This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft File: 2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft (raw, json) Hash identifier: 3+paCCzpZgW+ClxroteQxlTGyhYVk2LYqZU0Zt6KIno= Subject key identifier: 73:08:EA:20:B5:79:9B:B5:2C:78:31:10:BE:99:87:37:F3:8C:CA:4A Authority key identifier: DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F Certificate issuer: /CN=dae57631f60adb13f0ae368671ce0f8742f5977f Certificate serial: 019C43595FA4FBB23762082039AF8A0DE1E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 17:00:56 +0000 Manifest this update: Mon 09 Feb 2026 17:00:56 +0000 Manifest next update: Tue 10 Feb 2026 17:00:56 +0000 Files and hashes: 1: 2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl (hash: fnTe+Y/es9PwdXQOq3I6eVOvV6GR7LK1xU8kJK9Sn1A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:5f:a4:fb:b2:37:62:08:20:39:af:8a:0d:e1:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dae57631f60adb13f0ae368671ce0f8742f5977f Validity Not Before: Feb 9 17:00:56 2026 GMT Not After : Feb 10 17:00:56 2026 GMT Subject: CN=7308ea20b5799bb52c783110be998737f38cca4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3c:3e:07:3f:79:c6:cc:d3:cf:36:a9:a9:b1: 99:5a:38:7c:b5:24:fc:e3:2c:3b:45:88:6b:af:47: 4e:9d:6c:a0:91:f7:b2:86:04:c1:4b:f4:1d:bd:56: ae:1c:1b:7e:2c:8c:e1:bd:f6:af:b3:e4:34:8b:9b: 1e:b1:6d:32:02:54:82:02:5d:6c:60:a9:31:30:0a: 39:22:bc:9c:66:b7:c6:4a:e2:a9:7b:8b:ac:1e:35: 35:36:5f:a7:4b:57:5a:11:c1:e3:eb:64:81:59:22: db:07:6a:24:6c:fc:cd:00:4f:4b:86:29:fe:a8:45: 88:2d:6c:e0:fd:3f:8f:24:7e:74:11:7a:4a:f0:aa: 2c:38:76:5b:9f:77:e2:97:2f:85:c1:8e:1b:d5:d0: ad:eb:4b:3d:1d:b6:5e:31:a5:cf:f4:fa:50:80:de: 7d:bb:b2:00:ce:58:df:61:f8:87:f5:e5:1a:4b:9c: 95:06:6e:3a:e8:6c:54:eb:03:3a:9e:70:fd:29:33: 66:ca:57:2b:85:66:1b:d5:da:64:ae:9d:bc:b7:09: 57:9e:81:dd:49:e7:6d:d7:53:68:61:bd:b1:e7:a0: 0e:7d:38:74:ca:4e:5b:b5:93:8d:34:af:74:cf:9c: 4d:ec:f0:c7:0f:40:6b:12:ac:71:fa:b1:0f:30:94: 2a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:08:EA:20:B5:79:9B:B5:2C:78:31:10:BE:99:87:37:F3:8C:CA:4A X509v3 Authority Key Identifier: keyid:DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:32:c6:3b:44:ce:f4:2a:f6:82:c2:e0:e6:fb:08:e7:35:60: 23:27:ef:8d:99:1e:77:2f:6b:45:19:18:92:05:cb:63:f8:39: 09:14:4b:bd:9a:18:69:60:e9:0e:2b:47:36:2c:15:89:92:d2: 51:a6:c4:bd:f4:a6:de:97:06:71:14:d9:6a:44:ad:cc:72:4c: 18:6d:86:ab:b1:7b:c1:23:07:93:d9:d4:69:8c:de:7b:0a:fd: c2:8e:24:6a:6e:56:9f:04:c5:b3:b3:a0:25:ad:01:e4:17:65: c1:83:04:a9:88:bc:1b:5c:8a:6e:3b:8a:26:39:25:02:e5:46: 56:30:e0:36:ad:f6:1c:91:f1:40:b7:5b:84:9a:c6:4d:89:b1: d9:25:48:b2:dd:c6:c2:7a:f1:60:92:a1:64:5c:aa:a6:a8:55: 81:ec:d5:00:bc:c3:24:89:5b:e3:49:48:a3:9a:f1:95:35:36: c5:dd:19:d7:94:29:46:0a:31:8c:71:ca:d3:ee:3f:4f:99:fc: bc:3b:a8:02:11:6f:e1:31:ea:d8:34:e7:13:94:eb:a7:a5:f5: 96:b3:87:3b:30:bf:58:4f:cb:bc:85:96:5d:0c:08:53:6b:07: dd:b6:2a:f9:f6:85:90:11:5f:1b:4d:26:2f:0a:0e:96:4a:98: bd:71:00:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWV+k+7I3YgggOa+KDeHmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhZTU3NjMxZjYwYWRiMTNmMGFlMzY4NjcxY2UwZjg3NDJm NTk3N2YwHhcNMjYwMjA5MTcwMDU2WhcNMjYwMjEwMTcwMDU2WjAzMTEwLwYDVQQD Eyg3MzA4ZWEyMGI1Nzk5YmI1MmM3ODMxMTBiZTk5ODczN2YzOGNjYTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTw+Bz95xszTzzapqbGZWjh8tST8 4yw7RYhrr0dOnWygkfeyhgTBS/QdvVauHBt+LIzhvfavs+Q0i5sesW0yAlSCAl1s YKkxMAo5IrycZrfGSuKpe4usHjU1Nl+nS1daEcHj62SBWSLbB2okbPzNAE9Lhin+ qEWILWzg/T+PJH50EXpK8KosOHZbn3fily+FwY4b1dCt60s9HbZeMaXP9PpQgN59 u7IAzljfYfiH9eUaS5yVBm466GxU6wM6nnD9KTNmylcrhWYb1dpkrp28twlXnoHd Sedt11NoYb2x56AOfTh0yk5btZONNK90z5xN7PDHD0BrEqxx+rEPMJQqLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHMI6iC1eZu1LHgxEL6ZhzfzjMpKMB8GA1UdIwQY MBaAFNrldjH2CtsT8K42hnHOD4dC9Zd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnVWMk1mWUsyeFB3cmphR2NjNFBoMEwxbDM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8wZTgyNWEtNWJiNi00MzI3LTlhMGEt NDM5ZjM2ZTE2NTNhLzEvMnVWMk1mWUsyeFB3cmphR2NjNFBoMEwxbDM4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8wZTgyNWEtNWJiNi00MzI3LTlhMGEtNDM5ZjM2ZTE2NTNh LzEvMnVWMk1mWUsyeFB3cmphR2NjNFBoMEwxbDM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvTLGO0TO 9Cr2gsLg5vsI5zVgIyfvjZkedy9rRRkYkgXLY/g5CRRLvZoYaWDpDitHNiwViZLS UabEvfSm3pcGcRTZakStzHJMGG2Gq7F7wSMHk9nUaYzeewr9wo4kam5WnwTFs7Og Ja0B5BdlwYMEqYi8G1yKbjuKJjklAuVGVjDgNq32HJHxQLdbhJrGTYmx2SVIst3G wnrxYJKhZFyqpqhVgezVALzDJIlb40lIo5rxlTU2xd0Z15QpRgoxjHHK0+4/T5n8 vDuoAhFv4THq2DTnE5Trp6X1lrOHOzC/WE/LvIWWXQwIU2sH3bYq+faFkBFfG00m LwoOlkqYvXEAkQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:05 2026 by rpki-client