This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft File: 2671wyvqS1TRfiQbXMyvB7wKjuk.mft (raw, json) Hash identifier: ep6g/ngN88fpfku19ZvPRAhBMcZ5hfVAzmgX5w1/fqo= Subject key identifier: 8C:AE:8C:A8:79:50:9B:E7:4F:3D:2E:8B:61:6E:5B:03:A6:42:46:C3 Authority key identifier: DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9 Certificate issuer: /CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9 Certificate serial: 019C43C70298CF3FFF62A4D5E5792E7C0420 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft Manifest number: 118A Signing time: Mon 09 Feb 2026 19:00:41 +0000 Manifest this update: Mon 09 Feb 2026 19:00:41 +0000 Manifest next update: Tue 10 Feb 2026 19:00:41 +0000 Files and hashes: 1: 1-95gw9KACRY59GXkCu6E44De0Qk.roa (hash: iKh5qfmB78EvSPQTYq74QtU0CuU4qb/tMvQfB/d/g9c=) 2: 2671wyvqS1TRfiQbXMyvB7wKjuk.crl (hash: eQu5STL3W9JcF+NWaRmMmds/pR/W58O4yUn3w8m/3lM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:02:98:cf:3f:ff:62:a4:d5:e5:79:2e:7c:04:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9 Validity Not Before: Feb 9 19:00:41 2026 GMT Not After : Feb 10 19:00:41 2026 GMT Subject: CN=8cae8ca879509be74f3d2e8b616e5b03a64246c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ca:c4:34:66:4b:7b:98:01:fb:b0:d2:30:2c: 17:c3:89:9b:6a:c7:46:35:0c:0c:12:e8:f0:b4:37: 3d:81:35:c0:06:a2:41:f8:53:16:57:47:b3:49:df: e3:35:e7:99:77:09:1e:c9:64:f7:fe:c1:fc:43:c1: 0e:ea:bc:a0:eb:dd:43:f8:99:72:58:c4:97:dd:f9: 6e:b7:6b:82:81:05:53:58:2c:92:10:21:7f:0c:c1: b8:00:2d:7a:a9:0a:4e:fb:23:1f:02:55:ab:9e:04: 90:fb:6f:82:2a:b7:37:d1:b6:2e:e6:68:79:64:d0: 67:81:51:b0:71:a4:58:0c:e2:b7:ca:de:7e:7e:69: 93:7d:db:93:22:9c:e9:62:0b:f0:19:94:2a:bc:59: 43:d8:9c:03:e0:3b:e6:81:2e:6a:ad:84:3d:39:74: 2d:10:d5:85:ca:e1:44:87:02:b6:e9:af:24:05:dc: 67:9f:43:44:4b:c5:e7:ab:e2:f8:7f:35:65:7b:fe: d8:6f:ae:03:1f:90:6a:0c:60:19:c6:80:0c:bb:e6: 9d:31:5c:66:2b:0e:ce:ba:70:5a:51:a4:d3:6e:df: 06:1e:93:b8:54:70:85:43:41:c8:58:11:ea:c9:4f: e9:a3:5d:e9:49:b1:c6:e5:fe:8d:b3:4e:92:32:80: ad:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:AE:8C:A8:79:50:9B:E7:4F:3D:2E:8B:61:6E:5B:03:A6:42:46:C3 X509v3 Authority Key Identifier: keyid:DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:7c:3f:5d:7f:20:e9:41:12:9c:f7:a1:fc:7c:01:a0:ba:a9: 19:6f:e9:06:fc:8b:73:d3:a0:f6:35:ab:73:55:6b:9b:cd:f3: 