This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft File: 2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft (raw, json) Hash identifier: KDvU0tC9Izrkkt74+YIhF+nug9S+1PQSO4Eu9Ng1fmI= Subject key identifier: F1:6F:02:33:47:C7:2D:84:4E:0E:DA:06:3B:6D:98:12:61:DD:0F:F7 Authority key identifier: D9:D7:2B:03:3F:F6:FA:38:BF:23:61:39:AC:DB:77:A7:A0:A0:47:A3 Certificate issuer: /CN=d9d72b033ff6fa38bf236139acdb77a7a0a047a3 Certificate serial: 019C4322FC7D63D9C3B8D189BCD8F871EBF3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:01:32 +0000 Manifest this update: Mon 09 Feb 2026 16:01:32 +0000 Manifest next update: Tue 10 Feb 2026 16:01:32 +0000 Files and hashes: 1: 2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl (hash: X/z5Oe+SFcv4K8FN9noDRPQ6yzQS3NR5RgSPHAMr5JU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:fc:7d:63:d9:c3:b8:d1:89:bc:d8:f8:71:eb:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9d72b033ff6fa38bf236139acdb77a7a0a047a3 Validity Not Before: Feb 9 16:01:32 2026 GMT Not After : Feb 10 16:01:32 2026 GMT Subject: CN=f16f023347c72d844e0eda063b6d981261dd0ff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:5e:7e:5d:c2:c6:09:bf:01:d5:ba:95:41:06: 13:ee:2a:1c:ac:24:df:d6:fe:d8:3d:d4:90:73:08: 6d:23:99:6d:71:00:5c:df:93:7b:17:17:19:fc:00: 67:70:d1:81:f8:fc:43:e1:23:7e:b7:19:6b:b4:23: e4:06:50:20:00:7d:e7:96:a9:dd:39:50:58:01:aa: b7:5e:58:f8:64:cd:9e:5b:c7:ec:08:a8:f1:df:64: f6:3c:2e:9e:26:58:34:79:8e:2f:e6:d1:2a:11:89: af:97:b2:ce:3d:7c:41:88:e3:7b:c3:24:a4:a0:b7: 9b:fb:64:67:e0:3d:41:84:55:16:a8:f4:01:d8:eb: bb:76:bd:10:fb:db:cb:2d:6e:e0:9f:1d:56:66:43: ac:98:36:2c:20:0c:95:7e:b7:79:65:fe:0b:9d:51: b0:bc:a8:51:36:98:6c:dd:35:af:5d:eb:e9:92:61: 86:fe:80:f1:13:e9:7a:ad:ac:ec:63:88:57:7c:e0: 93:3a:85:a4:95:fb:b8:55:59:45:2f:5b:85:6b:58: 83:3d:83:1c:32:d0:4c:9e:de:bb:68:e3:19:77:a3: d4:26:26:ef:8a:6a:da:ea:d6:5c:56:49:cc:f9:c6: db:76:3d:34:3a:18:0a:67:4b:ea:cc:d3:ae:29:1a: 77:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6F:02:33:47:C7:2D:84:4E:0E:DA:06:3B:6D:98:12:61:DD:0F:F7 X509v3 Authority Key Identifier: keyid:D9:D7:2B:03:3F:F6:FA:38:BF:23:61:39:AC:DB:77:A7:A0:A0:47:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:2d:73:eb:89:9c:e7:91:93:38:ea:fc:c9:ff:71:76:d1:49: a3:e3:3d:57:b3:5f:ad:97:89:5d:25:ec:2f:3b:d9:02:38:f6: 