This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft File: 2l7eZe_t7t-MigSyRaOl32OmnoQ.mft (raw, json) Hash identifier: 2YLRyBWpCjAvItbQGTFq7+6J+hlEqBX0KavfIZR/HXo= Subject key identifier: 0B:7D:DB:68:2A:91:30:AC:6A:E7:F8:4C:12:52:48:9A:79:84:84:4A Authority key identifier: DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84 Certificate issuer: /CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84 Certificate serial: 019C4510ADA3597136B4C697D44293C3E0DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft Manifest number: 180F Signing time: Tue 10 Feb 2026 01:00:46 +0000 Manifest this update: Tue 10 Feb 2026 01:00:46 +0000 Manifest next update: Wed 11 Feb 2026 01:00:46 +0000 Files and hashes: 1: 2l7eZe_t7t-MigSyRaOl32OmnoQ.crl (hash: gsoOmbuhimL9oDfeeYjL5zrn0XgRMR0kM7YBd6Tyg7I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:ad:a3:59:71:36:b4:c6:97:d4:42:93:c3:e0:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84 Validity Not Before: Feb 10 01:00:46 2026 GMT Not After : Feb 11 01:00:46 2026 GMT Subject: CN=0b7ddb682a9130ac6ae7f84c1252489a7984844a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f7:d0:5e:69:b1:16:4f:1b:24:f2:ed:69:9d: e7:1b:04:f8:e5:e9:4b:0f:af:85:89:52:7e:b7:9e: e9:68:a3:53:bd:ff:bd:f4:de:c6:32:de:0e:e5:46: b9:71:71:54:64:b4:01:28:07:f0:b8:2f:e4:65:ec: 99:ca:5d:64:38:7c:b8:af:58:79:d0:3a:6f:fd:6c: b0:e0:ec:8c:0f:a5:68:3f:e1:66:cc:81:e2:97:40: 7d:41:ff:90:68:40:b1:cd:c8:4a:ec:91:e1:0d:f0: ba:53:b2:18:9b:00:ae:55:77:81:97:81:76:4d:e2: 43:29:e1:e5:f2:77:b5:05:0e:86:be:4e:c7:0a:37: 2f:86:f0:b4:2c:e2:f0:0d:04:b0:11:0f:31:50:5f: e0:94:db:8a:76:56:8b:39:78:0f:02:11:b4:86:82: 27:ac:2f:fa:b4:25:e4:44:b6:a7:6d:a7:86:5e:ad: fa:07:73:c5:e5:25:4a:36:42:d7:15:ae:7f:9b:56: bb:29:e4:9f:c2:6f:bc:29:8d:e9:8c:76:2b:cc:9d: e9:58:7a:f6:7f:64:33:8c:97:d8:6a:d0:b7:50:89: f0:f1:5f:51:b7:42:02:24:6a:1d:e6:d5:5c:f9:58: 04:1c:1f:6b:66:1c:ae:dd:f6:65:59:a8:90:01:71: 85:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:7D:DB:68:2A:91:30:AC:6A:E7:F8:4C:12:52:48:9A:79:84:84:4A X509v3 Authority Key Identifier: keyid:DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:47:26:b7:31:85:99:c8:b0:c3:56:a3:a4:60:9b:0b:ff:80: 24:61:4f:5b:6f:eb:0c:81:d2:e1:f3:ea:59:9e:ad:1f:76:fa: 6b:04:1d:01:53:08:4d:f9:f7:18:80:97:22:f6:6d:d9:63:8e: