This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft File: Q_2TYug7hS8_0zEbCQlvYommoPg.mft (raw, json) Hash identifier: wTtjZYg3F4U1zA3tbGgEu+S120YzdekmKeYgIkO0CH4= Subject key identifier: 2C:60:02:07:BA:FA:7F:9B:87:73:AF:CF:79:D4:AB:CA:AD:48:8C:5D Authority key identifier: 43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8 Certificate issuer: /CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8 Certificate serial: 019C43C6E7C02B0ED8404DD5297727E9ED08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft Manifest number: 10E5 Signing time: Mon 09 Feb 2026 19:00:34 +0000 Manifest this update: Mon 09 Feb 2026 19:00:34 +0000 Manifest next update: Tue 10 Feb 2026 19:00:34 +0000 Files and hashes: 1: DDoVbi1hwK810Q3__yAihbTnUzQ.roa (hash: hkNUL3Jk8I6ohEW5lxLRCD9KCBglyppacl/pVvgBeSk=) 2: Q_2TYug7hS8_0zEbCQlvYommoPg.crl (hash: HWLfu/cqf4DA9cxbXexrBM0DOoD27pTiqPrXjpS2trs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:e7:c0:2b:0e:d8:40:4d:d5:29:77:27:e9:ed:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8 Validity Not Before: Feb 9 19:00:34 2026 GMT Not After : Feb 10 19:00:34 2026 GMT Subject: CN=2c600207bafa7f9b8773afcf79d4abcaad488c5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:54:bb:57:15:6a:d7:8a:02:9a:5e:88:d3:b7: e1:5e:b3:a7:78:6f:54:ae:98:e2:df:2d:f7:45:04: b5:1b:19:66:0f:76:84:35:64:db:d8:8e:58:51:75: 6c:7c:3b:43:02:3d:80:23:06:3b:db:2c:eb:2d:1d: db:a1:b1:cc:d3:79:53:ee:3b:da:25:35:fb:f2:6b: 54:a9:99:2b:57:04:94:32:e8:5e:ff:75:d9:a0:b0: 74:77:a4:c9:b3:27:ce:db:fd:a3:3a:51:5f:07:a9: 6b:df:4e:8c:33:99:14:fd:1f:67:d2:d1:0a:80:ba: 55:a5:5b:28:1d:31:44:27:b1:f2:e7:f4:46:0a:88: a2:9c:7b:c8:80:8f:c5:c9:db:84:6b:76:c0:06:87: d6:5d:f0:1a:2a:3b:60:4d:ad:cc:68:68:16:b8:e3: d6:7a:cb:e5:ba:ac:4e:83:63:a2:9c:45:4b:48:e4: b8:64:65:8a:3f:33:5d:8a:d8:04:f6:14:71:db:31: ae:a7:9c:7a:58:d1:f3:40:b1:fc:4d:1f:ea:1b:0d: 78:48:99:9c:53:82:8b:ce:50:60:a6:4c:e0:4b:e1: 1c:f9:ca:b6:e5:4b:89:91:15:d6:ab:99:94:a3:ee: 76:82:ae:5f:d3:f0:e7:69:93:b8:50:49:d3:ad:b4: 6e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:60:02:07:BA:FA:7F:9B:87:73:AF:CF:79:D4:AB:CA:AD:48:8C:5D X509v3 Authority Key Identifier: keyid:43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:76:36:a8:bf:fa:e2:7a:d0:cd:ec:16:f6:5e:84:ec:f2:d9: 47:68:dd:42:7f:4b:33:70:73:51:a3:1c:f8:bf:9c:51:23:a0: