This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft File: 2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft (raw, json) Hash identifier: zI9+pXeOgQgHwx4a62BKzY6VEURb2VMxGePWnDGBUYo= Subject key identifier: E5:4A:8C:79:76:8C:E5:34:F9:65:A4:32:12:46:3F:B0:A9:FE:A5:3D Authority key identifier: D8:7D:81:50:D1:18:23:85:C4:61:B5:80:D5:63:8A:57:0C:2B:C0:BF Certificate issuer: /CN=d87d8150d1182385c461b580d5638a570c2bc0bf Certificate serial: 019C43905CA04C6BEF1F4C0742A1E3B81107 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 18:01:00 +0000 Manifest this update: Mon 09 Feb 2026 18:01:00 +0000 Manifest next update: Tue 10 Feb 2026 18:01:00 +0000 Files and hashes: 1: 2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl (hash: RZjH1ipKDDFKzWa1xGJAXhsl+gusWkIBJrS12XylERE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:5c:a0:4c:6b:ef:1f:4c:07:42:a1:e3:b8:11:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d87d8150d1182385c461b580d5638a570c2bc0bf Validity Not Before: Feb 9 18:01:00 2026 GMT Not After : Feb 10 18:01:00 2026 GMT Subject: CN=e54a8c79768ce534f965a43212463fb0a9fea53d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bb:7d:f0:c3:a4:75:f0:52:71:e0:2b:32:7e: 2e:3e:5f:19:ae:95:b9:e5:91:e9:b6:b1:0a:d0:cb: 42:f3:b8:61:6f:93:7d:a5:93:b4:53:cf:88:0e:d6: 86:a1:4a:3e:70:a6:54:a7:c2:a5:92:5c:6f:83:b8: ac:90:3d:49:02:67:87:8c:48:fa:66:a9:7c:dd:0b: fb:60:73:9d:6d:9f:e4:ac:eb:b5:a0:53:74:2e:e5: 44:c0:55:7a:f9:f4:8a:4e:7b:4f:67:1c:73:14:35: 08:02:0e:ed:74:8e:8f:ae:62:bc:03:c7:b5:8d:ac: 0f:de:ba:8e:16:a9:f5:28:ba:6c:44:29:0b:86:79: f3:dd:70:a2:8d:02:c0:df:f6:24:b5:22:cc:25:65: 91:d5:61:c7:f8:85:85:49:94:b3:b7:b9:6e:d7:45: 35:a4:5b:94:51:f8:b5:16:ec:27:9b:ab:e3:0f:2b: 13:a8:f0:61:18:41:f6:61:91:65:53:ec:cf:e4:0a: f5:10:6a:c4:14:9e:29:aa:c4:69:f3:9a:37:a9:e6: 2d:cc:04:25:32:d7:34:67:9f:cf:61:0d:34:52:8d: 2a:71:45:df:97:c4:fd:76:e0:39:cb:5c:17:03:2c: 7b:9a:14:0a:18:52:9e:f7:88:01:bd:87:7e:f4:86: 41:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:4A:8C:79:76:8C:E5:34:F9:65:A4:32:12:46:3F:B0:A9:FE:A5:3D X509v3 Authority Key Identifier: keyid:D8:7D:81:50:D1:18:23:85:C4:61:B5:80:D5:63:8A:57:0C:2B:C0:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:41:99:10:c0:60:33:e9:e1:36:42:c4:81:c6:c3:0b:6b:74: bd:8f:b9:9e:b6:7d:6e:45:c0:e2:7e:b4:e4:4d:0e:b5:f2:a0: 