c0:a1:22:9e:7a:1b:af:bd:ea:dc:c5:6c:bf:8d:95:e2:8a:57: f6:82:43:01:58:b1:ba:89:e5:e2:72:59:09:42:dc:ed:5c:44: 6d:4c:37:7b:3a:c2:2e:59:a0:25:74:17:46:a8:ca:fe:3b:83: 32:88:53:76:d0:e0:d6:30:9b:c8:a0:c0:4a:d2:b3:29:03:d4: 22:3c:b2:fc:d4:f8:3a:41:10:b0:90:40:18:73:14:54:0f:53: 73:2d:e7:60:83:98:f2:00:3f:a1:aa:27:d4:43:60:28:c7:eb: 50:f3:93:6c:fa:6f:38:22:8e:74:7e:f5:3b:1e:d5:9d:c7:ea: c0:b0:25:9a:8b:d8:b9:28:c8:c1:32:c5:2c:65:e8:d1:36:d8: aa:d0:07:12:8d:d1:d3:9e:7f:fb:55:1a:66:e2:49:cf:ff:82: 1a:e1:c6:5b:0e:54:10:64:cb:dd:02:e5:66:fa:b7:48:42:22: 71:66:38:23:fb:52:54:c3:e3:b6:2d:bb:51:53:d4:4b:88:2f: 09:47:a1:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEK2jWXE2tMaX1EKTw+DdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhNWVkZTY1ZWZlZGVlZGY4YzhhMDRiMjQ1YTNhNWRmNjNh NjllODQwHhcNMjYwMjEwMDEwMDQ2WhcNMjYwMjExMDEwMDQ2WjAzMTEwLwYDVQQD EygwYjdkZGI2ODJhOTEzMGFjNmFlN2Y4NGMxMjUyNDg5YTc5ODQ4NDRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz/fQXmmxFk8bJPLtaZ3nGwT45elL D6+FiVJ+t57paKNTvf+99N7GMt4O5Ua5cXFUZLQBKAfwuC/kZeyZyl1kOHy4r1h5 0Dpv/Wyw4OyMD6VoP+FmzIHil0B9Qf+QaECxzchK7JHhDfC6U7IYmwCuVXeBl4F2 TeJDKeHl8ne1BQ6Gvk7HCjcvhvC0LOLwDQSwEQ8xUF/glNuKdlaLOXgPAhG0hoIn rC/6tCXkRLanbaeGXq36B3PF5SVKNkLXFa5/m1a7KeSfwm+8KY3pjHYrzJ3pWHr2 f2QzjJfYatC3UInw8V9Rt0ICJGod5tVc+VgEHB9rZhyu3fZlWaiQAXGFzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAt922gqkTCsauf4TBJSSJp5hIRKMB8GA1UdIwQY MBaAFNpe3mXv7e7fjIoEskWjpd9jpp6EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmw3ZVplX3Q3dC1NaWdTeVJhT2wzMk9tbm9RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9hNmE5ZGUtNjAzMy00YzlkLTg2MWIt YWZmNTBlNGEwZTMzLzEvMmw3ZVplX3Q3dC1NaWdTeVJhT2wzMk9tbm9RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy9hNmE5ZGUtNjAzMy00YzlkLTg2MWItYWZmNTBlNGEwZTMz LzEvMmw3ZVplX3Q3dC1NaWdTeVJhT2wzMk9tbm9RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZUcmtzGF mciww1ajpGCbC/+AJGFPW2/rDIHS4fPqWZ6tH3b6awQdAVMITfn3GICXIvZt2WOO wKEinnobr73q3MVsv42V4opX9oJDAVixuonl4nJZCULc7VxEbUw3ezrCLlmgJXQX RqjK/juDMohTdtDg1jCbyKDAStKzKQPUIjyy/NT4OkEQsJBAGHMUVA9Tcy3nYIOY 8gA/oaon1ENgKMfrUPOTbPpvOCKOdH71Ox7VncfqwLAlmovYuSjIwTLFLGXo0TbY qtAHEo3R055/+1UaZuJJz/+CGuHGWw5UEGTL3QLlZvq3SEIicWY4I/tSVMPjti27 UVPUS4gvCUehFQ== -----END CERTIFICATE-----Generated at Tue Feb 10 02:54:58 2026 by rpki-client