This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft File: 2lTIIO5UFUMsaLATYZJ1_0xubqU.mft (raw, json) Hash identifier: TzeFZ40uDZemNfqc36pmziP46+DapkKnmFbAo1DC9Nw= Subject key identifier: DD:BD:75:52:E3:E5:B6:DC:E9:9A:12:A3:00:63:79:C7:5A:B2:0A:FF Authority key identifier: DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5 Certificate issuer: /CN=da54c820ee5415432c68b013619275ff4c6e6ea5 Certificate serial: 019C4321F79290AC3FF8F6BD338C9E498118 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft Manifest number: 0894 Signing time: Mon 09 Feb 2026 16:00:25 +0000 Manifest this update: Mon 09 Feb 2026 16:00:25 +0000 Manifest next update: Tue 10 Feb 2026 16:00:25 +0000 Files and hashes: 1: 2lTIIO5UFUMsaLATYZJ1_0xubqU.crl (hash: ZftIOjWnzYI0MxBpmuX4DLdjq6MJio3n0a4cA/LIj/4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:f7:92:90:ac:3f:f8:f6:bd:33:8c:9e:49:81:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da54c820ee5415432c68b013619275ff4c6e6ea5 Validity Not Before: Feb 9 16:00:25 2026 GMT Not After : Feb 10 16:00:25 2026 GMT Subject: CN=ddbd7552e3e5b6dce99a12a3006379c75ab20aff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:49:ab:2d:2f:27:f8:2f:9e:b9:3d:fe:03:70: 2c:84:a9:86:57:60:21:b1:0f:a2:5d:04:9e:85:f9: 0f:e9:8d:67:6b:97:2d:a1:20:6c:56:bf:3e:f5:d9: 2d:a6:50:78:86:f4:24:b7:50:09:94:5f:4c:26:1f: b9:51:1e:ba:62:76:5f:c3:89:9e:5f:60:65:bb:97: 37:58:53:0a:70:3a:cb:b7:36:81:91:79:5d:6d:cd: 75:17:7b:b4:31:04:d4:45:fe:e2:14:9a:5a:c2:83: bf:87:ce:02:73:92:75:28:fb:d3:07:0e:69:db:fd: b8:22:b9:06:c5:db:92:fc:e1:3a:6d:0b:ef:03:0e: 45:31:7a:fe:1d:ed:5c:3a:2c:51:8c:bf:a4:d2:5c: 29:20:23:fc:7f:c5:b8:2e:86:e4:e8:04:62:83:b7: e4:7a:b2:36:f1:e0:98:36:99:3c:60:04:0d:d0:33: 32:d8:15:24:24:13:86:22:50:63:5f:0d:91:5f:ac: 31:ba:20:d6:04:41:da:1c:f7:18:98:c3:5a:73:47: 73:6b:95:5e:32:17:56:6d:4f:39:fe:e1:6d:1e:ec: 3e:fa:3e:9c:d6:4f:49:ba:ae:8b:09:9a:c5:23:c8: 86:09:f2:47:8b:d4:40:a1:17:21:4b:4f:a8:33:ae: 7a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BD:75:52:E3:E5:B6:DC:E9:9A:12:A3:00:63:79:C7:5A:B2:0A:FF X509v3 Authority Key Identifier: keyid:DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:2b:44:a7:76:b8:01:63:94:53:19:8e:ca:1e:fe:f7:0f:b0: 29:32:c5:86:c3:92:79:47:00:22:c2:ac:88:25:41:c0:62:e3: c2:af:35:5a:34:18:f3:86:cd:63:69:82:a4:9f:46:67:da:bb: 