This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft File: 2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft (raw, json) Hash identifier: jnKn/A7Py4yRrKBoYwxr+oGWPtS/lMDmWtT7Guoe1N8= Subject key identifier: 11:53:71:93:BB:83:2D:4E:51:5F:B4:35:15:8D:92:61:53:2B:DB:E3 Authority key identifier: D9:FE:0C:C3:14:3F:99:C5:E5:58:36:A3:FF:6C:0B:66:FC:20:C4:D5 Certificate issuer: /CN=d9fe0cc3143f99c5e55836a3ff6c0b66fc20c4d5 Certificate serial: 019C4510834EAB652A62FFE6EFD03C1E6571 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft Manifest number: 0CAF Signing time: Tue 10 Feb 2026 01:00:35 +0000 Manifest this update: Tue 10 Feb 2026 01:00:35 +0000 Manifest next update: Wed 11 Feb 2026 01:00:35 +0000 Files and hashes: 1: 2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl (hash: eTwAfzuTVuSDd6iHW8EcIRUobNyyWEQgTlQzR48jG0s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:83:4e:ab:65:2a:62:ff:e6:ef:d0:3c:1e:65:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9fe0cc3143f99c5e55836a3ff6c0b66fc20c4d5 Validity Not Before: Feb 10 01:00:35 2026 GMT Not After : Feb 11 01:00:35 2026 GMT Subject: CN=11537193bb832d4e515fb435158d9261532bdbe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:18:96:2b:ea:2a:ff:83:06:98:51:0b:d8:b2: 33:c0:64:e7:c5:cc:2a:1a:c9:f2:bb:60:e7:15:03: e7:c7:6b:dc:1f:10:a3:c8:b7:56:f7:7e:af:64:cc: a2:53:0c:e0:e8:70:8d:e2:5b:ba:1c:c5:3e:c9:b7: c2:d4:5f:f7:52:be:e3:2e:c7:e5:3d:ad:49:45:eb: 30:04:01:b4:41:ad:2f:12:eb:b5:5d:7b:44:6b:41: ba:8a:21:67:40:93:a9:f6:8f:6c:29:39:fa:e4:df: 9e:c6:5b:84:f6:6f:78:b9:05:8e:2d:43:4c:3a:24: f4:b8:d6:d3:61:15:57:4b:11:2f:53:4a:62:61:4c: aa:99:ab:12:3d:a3:25:02:26:43:7b:f0:00:72:b8: 2f:20:44:cf:9e:20:13:fe:81:21:a6:dc:54:c9:4d: b2:be:12:f0:d4:12:32:1b:f7:58:3f:ef:65:fb:99: 3c:4b:42:7d:0a:ea:bd:5e:bb:48:22:0c:18:08:db: 41:0c:c0:5e:ea:98:93:c7:77:fa:a3:6b:41:36:39: da:82:5b:23:14:73:06:1c:93:fa:df:be:67:bc:79: 5d:14:a8:27:b5:44:c5:61:08:28:17:08:0b:11:ba: 58:6f:97:75:25:91:4e:17:ae:4b:0f:a4:46:54:2e: 7a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:53:71:93:BB:83:2D:4E:51:5F:B4:35:15:8D:92:61:53:2B:DB:E3 X509v3 Authority Key Identifier: keyid:D9:FE:0C:C3:14:3F:99:C5:E5:58:36:A3:FF:6C:0B:66:FC:20:C4:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:80:34:a3:ab:7a:bd:bd:40:f4:67:6d:23:56:71:21:2e:d2: f4:36:e0:e0:8d:6d:7f:f2:7f:4b:6c:50:fb:39:51:4a:de:0c: c7:ad:51:dc:6c:7b:34:90:8e:e0:9b:79:72:33:0d:e2:04:b0: ad:16:92:21:65:3d:ad:af:00:36:51:5d:65:74:4d:eb:83:cf: 08:d9:a9:97:ca:5a:b6:97:37:3e:ee:41:20:0e:00:89:93:92: 34:73:cb:09:67:50:4f:e8:f3:4e:30:c4:b9:c7:a8:86:c7:e5: 33:67:ff:c6:58:98:89:ab:3a:3d:5f:32:e8:9c:51:8a:2d:ac: 13:18:6c:7b:9a:74:b3:cb:7b:9f:37:d2:5a:df:c3:18:20:ad: 96:6e:7a:5f:b4:12:55:4b:42:b4:b2:d0:3d:92:9e:a3:e0:a6: 1f:92:92:ac:c7:b2:9e:6d:b5:09:57:f2:5a:b1:c6:be:80:93: ba:6c:ed:7d:59:05:5b:ee:dc:d3:25:f4:53:71:cb:dc:76:27: 57:ef:33:3c:57:78:7b:b2:45:3c:7a:19:22:ab:1e:95:06:3c: 5b:4c:72:f6:81:c9:46:76:9d:c4:97:1c:c0:a3:72:6e:4c:46: 0e:0a:ef:99:4b:5a:1f:88:21:5b:83:74:38:53:3a:07:1c:7e: 4f:12:a4:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEINOq2UqYv/m79A8HmVxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZmUwY2MzMTQzZjk5YzVlNTU4MzZhM2ZmNmMwYjY2ZmMy MGM0ZDUwHhcNMjYwMjEwMDEwMDM1WhcNMjYwMjExMDEwMDM1WjAzMTEwLwYDVQQD EygxMTUzNzE5M2JiODMyZDRlNTE1ZmI0MzUxNThkOTI2MTUzMmJkYmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmxiWK+oq/4MGmFEL2LIzwGTnxcwq Gsnyu2DnFQPnx2vcHxCjyLdW936vZMyiUwzg6HCN4lu6HMU+ybfC1F/3Ur7jLsfl Pa1JReswBAG0Qa0vEuu1XXtEa0G6iiFnQJOp9o9sKTn65N+exluE9m94uQWOLUNM OiT0uNbTYRVXSxEvU0piYUyqmasSPaMlAiZDe/AAcrgvIETPniAT/oEhptxUyU2y vhLw1BIyG/dYP+9l+5k8S0J9Cuq9XrtIIgwYCNtBDMBe6piTx3f6o2tBNjnaglsj FHMGHJP6375nvHldFKgntUTFYQgoFwgLEbpYb5d1JZFOF65LD6RGVC56CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBFTcZO7gy1OUV+0NRWNkmFTK9vjMB8GA1UdIwQY MBaAFNn+DMMUP5nF5Vg2o/9sC2b8IMTVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmY0TXd4UV9tY1hsV0Rhal8yd0xadndneE5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9jNDBkYjUtOGM3Yi00MGIyLWIxNDAt MjYzMTk0OTZkN2RlLzEvMmY0TXd4UV9tY1hsV0Rhal8yd0xadndneE5VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi9jNDBkYjUtOGM3Yi00MGIyLWIxNDAtMjYzMTk0OTZkN2Rl LzEvMmY0TXd4UV9tY1hsV0Rhal8yd0xadndneE5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASIA0o6t6 vb1A9GdtI1ZxIS7S9Dbg4I1tf/J/S2xQ+zlRSt4Mx61R3Gx7NJCO4Jt5cjMN4gSw rRaSIWU9ra8ANlFdZXRN64PPCNmpl8patpc3Pu5BIA4AiZOSNHPLCWdQT+jzTjDE uceohsflM2f/xliYias6PV8y6JxRii2sExhse5p0s8t7nzfSWt/DGCCtlm56X7QS VUtCtLLQPZKeo+CmH5KSrMeynm21CVfyWrHGvoCTumztfVkFW+7c0yX0U3HL3HYn V+8zPFd4e7JFPHoZIqselQY8W0xy9oHJRnadxJccwKNybkxGDgrvmUtaH4ghW4N0 OFM6Bxx+TxKkJQ== -----END CERTIFICATE-----Generated at Tue Feb 10 04:33:28 2026 by rpki-client