This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/f17c9b-5767-4edd-907c-87a1941f1be3/1/2yEb43VVWcoQJSDBNnDQhYDXAzQ.mft File: 2yEb43VVWcoQJSDBNnDQhYDXAzQ.mft (raw, json) Hash identifier: Nlyt58GyVwZFCDCGY0O7J+ensReDQyBOHC45kyN2iAQ= Subject key identifier: 11:35:73:A7:16:4B:1E:FE:7F:63:6C:91:06:10:8B:B5:0E:9E:32:87 Authority key identifier: DB:21:1B:E3:75:55:59:CA:10:25:20:C1:36:70:D0:85:80:D7:03:34 Certificate issuer: /CN=db211be3755559ca102520c13670d08580d70334 Certificate serial: 019C43C6DF8EF75E270FD41799E8F9613B36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yEb43VVWcoQJSDBNnDQhYDXAzQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/f17c9b-5767-4edd-907c-87a1941f1be3/1/2yEb43VVWcoQJSDBNnDQhYDXAzQ.mft Manifest number: FD Signing time: Mon 09 Feb 2026 19:00:32 +0000 Manifest this update: Mon 09 Feb 2026 19:00:32 +0000 Manifest next update: Tue 10 Feb 2026 19:00:32 +0000 Files and hashes: 1: 2yEb43VVWcoQJSDBNnDQhYDXAzQ.crl (hash: BdN3NVv0JmMcdE9KNv1Chz2b9Ea14+/OYlF4iNpeFS0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/f17c9b-5767-4edd-907c-87a1941f1be3/1/2yEb43VVWcoQJSDBNnDQhYDXAzQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/f17c9b-5767-4edd-907c-87a1941f1be3/1/2yEb43VVWcoQJSDBNnDQhYDXAzQ.mft rsync://rpki.ripe.net/repository/DEFAULT/2yEb43VVWcoQJSDBNnDQhYDXAzQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:df:8e:f7:5e:27:0f:d4:17:99:e8:f9:61:3b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db211be3755559ca102520c13670d08580d70334 Validity Not Before: Feb 9 19:00:32 2026 GMT Not After : Feb 10 19:00:32 2026 GMT Subject: CN=113573a7164b1efe7f636c9106108bb50e9e3287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ac:2b:0c:be:fe:a2:5f:ff:87:89:d9:fe:18: 13:ab:bf:c0:c1:ca:a6:30:be:e9:1e:3e:47:27:22: 87:38:e5:b5:78:0f:b2:12:bc:19:13:76:cf:9f:c8: 2c:ec:ff:63:0f:6b:8d:7b:b2:72:bd:64:42:fd:14: e9:1f:d7:ae:09:78:4b:53:3a:5d:e7:36:c8:7c:6c: b6:a0:ca:f5:ba:57:09:21:21:ad:35:83:69:1b:88: 53:44:7f:c7:ff:01:99:24:f7:4b:5b:ee:4a:50:70: 41:30:00:58:8d:ff:ec:9d:53:8e:ae:8b:18:16:8d: f3:ba:03:13:aa:65:c6:53:38:ee:9f:7b:72:01:4c: b5:dd:24:65:5b:ff:d4:52:5a:0e:86:4f:86:0d:e6: 76:dd:f9:67:2f:c4:f6:e2:09:9d:4f:b8:c1:45:ca: 76:7d:d8:84:de:86:6b:ef:f1:27:f2:57:ac:e4:15: c6:90:d5:d4:b8:99:ba:d9:d9:7c:01:db:11:53:4e: b9:ad:d8:0b:f7:4f:44:92:39:64:55:f1:29:b4:6d: 56:74:97:b2:c6:00:b2:7f:aa:7a:c1:a1:08:6b:27: 55:9e:13:be:44:ba:a3:36:13:6e:35:6f:61:27:df: 7b:3b:d7:66:59:08:f6:10:14:7a:91:0e:88:9e:62: 23:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:35:73:A7:16:4B:1E:FE:7F:63:6C:91:06:10:8B:B5:0E:9E:32:87 X509v3 Authority Key Identifier: