This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft File: lJgy8CXL76HqG8oMOQtjwXaUjNI.mft (raw, json) Hash identifier: 0P+uIJlI/fWMyoY+jw7g1j12dQWNh41FITXJaHd2Si0= Subject key identifier: F2:11:BC:34:2B:1D:C8:88:E9:0A:35:73:D0:70:7F:CA:58:8F:41:8E Authority key identifier: 94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2 Certificate issuer: /CN=949832f025cbefa1ea1bca0c390b63c176948cd2 Certificate serial: 019C36AFE72089ABF566A57E019DB5D95222 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft Manifest number: 0684 Signing time: Sat 07 Feb 2026 06:00:23 +0000 Manifest this update: Sat 07 Feb 2026 06:00:23 +0000 Manifest next update: Sun 08 Feb 2026 06:00:23 +0000 Files and hashes: 1: cb-mqGrD9TdvPSnuiFKPTNSp4k0.roa (hash: 3D9GKzTfBklRbCdmXiO06QWtVtwBT318N1GZYxQn0ZA=) 2: lJgy8CXL76HqG8oMOQtjwXaUjNI.crl (hash: VawgmVxqfk3ajoXlbxtFRVuwLaDzlNfdjzKUCO937/o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 06:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:36:af:e7:20:89:ab:f5:66:a5:7e:01:9d:b5:d9:52:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=949832f025cbefa1ea1bca0c390b63c176948cd2 Validity Not Before: Feb 7 06:00:23 2026 GMT Not After : Feb 8 06:00:23 2026 GMT Subject: CN=f211bc342b1dc888e90a3573d0707fca588f418e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:19:6f:79:f3:d3:c2:37:42:e3:0e:03:85:b8: e6:b0:ee:7d:fd:db:2e:45:74:9e:e4:8a:f0:2b:6d: 4a:3a:1c:12:1e:63:76:b6:55:e5:25:e4:65:6c:41: 3f:dd:9e:aa:18:d3:31:49:e7:cb:a6:f9:cd:2e:b8: 71:1b:19:aa:e0:70:bf:87:ed:58:2e:e7:7e:3d:f3: e9:19:4a:21:65:5c:90:76:2d:73:a2:d7:66:8c:c6: ae:5e:3d:27:17:40:3b:a1:3c:e8:55:c5:be:2d:11: cb:e1:fc:db:cd:e3:cc:b6:d4:ed:44:2c:ad:50:eb: b0:18:e5:e6:be:1b:85:ca:16:ad:ad:03:56:fc:b0: 20:7f:ae:19:4b:4c:77:e5:2f:b0:85:34:98:e3:3c: 1a:fe:c0:70:76:38:c7:d6:8a:a3:7f:dc:3d:87:23: 7d:38:0e:0e:da:9b:2c:96:31:a0:72:04:a5:0c:5d: b5:e1:2e:36:36:48:f3:f2:b0:92:08:8c:2a:6e:9c: e7:dc:a5:69:da:f1:1a:05:3d:51:bd:2f:77:75:05: 25:63:5d:f5:a8:83:8d:bc:42:7d:26:f6:10:62:38: ae:d9:c1:08:3a:46:df:9d:1e:31:35:57:b2:3e:ec: 23:6b:65:28:4b:c0:3b:ba:85:3a:32:ee:e1:a4:cc: 71:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:11:BC:34:2B:1D:C8:88:E9:0A:35:73:D0:70:7F:CA:58:8F:41:8E X509v3 Authority Key Identifier: keyid:94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:64:7d:2e:32:8c:21:b6:3c:92:33:5b:8b:bf:5a:17:47:f1: 