99:3e:4f:35:78:68:9c:99:56:0e:cb:17:35:8f:26:c0:8c:d0: c0:55:76:26:9c:cc:04:53:6e:ca:53:78:43:3a:a0:27:43:4a: fc:66:15:f7:a6:7f:cf:30:1a:6d:7b:46:24:00:71:98:57:de: 8a:84:a9:ee:93:6f:49:03:98:b8:e8:51:ac:ee:a5:34:3f:b4: a3:2a:7b:aa:15:2e:1d:03:68:33:e6:45:36:58:f8:f5:4a:49: 64:06:89:48:ef:81:30:6d:7b:1b:4e:8c:50:e9:14:06:60:27: da:ef:6b:f7:0d:7d:3d:21:dd:f4:97:42:0e:a6:da:4d:15:8e: d6:5c:8d:50:b9:ff:a6:f5:ed:a3:9e:f1:cd:de:be:af:07:f6: db:32:84:25:ac:39:d8:60:91:ab:95:17:70:fe:14:15:d9:86: c4:ed:94:a2:fe:3f:6e:fa:44:86:72:45:4d:5c:5b:60:c5:ce: bf:25:88:9a:f8:e6:50:66:d7:ea:ac:27:0b:72:15:25:ad:9d: 03:b0:ae:98:02:de:d5:81:fe:57:bf:4f:38:30:fa:29:8c:66: c9:df:e0:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkFygTGvvH0wHQqHjuBEHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4N2Q4MTUwZDExODIzODVjNDYxYjU4MGQ1NjM4YTU3MGMy YmMwYmYwHhcNMjYwMjA5MTgwMTAwWhcNMjYwMjEwMTgwMTAwWjAzMTEwLwYDVQQD EyhlNTRhOGM3OTc2OGNlNTM0Zjk2NWE0MzIxMjQ2M2ZiMGE5ZmVhNTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzbt98MOkdfBSceArMn4uPl8ZrpW5 5ZHptrEK0MtC87hhb5N9pZO0U8+IDtaGoUo+cKZUp8Klklxvg7iskD1JAmeHjEj6 Zql83Qv7YHOdbZ/krOu1oFN0LuVEwFV6+fSKTntPZxxzFDUIAg7tdI6PrmK8A8e1 jawP3rqOFqn1KLpsRCkLhnnz3XCijQLA3/YktSLMJWWR1WHH+IWFSZSzt7lu10U1 pFuUUfi1Fuwnm6vjDysTqPBhGEH2YZFlU+zP5Ar1EGrEFJ4pqsRp85o3qeYtzAQl Mtc0Z5/PYQ00Uo0qcUXfl8T9duA5y1wXAyx7mhQKGFKe94gBvYd+9IZBNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOVKjHl2jOU0+WWkMhJGP7Cp/qU9MB8GA1UdIwQY MBaAFNh9gVDRGCOFxGG1gNVjilcMK8C/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkgyQlVORVlJNFhFWWJXQTFXT0tWd3dyd0w4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9lMTEyNGQtN2IzNC00MzlkLTk2MWQt ODY3OTUzYTNiMTgxLzEvMkgyQlVORVlJNFhFWWJXQTFXT0tWd3dyd0w4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC9lMTEyNGQtN2IzNC00MzlkLTk2MWQtODY3OTUzYTNiMTgx LzEvMkgyQlVORVlJNFhFWWJXQTFXT0tWd3dyd0w4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK0GZEMBg M+nhNkLEgcbDC2t0vY+5nrZ9bkXA4n605E0OtfKgmT5PNXhonJlWDssXNY8mwIzQ wFV2JpzMBFNuylN4QzqgJ0NK/GYV96Z/zzAabXtGJABxmFfeioSp7pNvSQOYuOhR rO6lND+0oyp7qhUuHQNoM+ZFNlj49UpJZAaJSO+BMG17G06MUOkUBmAn2u9r9w19 PSHd9JdCDqbaTRWO1lyNULn/pvXto57xzd6+rwf22zKEJaw52GCRq5UXcP4UFdmG xO2Uov4/bvpEhnJFTVxbYMXOvyWImvjmUGbX6qwnC3IVJa2dA7CumALe1YH+V79P ODD6KYxmyd/gZQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:12 2026 by rpki-client