keyid:DB:21:1B:E3:75:55:59:CA:10:25:20:C1:36:70:D0:85:80:D7:03:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yEb43VVWcoQJSDBNnDQhYDXAzQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f17c9b-5767-4edd-907c-87a1941f1be3/1/2yEb43VVWcoQJSDBNnDQhYDXAzQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f17c9b-5767-4edd-907c-87a1941f1be3/1/2yEb43VVWcoQJSDBNnDQhYDXAzQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:b6:e4:17:3c:a5:ef:a7:35:2a:f4:44:6b:8f:80:0c:3a:28: 79:cb:01:bc:ca:88:93:63:28:5c:03:bb:f2:66:a1:3a:c6:3b: 73:2b:cb:d6:f0:eb:5e:b4:ae:73:75:f3:37:ef:6b:6e:0c:8f: 8d:fa:68:91:62:e7:4a:9b:1c:41:bd:a6:db:52:dc:f4:7f:b5: 37:42:45:df:d7:2c:b1:65:ea:54:20:5d:42:f4:60:b3:ca:ca: c3:68:20:9e:21:df:4a:3e:16:f5:a9:70:d6:6c:4e:d0:65:68: bb:ca:28:e1:43:ca:3a:68:56:b6:6f:eb:74:d3:de:87:36:26: f6:f5:82:22:51:29:75:a0:1a:14:a2:a1:9d:55:37:9e:7a:21: f9:5e:dd:71:53:40:f5:c1:6c:37:05:66:90:ee:af:99:9e:65: 1b:fc:1c:8a:ef:07:18:73:3c:16:cd:fc:af:c4:da:09:6d:2f: 5d:06:9a:0b:7e:47:5f:b5:7e:a4:a4:b9:97:29:9e:11:c2:3b: eb:d3:e8:36:c1:d2:59:37:8d:49:37:55:8c:4e:8f:74:a1:66: 59:ad:ea:1a:4c:d2:15:79:66:bf:36:00:cc:d6:96:41:22:5b: 48:ea:b0:7e:9b:c4:53:73:a7:c3:29:20:f0:45:25:76:d2:a4: e4:62:57:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxt+O914nD9QXmej5YTs2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMjExYmUzNzU1NTU5Y2ExMDI1MjBjMTM2NzBkMDg1ODBk NzAzMzQwHhcNMjYwMjA5MTkwMDMyWhcNMjYwMjEwMTkwMDMyWjAzMTEwLwYDVQQD EygxMTM1NzNhNzE2NGIxZWZlN2Y2MzZjOTEwNjEwOGJiNTBlOWUzMjg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsawrDL7+ol//h4nZ/hgTq7/Awcqm ML7pHj5HJyKHOOW1eA+yErwZE3bPn8gs7P9jD2uNe7JyvWRC/RTpH9euCXhLUzpd 5zbIfGy2oMr1ulcJISGtNYNpG4hTRH/H/wGZJPdLW+5KUHBBMABYjf/snVOOrosY Fo3zugMTqmXGUzjun3tyAUy13SRlW//UUloOhk+GDeZ23flnL8T24gmdT7jBRcp2 fdiE3oZr7/En8les5BXGkNXUuJm62dl8AdsRU065rdgL909EkjlkVfEptG1WdJey xgCyf6p6waEIaydVnhO+RLqjNhNuNW9hJ997O9dmWQj2EBR6kQ6InmIjDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBE1c6cWSx7+f2NskQYQi7UOnjKHMB8GA1UdIwQY MBaAFNshG+N1VVnKECUgwTZw0IWA1wM0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnlFYjQzVlZXY29RSlNEQk5uRFFoWURYQXpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9mMTdjOWItNTc2Ny00ZWRkLTkwN2Mt ODdhMTk0MWYxYmUzLzEvMnlFYjQzVlZXY29RSlNEQk5uRFFoWURYQXpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy9mMTdjOWItNTc2Ny00ZWRkLTkwN2MtODdhMTk0MWYxYmUz LzEvMnlFYjQzVlZXY29RSlNEQk5uRFFoWURYQXpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAALbkFzyl 76c1KvREa4+ADDooecsBvMqIk2MoXAO78mahOsY7cyvL1vDrXrSuc3XzN+9rbgyP jfpokWLnSpscQb2m21Lc9H+1N0JF39cssWXqVCBdQvRgs8rKw2ggniHfSj4W9alw 1mxO0GVou8oo4UPKOmhWtm/rdNPehzYm9vWCIlEpdaAaFKKhnVU3nnoh+V7dcVNA 9cFsNwVmkO6vmZ5lG/wciu8HGHM8Fs38r8TaCW0vXQaaC35HX7V+pKS5lymeEcI7 69PoNsHSWTeNSTdVjE6PdKFmWa3qGkzSFXlmvzYAzNaWQSJbSOqwfpvEU3Onwykg 8EUldtKk5GJXpA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:58 2026 by rpki-client