4e:ef:57:a2:90:be:81:89:b6:13:65:bf:fd:91:21:e7:e9:77: e2:5e:2b:e0:a8:71:ca:aa:81:0d:6e:c5:f4:57:f6:00:a0:54: 2a:ec:3a:98:d1:b3:da:1f:77:5d:a3:59:4e:f4:7d:6b:61:82: f9:fc:38:f6:62:c4:61:81:4e:5e:e1:81:eb:3a:05:92:c6:d4: 72:a8:61:dc:05:a5:ba:fa:36:7e:1b:0d:13:ae:5f:cc:35:3c: 83:13:8b:c3:55:66:bd:8d:72:a5:35:cd:c0:31:13:5f:78:9f: 08:d5:47:00:72:f6:98:d4:ce:fc:7c:93:cf:d6:fd:29:81:1b: e8:4f:b2:73:4e:f7:b8:95:7c:8c:b5:de:dc:48:2f:ba:91:51: e4:19:59:a6:cc:c7:0b:3e:aa:2f:88:96:5b:2d:58:5b:92:ba: cb:f0:f1:93:6e:1a:7a:62:54:ec:2f:ec:4a:b1:05:9f:33:d6: b7:6b:66:07:ab:97:ed:dd:07:d9:90:53:4d:07:f2:dc:b7:0a: db:ae:70:01:60:ca:8c:bb:ae:43:ab:82:d0:2e:4f:55:94:cd: fa:fa:e0:95:80:e1:24:d4:3d:f4:85:9d:86:9d:53:13:0d:be: 00:92:6c:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZw2r+cgiav1ZqV+AZ212VIiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0OTgzMmYwMjVjYmVmYTFlYTFiY2EwYzM5MGI2M2MxNzY5 NDhjZDIwHhcNMjYwMjA3MDYwMDIzWhcNMjYwMjA4MDYwMDIzWjAzMTEwLwYDVQQD EyhmMjExYmMzNDJiMWRjODg4ZTkwYTM1NzNkMDcwN2ZjYTU4OGY0MThlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmxlvefPTwjdC4w4DhbjmsO59/dsu RXSe5IrwK21KOhwSHmN2tlXlJeRlbEE/3Z6qGNMxSefLpvnNLrhxGxmq4HC/h+1Y Lud+PfPpGUohZVyQdi1zotdmjMauXj0nF0A7oTzoVcW+LRHL4fzbzePMttTtRCyt UOuwGOXmvhuFyhatrQNW/LAgf64ZS0x35S+whTSY4zwa/sBwdjjH1oqjf9w9hyN9 OA4O2pssljGgcgSlDF214S42Nkjz8rCSCIwqbpzn3KVp2vEaBT1RvS93dQUlY131 qIONvEJ9JvYQYjiu2cEIOkbfnR4xNVeyPuwja2UoS8A7uoU6Mu7hpMxxeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPIRvDQrHciI6Qo1c9Bwf8pYj0GOMB8GA1UdIwQY MBaAFJSYMvAly++h6hvKDDkLY8F2lIzSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEpneThDWEw3NkhxRzhvTU9RdGp3WGFVak5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lNWMwNTYtMDNiMS00NmE5LWIyMTQt NzhmYzNiYzI4YmExLzEvbEpneThDWEw3NkhxRzhvTU9RdGp3WGFVak5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9lNWMwNTYtMDNiMS00NmE5LWIyMTQtNzhmYzNiYzI4YmEx LzEvbEpneThDWEw3NkhxRzhvTU9RdGp3WGFVak5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAamR9LjKM IbY8kjNbi79aF0fxTu9XopC+gYm2E2W//ZEh5+l34l4r4KhxyqqBDW7F9Ff2AKBU Kuw6mNGz2h93XaNZTvR9a2GC+fw49mLEYYFOXuGB6zoFksbUcqhh3AWluvo2fhsN E65fzDU8gxOLw1VmvY1ypTXNwDETX3ifCNVHAHL2mNTO/HyTz9b9KYEb6E+yc073 uJV8jLXe3EgvupFR5BlZpszHCz6qL4iWWy1YW5K6y/Dxk24aemJU7C/sSrEFnzPW t2tmB6uX7d0H2ZBTTQfy3LcK265wAWDKjLuuQ6uC0C5PVZTN+vrglYDhJNQ99IWd hp1TEw2+AJJsAQ== -----END CERTIFICATE-----Generated at Sat Feb 7 12:42:23 2026 by rpki-client