This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft File: 2hvwCCS2KL9iY7t03ndK3fmZD8k.mft (raw, json) Hash identifier: iNJ3KiNubIIVN2PT55bsKfx+sZ7IVaWCQErCrNmc3BA= Subject key identifier: BC:61:0C:AA:7E:F0:66:5C:E5:E5:15:D3:12:78:EE:C9:89:61:B5:7D Authority key identifier: DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9 Certificate issuer: /CN=da1bf00824b628bf6263bb74de774addf9990fc9 Certificate serial: 019C446B8BEE43523875373992FFD1A56693 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft Manifest number: 1594 Signing time: Mon 09 Feb 2026 22:00:24 +0000 Manifest this update: Mon 09 Feb 2026 22:00:24 +0000 Manifest next update: Tue 10 Feb 2026 22:00:24 +0000 Files and hashes: 1: 2hvwCCS2KL9iY7t03ndK3fmZD8k.crl (hash: nL1RqbykcxQPP1lGVG0sR+yUMhPzmAYjtIxPn3zf+PQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:8b:ee:43:52:38:75:37:39:92:ff:d1:a5:66:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da1bf00824b628bf6263bb74de774addf9990fc9 Validity Not Before: Feb 9 22:00:24 2026 GMT Not After : Feb 10 22:00:24 2026 GMT Subject: CN=bc610caa7ef0665ce5e515d31278eec98961b57d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:20:a6:66:5f:06:3e:18:83:60:93:31:d9:89: f2:f1:1d:19:21:6e:11:d4:61:2e:95:22:c9:ee:e2: b6:dd:89:f0:8c:e3:1d:a2:29:00:73:56:01:9e:a0: 5a:48:d0:f7:b2:34:12:c4:cf:7d:eb:5b:76:82:05: 3a:c4:ac:4b:06:03:c5:59:8b:d7:1e:fc:8e:f7:f5: 7b:c9:c4:ef:97:93:e4:33:e4:48:f3:71:27:ac:a9: da:c5:a0:b4:4c:49:93:39:90:af:a1:68:24:1c:a2: fd:7d:64:9d:e4:ac:6c:47:87:2a:fb:97:44:1c:84: 4b:08:e2:a2:77:aa:c7:d8:20:d2:9a:09:a1:9a:05: f6:78:ab:c4:3a:40:b9:b9:0e:cb:2b:0b:23:c6:c5: 12:cc:9f:61:8a:5a:f1:74:e6:61:d7:5c:58:ff:05: ca:6c:8a:80:88:3b:95:df:fb:7d:18:00:c0:b4:0b: 48:06:bc:d2:4a:96:d8:5a:f7:0d:87:82:d0:68:e2: 71:19:53:c2:9a:96:74:49:82:12:ae:71:85:6c:e0: 82:2a:58:63:73:46:65:a8:b0:19:cc:06:9b:a9:60: 20:d6:8a:26:ee:29:8b:0f:23:03:c5:67:59:a3:5e: 77:75:e8:4c:65:0b:55:f4:d0:31:f7:f0:b0:26:99: 20:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:61:0C:AA:7E:F0:66:5C:E5:E5:15:D3:12:78:EE:C9:89:61:B5:7D X509v3 Authority Key Identifier: keyid:DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:16:93:69:78:3f:bf:69:75:68:03:8b:dd:dc:75:ed:a4:a2: 96:0e:ee:21:d2:72:d4:65:d0:4b:f9:de:e3:19:5d:dd:16:b7: 70:c4:69:3f:54:48:10:e8:3a:48:89:dd:d9:1b:7b:95:3a:ae: 2e:76:80:b9:b4:77:ea:1a:66:f6:cc:f0:9e:f3:5a:a0:bd:61: 3b:7e:2d:cb:48:2f:9b:02:f0:10:03:20:51:06:85:cb:e7:d3: 8d:5f:5a:ae:73:fe:aa:97:c2:cf:a5:c2:c1:71:c7:76:77:22: 6a:fe:6e:8f:c4:60:d7:4d:e3:c7:1a:02:b2:ae:06:c9:a3:d3: 70:d6:8d:96:d3:88:ca:f5:ff:8e:3c:c5:d4:70:da:e2:f7:e4: f5:ac:64:77:2f:98:bc:56:03:12:1d:66:2b:51:bd:0b:ae:54: c4:1c:33:ef:05:8b:44:c7:f7:b3:c5:0b:9e:e0:23:59:ec:33: 3f:e5:d6:4e:4d:1f:3a:e8:f7:c9:4c:2c:96:f4:57:e4:35:bb: 8e:11:5d:42:92:87:39:be:5e:25:67:2e:92:f3:9c:b3:88:56: 7a:74:9c:6b:8d:9a:e8:04:38:63:d7:ac:8d:89:bc:64:a1:42: 3f:d5:ec:ee:f9:77:49:c0:c6:4f:50:a4:ab:7a:e4:70:e6:0d: 14:83:db:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa4vuQ1I4dTc5kv/RpWaTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMWJmMDA4MjRiNjI4YmY2MjYzYmI3NGRlNzc0YWRkZjk5 OTBmYzkwHhcNMjYwMjA5MjIwMDI0WhcNMjYwMjEwMjIwMDI0WjAzMTEwLwYDVQQD EyhiYzYxMGNhYTdlZjA2NjVjZTVlNTE1ZDMxMjc4ZWVjOTg5NjFiNTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyCCmZl8GPhiDYJMx2Yny8R0ZIW4R 1GEulSLJ7uK23YnwjOMdoikAc1YBnqBaSND3sjQSxM9961t2ggU6xKxLBgPFWYvX HvyO9/V7ycTvl5PkM+RI83EnrKnaxaC0TEmTOZCvoWgkHKL9fWSd5KxsR4cq+5dE HIRLCOKid6rH2CDSmgmhmgX2eKvEOkC5uQ7LKwsjxsUSzJ9hilrxdOZh11xY/wXK bIqAiDuV3/t9GADAtAtIBrzSSpbYWvcNh4LQaOJxGVPCmpZ0SYISrnGFbOCCKlhj c0ZlqLAZzAabqWAg1oom7imLDyMDxWdZo153dehMZQtV9NAx9/CwJpkg+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLxhDKp+8GZc5eUV0xJ47smJYbV9MB8GA1UdIwQY MBaAFNob8Agktii/YmO7dN53St35mQ/JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8wMjQ4Y2MtYzc2OC00NmMxLTgyM2Mt ZDZjNjIxNDJmN2UzLzEvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS8wMjQ4Y2MtYzc2OC00NmMxLTgyM2MtZDZjNjIxNDJmN2Uz LzEvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJhaTaXg/ v2l1aAOL3dx17aSilg7uIdJy1GXQS/ne4xld3Ra3cMRpP1RIEOg6SInd2Rt7lTqu LnaAubR36hpm9szwnvNaoL1hO34ty0gvmwLwEAMgUQaFy+fTjV9arnP+qpfCz6XC wXHHdnciav5uj8Rg103jxxoCsq4GyaPTcNaNltOIyvX/jjzF1HDa4vfk9axkdy+Y vFYDEh1mK1G9C65UxBwz7wWLRMf3s8ULnuAjWewzP+XWTk0fOuj3yUwslvRX5DW7 jhFdQpKHOb5eJWcukvOcs4hWenSca42a6AQ4Y9esjYm8ZKFCP9Xs7vl3ScDGT1Ck q3rkcOYNFIPbPA== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:27 2026 by rpki-client