24:49:aa:64:a9:49:82:2c:2a:06:7f:4f:97:34:72:5c:ef:dc: e6:70:ec:a3:1c:4e:a1:51:01:f9:12:0b:3c:8b:1b:b8:34:a0: be:7f:63:7b:d1:d5:87:c7:d4:b7:24:3a:32:c5:ec:79:56:ec: b6:e0:7a:15:c3:24:f4:6a:d7:ba:96:37:45:cd:82:3a:9e:fd: 82:f1:c1:17:a7:72:96:4e:1f:b8:2c:7f:87:e9:71:43:c2:50: 3f:28:8d:72:72:87:5c:7b:f4:8d:81:09:e8:c9:32:d3:b5:fd: 95:2c:e4:cf:e5:5c:e4:f9:f4:18:5f:10:03:a0:40:a2:32:98: 43:36:e4:ba:59:21:d1:ca:a1:62:cf:b7:d5:bf:ed:9f:13:26: 13:b3:37:34:46:a4:0e:0e:53:15:8b:45:f0:67:74:3b:6f:fd: 5b:94:43:57:50:db:4f:b9:c4:23:77:74:ea:e9:be:e8:a3:ce: 1f:38:af:e8:f0:7f:1c:65:83:d7:87:4b:95:05:f3:48:af:2c: 72:d9:84:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIfeSkKw/+Pa9M4yeSYEYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhNTRjODIwZWU1NDE1NDMyYzY4YjAxMzYxOTI3NWZmNGM2 ZTZlYTUwHhcNMjYwMjA5MTYwMDI1WhcNMjYwMjEwMTYwMDI1WjAzMTEwLwYDVQQD EyhkZGJkNzU1MmUzZTViNmRjZTk5YTEyYTMwMDYzNzljNzVhYjIwYWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0EmrLS8n+C+euT3+A3AshKmGV2Ah sQ+iXQSehfkP6Y1na5ctoSBsVr8+9dktplB4hvQkt1AJlF9MJh+5UR66YnZfw4me X2Blu5c3WFMKcDrLtzaBkXldbc11F3u0MQTURf7iFJpawoO/h84Cc5J1KPvTBw5p 2/24IrkGxduS/OE6bQvvAw5FMXr+He1cOixRjL+k0lwpICP8f8W4Lobk6ARig7fk erI28eCYNpk8YAQN0DMy2BUkJBOGIlBjXw2RX6wxuiDWBEHaHPcYmMNac0dza5Ve MhdWbU85/uFtHuw++j6c1k9Juq6LCZrFI8iGCfJHi9RAoRchS0+oM656RQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN29dVLj5bbc6ZoSowBjecdasgr/MB8GA1UdIwQY MBaAFNpUyCDuVBVDLGiwE2GSdf9Mbm6lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmxUSUlPNVVGVU1zYUxBVFlaSjFfMHh1YnFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84N2E5ZDktNjY3Zi00MWYzLWFlYzkt ODA5ODIwNWY4NzJlLzEvMmxUSUlPNVVGVU1zYUxBVFlaSjFfMHh1YnFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi84N2E5ZDktNjY3Zi00MWYzLWFlYzktODA5ODIwNWY4NzJl LzEvMmxUSUlPNVVGVU1zYUxBVFlaSjFfMHh1YnFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZytEp3a4 AWOUUxmOyh7+9w+wKTLFhsOSeUcAIsKsiCVBwGLjwq81WjQY84bNY2mCpJ9GZ9q7 JEmqZKlJgiwqBn9PlzRyXO/c5nDsoxxOoVEB+RILPIsbuDSgvn9je9HVh8fUtyQ6 MsXseVbstuB6FcMk9GrXupY3Rc2COp79gvHBF6dylk4fuCx/h+lxQ8JQPyiNcnKH XHv0jYEJ6Mky07X9lSzkz+Vc5Pn0GF8QA6BAojKYQzbkulkh0cqhYs+31b/tnxMm E7M3NEakDg5TFYtF8Gd0O2/9W5RDV1DbT7nEI3d06um+6KPOHziv6PB/HGWD14dL lQXzSK8sctmEkA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:07 2026 by rpki-client