTqbSkRU= Subject key identifier: B5:CC:75:5F:EA:65:AD:97:00:4D:B4:D5:A1:C1:F5:C2:F5:1E:93:72 Authority key identifier: DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6 Certificate issuer: /CN=da21d02464b38aff3a31c90878d62723b9c742a6 Certificate serial: 019C420F2587B12F9E1F99BC349A226A99E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft Manifest number: 020D Signing time: Mon 09 Feb 2026 11:00:14 +0000 Manifest this update: Mon 09 Feb 2026 11:00:14 +0000 Manifest next update: Tue 10 Feb 2026 11:00:14 +0000 Files and hashes: 1: 2iHQJGSziv86MckIeNYnI7nHQqY.crl (hash: AzusOosVFs3IXii3hKSt4zBBZytT8eQs8ecZdxvqF1E=) 2: ULNyY9ornMb2XkpkkXNvWN1gP2I.roa (hash: r5UnkkjvCogYCq6Zu3PdGG9tZrgdqzPy7q2Pvmc7Y4w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:25:87:b1:2f:9e:1f:99:bc:34:9a:22:6a:99:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da21d02464b38aff3a31c90878d62723b9c742a6 Validity Not Before: Feb 9 11:00:14 2026 GMT Not After : Feb 10 11:00:14 2026 GMT Subject: CN=b5cc755fea65ad97004db4d5a1c1f5c2f51e9372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:39:96:84:7a:2d:77:13:ec:f5:22:a5:07:d0: 9b:67:3c:c7:f9:e4:eb:5c:60:fd:c8:90:34:0c:35: f1:f7:ce:f7:20:5a:46:aa:10:88:55:4b:8c:38:05: e5:30:5d:c2:ea:9c:47:df:e6:2b:f0:63:c8:f5:83: 66:6e:24:2c:9c:5c:a3:fb:de:99:1d:5e:60:50:27: 4d:f8:ad:c6:e6:0c:c2:45:09:b9:09:59:85:cf:24: 09:37:ae:84:91:fb:21:e7:67:6f:0b:26:c5:45:6c: be:fa:0b:0b:b3:1d:5c:6e:5d:a4:cf:e4:5e:40:da: a6:bf:ad:c7:f6:34:c7:3c:87:b7:0a:80:a3:67:75: 1d:31:9a:fd:5f:46:b1:e3:b1:41:11:d4:66:0c:64: 93:ea:37:f5:eb:6c:ae:f0:c5:ad:5b:ff:0f:ab:ec: 92:32:47:72:b8:f6:b5:d5:80:4f:a1:98:b3:79:ef: e1:13:e7:02:65:f5:e8:ec:c7:17:7d:0f:6d:d6:79: fa:52:ee:7f:61:ac:03:8f:cc:03:84:a1:ea:18:f2: cb:4b:0d:34:23:4f:30:7b:0c:51:78:57:42:d7:2c: 37:9f:ad:a4:6f:9f:1f:f5:c2:06:cf:2f:17:6b:a2: 54:a0:80:ac:26:8f:03:d3:49:e7:df:3b:bb:ed:d7: 79:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:CC:75:5F:EA:65:AD:97:00:4D:B4:D5:A1:C1:F5:C2:F5:1E:93:72 X509v3 Authority Key Identifier: keyid:DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:23:88:70:3b:08:57:b8:83:48:39:c6:21:8c:5b:a6:e1:a3: 97:42:05:cf:96:60:dd:f6:ad:19:ce:dd:ef:69:c1:c8:50:ca: c8:1a:2c:cf:69:45:da:e2:0e:de:14:bc:ed:36:f0:74:74:37: