This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft File: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft (raw, json) Hash identifier: zTNu8GoWIYJ00KuTeGWrhw5HSRQEBvfAaRDp9R2HMBI= Subject key identifier: D5:DB:F0:2B:FB:7E:C5:E1:E5:AA:83:C9:40:25:A6:DC:F2:60:1F:3D Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1 Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1 Certificate serial: 019C3867AC83FBA49A83BFC3D66F0EB37FC2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft Manifest number: 0EFD Signing time: Sat 07 Feb 2026 14:00:44 +0000 Manifest this update: Sat 07 Feb 2026 14:00:44 +0000 Manifest next update: Sun 08 Feb 2026 14:00:44 +0000 Files and hashes: 1: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl (hash: +Rh9b6GCqItOc6JQG3pRBTwPK30oNozcP39sKy21jXk=) 2: AvvuwRM1rXoB8yxstk4ZmsXgR1Q.roa (hash: G1ri1MeorzSK/rz57ShZ1na3AYjwABPoQHfjiBcWJn8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 09:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:38:67:ac:83:fb:a4:9a:83:bf:c3:d6:6f:0e:b3:7f:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1 Validity Not Before: Feb 7 14:00:44 2026 GMT Not After : Feb 8 14:00:44 2026 GMT Subject: CN=d5dbf02bfb7ec5e1e5aa83c94025a6dcf2601f3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e5:fe:c5:25:d8:59:32:46:c0:d0:fc:1e:f9: 96:97:d0:8c:7b:6c:5c:d0:08:ee:7b:f7:89:c4:b8: 97:6f:00:0a:62:39:59:38:9b:c5:16:09:89:74:7f: d4:a7:1c:bf:31:88:e5:12:d9:b0:16:29:18:92:17: 19:fb:2d:77:39:16:db:c5:45:22:c8:fb:54:3f:d7: 8d:55:52:e4:b2:64:51:cb:7e:4a:37:7e:7d:0b:92: b8:5d:a1:23:0b:2b:a8:47:46:b0:e1:e9:ee:76:74: a7:88:97:33:12:56:99:2a:d2:89:50:5d:8f:36:3f: 43:c5:d5:3b:b3:32:f1:31:f6:66:5e:6a:42:01:6a: 10:19:93:7a:50:16:96:34:87:ff:0c:28:5d:66:21: 31:08:7d:2c:70:aa:49:19:df:a4:f1:ae:46:e1:64: c4:a4:e7:8c:3f:9d:cc:01:47:15:1c:5a:ec:af:6d: 4c:69:1f:1a:a5:2f:47:8c:62:54:48:cd:47:b7:5e: 3d:1c:fc:9b:cd:a2:ee:8d:52:a9:25:d7:59:64:a2: 1b:e0:ef:14:bc:0d:cc:e0:bb:5c:ad:90:b8:b0:83: 8f:47:18:7a:de:9a:28:a6:d6:20:2d:1a:b3:15:7b: 73:f6:6e:5c:3b:09:ef:b1:c6:dc:2f:4e:4b:7d:71: 79:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:DB:F0:2B:FB:7E:C5:E1:E5:AA:83:C9:40:25:A6:DC:F2:60:1F:3D X509v3 Authority Key Identifier: keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:92:80:f9:40:0e:c5:9c:bd:93:a9:08:1c:ce:7c:94:af:3c: f8:99:dc:1e:0a:67:60:a5:70:61:56:72:b1:63:4b:e2:2a:e1: 