14:d1:8b:24:f2:39:8b:c2:e8:c3:20:be:60:07:4d:35:01:f2: ab:e1:cc:19:8c:45:cf:1d:78:bb:d5:d8:f8:d8:94:c7:a2:67: e1:92:b8:4f:d8:ec:d4:41:56:f2:2d:5a:fe:5e:a1:e2:9e:f2: dd:02:37:78:72:19:ab:75:3f:07:0c:f1:f4:34:97:3b:5a:f6: c8:54:45:19:75:c9:54:2e:a8:43:af:68:24:43:94:0f:df:7d: e0:45:46:70:c3:e5:8b:0b:d2:94:e8:dd:1e:87:7b:cf:c0:ed: d4:52:f9:5b:22:aa:0f:16:0f:d0:d7:2c:2c:74:e5:a5:15:3e: cd:10:30:25:3f:f3:b0:5e:1b:c9:06:39:4a:f2:7e:5d:64:b6: bb:82:03:77:88:fc:20:ee:05:db:82:c9:a9:88:e1:49:53:5e: 01:be:0b:4d:b8:da:11:e4:21:d8:4d:63:5f:08:e7:64:24:a3: fe:6b:9b:0b:12:d0:7b:54:78:7e:b2:6c:c7:95:e2:ba:6d:f9: 9b:87:37:6a:8a:ba:f4:85:a8:b6:53:9b:50:b7:65:da:02:37: c1:0b:86:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIvx9Y9nDuNGJvNj4cevzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZDcyYjAzM2ZmNmZhMzhiZjIzNjEzOWFjZGI3N2E3YTBh MDQ3YTMwHhcNMjYwMjA5MTYwMTMyWhcNMjYwMjEwMTYwMTMyWjAzMTEwLwYDVQQD EyhmMTZmMDIzMzQ3YzcyZDg0NGUwZWRhMDYzYjZkOTgxMjYxZGQwZmY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA515+XcLGCb8B1bqVQQYT7iocrCTf 1v7YPdSQcwhtI5ltcQBc35N7FxcZ/ABncNGB+PxD4SN+txlrtCPkBlAgAH3nlqnd OVBYAaq3Xlj4ZM2eW8fsCKjx32T2PC6eJlg0eY4v5tEqEYmvl7LOPXxBiON7wySk oLeb+2Rn4D1BhFUWqPQB2Ou7dr0Q+9vLLW7gnx1WZkOsmDYsIAyVfrd5Zf4LnVGw vKhRNphs3TWvXevpkmGG/oDxE+l6razsY4hXfOCTOoWklfu4VVlFL1uFa1iDPYMc MtBMnt67aOMZd6PUJibvimra6tZcVknM+cbbdj00OhgKZ0vqzNOuKRp3sQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPFvAjNHxy2ETg7aBjttmBJh3Q/3MB8GA1UdIwQY MBaAFNnXKwM/9vo4vyNhOazbd6egoEejMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmRjckF6XzItamlfSTJFNXJOdDNwNkNnUjZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS80Y2JhZjctYjgzYi00Nzk4LWFiMzYt ZjgyMWE1YTVjZjZhLzEvMmRjckF6XzItamlfSTJFNXJOdDNwNkNnUjZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS80Y2JhZjctYjgzYi00Nzk4LWFiMzYtZjgyMWE1YTVjZjZh LzEvMmRjckF6XzItamlfSTJFNXJOdDNwNkNnUjZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlS1z64mc 55GTOOr8yf9xdtFJo+M9V7NfrZeJXSXsLzvZAjj2FNGLJPI5i8LowyC+YAdNNQHy q+HMGYxFzx14u9XY+NiUx6Jn4ZK4T9js1EFW8i1a/l6h4p7y3QI3eHIZq3U/Bwzx 9DSXO1r2yFRFGXXJVC6oQ69oJEOUD9994EVGcMPliwvSlOjdHod7z8Dt1FL5WyKq DxYP0NcsLHTlpRU+zRAwJT/zsF4byQY5SvJ+XWS2u4IDd4j8IO4F24LJqYjhSVNe Ab4LTbjaEeQh2E1jXwjnZCSj/mubCxLQe1R4frJsx5Xium35m4c3aoq69IWotlOb ULdl2gI3wQuG1A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:42 2026 by rpki-client