This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft File: r2A0bQgbHFyBCzlMZuEFErv02Mk.mft (raw, json) Hash identifier: gHCt+jn/wCHkWagSpEyETVkkBRAa9zTNGbjbq3GrM6g= Subject key identifier: F8:BA:DF:1D:0C:E7:F9:0E:52:17:23:94:27:1D:32:BC:98:46:C1:CE Authority key identifier: AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9 Certificate issuer: /CN=af60346d081b1c5c810b394c66e10512bbf4d8c9 Certificate serial: 019C4390D511998E67BBF3F5A02E7DCB7D65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft Manifest number: 052A Signing time: Mon 09 Feb 2026 18:01:31 +0000 Manifest this update: Mon 09 Feb 2026 18:01:31 +0000 Manifest next update: Tue 10 Feb 2026 18:01:31 +0000 Files and hashes: 1: MmHcaoSID19FRmGF5kFPH25PR2Q.roa (hash: Pv88TmQb3cGeVyGfPSrdF1R8Obs/Bo3T58FvtRvVnRM=) 2: r2A0bQgbHFyBCzlMZuEFErv02Mk.crl (hash: 1l6cs5GECRgSDlCJzjPZx0Mnr5AedF6LkkY2vQa2m2c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:d5:11:99:8e:67:bb:f3:f5:a0:2e:7d:cb:7d:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af60346d081b1c5c810b394c66e10512bbf4d8c9 Validity Not Before: Feb 9 18:01:31 2026 GMT Not After : Feb 10 18:01:31 2026 GMT Subject: CN=f8badf1d0ce7f90e52172394271d32bc9846c1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0c:32:60:d9:bc:f0:18:3c:d6:ef:e1:b2:73: e3:2d:6c:9c:07:7b:e0:0b:6f:b3:22:36:77:21:76: 8d:2b:e0:7f:59:62:02:85:68:1e:72:20:4a:db:41: 81:f5:8f:f2:92:af:03:bc:0e:13:7a:8c:29:ad:60: 0d:db:21:e0:5c:67:1a:b8:a5:29:2a:13:25:79:ea: 32:84:cf:74:42:f0:2c:6e:02:51:63:05:c7:31:6d: 56:ec:87:fc:23:c0:2a:1d:2a:6b:36:69:b3:08:e0: da:51:f6:3d:c4:87:d2:16:ae:78:1a:05:db:6d:c9: 59:38:4d:a5:44:96:37:87:9c:93:fc:17:36:c3:cd: e5:5a:71:da:33:4a:bf:52:7e:e3:72:d7:b9:40:b4: e8:e8:df:b0:3f:de:f1:f0:32:97:51:58:93:ff:da: 11:b5:ac:89:86:e6:dd:43:55:1c:12:81:ed:ec:db: 53:5c:c4:32:ca:9a:3f:2f:52:21:9e:c9:a0:45:f2: af:08:e1:61:6d:60:76:59:83:16:29:9b:3d:8e:21: 81:a5:04:41:7b:8e:10:e2:11:b8:a7:1a:93:23:48: b2:27:38:f5:0e:df:46:22:b0:43:49:e1:da:00:84: 8c:7c:d8:ff:f1:49:ef:b9:c9:81:93:46:58:9c:e9: aa:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:BA:DF:1D:0C:E7:F9:0E:52:17:23:94:27:1D:32:BC:98:46:C1:CE X509v3 Authority Key Identifier: keyid:AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:25:2d:41:e3:ec:b0:29:8c:33:d0:9a:dc:8b:08:25:6e:dc: d5:1c:7b:e1:8c:22:2d:7c:d4:14:83:f1:99:2e:7f:57:24:d0: c0:f8:52:6a:45:8a:86:08:0a:08:fb:e5:2f:f9:3b:52:c3:23: 54:7a:50:c5:b2:3c:2e:80:9e:e3:8b:d2:f8:63:12:e3:92:a4: ae:35:79:07:86:a0:2b:2e:43:8f:b3:34:e1:1d:3e:4c:0f:6c: ac:d9:8c:a2:dd:a7:0e:21:94:ef:57:dd:cb:de:da:ab:29:7f: 18:dc:b9:86:e5:4a:2b:72:8f:91:0f:17:a8:14:5d:d0:4e:2a: 38:db:08:b5:cc:ab:e2:42:03:af:0a:dc:cf:93:cd:a5:7c:5a: ab:1b:d1:96:cc:6f:31:8c:70:ce:21:73:6c:77:8e:2f:a3:bb: 77:4e:5d:7d:45:34:bf:df:ce:ff:90:ff:99:33:b1:8b:ae:45: f8:1a:1c:18:22:f0:73:b0:61:0b:de:64:63:a1:d1:02:27:27: 31:21:ba:35:b5:03:22:cd:fe:87:cb:82:18:29:e7:84:d2:7f: 1c:bb:b8:bd:04:a7:75:e3:47:e0:25:2e:d1:bc:72:5c:dd:7a: 75:9a:b2:e1:04:e8:3a:ff:95:ba:b9:5d:c5:c0:f4:57:2e:e9: ef:c7:e7:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkNURmY5nu/P1oC59y31lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmNjAzNDZkMDgxYjFjNWM4MTBiMzk0YzY2ZTEwNTEyYmJm NGQ4YzkwHhcNMjYwMjA5MTgwMTMxWhcNMjYwMjEwMTgwMTMxWjAzMTEwLwYDVQQD EyhmOGJhZGYxZDBjZTdmOTBlNTIxNzIzOTQyNzFkMzJiYzk4NDZjMWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzQwyYNm88Bg81u/hsnPjLWycB3vg C2+zIjZ3IXaNK+B/WWIChWgeciBK20GB9Y/ykq8DvA4TeowprWAN2yHgXGcauKUp KhMleeoyhM90QvAsbgJRYwXHMW1W7If8I8AqHSprNmmzCODaUfY9xIfSFq54GgXb bclZOE2lRJY3h5yT/Bc2w83lWnHaM0q/Un7jcte5QLTo6N+wP97x8DKXUViT/9oR tayJhubdQ1UcEoHt7NtTXMQyypo/L1IhnsmgRfKvCOFhbWB2WYMWKZs9jiGBpQRB e44Q4hG4pxqTI0iyJzj1Dt9GIrBDSeHaAISMfNj/8UnvucmBk0ZYnOmquwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPi63x0M5/kOUhcjlCcdMryYRsHOMB8GA1UdIwQY MBaAFK9gNG0IGxxcgQs5TGbhBRK79NjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEt MjYzOTgzOWY4MjhkLzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEtMjYzOTgzOWY4Mjhk LzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiyUtQePs sCmMM9Ca3IsIJW7c1Rx74YwiLXzUFIPxmS5/VyTQwPhSakWKhggKCPvlL/k7UsMj VHpQxbI8LoCe44vS+GMS45KkrjV5B4agKy5Dj7M04R0+TA9srNmMot2nDiGU71fd y97aqyl/GNy5huVKK3KPkQ8XqBRd0E4qONsItcyr4kIDrwrcz5PNpXxaqxvRlsxv MYxwziFzbHeOL6O7d05dfUU0v9/O/5D/mTOxi65F+BocGCLwc7BhC95kY6HRAicn MSG6NbUDIs3+h8uCGCnnhNJ/HLu4vQSndeNH4CUu0bxyXN16dZqy4QToOv+Vurld xcD0Vy7p78fnVA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:32 2026 by rpki-client