58:66:04:e8:5c:cf:c4:de:6e:c5:2b:35:98:0b:23:4a:89:f9: d6:13:0e:80:82:b3:bc:6d:36:8e:d8:b9:1a:a6:13:d7:b2:2c: d0:15:f8:b9:d1:33:f5:03:d0:cd:87:37:f7:6f:61:8f:74:0e: 1f:85:04:13:8c:0e:11:f6:80:d3:88:66:36:2c:55:6f:49:16: 89:fd:9e:83:8d:31:ca:07:d4:9d:76:cd:f5:65:78:7b:13:58: 65:02:71:2a:90:24:34:69:50:06:86:33:a6:12:23:e3:05:16: 42:f6:fe:74:79:16:b6:16:04:2b:09:ef:47:d0:b4:fb:6b:e8: 12:70:f5:ca:0a:37:eb:f9:e5:05:4f:78:59:59:96:9f:d1:bd: 86:30:c6:dd:18:4f:5c:47:14:0a:7f:e0:60:38:de:d7:a9:77: 7b:29:7f:33:b5:06:42:fd:50:0e:2a:23:a2:7a:48:43:c1:96: 37:11:ac:1e:3c:ae:92:49:6d:b9:51:a5:0e:71:71:1f:2b:18: 89:f9:2f:b8:9b:e6:f0:16:29:dd:97:f9:d7:3e:7f:06:f8:42: 8f:ed:0f:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZw4Z6yD+6Sag7/D1m8Os3/CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MzIwYmQ0ZWY4NThmZDYyYmIyNDg1ZDA4YjBhODY5MjBl OTExYzEwHhcNMjYwMjA3MTQwMDQ0WhcNMjYwMjA4MTQwMDQ0WjAzMTEwLwYDVQQD EyhkNWRiZjAyYmZiN2VjNWUxZTVhYTgzYzk0MDI1YTZkY2YyNjAxZjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOX+xSXYWTJGwND8HvmWl9CMe2xc 0Ajue/eJxLiXbwAKYjlZOJvFFgmJdH/Upxy/MYjlEtmwFikYkhcZ+y13ORbbxUUi yPtUP9eNVVLksmRRy35KN359C5K4XaEjCyuoR0aw4enudnSniJczElaZKtKJUF2P Nj9DxdU7szLxMfZmXmpCAWoQGZN6UBaWNIf/DChdZiExCH0scKpJGd+k8a5G4WTE pOeMP53MAUcVHFrsr21MaR8apS9HjGJUSM1Ht149HPybzaLujVKpJddZZKIb4O8U vA3M4LtcrZC4sIOPRxh63pooptYgLRqzFXtz9m5cOwnvscbcL05LfXF5PwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNXb8Cv7fsXh5aqDyUAlptzyYB89MB8GA1UdIwQY MBaAFNgyC9TvhY/WK7JIXQiwqGkg6RHBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkRJTDFPLUZqOVlyc2toZENMQ29hU0RwRWNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9iZDgxZTctMzk3ZS00ZDVkLWE1ZjEt M2EwZmFhMjhiNWFjLzEvMkRJTDFPLUZqOVlyc2toZENMQ29hU0RwRWNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi9iZDgxZTctMzk3ZS00ZDVkLWE1ZjEtM2EwZmFhMjhiNWFj LzEvMkRJTDFPLUZqOVlyc2toZENMQ29hU0RwRWNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmZKA+UAO xZy9k6kIHM58lK88+JncHgpnYKVwYVZysWNL4irhWGYE6FzPxN5uxSs1mAsjSon5 1hMOgIKzvG02jti5GqYT17Is0BX4udEz9QPQzYc3929hj3QOH4UEE4wOEfaA04hm NixVb0kWif2eg40xygfUnXbN9WV4exNYZQJxKpAkNGlQBoYzphIj4wUWQvb+dHkW thYEKwnvR9C0+2voEnD1ygo36/nlBU94WVmWn9G9hjDG3RhPXEcUCn/gYDje16l3 eyl/M7UGQv1QDiojonpIQ8GWNxGsHjyukkltuVGlDnFxHysYifkvuJvm8BYp3Zf5 1z5/BvhCj+0PXw== -----END CERTIFICATE-----Generated at Sat Feb 7 17:22:07 2026 by rpki-client