This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft File: dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft (raw, json) Hash identifier: ps+q9yYZkb4e2QaoVKbOI7nThxDB9HXCth836V8UAl0= Subject key identifier: 21:9E:33:25:BD:E1:92:DB:8F:2C:4B:86:E0:BC:3B:39:93:FB:39:11 Authority key identifier: 74:B3:12:68:F2:FF:7E:8C:EA:DF:1D:E9:5F:97:F0:B1:D2:B1:5F:96 Certificate issuer: /CN=74b31268f2ff7e8ceadf1de95f97f0b1d2b15f96 Certificate serial: 019C43C747A767D11B1F2487FD4D618201E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft Manifest number: 12E2 Signing time: Mon 09 Feb 2026 19:00:59 +0000 Manifest this update: Mon 09 Feb 2026 19:00:59 +0000 Manifest next update: Tue 10 Feb 2026 19:00:59 +0000 Files and hashes: 1: dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl (hash: yrMP2orFCMoHqGpxtLhZzPtc8Xep22NXvLFVK/ri2jw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:47:a7:67:d1:1b:1f:24:87:fd:4d:61:82:01:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74b31268f2ff7e8ceadf1de95f97f0b1d2b15f96 Validity Not Before: Feb 9 19:00:59 2026 GMT Not After : Feb 10 19:00:59 2026 GMT Subject: CN=219e3325bde192db8f2c4b86e0bc3b3993fb3911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2f:5f:45:11:ef:09:a9:3a:10:65:9c:55:c8: 8e:86:d2:83:96:b9:c3:bf:35:02:49:29:0b:32:89: 80:6b:2e:0f:1b:58:8b:26:29:4b:d2:35:e6:64:61: a3:c6:38:23:9a:12:c1:22:db:cc:e5:a1:fe:da:d6: 0c:62:b5:ce:50:cd:15:07:88:b3:32:70:40:3e:30: 02:55:fb:88:e7:83:91:c5:70:3b:2d:14:48:fd:bb: 09:bc:c8:c2:ad:d8:28:c8:ae:73:96:ca:22:26:b7: c2:96:05:1d:7a:4e:98:3a:e5:25:0a:ad:00:03:0e: 11:65:71:e9:4c:5a:8e:bb:44:9f:22:4c:a2:12:d6: c9:3f:3b:66:1f:93:88:3f:68:23:d7:99:27:33:40: 32:ac:8f:14:7d:ba:76:17:92:18:5e:5b:63:63:f6: 39:4e:a3:90:22:69:9c:f7:fd:c3:8d:79:88:64:01: 55:e8:a6:8e:03:8b:a4:56:69:a7:45:b6:46:eb:b3: f6:d1:bd:b0:ca:8e:fa:80:99:59:36:2a:b9:9b:02: b3:c1:3d:80:b3:0d:80:c2:b0:90:43:49:49:a8:74: ed:f2:40:ed:f4:6c:92:7f:24:0e:ed:b4:9c:74:e0: 07:fb:97:7f:63:26:2d:56:88:2b:b6:80:6f:1c:ad: 16:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:9E:33:25:BD:E1:92:DB:8F:2C:4B:86:E0:BC:3B:39:93:FB:39:11 X509v3 Authority Key Identifier: keyid:74:B3:12:68:F2:FF:7E:8C:EA:DF:1D:E9:5F:97:F0:B1:D2:B1:5F:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:7d:e0:13:4f:36:0c:71:13:ff:ed:8a:b1:8f:e4:ec:48:41: cf:02:21:1b:eb:32:c1:e6:1f:8c:91:bb:40:71:bc:84:da:ce: ae:d9:30:2b:90:ef:75:64:00:4e:e8:11:e8:e3:75:a2:55:09: 20:5d:e5:47:c6:dc:ef:a2:1b:c2:5c:b7:74:23:24:cb:7c:1e: cd:a7:09:ca:a7:a9:6c:be:92:9e:d4:4b:12:38:92:8b:5a:90: 57:eb:0b:89:37:7c:97:2f:31:d9:a9:7c:f1:7d:2f:86:f6:b9: 66:65:e8:a6:14:cd:96:93:33:8c:47:a0:db:c4:c2:ca:b4:89: 0a:5d:98:18:51:40:04:8b:50:0d:5d:2d:87:dc:9d:28:e9:40: 1b:2f:a4:35:09:de:b7:c3:36:dc:69:96:dd:28:9b:c4:30:52: 09:17:69:b5:9a:6f:c5:2e:53:e3:9b:10:ea:a3:a1:1c:0c:42: bc:bb:bb:d3:d1:9a:32:ac:93:82:82:f8:78:f6:5f:69:f1:bf: ea:87:d0:b2:be:fb:e4:76:9e:0a:35:73:be:d0:89:51:d0:2e: b4:26:d7:40:b9:f0:0c:bd:fa:48:90:5b:76:98:24:88:82:ed: 7b:5e:71:b2:71:b3:a8:cf:f0:7e:97:c5:ef:71:7a:2d:d6:1d: 0c:93:61:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx0enZ9EbHySH/U1hggHjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0YjMxMjY4ZjJmZjdlOGNlYWRmMWRlOTVmOTdmMGIxZDJi MTVmOTYwHhcNMjYwMjA5MTkwMDU5WhcNMjYwMjEwMTkwMDU5WjAzMTEwLwYDVQQD EygyMTllMzMyNWJkZTE5MmRiOGYyYzRiODZlMGJjM2IzOTkzZmIzOTExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqC9fRRHvCak6EGWcVciOhtKDlrnD vzUCSSkLMomAay4PG1iLJilL0jXmZGGjxjgjmhLBItvM5aH+2tYMYrXOUM0VB4iz MnBAPjACVfuI54ORxXA7LRRI/bsJvMjCrdgoyK5zlsoiJrfClgUdek6YOuUlCq0A Aw4RZXHpTFqOu0SfIkyiEtbJPztmH5OIP2gj15knM0AyrI8Ufbp2F5IYXltjY/Y5 TqOQImmc9/3DjXmIZAFV6KaOA4ukVmmnRbZG67P20b2wyo76gJlZNiq5mwKzwT2A sw2AwrCQQ0lJqHTt8kDt9GySfyQO7bScdOAH+5d/YyYtVogrtoBvHK0WewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCGeMyW94ZLbjyxLhuC8OzmT+zkRMB8GA1UdIwQY MBaAFHSzEmjy/36M6t8d6V+X8LHSsV+WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZExNU2FQTF9mb3pxM3gzcFg1ZndzZEt4WDVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS85ZDkxMTItZjU3ZS00OWM3LWE5M2It ZDg1NDllZGY3Y2VmLzEvZExNU2FQTF9mb3pxM3gzcFg1ZndzZEt4WDVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS85ZDkxMTItZjU3ZS00OWM3LWE5M2ItZDg1NDllZGY3Y2Vm LzEvZExNU2FQTF9mb3pxM3gzcFg1ZndzZEt4WDVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHn3gE082 DHET/+2KsY/k7EhBzwIhG+syweYfjJG7QHG8hNrOrtkwK5DvdWQATugR6ON1olUJ IF3lR8bc76Ibwly3dCMky3wezacJyqepbL6SntRLEjiSi1qQV+sLiTd8ly8x2al8 8X0vhva5ZmXophTNlpMzjEeg28TCyrSJCl2YGFFABItQDV0th9ydKOlAGy+kNQne t8M23GmW3SibxDBSCRdptZpvxS5T45sQ6qOhHAxCvLu709GaMqyTgoL4ePZfafG/ 6ofQsr775HaeCjVzvtCJUdAutCbXQLnwDL36SJBbdpgkiILte15xsnGzqM/wfpfF 73F6LdYdDJNhtw== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:48 2026 by rpki-client