This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft File: 2lPr-vXBh42KIqk44XMqigdxTzU.mft (raw, json) Hash identifier: X34XplbEgDRlRBl0FmmEzpfktLf+6lpnHHWZXrYI97I= Subject key identifier: 3B:FC:B3:6C:87:64:B7:A4:4D:47:6F:01:1A:7E:5D:2B:02:0D:4D:54 Authority key identifier: DA:53:EB:FA:F5:C1:87:8D:8A:22:A9:38:E1:73:2A:8A:07:71:4F:35 Certificate issuer: /CN=da53ebfaf5c1878d8a22a938e1732a8a07714f35 Certificate serial: 019C427E189A22DBD6A2425B656BAE732EE2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 13:01:25 +0000 Manifest this update: Mon 09 Feb 2026 13:01:25 +0000 Manifest next update: Tue 10 Feb 2026 13:01:25 +0000 Files and hashes: 1: 2lPr-vXBh42KIqk44XMqigdxTzU.crl (hash: kmFlg7fJd9h/JFsoo55xT6Ip+H4WN1qKrI/kPGRcssE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.crl rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:18:9a:22:db:d6:a2:42:5b:65:6b:ae:73:2e:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da53ebfaf5c1878d8a22a938e1732a8a07714f35 Validity Not Before: Feb 9 13:01:25 2026 GMT Not After : Feb 10 13:01:25 2026 GMT Subject: CN=3bfcb36c8764b7a44d476f011a7e5d2b020d4d54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6b:47:63:fb:b7:b9:dc:02:1b:35:8c:c9:64: d1:06:74:69:82:69:27:a9:1b:f2:20:de:37:68:34: 33:15:25:3c:13:09:91:a6:f4:5c:d5:23:5f:d6:7d: 51:ff:d5:a0:5b:98:b2:00:13:24:29:96:a5:82:e3: 2e:4e:c6:00:a1:3d:90:c4:69:19:1b:19:33:42:93: 79:a5:40:87:94:78:0f:ba:9d:5a:ed:18:65:6e:63: d5:2e:d3:c9:ef:3e:a1:7e:d5:b8:e6:df:8f:6c:3d: 53:59:82:d9:38:48:44:4f:5c:70:a8:e2:b9:47:25: 43:3a:18:8c:d1:5f:ff:b2:c5:61:1f:e1:e2:ea:62: 27:98:41:34:d0:e8:5b:c6:b5:5f:97:bb:18:7c:f6: 43:b7:a5:67:28:60:4e:c4:57:cd:49:4a:eb:2e:fa: c4:6d:8f:fb:60:9a:4a:8c:11:6d:9e:fb:3a:e0:2d: 68:c6:d7:28:bf:ef:da:71:cd:3c:0e:35:a1:34:58: 0a:8c:c1:3f:7a:f9:07:aa:1e:e4:8f:96:9f:f2:e7: bc:16:d3:89:12:1c:6e:ed:fe:2d:9d:6e:9d:1e:ea: cd:46:e7:47:65:9b:60:2c:f0:a5:e1:80:be:cb:c0: a8:1e:8a:e9:d8:8a:7a:72:d4:c2:2d:74:c0:e4:f4: 14:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FC:B3:6C:87:64:B7:A4:4D:47:6F:01:1A:7E:5D:2B:02:0D:4D:54 X509v3 Authority Key Identifier: keyid:DA:53:EB:FA:F5:C1:87:8D:8A:22:A9:38:E1:73:2A:8A:07:71:4F:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lPr-vXBh42KIqk44XMqigdxTzU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1c7c0e-23a1-4142-bee8-93c9e6b093bc/1/2lPr-vXBh42KIqk44XMqigdxTzU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d2:98:2e:6d:fd:33:a5:cf:1a:90:c7:7e:19:d2:bd:0d:69:37: 