This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft File: lFtz335v4RAPHROgfBjVmvIoQow.mft (raw, json) Hash identifier: S+2p9+vQhr7w9PFUC3KbsBOUm7ZQcQKCTm/4+zhrGjc= Subject key identifier: 90:4D:DD:D5:65:55:F5:BA:9E:4E:1A:27:DA:8B:15:9E:A4:05:0D:F5 Authority key identifier: 94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C Certificate issuer: /CN=945b73df7e6fe1100f1d13a07c18d59af228428c Certificate serial: 019C424658AC0DDC893A0B3782F7C981BA3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft Manifest number: 16B7 Signing time: Mon 09 Feb 2026 12:00:32 +0000 Manifest this update: Mon 09 Feb 2026 12:00:32 +0000 Manifest next update: Tue 10 Feb 2026 12:00:32 +0000 Files and hashes: 1: lFtz335v4RAPHROgfBjVmvIoQow.crl (hash: HJhmty6pqsaRySFa/mkrSVHb+k4U3qAWKKKkLvWHJLc=) 2: mc0V-dqblb2LS7X-Me9ToDZupDo.roa (hash: TgiXuLIZXRQWoQtj5JAJxLB0Ph8I4D6iEUTij0gXzCQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.crl rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:58:ac:0d:dc:89:3a:0b:37:82:f7:c9:81:ba:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=945b73df7e6fe1100f1d13a07c18d59af228428c Validity Not Before: Feb 9 12:00:32 2026 GMT Not After : Feb 10 12:00:32 2026 GMT Subject: CN=904dddd56555f5ba9e4e1a27da8b159ea4050df5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9d:c8:9a:91:45:d0:2b:fe:09:b6:f4:ad:90: 04:53:b6:b3:43:6a:4c:80:34:5e:41:a6:91:48:e7: 08:82:16:40:ee:b7:5e:f1:9b:30:3d:46:b8:7e:b1: fb:34:50:60:74:94:be:c6:0b:f4:c3:c3:5a:0b:a2: 04:50:83:41:3a:1a:27:46:de:1d:bb:17:dc:87:22: 1a:67:ec:ff:48:f2:a6:fa:9c:c4:99:ff:d3:72:29: 96:38:9e:3e:3e:86:28:cf:dc:29:ec:26:f8:db:46: 96:1e:c7:69:21:62:72:c7:fd:bd:90:03:8b:09:cb: 18:f1:16:41:71:41:43:9e:e7:b6:d3:59:3e:90:64: 69:a7:9f:55:88:35:0f:af:cb:09:cc:e4:b6:89:d2: a0:c8:e2:08:6a:a9:e0:38:19:e5:1f:4f:9f:fe:d0: 35:fc:f7:a4:2e:6a:af:37:1e:c9:7d:68:c6:fc:ef: d9:e7:cf:48:33:65:ca:ec:25:b1:cb:57:8d:75:bb: 76:db:c4:50:6b:f1:01:67:dd:7b:5c:6a:c3:9d:0f: 8f:f6:d4:47:c8:db:af:04:9b:34:54:ca:b3:da:e4: 9d:10:1c:ba:83:ef:89:c8:eb:01:5d:37:07:f0:9b: c0:7b:07:ca:0d:85:15:1b:bc:d3:14:7c:64:71:a5: fd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:4D:DD:D5:65:55:F5:BA:9E:4E:1A:27:DA:8B:15:9E:A4:05:0D:F5 X509v3 Authority Key Identifier: keyid:94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:e4:fa:0e:d4:16:77:e1:db:4f:8a:10:00:2b:6e:52:51:89: 