b2:66:c0:e8:fb:45:4c:ab:75:86:a9:a6:66:de:f7:87:b6:29: c5:77:3b:82:68:d4:ca:39:f7:4a:e0:41:77:35:65:98:ee:40: ee:6d:96:1d:a6:a1:25:2f:c7:13:42:41:fe:65:42:ee:c6:60: 1c:eb:b2:ba:ad:8a:af:45:ad:8d:32:24:cd:b0:d5:da:b8:36: ca:be:1c:e1:3f:6b:8b:5b:44:87:49:44:59:cc:0c:e5:21:b3: bb:cf:5b:57:c6:60:07:8f:70:4f:7a:d9:78:48:2a:4d:a6:0f: cd:43:45:b7:8a:b6:0c:f2:be:db:b7:08:2c:ab:ce:32:94:4f: 92:5e:a4:c9:65:4d:d8:d4:c5:97:a1:6b:75:09:d9:ed:54:89: ae:d8:07:60:be:fa:d6:8c:77:50:fc:9f:61:25:47:3b:e7:4c: 69:58:2a:f8:ca:ab:53:d0:da:af:17:04:c2:02:da:aa:7a:b9: c7:34:7d:f9:3d:43:1e:f8:bc:c1:71:72:c0:c5:11:05:3f:16: ad:06:36:42:05:eb:cd:d1:4a:87:d5:99:0f:db:d8:04:5a:de: 17:0b:a3:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxufAKw7YQE3VKXcn6e0IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzZmQ5MzYyZTgzYjg1MmYzZmQzMzExYjA5MDk2ZjYyODlh NmEwZjgwHhcNMjYwMjA5MTkwMDM0WhcNMjYwMjEwMTkwMDM0WjAzMTEwLwYDVQQD EygyYzYwMDIwN2JhZmE3ZjliODc3M2FmY2Y3OWQ0YWJjYWFkNDg4YzVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlS7VxVq14oCml6I07fhXrOneG9U rpji3y33RQS1GxlmD3aENWTb2I5YUXVsfDtDAj2AIwY72yzrLR3bobHM03lT7jva JTX78mtUqZkrVwSUMuhe/3XZoLB0d6TJsyfO2/2jOlFfB6lr306MM5kU/R9n0tEK gLpVpVsoHTFEJ7Hy5/RGCoiinHvIgI/FyduEa3bABofWXfAaKjtgTa3MaGgWuOPW esvluqxOg2OinEVLSOS4ZGWKPzNditgE9hRx2zGup5x6WNHzQLH8TR/qGw14SJmc U4KLzlBgpkzgS+Ec+cq25UuJkRXWq5mUo+52gq5f0/DnaZO4UEnTrbRu+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCxgAge6+n+bh3Ovz3nUq8qtSIxdMB8GA1UdIwQY MBaAFEP9k2LoO4UvP9MxGwkJb2KJpqD4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUV8yVFl1ZzdoUzhfMHpFYkNRbHZZb21tb1BnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8xZDNjMTUtMzQxNi00NGFkLTlhODkt NjU0N2JiMWI4MGMyLzEvUV8yVFl1ZzdoUzhfMHpFYkNRbHZZb21tb1BnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8xZDNjMTUtMzQxNi00NGFkLTlhODktNjU0N2JiMWI4MGMy LzEvUV8yVFl1ZzdoUzhfMHpFYkNRbHZZb21tb1BnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoXY2qL/6 4nrQzewW9l6E7PLZR2jdQn9LM3BzUaMc+L+cUSOgsmbA6PtFTKt1hqmmZt73h7Yp xXc7gmjUyjn3SuBBdzVlmO5A7m2WHaahJS/HE0JB/mVC7sZgHOuyuq2Kr0WtjTIk zbDV2rg2yr4c4T9ri1tEh0lEWcwM5SGzu89bV8ZgB49wT3rZeEgqTaYPzUNFt4q2 DPK+27cILKvOMpRPkl6kyWVN2NTFl6FrdQnZ7VSJrtgHYL761ox3UPyfYSVHO+dM aVgq+MqrU9DarxcEwgLaqnq5xzR9+T1DHvi8wXFywMURBT8WrQY2QgXrzdFKh9WZ D9vYBFreFwujMQ== -----END CERTIFICATE-----Generated at Mon Feb 9 23:53:22 2026 by rpki-client