This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json) Hash identifier: QOA7kaGva2utKhfe3LLODv1rWeFjDNLjMFRAC31VUUU= Subject key identifier: 2E:C8:93:6B:B6:B8:4B:57:10:46:73:96:B6:1B:33:89:96:1F:45:D8 Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df Certificate serial: 019C421004FEB5CB53BAD6ACBA22AA0424C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft Manifest number: 09B8 Signing time: Mon 09 Feb 2026 11:01:11 +0000 Manifest this update: Mon 09 Feb 2026 11:01:11 +0000 Manifest next update: Tue 10 Feb 2026 11:01:11 +0000 Files and hashes: 1: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: 5lOE88Zr8sRrFWPeAN3wXJmpUqV4X+m/fw4klCI2xtQ=) 2: xvjr_8JqIZkbED7GUsRWo_s5EPY.roa (hash: FiH4mjXZzCr8o0pEvyEmejvpAQkDbsQib4uDB3k7p1g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:04:fe:b5:cb:53:ba:d6:ac:ba:22:aa:04:24:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df Validity Not Before: Feb 9 11:01:11 2026 GMT Not After : Feb 10 11:01:11 2026 GMT Subject: CN=2ec8936bb6b84b5710467396b61b3389961f45d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:87:0c:51:f2:5f:2a:5c:87:b2:75:f6:95:dd: d7:5a:e1:b9:68:d1:ec:83:da:7f:b2:a1:43:67:86: 16:67:13:42:9e:2f:5c:76:7c:d8:09:65:ab:aa:8c: 8f:5a:8a:ec:ac:75:96:32:e1:f4:77:f3:46:4c:d6: 73:04:4a:93:74:3b:0c:bb:5b:8f:2a:22:13:0f:88: 56:e1:ed:e5:12:19:de:5c:98:61:d4:ce:8b:b5:03: 2c:57:23:b5:64:89:1d:9b:98:5c:45:33:90:7c:f2: 26:9e:02:24:44:2d:9c:0f:77:1e:7c:52:f6:7e:01: 81:75:e7:8c:7e:cb:1d:b7:20:2c:32:cc:f0:65:82: f6:7d:a3:a7:37:5c:b9:ac:d0:68:64:01:8f:e9:ea: 81:a3:2f:06:8c:79:ce:aa:d1:3e:ab:33:cc:90:21: cd:58:4b:f5:4e:d2:1f:d9:a2:93:55:c8:79:4a:74: 55:37:da:80:2e:b6:aa:0a:a6:bd:51:19:4f:53:a4: b8:99:c7:70:71:6c:30:b8:12:33:aa:2c:13:85:31: f4:87:73:92:68:df:c5:00:b4:cf:f5:fb:dc:72:48: 45:3c:87:6d:ee:4f:19:e7:03:42:02:4a:00:1a:ee: 33:2d:3a:2e:e5:d1:fa:29:5b:03:72:48:2e:4a:c5: 19:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C8:93:6B:B6:B8:4B:57:10:46:73:96:B6:1B:33:89:96:1F:45:D8 X509v3 Authority Key Identifier: keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:e5:fb:48:a5:43:b7:e6:e0:2e:86:65:1e:a6:74:21:fc:a9: 72:9a:b1:65:47:82:6c:a1:c4:54:ee:f4:76:09:a5:91:1a:31: c5:dd:21:79:fa:6e:07:9a:40:95:98:d1:b2:27:da:c8:8a:75: 00:dc:7e:17:19:ba:14:7e:82:45:89:ae:b0:5a:03:5c:c2:c9: 8b:0e:df:19:ec:5a:3c:54:8f:ef:09:b0:9a:13:14:11:b6:e8: 33:cc:5a:5d:9a:59:0d:6c:c4:98:6f:fb:41:95:10:2b:19:2a: c3:93:fd:ad:a8:31:48:ce:b2:83:bf:11:0f:1e:88:ed:89:8c: 3b:3f:d7:21:7c:46:35:c9:85:4c:12:ed:76:f7:e8:e9:91:b4: 36:7a:d5:2a:b9:03:ad:85:65:e7:35:01:93:d6:3a:b9:69:b7: 40:49:42:03:6a:5a:5f:5c:74:43:7b:4d:61:92:d9:46:e3:39: d0:31:75:14:7f:c5:3b:65:e2:6a:71:66:5d:9e:19:28:ac:d8: 9d:a4:a3:88:7d:77:be:05:a2:8e:4e:77:f5:90:70:2a:0b:ec: ef:aa:73:0d:03:59:ba:f9:0c:0a:e3:19:72:79:73:77:f5:ff: fb:53:fb:dd:de:12:e5:cf:1f:32:1c:6e:f9:de:48:fa:0c:8f: 1c:f1:14:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEAT+tctTutasuiKqBCTEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MmIyODQ2ZjA5M2JjOTQxNjA0MWJlNjhhMmM3ODMxNjFl YjA0ZGYwHhcNMjYwMjA5MTEwMTExWhcNMjYwMjEwMTEwMTExWjAzMTEwLwYDVQQD EygyZWM4OTM2YmI2Yjg0YjU3MTA0NjczOTZiNjFiMzM4OTk2MWY0NWQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIcMUfJfKlyHsnX2ld3XWuG5aNHs g9p/sqFDZ4YWZxNCni9cdnzYCWWrqoyPWorsrHWWMuH0d/NGTNZzBEqTdDsMu1uP KiITD4hW4e3lEhneXJhh1M6LtQMsVyO1ZIkdm5hcRTOQfPImngIkRC2cD3cefFL2 fgGBdeeMfssdtyAsMszwZYL2faOnN1y5rNBoZAGP6eqBoy8GjHnOqtE+qzPMkCHN WEv1TtIf2aKTVch5SnRVN9qALraqCqa9URlPU6S4mcdwcWwwuBIzqiwThTH0h3OS aN/FALTP9fvcckhFPIdt7k8Z5wNCAkoAGu4zLTou5dH6KVsDckguSsUZRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC7Ik2u2uEtXEEZzlrYbM4mWH0XYMB8GA1UdIwQY MBaAFNgrKEbwk7yUFgQb5ooseDFh6wTfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy81YjJkNmUtODI0Ny00NDhmLWEzNTgt NTQ3M2VlMWRhYTliLzEvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy81YjJkNmUtODI0Ny00NDhmLWEzNTgtNTQ3M2VlMWRhYTli LzEvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfeX7SKVD t+bgLoZlHqZ0IfypcpqxZUeCbKHEVO70dgmlkRoxxd0hefpuB5pAlZjRsifayIp1 ANx+Fxm6FH6CRYmusFoDXMLJiw7fGexaPFSP7wmwmhMUEbboM8xaXZpZDWzEmG/7 QZUQKxkqw5P9ragxSM6yg78RDx6I7YmMOz/XIXxGNcmFTBLtdvfo6ZG0NnrVKrkD rYVl5zUBk9Y6uWm3QElCA2paX1x0Q3tNYZLZRuM50DF1FH/FO2XianFmXZ4ZKKzY naSjiH13vgWijk539ZBwKgvs76pzDQNZuvkMCuMZcnlzd/X/+1P73d4S5c8fMhxu +d5I+gyPHPEUkg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:29 2026 by rpki-client