This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft File: 2ilr0AMdba2mxzBzYI89EeRFzkQ.mft (raw, json) Hash identifier: 4UDAGeYHQ1tWrBt3piSHTFXUheq62jqV37tBa7yvIL4= Subject key identifier: 41:72:F0:E3:DF:C8:FB:48:80:DF:2F:96:23:59:F8:C8:00:B8:9E:7A Authority key identifier: DA:29:6B:D0:03:1D:6D:AD:A6:C7:30:73:60:8F:3D:11:E4:45:CE:44 Certificate issuer: /CN=da296bd0031d6dada6c73073608f3d11e445ce44 Certificate serial: 019C3566D479194D77BBCBD82E3E10023F77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft Manifest number: 064B Signing time: Sat 07 Feb 2026 00:00:57 +0000 Manifest this update: Sat 07 Feb 2026 00:00:57 +0000 Manifest next update: Sun 08 Feb 2026 00:00:57 +0000 Files and hashes: 1: 2ilr0AMdba2mxzBzYI89EeRFzkQ.crl (hash: KMZosgzp0DjIBLs55z07XeuAiYMv2lmMbrHKmMWM1E0=) 2: CUoKG5KBfZLY81B9VMINCtlfS6U.roa (hash: LS0KYy/ZBd62NqsUCQ3fjoY3u1OJXGmBPSRbAnObypM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:35:66:d4:79:19:4d:77:bb:cb:d8:2e:3e:10:02:3f:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da296bd0031d6dada6c73073608f3d11e445ce44 Validity Not Before: Feb 7 00:00:57 2026 GMT Not After : Feb 8 00:00:57 2026 GMT Subject: CN=4172f0e3dfc8fb4880df2f962359f8c800b89e7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:13:15:57:09:67:50:b6:06:e5:dd:7b:91:3b: 36:d6:0d:cf:1f:98:e2:72:40:98:50:16:ee:72:41: 79:d8:b3:ce:12:82:67:58:ed:80:58:30:24:87:b6: 5a:3e:20:61:1c:f6:6d:83:43:59:a4:80:d5:b4:ee: 70:82:5e:70:e2:3c:6d:95:b0:d2:01:65:b4:42:66: 23:51:d0:a2:f6:b9:d4:6e:af:70:e3:bb:b1:e5:8f: 93:66:6c:2b:f9:c3:c8:f3:7c:c5:11:6e:ec:88:84: 26:3e:eb:49:d5:f7:04:3d:3d:3f:f8:0b:a2:c5:d6: 69:0a:bf:b2:f9:a4:cf:23:75:1d:46:19:80:b3:c5: c7:63:85:91:97:c7:1e:0c:5b:bc:35:ea:b2:0e:99: 4d:d8:12:70:24:1c:bb:bb:a9:74:ee:a3:d9:93:c1: e0:c5:83:bc:0d:06:14:31:cb:b5:3d:89:59:7b:12: 2b:96:e9:4a:84:7e:b6:14:2b:42:ba:45:08:e7:bd: 8b:84:db:5f:77:2a:9c:1b:92:12:38:a5:48:cb:86: 2f:5a:45:04:be:00:e7:16:2c:67:4c:a6:6c:71:82: e2:b6:04:55:9a:9c:d6:df:af:b7:d5:25:6c:49:4b: 09:9c:be:dd:bc:b3:b1:29:75:89:ae:9f:6d:80:bd: d7:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:72:F0:E3:DF:C8:FB:48:80:DF:2F:96:23:59:F8:C8:00:B8:9E:7A X509v3 Authority Key Identifier: keyid:DA:29:6B:D0:03:1D:6D:AD:A6:C7:30:73:60:8F:3D:11:E4:45:CE:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:53:80:69:92:21:1b:47:ff:e5:f1:4f:13:c9:0f:38:42:14: ad:ec:b4:28:16:7e:f8:51:01:9b:53:80:76:df:16:14:72:97: 33:69:d4:ae:8f:c1:ce:b7:2d:62:cc:33:66:f0:17:48:06:50: 8e:c8:c8:76:8b:14:8d:f0:e6:30:82:c0:ef:08:8b:b9:8b:a5: 61:49:db:8f:f0:08:2a:ca:0b:20:05:1a:3f:bb:df:ec:94:bb: 25:04:86:4f:1b:e5:0a:f0:e8:07:c3:ea:7a:ab:49:c4:81:2f: 36:97:fa:cc:73:5e:58:8c:b0:3d:44:98:65:c9:78:9f:e4:40: f9:e8:b0:bf:2e:f7:94:83:84:e6:a2:bd:19:fc:44:b8:3d:05: 9b:7b:9a:d5:b6:19:f8:a6:31:14:63:37:48:f1:a3:fb:7e:84: 86:34:0c:10:b9:67:2b:82:86:b1:f1:91:55:3a:1a:c3:fb:89: 12:22:d6:92:91:60:62:8e:ea:8b:b8:5d:b7:b1:c7:d1:3e:40: 88:51:9c:61:92:f0:da:aa:d1:d5:b6:ec:ca:21:a1:63:d1:d4: d2:27:1c:f3:32:e8:1e:36:ed:e4:5a:c9:33:b6:84:4d:e6:8a: 87:d6:37:08:21:a8:23:5e:06:36:95:f9:ae:ce:1e:7b:c1:d6: 7c:36:86:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZw1ZtR5GU13u8vYLj4QAj93MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMjk2YmQwMDMxZDZkYWRhNmM3MzA3MzYwOGYzZDExZTQ0 NWNlNDQwHhcNMjYwMjA3MDAwMDU3WhcNMjYwMjA4MDAwMDU3WjAzMTEwLwYDVQQD Eyg0MTcyZjBlM2RmYzhmYjQ4ODBkZjJmOTYyMzU5ZjhjODAwYjg5ZTdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRMVVwlnULYG5d17kTs21g3PH5ji ckCYUBbuckF52LPOEoJnWO2AWDAkh7ZaPiBhHPZtg0NZpIDVtO5wgl5w4jxtlbDS AWW0QmYjUdCi9rnUbq9w47ux5Y+TZmwr+cPI83zFEW7siIQmPutJ1fcEPT0/+Aui xdZpCr+y+aTPI3UdRhmAs8XHY4WRl8ceDFu8NeqyDplN2BJwJBy7u6l07qPZk8Hg xYO8DQYUMcu1PYlZexIrlulKhH62FCtCukUI572LhNtfdyqcG5ISOKVIy4YvWkUE vgDnFixnTKZscYLitgRVmpzW36+31SVsSUsJnL7dvLOxKXWJrp9tgL3XdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEFy8OPfyPtIgN8vliNZ+MgAuJ56MB8GA1UdIwQY MBaAFNopa9ADHW2tpscwc2CPPRHkRc5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmlscjBBTWRiYTJteHpCellJODlFZVJGemtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC8xYWFmYTAtMDI3OC00ZGQ2LTg4MDct NTcyNmMyYjUxNDhkLzEvMmlscjBBTWRiYTJteHpCellJODlFZVJGemtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC8xYWFmYTAtMDI3OC00ZGQ2LTg4MDctNTcyNmMyYjUxNDhk LzEvMmlscjBBTWRiYTJteHpCellJODlFZVJGemtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeFOAaZIh G0f/5fFPE8kPOEIUrey0KBZ++FEBm1OAdt8WFHKXM2nUro/BzrctYswzZvAXSAZQ jsjIdosUjfDmMILA7wiLuYulYUnbj/AIKsoLIAUaP7vf7JS7JQSGTxvlCvDoB8Pq eqtJxIEvNpf6zHNeWIywPUSYZcl4n+RA+eiwvy73lIOE5qK9GfxEuD0Fm3ua1bYZ +KYxFGM3SPGj+36EhjQMELlnK4KGsfGRVToaw/uJEiLWkpFgYo7qi7hdt7HH0T5A iFGcYZLw2qrR1bbsyiGhY9HU0icc8zLoHjbt5FrJM7aETeaKh9Y3CCGoI14GNpX5 rs4ee8HWfDaG9w== -----END CERTIFICATE-----Generated at Sat Feb 7 05:46:00 2026 by rpki-client