This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json) Hash identifier: m8NSKmLUUUltCp5tOVQOJ5hcCVNPTfR1AcNMERBe5VY= Subject key identifier: E5:03:EC:10:76:72:DF:ED:4A:48:AA:85:3E:05:9A:3D:2F:C7:13:27 Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a Certificate serial: 019C43FE7E0A519D9E56D058B74B97546D3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft Manifest number: 151E Signing time: Mon 09 Feb 2026 20:01:17 +0000 Manifest this update: Mon 09 Feb 2026 20:01:17 +0000 Manifest next update: Tue 10 Feb 2026 20:01:17 +0000 Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: Mi9fAPFOnZdHNIvY/c5tNXiiSq+99SiH8NIcIS32P9c=) 2: ZVHQNn8NDHrKDlrXSjskIERGk-w.roa (hash: GPFXQQAYnCScqN6Tj+UkAGSIUrlH/xEf/by5WbPkz1Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:7e:0a:51:9d:9e:56:d0:58:b7:4b:97:54:6d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a Validity Not Before: Feb 9 20:01:17 2026 GMT Not After : Feb 10 20:01:17 2026 GMT Subject: CN=e503ec107672dfed4a48aa853e059a3d2fc71327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:32:a5:b6:2a:3e:93:1b:ff:d6:b5:21:67:e2: ef:9b:2a:20:f1:15:ce:1b:7c:83:bf:c7:c1:0a:30: e4:f7:91:65:f0:07:69:a5:01:40:a3:73:cb:48:4a: 13:e2:95:dd:ba:d1:4d:17:fc:28:ea:40:4e:d5:fa: a5:73:6e:54:ba:58:fd:a3:9d:f3:27:b5:9d:25:1e: 46:0f:cf:70:c4:62:11:8e:3c:aa:ca:85:75:14:8d: 24:d6:20:17:8d:2f:a8:b9:7f:00:79:78:00:02:4f: b6:13:34:31:e9:f9:54:b6:5f:4f:bb:20:ef:e7:cc: 72:8b:f3:2f:f1:b4:b2:f7:95:88:32:16:03:d6:d8: b0:9f:c3:39:bc:c9:25:30:3a:85:ce:e4:4a:fd:d7: 5f:05:63:0a:fa:35:b4:71:b5:c4:70:5c:71:75:d3: 60:21:7a:f0:42:d2:a8:fe:b7:0d:60:1d:ca:d0:da: 5b:d8:0d:4f:32:79:21:d1:2d:50:31:b8:1d:4b:2e: e4:dd:34:c9:56:16:c4:2a:5d:62:e6:c5:42:97:e3: 67:e5:31:b4:6c:57:81:f6:5d:5b:7e:f0:97:bf:da: 6c:af:40:2e:fd:de:5f:4e:fc:d8:e8:64:3a:e8:7c: 84:9a:dd:77:3f:37:a9:f7:e8:1c:dc:a5:5a:0a:b1: a7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:03:EC:10:76:72:DF:ED:4A:48:AA:85:3E:05:9A:3D:2F:C7:13:27 X509v3 Authority Key Identifier: keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:12:4f:a3:b6:ee:82:f0:16:c6:22:cc:16:72:71:5d:f6:9d: df:32:37:8d:87:71:9d:10:ed:1e:11:ef:8a:49:9d:2f:c5:ce: da:3d:03:87:32:95:c4:0f:cf:da:45:80:f2:64:c0:a2:a6:b8: 4a:fe:05:f0:31:b2:70:73:d0:dc:dd:10:ba:f7:c6:37:bf:60: ac:8a:d2:a3:2d:b2:d1:3e:7b:87:ef:f9:c7:9a:2a:3f:92:b9: 4b:32:8d:68:73:7f:2d:0e:d6:7a:75:c6:31:9f:29:30:4d:52: 0d:f4:e2:3a:2a:55:42:5e:6c:ea:af:0b:2e:fd:c4:9b:6d:20: f8:32:16:05:7e:4f:c3:c4:6f:38:78:67:73:64:2b:f6:d7:20: 96:ce:1c:ee:22:50:da:a7:d6:96:32:be:eb:2e:71:b3:7a:e0: 98:96:f9:14:d4:0c:4a:ab:df:40:b7:59:ef:cc:63:f1:1a:50: c3:a5:e1:b3:d0:4d:46:da:7b:47:b5:d2:a8:67:f5:78:e2:30: bb:04:9a:f2:e2:c2:17:15:ec:a6:c9:88:7f:49:96:c6:48:88: 3f:56:67:9b:87:27:16:de:25:2e:b1:04:bf:75:07:61:83:b7: f8:0b:89:ca:67:30:e6:ca:3b:d8:ad:1f:99:f1:e3:11:41:27: 3e:e6:11:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/n4KUZ2eVtBYt0uXVG09MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NzE5OThhYTE0MGFiN2MxZmYyNDBlYWIwYzkyMzU5MTNj OTZlOGEwHhcNMjYwMjA5MjAwMTE3WhcNMjYwMjEwMjAwMTE3WjAzMTEwLwYDVQQD EyhlNTAzZWMxMDc2NzJkZmVkNGE0OGFhODUzZTA1OWEzZDJmYzcxMzI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDKltio+kxv/1rUhZ+Lvmyog8RXO G3yDv8fBCjDk95Fl8AdppQFAo3PLSEoT4pXdutFNF/wo6kBO1fqlc25Uulj9o53z J7WdJR5GD89wxGIRjjyqyoV1FI0k1iAXjS+ouX8AeXgAAk+2EzQx6flUtl9PuyDv 58xyi/Mv8bSy95WIMhYD1tiwn8M5vMklMDqFzuRK/ddfBWMK+jW0cbXEcFxxddNg IXrwQtKo/rcNYB3K0Npb2A1PMnkh0S1QMbgdSy7k3TTJVhbEKl1i5sVCl+Nn5TG0 bFeB9l1bfvCXv9psr0Au/d5fTvzY6GQ66HyEmt13Pzep9+gc3KVaCrGn6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOUD7BB2ct/tSkiqhT4Fmj0vxxMnMB8GA1UdIwQY MBaAFNhxmYqhQKt8H/JA6rDJI1kTyW6KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8zM2FhMjQtMzVlYS00YWRjLThjMDUt NWEzNGU1MmIwYjEwLzEvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi8zM2FhMjQtMzVlYS00YWRjLThjMDUtNWEzNGU1MmIwYjEw LzEvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdhJPo7bu gvAWxiLMFnJxXfad3zI3jYdxnRDtHhHvikmdL8XO2j0DhzKVxA/P2kWA8mTAoqa4 Sv4F8DGycHPQ3N0QuvfGN79grIrSoy2y0T57h+/5x5oqP5K5SzKNaHN/LQ7WenXG MZ8pME1SDfTiOipVQl5s6q8LLv3Em20g+DIWBX5Pw8RvOHhnc2Qr9tcgls4c7iJQ 2qfWljK+6y5xs3rgmJb5FNQMSqvfQLdZ78xj8RpQw6Xhs9BNRtp7R7XSqGf1eOIw uwSa8uLCFxXspsmIf0mWxkiIP1Znm4cnFt4lLrEEv3UHYYO3+AuJymcw5so72K0f mfHjEUEnPuYRVw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:34 2026 by rpki-client