This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json) Hash identifier: XCrRO3YKBaIHV+7vWeSO701pEN15vIb0Y584ojCz34Q= Subject key identifier: 32:31:0F:1C:64:5B:99:CD:5E:38:48:63:4F:4B:41:03:DC:B3:39:71 Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d Certificate serial: 019C43590E3FA67D3C47D23EFA5786746629 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft Manifest number: 1121 Signing time: Mon 09 Feb 2026 17:00:35 +0000 Manifest this update: Mon 09 Feb 2026 17:00:35 +0000 Manifest next update: Tue 10 Feb 2026 17:00:35 +0000 Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: ozrwv8r53hAv8+gdoYimXhnijWpjJaGeaEVi5Z3kWFw=) 2: AoMLPhZExe6a-acTOonY5G6p87o.roa (hash: GlOEB6CrWza06BRV4TlREAMAdwdF9KjOr3x10SdKDlg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:0e:3f:a6:7d:3c:47:d2:3e:fa:57:86:74:66:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d Validity Not Before: Feb 9 17:00:35 2026 GMT Not After : Feb 10 17:00:35 2026 GMT Subject: CN=32310f1c645b99cd5e3848634f4b4103dcb33971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:85:ff:ab:a3:5c:3e:c6:6f:11:0a:0e:e4:ee: 92:dd:5b:13:13:d4:b8:1a:8f:df:74:41:4d:9f:4a: 03:b9:57:17:ca:3b:61:5d:e2:65:9c:d1:6b:95:84: 2d:b0:ee:60:c0:fd:7f:6c:ff:ef:90:fb:e8:79:88: 56:d3:06:70:82:7d:e3:65:4b:b6:49:cf:46:d7:9f: b1:dc:33:04:31:31:a3:f2:a5:40:b2:b5:85:7b:ea: f9:2f:cb:8d:32:64:e4:55:9c:f6:23:3b:db:f2:92: dd:4a:02:33:b5:82:94:e9:0e:10:4c:b2:b8:cf:83: 93:ed:af:94:5c:d4:cc:ee:a9:4d:ac:98:13:0c:f5: 2c:2c:62:80:e2:1f:e6:69:c3:95:5a:fe:c5:2d:d3: 94:33:0c:2f:1c:43:e2:8a:0b:78:b0:f2:3e:96:f6: f1:12:f6:2e:0a:6b:35:c2:32:16:92:e0:46:a3:0b: bd:e3:f4:80:02:66:0b:9f:f7:fb:39:b4:a1:16:b2: e2:f2:e1:a8:9f:d3:fe:12:5d:2f:3a:c8:25:cd:74: 95:a6:92:76:09:04:dd:45:c4:2f:e0:93:b5:a0:17: d4:1e:dd:fc:98:c2:02:86:ef:4d:4d:5f:15:b8:f5: 72:73:70:1c:2b:7e:79:54:d6:f3:d2:03:35:61:43: d5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:31:0F:1C:64:5B:99:CD:5E:38:48:63:4F:4B:41:03:DC:B3:39:71 X509v3 Authority Key Identifier: keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:d7:fc:57:cc:00:e2:45:40:d0:25:49:8f:44:66:85:e7:24: d1:58:19:d9:46:f0:41:a9:2e:b3:b8:f1:b2:90:2a:b5:3b:69: 39:5f:0a:1a:19:c9:09:52:21:6d:ee:2b:2c:8f:c1:4a:c4:8a: 83:f6:71:7f:c1:0d:dd:c4:fe:ae:f3:b5:65:f5:85:06:42:2c: f7:fa:d3:81:c6:e4:c3:55:dd:2b:cf:72:de:ad:ed:1a:eb:97: b3:7f:e4:14:c1:e8:30:d9:ed:8e:58:f6:1f:f9:bc:79:51:ae: 54:bd:09:01:cb:a4:e0:b6:f5:35:0a:3c:ff:e6:0a:f5:0c:bc: 7a:76:8f:4f:b0:11:26:a1:4b:b8:21:8f:29:75:19:55:63:5b: fa:a1:17:c7:52:6a:cc:e6:d4:f1:79:4c:e0:22:8a:8f:ae:3f: 31:61:29:db:a6:26:16:3c:27:8f:1e:2a:cf:88:e7:df:2a:c1: f2:75:e3:75:01:f9:b6:98:ed:fa:e6:df:d8:f6:61:f3:9e:06: 0c:4a:5d:57:30:93:ec:91:99:25:4c:c3:87:32:51:6f:64:27: 1e:25:3a:95:15:05:18:04:b9:87:8f:c5:66:48:54:9a:a7:21: 38:ce:f8:00:ad:8e:d0:e2:16:c2:a8:d9:c3:f1:ac:e9:7d:c4: cb:42:8b:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWQ4/pn08R9I++leGdGYpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhOTBkMDRiZjU3ZmE0ODY4ZTY5OTk3YzgzYjNhZDc3MWZk NTBhOWQwHhcNMjYwMjA5MTcwMDM1WhcNMjYwMjEwMTcwMDM1WjAzMTEwLwYDVQQD EygzMjMxMGYxYzY0NWI5OWNkNWUzODQ4NjM0ZjRiNDEwM2RjYjMzOTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34X/q6NcPsZvEQoO5O6S3VsTE9S4 Go/fdEFNn0oDuVcXyjthXeJlnNFrlYQtsO5gwP1/bP/vkPvoeYhW0wZwgn3jZUu2 Sc9G15+x3DMEMTGj8qVAsrWFe+r5L8uNMmTkVZz2Izvb8pLdSgIztYKU6Q4QTLK4 z4OT7a+UXNTM7qlNrJgTDPUsLGKA4h/macOVWv7FLdOUMwwvHEPiigt4sPI+lvbx EvYuCms1wjIWkuBGowu94/SAAmYLn/f7ObShFrLi8uGon9P+El0vOsglzXSVppJ2 CQTdRcQv4JO1oBfUHt38mMIChu9NTV8VuPVyc3AcK355VNbz0gM1YUPVswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDIxDxxkW5nNXjhIY09LQQPcszlxMB8GA1UdIwQY MBaAFNqQ0Ev1f6SGjmmZfIOzrXcf1QqdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnBEUVNfVl9wSWFPYVpsOGc3T3RkeF9WQ3AwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC80ZDI1NDUtYTdkNS00NjVjLTk2MTgt NTFhZDljMzgyYThkLzEvMnBEUVNfVl9wSWFPYVpsOGc3T3RkeF9WQ3AwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC80ZDI1NDUtYTdkNS00NjVjLTk2MTgtNTFhZDljMzgyYThk LzEvMnBEUVNfVl9wSWFPYVpsOGc3T3RkeF9WQ3AwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXNf8V8wA 4kVA0CVJj0Rmheck0VgZ2UbwQakus7jxspAqtTtpOV8KGhnJCVIhbe4rLI/BSsSK g/Zxf8EN3cT+rvO1ZfWFBkIs9/rTgcbkw1XdK89y3q3tGuuXs3/kFMHoMNntjlj2 H/m8eVGuVL0JAcuk4Lb1NQo8/+YK9Qy8enaPT7ARJqFLuCGPKXUZVWNb+qEXx1Jq zObU8XlM4CKKj64/MWEp26YmFjwnjx4qz4jn3yrB8nXjdQH5tpjt+ubf2PZh854G DEpdVzCT7JGZJUzDhzJRb2QnHiU6lRUFGAS5h4/FZkhUmqchOM74AK2O0OIWwqjZ w/Gs6X3Ey0KLVA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:43 2026 by rpki-client