This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json) Hash identifier: cRN6XRFzPvmEmk+JD7pqxdxy3of7zdeTXJR2oc+2BcI= Subject key identifier: 0D:5D:5F:E0:2C:9A:D0:B5:CF:CD:A8:F6:C5:0C:FA:D6:4A:60:65:D1 Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a Certificate serial: 019C446BDF62F76AE2BCC308FAFC43E0951A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft Manifest number: 1740 Signing time: Mon 09 Feb 2026 22:00:45 +0000 Manifest this update: Mon 09 Feb 2026 22:00:45 +0000 Manifest next update: Tue 10 Feb 2026 22:00:45 +0000 Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: Q7XUWXlFjVSbp2Iiipm5F97bhi4x+44eBGEDPvQW7D0=) 2: xhpLteHeEuI9N2i0WjCkJHYwXtM.roa (hash: ZhHw/D8clg9QeWX4KlvzTONGmYlvYOv2tFZIA342W2c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:df:62:f7:6a:e2:bc:c3:08:fa:fc:43:e0:95:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a Validity Not Before: Feb 9 22:00:45 2026 GMT Not After : Feb 10 22:00:45 2026 GMT Subject: CN=0d5d5fe02c9ad0b5cfcda8f6c50cfad64a6065d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ab:c6:ba:c2:99:3e:a2:69:90:5f:5f:e9:79: 7b:06:e1:b9:5e:e2:16:aa:2e:4e:ba:05:6e:55:85: 37:e8:31:5a:f7:a8:c9:30:5e:3f:9c:6f:fa:54:75: c5:e0:ca:d4:b4:b3:b4:d2:4c:34:66:0e:81:55:c1: 10:8c:33:a9:51:dc:2e:e3:53:67:b4:e6:bc:d0:1e: 37:62:19:c1:53:06:e7:2a:ef:82:9d:e5:e9:35:a4: 94:35:83:38:c1:6b:35:f2:f7:7f:19:40:d4:44:67: 00:21:5c:5c:7d:9c:51:62:a5:45:15:b9:20:12:ac: a7:d7:be:93:21:96:0e:73:92:97:bc:ad:a0:5b:b5: 26:98:5c:dd:a3:8b:82:d8:0d:fc:ff:35:0a:8d:85: e6:d6:b0:59:10:c0:49:b0:9a:ab:96:4f:7e:34:b3: f6:7b:bf:e7:0c:2c:69:35:2b:b9:95:4b:98:d1:df: 10:e4:db:bb:c7:d9:b4:83:21:fd:e8:27:7c:47:5f: 31:68:b8:c7:48:3f:0d:92:95:df:09:4a:9e:60:ac: d3:aa:a3:c0:db:ab:a9:61:03:31:51:ee:a3:bc:0b: ef:ef:2e:8d:7b:45:50:94:7f:b8:3e:a3:b1:38:b8: e1:35:26:16:7b:cd:16:98:c4:52:6d:a3:aa:1a:dc: 3f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5D:5F:E0:2C:9A:D0:B5:CF:CD:A8:F6:C5:0C:FA:D6:4A:60:65:D1 X509v3 Authority Key Identifier: keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:35:2f:f5:ce:c4:14:33:64:fc:03:3b:40:40:03:f4:ab:0d: e5:fd:c0:1c:8c:62:d4:0d:ce:50:03:ca:93:5b:81:89:47:04: bc:bd:dc:de:af:59:91:1f:7c:25:a3:87:c1:14:09:95:3f:bc: 93:bb:15:84:9f:41:6a:84:04:53:9b:d5:a1:13:ce:63:a4:01: 6a:ca:fb:a3:1e:d0:bd:68:16:9f:70:b8:c0:88:fc:ec:c7:54: 54:bb:63:69:55:a2:22:67:52:57:08:0c:45:8a:52:c0:f2:01: a2:31:df:c1:ec:01:45:3e:b3:85:72:74:2c:a1:7e:0b:89:c6: 1b:c7:33:54:c5:b6:0f:1c:79:10:56:89:14:f2:8a:af:31:2d: 80:f4:bd:68:84:79:9c:d8:7c:fb:90:58:e2:6f:4a:98:d1:38: 8c:27:81:22:15:b0:8a:a1:67:f2:1d:4a:49:91:f0:b3:86:ff: 64:31:34:72:f0:46:72:73:ce:80:54:30:55:7a:cc:5f:e3:5b: 80:ab:de:c7:8d:ed:88:80:27:6c:13:70:16:25:c5:87:3d:7b: 0e:79:16:74:da:05:da:d5:e6:23:06:5d:fc:0d:63:e8:a4:d8: 39:1d:73:5f:68:71:46:76:14:5b:a9:43:f8:8e:e3:d1:e4:2e: 20:75:8f:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa99i92rivMMI+vxD4JUaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NTAyMjI4MmUzNDY5OWZlNTQ4Yjc1Mjg1MTlhMjVhNTBk OTEzM2EwHhcNMjYwMjA5MjIwMDQ1WhcNMjYwMjEwMjIwMDQ1WjAzMTEwLwYDVQQD EygwZDVkNWZlMDJjOWFkMGI1Y2ZjZGE4ZjZjNTBjZmFkNjRhNjA2NWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6vGusKZPqJpkF9f6Xl7BuG5XuIW qi5OugVuVYU36DFa96jJMF4/nG/6VHXF4MrUtLO00kw0Zg6BVcEQjDOpUdwu41Nn tOa80B43YhnBUwbnKu+CneXpNaSUNYM4wWs18vd/GUDURGcAIVxcfZxRYqVFFbkg Eqyn176TIZYOc5KXvK2gW7UmmFzdo4uC2A38/zUKjYXm1rBZEMBJsJqrlk9+NLP2 e7/nDCxpNSu5lUuY0d8Q5Nu7x9m0gyH96Cd8R18xaLjHSD8NkpXfCUqeYKzTqqPA 26upYQMxUe6jvAvv7y6Ne0VQlH+4PqOxOLjhNSYWe80WmMRSbaOqGtw/bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA1dX+AsmtC1z82o9sUM+tZKYGXRMB8GA1UdIwQY MBaAFNhQIiguNGmf5Ui3UoUZolpQ2RM6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy85NzU4ZWItNDEwOC00MDg3LWE4MTgt NTBlYTY3MzI3Y2QxLzEvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy85NzU4ZWItNDEwOC00MDg3LWE4MTgtNTBlYTY3MzI3Y2Qx LzEvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXDUv9c7E FDNk/AM7QEAD9KsN5f3AHIxi1A3OUAPKk1uBiUcEvL3c3q9ZkR98JaOHwRQJlT+8 k7sVhJ9BaoQEU5vVoRPOY6QBasr7ox7QvWgWn3C4wIj87MdUVLtjaVWiImdSVwgM RYpSwPIBojHfwewBRT6zhXJ0LKF+C4nGG8czVMW2Dxx5EFaJFPKKrzEtgPS9aIR5 nNh8+5BY4m9KmNE4jCeBIhWwiqFn8h1KSZHws4b/ZDE0cvBGcnPOgFQwVXrMX+Nb gKvex43tiIAnbBNwFiXFhz17DnkWdNoF2tXmIwZd/A1j6KTYOR1zX2hxRnYUW6lD +I7j0eQuIHWP3g== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:55 2026 by rpki-client