This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft File: 2y7CKma1skmGOV_u1_tbkOKMm-Q.mft (raw, json) Hash identifier: YZQWYg6/uAzbM5MahizOKOtrTeCcBw4sErJAv/4i3t8= Subject key identifier: A3:15:47:30:5A:FC:6C:44:B2:F8:C6:EC:6E:78:EC:F7:41:8C:A7:7A Authority key identifier: DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4 Certificate issuer: /CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4 Certificate serial: 019C1B70B6FDFE964F38443B9D93AED2319D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft Manifest number: 29 Signing time: Sun 01 Feb 2026 23:01:37 +0000 Manifest this update: Sun 01 Feb 2026 23:01:37 +0000 Manifest next update: Mon 02 Feb 2026 23:01:37 +0000 Files and hashes: 1: 2y7CKma1skmGOV_u1_tbkOKMm-Q.crl (hash: RbVMzcNzd4Ab8fjSFZgMiItnmF8jIyTmk8Lg4p6ZOnU=) 2: 6RGkspdxkAWpYvFpm-8ta5s8IEs.asa (hash: SMkfixcVMM4K7Z6BHPlzlnNfBWBe+ZvLZ06HB1RuIn0=) 3: 6SEduMHXynvLbGLXlQ-nCG4KDz0.roa (hash: hLjPkc07rz71V/VBtG395boX8ca8vKM/q8gofGURfjw=) 4: RGSDwCL_3DhopF7DDMpgOjHlruI.roa (hash: I4TOgGmivQDbOrWFawlOof5iCr25D2qkBqiHBfM3G6Y=) 5: cV-6vnmpUBgH2wP5pNInv4Man5Y.roa (hash: ER4PzBd4pNFf1ThiL7/XmqmLPNjgQEv0ShK1Elukaj4=) 6: nbL3W9rua5RoYoYaynypFHyWDSM.roa (hash: F3y7DhX8ebJ1b0VQjuxOqqxqkiRPrh1Y2os5quF54OE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1b:70:b6:fd:fe:96:4f:38:44:3b:9d:93:ae:d2:31:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4 Validity Not Before: Feb 1 23:01:37 2026 GMT Not After : Feb 2 23:01:37 2026 GMT Subject: CN=a31547305afc6c44b2f8c6ec6e78ecf7418ca77a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c0:d1:3b:42:69:3b:8a:90:d7:73:de:e9:2a: 8c:5f:2e:1b:31:6a:92:78:d8:73:31:35:5f:57:cd: ab:3a:46:5c:0b:5f:d6:1c:a8:71:e1:bd:95:1c:12: 18:87:84:cd:c2:8f:40:49:26:a0:0e:e1:b2:ce:0d: eb:22:6e:84:89:c9:f3:66:e7:50:b2:04:c1:cf:ea: 6e:54:56:f4:a1:fe:16:7b:55:aa:49:70:f6:a0:ff: e6:d6:8e:53:2a:77:2f:51:cf:2a:24:f3:ac:92:10: 88:d2:ed:c1:28:12:29:18:5c:98:15:f9:50:03:9f: 31:d5:5f:5d:96:29:93:a3:13:8c:42:2c:3a:9c:3e: 7a:a9:f1:1a:ff:ee:7b:a2:c3:b7:39:e0:45:3c:8b: 76:dd:a9:bf:40:6a:92:c9:a2:d1:bf:7a:d2:0a:c9: ab:52:30:a3:19:06:58:b0:ec:aa:ac:de:8d:89:9d: dd:c0:88:a5:e8:1d:88:d6:85:74:a9:34:fe:6a:0d: 47:55:8d:dc:a5:3a:05:23:1b:a6:ae:5c:cd:3d:26: dd:7d:ef:ea:97:88:da:15:c6:81:3b:a7:71:f4:0c: 58:49:90:29:97:5b:80:04:08:7e:0a:ec:59:80:c1: bb:76:a3:7c:85:72:f4:66:09:8f:7c:00:c3:69:20: 75:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:15:47:30:5A:FC:6C:44:B2:F8:C6:EC:6E:78:EC:F7:41:8C:A7:7A X509v3 Authority Key Identifier: keyid:DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:83:9a:9a:59:a9:bb:eb:75:1d:25:1f:82:06:82:d5:aa:5a: ac:39:65:e1:ec:1e:06:0b:d6:9d:ae:c1:3a:2d:c3:c1:4a:da: c2:9a:86:29:8a:8d:6c:f9:4a:fa:71:f6:e6:0c:8b:c4:19:d3: 0c:45:ba:17:9f:38:6b:2b:93:91:f6:55:4f:09:72:f5:5a:d0: c9:43:f7:12:03:cd:18:f3:04:96:f8:91:34:76:9f:21:4a:22: c8:01:80:31:68:aa:0b:b3:60:42:95:dd:e5:44:53:6f:7c:1f: 77:e0:b5:c2:e2:ba:a6:6a:5e:1e:98:3f:c6:c5:4a:69:c1:80: b4:d7:74:76:d7:76:6c:22:7d:e7:28:b3:d6:81:d0:2b:cf:87: 93:60:d9:c4:d5:6f:d8:91:4f:65:8c:2d:f3:2b:90:74:47:89: 8b:33:2d:b8:b4:d5:04:87:7d:18:ad:15:80:65:de:72:10:a8: af:13:52:ac:be:7e:bf:f7:17:81:df:48:18:12:8c:b4:7c:5a: 2c:0e:b5:2f:59:cd:66:50:69:c3:8c:06:f4:4b:42:59:b9:73: e7:23:ac:4f:31:67:f0:88:5e:44:ab:b8:1d:55:b5:6c:8a:51: 37:95:b1:01:a9:54:97:cd:b4:fa:48:a6:71:85:c1:42:66:81: f0:05:23:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwbcLb9/pZPOEQ7nZOu0jGdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMmVjMjJhNjZiNWIyNDk4NjM5NWZlZWQ3ZmI1YjkwZTI4 YzliZTQwHhcNMjYwMjAxMjMwMTM3WhcNMjYwMjAyMjMwMTM3WjAzMTEwLwYDVQQD EyhhMzE1NDczMDVhZmM2YzQ0YjJmOGM2ZWM2ZTc4ZWNmNzQxOGNhNzdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8DRO0JpO4qQ13Pe6SqMXy4bMWqS eNhzMTVfV82rOkZcC1/WHKhx4b2VHBIYh4TNwo9ASSagDuGyzg3rIm6EicnzZudQ sgTBz+puVFb0of4We1WqSXD2oP/m1o5TKncvUc8qJPOskhCI0u3BKBIpGFyYFflQ A58x1V9dlimToxOMQiw6nD56qfEa/+57osO3OeBFPIt23am/QGqSyaLRv3rSCsmr UjCjGQZYsOyqrN6NiZ3dwIil6B2I1oV0qTT+ag1HVY3cpToFIxumrlzNPSbdfe/q l4jaFcaBO6dx9AxYSZApl1uABAh+CuxZgMG7dqN8hXL0ZgmPfADDaSB19QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKMVRzBa/GxEsvjG7G547PdBjKd6MB8GA1UdIwQY MBaAFNsuwipmtbJJhjlf7tf7W5DijJvkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnk3Q0ttYTFza21HT1ZfdTFfdGJrT0tNbS1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8yZmJjYmYtMzU4ZS00OTI4LTlhODQt Y2U3OGQ0YzA2NDJmLzEvMnk3Q0ttYTFza21HT1ZfdTFfdGJrT0tNbS1RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8yZmJjYmYtMzU4ZS00OTI4LTlhODQtY2U3OGQ0YzA2NDJm LzEvMnk3Q0ttYTFza21HT1ZfdTFfdGJrT0tNbS1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhYOamlmp u+t1HSUfggaC1aparDll4eweBgvWna7BOi3DwUrawpqGKYqNbPlK+nH25gyLxBnT DEW6F584ayuTkfZVTwly9VrQyUP3EgPNGPMElviRNHafIUoiyAGAMWiqC7NgQpXd 5URTb3wfd+C1wuK6pmpeHpg/xsVKacGAtNd0dtd2bCJ95yiz1oHQK8+Hk2DZxNVv 2JFPZYwt8yuQdEeJizMtuLTVBId9GK0VgGXechCorxNSrL5+v/cXgd9IGBKMtHxa LA61L1nNZlBpw4wG9EtCWblz5yOsTzFn8IheRKu4HVW1bIpRN5WxAalUl820+kim cYXBQmaB8AUjIw== -----END CERTIFICATE-----Generated at Mon Feb 2 08:04:05 2026 by rpki-client