3d:c1:10:d9:75:39:39:66:2a:31:b3:c2:85:c6:6b:2d:d0:6d: c9:6b:97:9f:84:9d:52:4a:f2:fe:31:bf:87:3e:f7:00:f9:ff: 85:c1:3e:a7:79:6d:94:32:46:34:cd:39:4d:9d:5b:47:ae:15: d6:88:b7:7c:31:c4:9d:84:ad:0e:35:bd:78:32:fa:80:15:ab: 4f:c7:56:79:be:2d:be:e9:3c:8c:f0:b5:ed:07:63:bd:c4:b1: c8:6c:ea:03:00:19:68:b9:ee:ae:2d:05:ea:ba:e4:5e:3d:87: a8:98:75:2e:ce:e8:d0:90:af:c5:fa:83:20:5a:a4:db:e3:60: 39:26:2d:d2:7b:94:02:54:a4:34:72:cc:88:20:3b:1a:72:db: 88:f9:57:86:98:09:b1:a7:d1:1d:c7:83:ca:7d:5e:30:65:53: b3:28:1e:5e:1d:84:b6:69:db:ab:99:51:58:29:09:50:42:dd: 08:ed:e5:e6:b9:c9:31:89:28:b8:37:e1:5d:20:06:63:10:14: 31:f8:1b:aa:60:0f:a1:b0:15:95:fc:44:95:f5:16:69:f0:f9: 0c:81:96:c6:6d:d9:bc:1c:e5:f6:63:9b:c5:53:d3:e6:ae:71: ac:5a:b5:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfhiaItvWokJbZWuucy7iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhNTNlYmZhZjVjMTg3OGQ4YTIyYTkzOGUxNzMyYThhMDc3 MTRmMzUwHhcNMjYwMjA5MTMwMTI1WhcNMjYwMjEwMTMwMTI1WjAzMTEwLwYDVQQD EygzYmZjYjM2Yzg3NjRiN2E0NGQ0NzZmMDExYTdlNWQyYjAyMGQ0ZDU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArWtHY/u3udwCGzWMyWTRBnRpgmkn qRvyIN43aDQzFSU8EwmRpvRc1SNf1n1R/9WgW5iyABMkKZalguMuTsYAoT2QxGkZ GxkzQpN5pUCHlHgPup1a7RhlbmPVLtPJ7z6hftW45t+PbD1TWYLZOEhET1xwqOK5 RyVDOhiM0V//ssVhH+Hi6mInmEE00OhbxrVfl7sYfPZDt6VnKGBOxFfNSUrrLvrE bY/7YJpKjBFtnvs64C1oxtcov+/acc08DjWhNFgKjME/evkHqh7kj5af8ue8FtOJ Ehxu7f4tnW6dHurNRudHZZtgLPCl4YC+y8CoHorp2Ip6ctTCLXTA5PQU2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDv8s2yHZLekTUdvARp+XSsCDU1UMB8GA1UdIwQY MBaAFNpT6/r1wYeNiiKpOOFzKooHcU81MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8xYzdjMGUtMjNhMS00MTQyLWJlZTgt OTNjOWU2YjA5M2JjLzEvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8xYzdjMGUtMjNhMS00MTQyLWJlZTgtOTNjOWU2YjA5M2Jj LzEvMmxQci12WEJoNDJLSXFrNDRYTXFpZ2R4VHpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0pgubf0z pc8akMd+GdK9DWk3PcEQ2XU5OWYqMbPChcZrLdBtyWuXn4SdUkry/jG/hz73APn/ hcE+p3ltlDJGNM05TZ1bR64V1oi3fDHEnYStDjW9eDL6gBWrT8dWeb4tvuk8jPC1 7QdjvcSxyGzqAwAZaLnuri0F6rrkXj2HqJh1Ls7o0JCvxfqDIFqk2+NgOSYt0nuU AlSkNHLMiCA7GnLbiPlXhpgJsafRHceDyn1eMGVTsygeXh2Etmnbq5lRWCkJUELd CO3l5rnJMYkouDfhXSAGYxAUMfgbqmAPobAVlfxElfUWafD5DIGWxm3ZvBzl9mOb xVPT5q5xrFq1cg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:32 2026 by rpki-client