This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft File: 2IUFXXA5jPDHLM6sXlga1A8gPvw.mft (raw, json) Hash identifier: 1WB6skJGSNUwFDi/hK7oS3me7xUBJ5POPmnic86dQJo= Subject key identifier: E6:79:C3:93:6A:6E:C8:25:E2:5C:B0:62:E4:41:EE:EE:7F:DA:15:1B Authority key identifier: D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC Certificate issuer: /CN=d885055d70398cf0c72cceac5e581ad40f203efc Certificate serial: 019C420FE66075F0D70B8A0920F6498F842C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft Manifest number: 0FD9 Signing time: Mon 09 Feb 2026 11:01:03 +0000 Manifest this update: Mon 09 Feb 2026 11:01:03 +0000 Manifest next update: Tue 10 Feb 2026 11:01:03 +0000 Files and hashes: 1: 2IUFXXA5jPDHLM6sXlga1A8gPvw.crl (hash: N50JQCgBitK8trdKA6UPUdnVp/R6oFGm+QYEEDRPmtg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:e6:60:75:f0:d7:0b:8a:09:20:f6:49:8f:84:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d885055d70398cf0c72cceac5e581ad40f203efc Validity Not Before: Feb 9 11:01:03 2026 GMT Not After : Feb 10 11:01:03 2026 GMT Subject: CN=e679c3936a6ec825e25cb062e441eeee7fda151b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:04:64:65:1a:18:d7:a6:30:02:49:93:8e:36: 53:84:76:7e:0b:5c:77:14:bc:b4:4a:98:1a:18:c3: 08:98:f5:0e:cd:61:9c:86:bf:66:0f:f3:c3:15:b4: 6f:31:fe:3f:6e:6f:92:98:9f:a9:ac:7c:d3:98:33: cd:0d:f4:1c:f1:fe:d8:55:a7:13:a3:e4:31:64:a1: ef:e4:ce:41:c6:52:87:67:ef:b3:b0:84:1b:df:61: e6:b8:1a:e3:9a:a3:b6:da:80:9b:d7:43:a0:49:15: 02:e0:33:7c:1e:69:88:7d:16:58:d8:c4:b9:d6:45: bd:10:c1:91:b8:59:bb:76:3e:e7:c3:30:67:7b:5c: 44:ec:18:cf:50:ad:d9:33:64:c2:5e:30:d1:b4:43: 7d:eb:3c:2e:3e:21:a6:fd:25:7d:fb:b4:2b:ab:2c: af:74:2b:e7:94:e9:f1:da:79:74:73:63:7d:1e:3c: fe:e3:af:9b:b7:a8:01:c3:b8:af:96:6a:a1:49:4e: e0:18:50:56:43:b5:52:42:17:69:a5:28:b5:15:b2: 67:66:76:aa:81:a8:be:31:b3:02:80:f5:36:07:7e: cc:07:99:5e:64:61:64:57:0a:32:91:18:07:f1:fe: ee:29:9f:f7:74:49:e1:0d:4b:9d:3e:c2:bb:84:67: 83:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:79:C3:93:6A:6E:C8:25:E2:5C:B0:62:E4:41:EE:EE:7F:DA:15:1B X509v3 Authority Key Identifier: keyid:D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:ed:e4:f0:ff:c8:1d:7f:b8:68:ee:90:e3:f9:82:79:ee:75: 94:57:34:bc:b3:9d:c7:bc:3c:a6:73:16:e4:9c:39:1a:31:cd: da:b7:ee:ab:55:c3:89:d6:af:ae:b5:42:f0:62:5a:1f:74:56: 30:a4:2a:5e:0e:7c:b3:8b:f2:76:ce:84:20:86:44:c7:4b:80: 47:ee:49:f6:a8:b1:a5:65:e0:59:18:44:25:d5:dd:19:c2:c0: ed:bd:75:9b:d4:8d:d3:11:c0:78:d4:be:2a:d6:f3:ac:d3:01: b4:9f:45:ad:2c:83:26:3d:c8:ad:21:c6:af:14:e7:2a:c3:bb: 34:f5:db:c5:39:8c:d8:3f:7e:eb:ab:1b:26:35:5a:c1:ca:6c: d2:14:5d:84:b3:60:fb:cb:36:79:76:57:57:1a:56:70:d4:f5: ac:f6:7e:d7:4c:4a:79:68:46:c0:a3:42:0f:c4:a2:c5:e0:01: 08:fa:d8:35:d3:93:c8:fb:05:ca:e6:d4:3b:f3:d4:93:9b:a8: 8f:a1:e5:0c:e9:45:1f:fd:9a:b4:5e:79:d4:f8:8b:af:1c:63: ee:a1:9a:96:d2:7e:7a:9d:30:5c:b2:eb:d4:c7:13:c7:a5:31: cd:89:5b:ae:e1:be:7f:cd:7a:ac:b6:6f:95:6b:3e:67:82:81: 44:6a:65:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD+ZgdfDXC4oJIPZJj4QsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ODUwNTVkNzAzOThjZjBjNzJjY2VhYzVlNTgxYWQ0MGYy MDNlZmMwHhcNMjYwMjA5MTEwMTAzWhcNMjYwMjEwMTEwMTAzWjAzMTEwLwYDVQQD EyhlNjc5YzM5MzZhNmVjODI1ZTI1Y2IwNjJlNDQxZWVlZTdmZGExNTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArARkZRoY16YwAkmTjjZThHZ+C1x3 FLy0SpgaGMMImPUOzWGchr9mD/PDFbRvMf4/bm+SmJ+prHzTmDPNDfQc8f7YVacT o+QxZKHv5M5BxlKHZ++zsIQb32HmuBrjmqO22oCb10OgSRUC4DN8HmmIfRZY2MS5 1kW9EMGRuFm7dj7nwzBne1xE7BjPUK3ZM2TCXjDRtEN96zwuPiGm/SV9+7Qrqyyv dCvnlOnx2nl0c2N9Hjz+46+bt6gBw7ivlmqhSU7gGFBWQ7VSQhdppSi1FbJnZnaq gai+MbMCgPU2B37MB5leZGFkVwoykRgH8f7uKZ/3dEnhDUudPsK7hGeDQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOZ5w5Nqbsgl4lywYuRB7u5/2hUbMB8GA1UdIwQY MBaAFNiFBV1wOYzwxyzOrF5YGtQPID78MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84MmFmMjgtYjYzNC00NjNhLWI2YmUt MWNhM2M2N2YxNTA2LzEvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi84MmFmMjgtYjYzNC00NjNhLWI2YmUtMWNhM2M2N2YxNTA2 LzEvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAre3k8P/I HX+4aO6Q4/mCee51lFc0vLOdx7w8pnMW5Jw5GjHN2rfuq1XDidavrrVC8GJaH3RW MKQqXg58s4vyds6EIIZEx0uAR+5J9qixpWXgWRhEJdXdGcLA7b11m9SN0xHAeNS+ KtbzrNMBtJ9FrSyDJj3IrSHGrxTnKsO7NPXbxTmM2D9+66sbJjVawcps0hRdhLNg +8s2eXZXVxpWcNT1rPZ+10xKeWhGwKNCD8SixeABCPrYNdOTyPsFyubUO/PUk5uo j6HlDOlFH/2atF551PiLrxxj7qGaltJ+ep0wXLLr1McTx6UxzYlbruG+f816rLZv lWs+Z4KBRGpl9g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:58 2026 by rpki-client