63:7c:03:f7:51:5f:a4:ad:98:e3:41:27:67:b2:5b:3e:e0:3e: 72:a1:9e:0b:0d:d5:ea:62:7b:25:c1:39:20:b6:aa:3e:ed:71: 71:79:ad:d6:61:06:53:20:b8:02:63:81:80:b1:94:52:65:91: 2f:4e:db:a3:e8:be:56:1c:fe:a6:b4:9b:73:7c:fc:4a:d0:8c: 2a:ff:4f:1d:c7:76:46:17:f1:b3:9a:f2:bd:cf:d3:c5:7d:22: 18:46:0b:2b:33:e9:a9:38:86:33:25:b6:54:41:76:6c:19:e7: 36:94:58:08:44:e3:2e:33:de:e2:5a:34:9d:ef:d0:be:e5:3e: 2d:cc:00:98:98:c0:0c:c0:b9:a1:82:32:3a:a9:8b:bf:08:8b: 71:08:41:c8:98:ba:2a:49:86:60:ed:ae:a9:ab:e1:04:14:5a: cd:ec:d2:61:23:0d:a6:cc:cd:cc:d1:ab:7c:89:7b:4f:82:66: 1f:bb:4f:da:4d:e6:1a:0a:7f:a4:9e:3f:b1:29:0a:64:28:1d: 31:99:ee:20:ae:d2:55:d1:d7:6c:4f:25:ac:75:2b:29:94:cb: 05:f7:d5:86:07:36:05:ec:ff:7c:63:e6:c0:7b:ed:b4:e4:fe: 16:12:c6:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRlisDdyJOgs3gvfJgbo6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0NWI3M2RmN2U2ZmUxMTAwZjFkMTNhMDdjMThkNTlhZjIy ODQyOGMwHhcNMjYwMjA5MTIwMDMyWhcNMjYwMjEwMTIwMDMyWjAzMTEwLwYDVQQD Eyg5MDRkZGRkNTY1NTVmNWJhOWU0ZTFhMjdkYThiMTU5ZWE0MDUwZGY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnp3ImpFF0Cv+Cbb0rZAEU7azQ2pM gDReQaaRSOcIghZA7rde8ZswPUa4frH7NFBgdJS+xgv0w8NaC6IEUINBOhonRt4d uxfchyIaZ+z/SPKm+pzEmf/TcimWOJ4+PoYoz9wp7Cb420aWHsdpIWJyx/29kAOL CcsY8RZBcUFDnue201k+kGRpp59ViDUPr8sJzOS2idKgyOIIaqngOBnlH0+f/tA1 /PekLmqvNx7JfWjG/O/Z589IM2XK7CWxy1eNdbt228RQa/EBZ917XGrDnQ+P9tRH yNuvBJs0VMqz2uSdEBy6g++JyOsBXTcH8JvAewfKDYUVG7zTFHxkcaX9KQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJBN3dVlVfW6nk4aJ9qLFZ6kBQ31MB8GA1UdIwQY MBaAFJRbc99+b+EQDx0ToHwY1ZryKEKMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEZ0ejMzNXY0UkFQSFJPZ2ZCalZtdklvUW93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9lYzYxOGYtOWY2MS00MTg1LWJhMGQt NmU0NTI0MjVhMTkzLzEvbEZ0ejMzNXY0UkFQSFJPZ2ZCalZtdklvUW93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC9lYzYxOGYtOWY2MS00MTg1LWJhMGQtNmU0NTI0MjVhMTkz LzEvbEZ0ejMzNXY0UkFQSFJPZ2ZCalZtdklvUW93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcOT6DtQW d+HbT4oQACtuUlGJY3wD91FfpK2Y40EnZ7JbPuA+cqGeCw3V6mJ7JcE5ILaqPu1x cXmt1mEGUyC4AmOBgLGUUmWRL07bo+i+Vhz+prSbc3z8StCMKv9PHcd2Rhfxs5ry vc/TxX0iGEYLKzPpqTiGMyW2VEF2bBnnNpRYCETjLjPe4lo0ne/QvuU+LcwAmJjA DMC5oYIyOqmLvwiLcQhByJi6KkmGYO2uqavhBBRazezSYSMNpszNzNGrfIl7T4Jm H7tP2k3mGgp/pJ4/sSkKZCgdMZnuIK7SVdHXbE8lrHUrKZTLBffVhgc2Bez/fGPm wHvttOT+FhLG1w== -----END CERTIFICATE-----Generated at Mon Feb 9 20:53:39 2026 by rpki-client