73:8d:f4:9d:5e:f1:ed:29:ac:33:cf:17:65:3b:ce:d6:8a:17: 78:3a:80:c0:37:eb:31:6f:54:61:e0:8d:7d:af:10:ca:fe:3c: 4b:b2:a2:2b:6b:42:06:06:ce:d7:a7:1a:8c:ea:71:75:8e:d8: c8:f7:c7:11:de:ba:7f:4c:4c:9b:4b:e5:64:15:72:09:cb:36: e5:c6:ed:b5:cf:63:32:12:5c:eb:92:c2:61:8e:31:fe:af:ae: 16:17:b6:08:d2:d1:36:db:94:fd:1d:c3:f0:d5:5f:49:95:ee: 94:46:70:e3:e4:38:a1:f4:a5:e0:b4:83:dc:01:81:45:40:49: e9:10:f8:d4:de:98:5d:c7:4a:ba:27:00:14:75:72:78:d3:2c: 96:f6:c7:b0:08:73:85:e0:5b:a3:cf:f1:dd:87:7e:76:93:0b: 0f:60:58:2c:97:72:da:ea:c0:a2:8d:1a:d7:ff:5c:01:7f:3c: bc:31:0d:4f:01:dc:bc:a3:69:a6:9e:36:9c:e1:11:23:b3:71: a0:57:1d:90:3f:b8:99:e5:7e:85:12:72:96:3c:5b:22:63:8e: 6a:f0:6e:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxwKYzz//YqTV5XkufAQgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiYWVmNWMzMmJlYTRiNTRkMTdlMjQxYjVjY2NhZjA3YmMw YThlZTkwHhcNMjYwMjA5MTkwMDQxWhcNMjYwMjEwMTkwMDQxWjAzMTEwLwYDVQQD Eyg4Y2FlOGNhODc5NTA5YmU3NGYzZDJlOGI2MTZlNWIwM2E2NDI0NmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcrENGZLe5gB+7DSMCwXw4mbasdG NQwMEujwtDc9gTXABqJB+FMWV0ezSd/jNeeZdwkeyWT3/sH8Q8EO6ryg691D+Jly WMSX3flut2uCgQVTWCySECF/DMG4AC16qQpO+yMfAlWrngSQ+2+CKrc30bYu5mh5 ZNBngVGwcaRYDOK3yt5+fmmTfduTIpzpYgvwGZQqvFlD2JwD4DvmgS5qrYQ9OXQt ENWFyuFEhwK26a8kBdxnn0NES8Xnq+L4fzVle/7Yb64DH5BqDGAZxoAMu+adMVxm Kw7OunBaUaTTbt8GHpO4VHCFQ0HIWBHqyU/po13pSbHG5f6Ns06SMoCtsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIyujKh5UJvnTz0ui2FuWwOmQkbDMB8GA1UdIwQY MBaAFNuu9cMr6ktU0X4kG1zMrwe8Co7pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjY3MXd5dnFTMVRSZmlRYlhNeXZCN3dLanVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9kZWU2NmYtNDVjYy00Y2I0LTlmYmIt NjQyY2U2NzRmOTc0LzEvMjY3MXd5dnFTMVRSZmlRYlhNeXZCN3dLanVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9kZWU2NmYtNDVjYy00Y2I0LTlmYmItNjQyY2U2NzRmOTc0 LzEvMjY3MXd5dnFTMVRSZmlRYlhNeXZCN3dLanVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUnw/XX8g 6UESnPeh/HwBoLqpGW/pBvyLc9Og9jWrc1Vrm83zc430nV7x7SmsM88XZTvO1ooX eDqAwDfrMW9UYeCNfa8Qyv48S7KiK2tCBgbO16cajOpxdY7YyPfHEd66f0xMm0vl ZBVyCcs25cbttc9jMhJc65LCYY4x/q+uFhe2CNLRNtuU/R3D8NVfSZXulEZw4+Q4 ofSl4LSD3AGBRUBJ6RD41N6YXcdKuicAFHVyeNMslvbHsAhzheBbo8/x3Yd+dpML D2BYLJdy2urAoo0a1/9cAX88vDENTwHcvKNppp42nOERI7NxoFcdkD+4meV+hRJy ljxbImOOavBucA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:56 2026 by rpki-client