b7:94:69:65:88:99:53:fe:34:5d:7f:9b:57:ba:1b:68:01:62: da:16:24:07:5d:92:e2:11:d5:de:4c:83:27:0f:42:19:13:a3: d3:d3:44:63:2e:79:dd:67:a9:b2:40:3d:0e:74:23:e2:a1:da: d7:7e:a9:da:88:99:aa:3e:4d:cf:c9:55:b6:86:fb:08:25:9b: 5a:a6:55:42:f6:8f:09:bd:2f:5c:3f:23:05:84:9b:8e:7b:b9: d3:5b:62:b7:98:bc:d9:5f:45:7e:59:37:1e:eb:63:1a:b5:7c: f5:8f:39:ca:fb:c5:3e:ab:f8:27:10:98:22:44:67:31:eb:75: b4:ff:30:0f:c3:96:18:82:bf:7b:16:b9:6a:fb:c2:68:07:7f: 32:fc:21:b9:07:ca:7d:74:d6:2c:13:ea:77:0c:45:1b:e9:47: 6c:71:24:d7:cd:8b:4a:e5:cb:67:eb:c8:18:b5:ff:40:79:c6: 54:14:37:4c:94:c8:9e:6d:f6:5a:2e:89:32:d4:b3:3c:55:2f: 0e:47:c0:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDyWHsS+eH5m8NJoiapnpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMjFkMDI0NjRiMzhhZmYzYTMxYzkwODc4ZDYyNzIzYjlj NzQyYTYwHhcNMjYwMjA5MTEwMDE0WhcNMjYwMjEwMTEwMDE0WjAzMTEwLwYDVQQD EyhiNWNjNzU1ZmVhNjVhZDk3MDA0ZGI0ZDVhMWMxZjVjMmY1MWU5MzcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjmWhHotdxPs9SKlB9CbZzzH+eTr XGD9yJA0DDXx9873IFpGqhCIVUuMOAXlMF3C6pxH3+Yr8GPI9YNmbiQsnFyj+96Z HV5gUCdN+K3G5gzCRQm5CVmFzyQJN66Ekfsh52dvCybFRWy++gsLsx1cbl2kz+Re QNqmv63H9jTHPIe3CoCjZ3UdMZr9X0ax47FBEdRmDGST6jf162yu8MWtW/8Pq+yS MkdyuPa11YBPoZizee/hE+cCZfXo7McXfQ9t1nn6Uu5/YawDj8wDhKHqGPLLSw00 I08wewxReFdC1yw3n62kb58f9cIGzy8Xa6JUoICsJo8D00nn3zu77dd5CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLXMdV/qZa2XAE201aHB9cL1HpNyMB8GA1UdIwQY MBaAFNoh0CRks4r/OjHJCHjWJyO5x0KmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmlIUUpHU3ppdjg2TWNrSWVOWW5JN25IUXFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy84ZTYxZjQtMWE0MS00Y2NhLWI4NWMt NzZmNTJiMWRkNzE4LzEvMmlIUUpHU3ppdjg2TWNrSWVOWW5JN25IUXFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy84ZTYxZjQtMWE0MS00Y2NhLWI4NWMtNzZmNTJiMWRkNzE4 LzEvMmlIUUpHU3ppdjg2TWNrSWVOWW5JN25IUXFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJyOIcDsI V7iDSDnGIYxbpuGjl0IFz5Zg3fatGc7d72nByFDKyBosz2lF2uIO3hS87TbwdHQ3 t5RpZYiZU/40XX+bV7obaAFi2hYkB12S4hHV3kyDJw9CGROj09NEYy553WepskA9 DnQj4qHa136p2oiZqj5Nz8lVtob7CCWbWqZVQvaPCb0vXD8jBYSbjnu501tit5i8 2V9Fflk3HutjGrV89Y85yvvFPqv4JxCYIkRnMet1tP8wD8OWGIK/exa5avvCaAd/ MvwhuQfKfXTWLBPqdwxFG+lHbHEk182LSuXLZ+vIGLX/QHnGVBQ3TJTInm32Wi6J MtSzPFUvDkfA8g== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:15 2026 by rpki-client