This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft File: 2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft (raw, json) Hash identifier: vPRVpaeQfeVyNaT9a82nNLtCgF5Nxfe5nmROxJAQvfY= Subject key identifier: 9B:BE:BE:2B:1D:02:00:02:F8:19:01:CB:A8:F5:BA:5C:69:1E:BB:B8 Authority key identifier: DB:2D:75:C6:D5:47:75:06:42:24:1B:07:49:CF:A0:52:C8:C1:7F:34 Certificate issuer: /CN=db2d75c6d547750642241b0749cfa052c8c17f34 Certificate serial: 019C42EB239BDD24204FED109DB3FB0E3E2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 15:00:32 +0000 Manifest this update: Mon 09 Feb 2026 15:00:32 +0000 Manifest next update: Tue 10 Feb 2026 15:00:32 +0000 Files and hashes: 1: 2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl (hash: KVPAt8woQQhwy3MaUiwXoH8JBnWmUVLUL/R+tJZ163g=) 2: RYCkmpH2b2Jhy7VdmwMy71iHAMU.roa (hash: m7nxILjYkQDIx4jO5jxneiBadE/Bw699fTnvikNCX4U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:23:9b:dd:24:20:4f:ed:10:9d:b3:fb:0e:3e:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db2d75c6d547750642241b0749cfa052c8c17f34 Validity Not Before: Feb 9 15:00:32 2026 GMT Not After : Feb 10 15:00:32 2026 GMT Subject: CN=9bbebe2b1d020002f81901cba8f5ba5c691ebbb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c9:0d:02:d2:8c:93:0b:8b:32:e3:35:fe:33: e4:5b:4d:a9:85:a7:ec:de:3d:17:ba:16:e9:0e:89: 5c:1c:fa:8c:8c:59:6d:3c:fc:36:e5:ac:08:e2:6d: c0:ee:1c:13:8a:27:94:d8:d3:8b:57:61:02:91:0c: ba:6e:15:af:70:a1:12:04:0b:45:56:03:6e:d8:1e: 0d:43:e2:54:66:85:82:07:e6:d7:3a:04:05:4a:a2: 85:79:35:92:1d:56:f2:19:c8:ac:0a:69:bb:6a:d4: f8:4e:08:55:7f:6f:9b:a0:72:d2:83:34:59:8e:c8: 24:d4:d2:1b:52:c6:50:53:64:8b:d6:92:b2:b9:64: 0d:37:e6:2a:cb:5b:ee:0e:0b:12:26:c6:b2:31:ff: 7e:85:0c:ef:d0:ac:46:a8:35:7d:0d:e1:6c:41:be: 71:77:bc:42:37:85:3a:7c:87:eb:5d:89:e1:a9:2b: 58:de:e9:2b:83:f2:26:5f:76:83:9b:fd:d7:4b:e6: 59:23:fd:a1:52:3f:9b:ef:f6:84:f1:55:76:ad:43: 57:6f:dc:ba:dc:bf:4d:3b:e2:56:ff:d4:49:68:ea: 3d:36:49:7c:0b:28:47:32:64:50:bb:c2:82:3d:c6: 3e:8b:3c:35:3a:ca:c6:9f:dc:1a:c5:87:de:1c:43: ca:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:BE:BE:2B:1D:02:00:02:F8:19:01:CB:A8:F5:BA:5C:69:1E:BB:B8 X509v3 Authority Key Identifier: keyid:DB:2D:75:C6:D5:47:75:06:42:24:1B:07:49:CF:A0:52:C8:C1:7F:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:1e:bf:71:3f:c5:be:80:d6:15:9f:e8:05:da:02:c4:e8:5f: fe:68:6f:81:54:f0:56:96:69:3c:5b:64:ab:92:56:56:9a:8b: be:ce:60:06:76:c6:b9:2a:4e:11:39:ad:23:82:ad:c9:4c:f4: cc:ba:66:13:07:aa:fa:dd:44:db:18:79:37:8d:fa:29:e6:56: a9:38:d2:c3:3b:5d:a3:99:16:da:2e:7b:1f:75:ee:e2:96:0d: bf:1b:75:f8:09:e4:95:d9:df:81:1b:3b:93:b8:84:03:31:9a: d0:79:0b:53:20:bf:73:81:98:ec:81:64:0b:b9:bc:fd:5b:5c: a0:d8:5f:f7:37:11:6d:5b:a4:f7:56:da:cf:ad:a8:64:8d:c5: 43:f9:f9:bc:c7:4b:5d:21:57:0a:b2:ec:73:61:58:63:1b:2d: 00:f4:fa:41:13:b4:68:ee:69:75:2b:42:2e:c0:12:0a:8d:16: 3d:4d:84:f3:42:89:b0:3d:0b:26:61:9f:6b:c2:b9:d5:19:5c: 93:b8:39:7d:b6:88:ed:cc:ac:67:60:03:fd:22:5c:cb:03:ae: bf:f9:24:e1:f4:bc:0c:79:9d:40:7d:3c:d3:7a:0d:23:0c:dc: f6:e4:82:67:6a:e2:84:ae:5b:a9:f3:01:c2:61:cf:30:f8:bd: 5c:80:62:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6yOb3SQgT+0QnbP7Dj4vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMmQ3NWM2ZDU0Nzc1MDY0MjI0MWIwNzQ5Y2ZhMDUyYzhj MTdmMzQwHhcNMjYwMjA5MTUwMDMyWhcNMjYwMjEwMTUwMDMyWjAzMTEwLwYDVQQD Eyg5YmJlYmUyYjFkMDIwMDAyZjgxOTAxY2JhOGY1YmE1YzY5MWViYmI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMkNAtKMkwuLMuM1/jPkW02phafs 3j0XuhbpDolcHPqMjFltPPw25awI4m3A7hwTiieU2NOLV2ECkQy6bhWvcKESBAtF VgNu2B4NQ+JUZoWCB+bXOgQFSqKFeTWSHVbyGcisCmm7atT4TghVf2+boHLSgzRZ jsgk1NIbUsZQU2SL1pKyuWQNN+Yqy1vuDgsSJsayMf9+hQzv0KxGqDV9DeFsQb5x d7xCN4U6fIfrXYnhqStY3ukrg/ImX3aDm/3XS+ZZI/2hUj+b7/aE8VV2rUNXb9y6 3L9NO+JW/9RJaOo9Nkl8CyhHMmRQu8KCPcY+izw1OsrGn9waxYfeHEPKBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJu+visdAgAC+BkBy6j1ulxpHru4MB8GA1UdIwQY MBaAFNstdcbVR3UGQiQbB0nPoFLIwX80MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnkxMXh0VkhkUVpDSkJzSFNjLWdVc2pCZnpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9jYzQwYTktOGIzZi00M2Q2LWEwNzgt YTkwMWUwMzRhZmU1LzEvMnkxMXh0VkhkUVpDSkJzSFNjLWdVc2pCZnpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS9jYzQwYTktOGIzZi00M2Q2LWEwNzgtYTkwMWUwMzRhZmU1 LzEvMnkxMXh0VkhkUVpDSkJzSFNjLWdVc2pCZnpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANB6/cT/F voDWFZ/oBdoCxOhf/mhvgVTwVpZpPFtkq5JWVpqLvs5gBnbGuSpOETmtI4KtyUz0 zLpmEweq+t1E2xh5N436KeZWqTjSwztdo5kW2i57H3Xu4pYNvxt1+AnkldnfgRs7 k7iEAzGa0HkLUyC/c4GY7IFkC7m8/VtcoNhf9zcRbVuk91baz62oZI3FQ/n5vMdL XSFXCrLsc2FYYxstAPT6QRO0aO5pdStCLsASCo0WPU2E80KJsD0LJmGfa8K51Rlc k7g5fbaI7cysZ2AD/SJcywOuv/kk4fS8DHmdQH0803oNIwzc9uSCZ2rihK5bqfMB wmHPMPi9XIBikQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:24 2026 by rpki-client