This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft File: 2Hwy4kled0lvwgKzAxZLpAjl0SI.mft (raw, json) Hash identifier: NabR+IGXpVqRe4+bkX/K7/27GUvnKAcK1DvdYwDjs9Q= Subject key identifier: 61:D2:53:98:B5:72:7C:73:00:F2:97:A5:A6:96:04:16:2B:D8:96:3D Authority key identifier: D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22 Certificate issuer: /CN=d87c32e2495e77496fc202b303164ba408e5d122 Certificate serial: 019C43226D145B7953CF14C48261C8FD53D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft Manifest number: 170B Signing time: Mon 09 Feb 2026 16:00:55 +0000 Manifest this update: Mon 09 Feb 2026 16:00:55 +0000 Manifest next update: Tue 10 Feb 2026 16:00:55 +0000 Files and hashes: 1: 2Hwy4kled0lvwgKzAxZLpAjl0SI.crl (hash: kB3vjVz3yl1L0MevDPupjqyGrNDBYe6NE6B3Jkzvvek=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6d:14:5b:79:53:cf:14:c4:82:61:c8:fd:53:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d87c32e2495e77496fc202b303164ba408e5d122 Validity Not Before: Feb 9 16:00:55 2026 GMT Not After : Feb 10 16:00:55 2026 GMT Subject: CN=61d25398b5727c7300f297a5a69604162bd8963d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:63:04:74:ab:77:9e:a8:ab:2d:93:8b:90:f0: c4:c8:c9:b1:b0:03:5b:4f:7c:5b:fb:6e:84:25:5a: 43:cf:82:dd:9a:36:03:64:24:f0:9c:c6:a5:f6:38: 65:19:39:3d:5b:78:2b:24:87:11:51:02:de:e2:d2: aa:b2:ef:2b:65:c3:33:34:33:71:9a:65:b7:ac:2a: bb:e6:36:55:fc:64:6d:83:55:58:15:d2:42:b2:5b: 20:c9:9f:4a:40:1b:cf:15:df:5b:61:6e:a6:43:a9: 15:f2:e9:2f:da:b2:eb:9d:c0:17:63:0d:90:c8:b6: 2a:c0:ab:5c:8c:7f:dd:cf:5f:c5:a5:90:80:2e:9c: 1a:f4:bd:96:9e:0b:a9:cf:9f:1f:dd:07:ca:ac:06: 5b:8e:34:85:e8:7b:5f:ec:00:8f:93:b0:98:36:ba: 0e:91:79:d1:1f:aa:1a:d6:7c:20:fc:1a:6a:c4:63: 71:e4:c5:03:45:a1:b2:8b:40:50:e9:23:33:42:56: bd:10:aa:ea:40:5d:af:fd:0c:9f:31:f0:3c:7f:1f: 4f:3c:fe:27:91:7b:7a:7a:0f:d1:b4:e2:e5:7e:2e: bf:1e:ee:59:b3:35:ff:1e:45:61:0a:f4:ea:4a:9e: 4a:cd:bf:95:41:9c:cd:07:48:68:5a:9b:fe:f2:9b: ee:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D2:53:98:B5:72:7C:73:00:F2:97:A5:A6:96:04:16:2B:D8:96:3D X509v3 Authority Key Identifier: keyid:D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:7d:7a:8e:6c:2d:6b:9d:06:a0:64:2b:37:f5:13:45:42:b5: 60:13:12:5e:f6:3e:95:e1:55:3d:2e:e9:97:d6:6e:0b:b4:2d: e2:ae:4f:03:1d:6d:10:c3:3b:1e:0f:9c:03:16:e8:05:17:3e: a0:e5:d4:9f:8e:a3:c8:93:0f:31:7a:16:65:3b:dc:20:42:6d: 66:16:59:2a:7b:2c:cc:f9:c8:39:50:99:a3:19:32:ce:ba:84: 5c:83:c1:9c:4f:c5:f8:1c:81:fe:04:54:ce:dc:5d:f9:e9:28: 70:6f:5d:66:5c:5b:5c:4e:89:ce:69:1e:0f:e9:53:ec:a0:3c: 86:3a:99:66:7a:85:be:bb:df:d1:fc:af:0b:60:52:02:cf:71: 02:5c:00:04:54:86:e2:70:a3:70:b5:fd:6b:23:49:0d:7e:89: 5d:20:2c:13:0c:cc:a0:bf:fa:5f:99:14:93:2d:2b:23:60:1e: f0:ce:4e:f7:db:b6:99:56:ff:0e:c3:95:f5:fa:64:e2:be:5c: ba:59:41:5f:9a:ee:4d:04:cc:59:86:22:e1:9a:31:8b:67:e5: 7c:24:21:7c:e4:36:20:a8:3b:d8:18:ac:7b:21:33:6e:2b:54: eb:bf:b9:0d:ad:dd:a9:7d:4e:c3:ac:e0:d8:b1:23:51:db:72: e3:c8:f2:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIm0UW3lTzxTEgmHI/VPYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4N2MzMmUyNDk1ZTc3NDk2ZmMyMDJiMzAzMTY0YmE0MDhl NWQxMjIwHhcNMjYwMjA5MTYwMDU1WhcNMjYwMjEwMTYwMDU1WjAzMTEwLwYDVQQD Eyg2MWQyNTM5OGI1NzI3YzczMDBmMjk3YTVhNjk2MDQxNjJiZDg5NjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2MEdKt3nqirLZOLkPDEyMmxsANb T3xb+26EJVpDz4LdmjYDZCTwnMal9jhlGTk9W3grJIcRUQLe4tKqsu8rZcMzNDNx mmW3rCq75jZV/GRtg1VYFdJCslsgyZ9KQBvPFd9bYW6mQ6kV8ukv2rLrncAXYw2Q yLYqwKtcjH/dz1/FpZCALpwa9L2Wngupz58f3QfKrAZbjjSF6Htf7ACPk7CYNroO kXnRH6oa1nwg/BpqxGNx5MUDRaGyi0BQ6SMzQla9EKrqQF2v/QyfMfA8fx9PPP4n kXt6eg/RtOLlfi6/Hu5ZszX/HkVhCvTqSp5Kzb+VQZzNB0hoWpv+8pvufQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHSU5i1cnxzAPKXpaaWBBYr2JY9MB8GA1UdIwQY MBaAFNh8MuJJXndJb8ICswMWS6QI5dEiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8xZTE5MWUtMTEzYy00NDMzLWFlZjAt NzI0M2I5ODRhNjE1LzEvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8xZTE5MWUtMTEzYy00NDMzLWFlZjAtNzI0M2I5ODRhNjE1 LzEvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADn16jmwt a50GoGQrN/UTRUK1YBMSXvY+leFVPS7pl9ZuC7Qt4q5PAx1tEMM7Hg+cAxboBRc+ oOXUn46jyJMPMXoWZTvcIEJtZhZZKnsszPnIOVCZoxkyzrqEXIPBnE/F+ByB/gRU ztxd+ekocG9dZlxbXE6JzmkeD+lT7KA8hjqZZnqFvrvf0fyvC2BSAs9xAlwABFSG 4nCjcLX9ayNJDX6JXSAsEwzMoL/6X5kUky0rI2Ae8M5O99u2mVb/DsOV9fpk4r5c ullBX5ruTQTMWYYi4Zoxi2flfCQhfOQ2IKg72BiseyEzbitU67+5Da3dqX1Ow6zg 2LEjUdty48jyDg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:23 2026 by rpki-client