This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.mft File: pL9-XCjULmcUGeYsMmBJ5cedSOA.mft (raw, json) Hash identifier: 7DHp69RuCBTe6kuZhxejh61kQVDKfMbMoP1R4k/xrWA= Subject key identifier: FA:CD:BC:38:A8:CC:38:B8:23:20:96:AC:D3:0C:85:D9:C6:0C:A9:F1 Authority key identifier: A4:BF:7E:5C:28:D4:2E:67:14:19:E6:2C:32:60:49:E5:C7:9D:48:E0 Certificate issuer: /CN=a4bf7e5c28d42e671419e62c326049e5c79d48e0 Certificate serial: 019C42B4083380F0666BB2DC848235970C7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pL9-XCjULmcUGeYsMmBJ5cedSOA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.mft Manifest number: 0218 Signing time: Mon 09 Feb 2026 14:00:20 +0000 Manifest this update: Mon 09 Feb 2026 14:00:20 +0000 Manifest next update: Tue 10 Feb 2026 14:00:20 +0000 Files and hashes: 1: pL9-XCjULmcUGeYsMmBJ5cedSOA.crl (hash: dAMad4QHkyE5rM3uZ8SWgDptkhok/zATEBElI9Wcbqg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.mft rsync://rpki.ripe.net/repository/DEFAULT/pL9-XCjULmcUGeYsMmBJ5cedSOA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:08:33:80:f0:66:6b:b2:dc:84:82:35:97:0c:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4bf7e5c28d42e671419e62c326049e5c79d48e0 Validity Not Before: Feb 9 14:00:20 2026 GMT Not After : Feb 10 14:00:20 2026 GMT Subject: CN=facdbc38a8cc38b8232096acd30c85d9c60ca9f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f0:b8:7d:9b:b3:7f:cd:bc:13:ff:60:b3:8a: 34:23:fa:6a:b0:83:b0:d1:ba:ad:cd:a1:97:77:db: a0:60:f0:75:b7:aa:cf:a2:e5:7b:75:24:57:5b:1f: f1:27:d7:33:1c:b8:69:66:45:74:4a:73:81:77:91: db:8c:f1:70:bf:2a:27:aa:33:1f:36:11:cf:30:4a: 80:09:cc:8f:a6:e8:67:e1:20:95:93:29:19:44:cd: c3:93:8e:ea:c5:20:ea:22:48:5c:7a:9d:d7:b8:fe: b7:e0:08:b1:93:d9:db:63:7a:29:3b:7f:5e:71:b5: ca:98:fc:5f:a4:c1:44:f4:ee:c3:e0:95:af:1f:c7: b9:48:cb:07:4e:8d:e2:23:09:60:0b:d4:79:bd:9d: 05:5e:56:9f:1a:21:14:55:5f:3d:65:c9:dc:ab:1a: c1:d9:c3:dd:ec:59:50:60:62:90:50:75:dc:a2:d8: d0:19:ac:cf:e2:0f:07:ae:d3:d5:19:45:8e:57:9f: 5e:fe:2e:4a:39:fe:51:13:10:bd:2f:ff:f3:a0:b6: 6e:e1:db:da:bb:ae:18:36:8a:62:eb:0d:f0:f2:68: fd:70:81:0f:42:69:cc:06:fa:20:7c:19:ef:f5:37: 69:a7:54:2b:bf:87:da:48:c9:a7:e6:78:78:5c:d7: f5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:CD:BC:38:A8:CC:38:B8:23:20:96:AC:D3:0C:85:D9:C6:0C:A9:F1 X509v3 Authority Key Identifier: keyid:A4:BF:7E:5C:28:D4:2E:67:14:19:E6:2C:32:60:49:E5:C7:9D:48:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pL9-XCjULmcUGeYsMmBJ5cedSOA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/4ef8b4-7e06-4768-b47a-970fb0e44c47/1/pL9-XCjULmcUGeYsMmBJ5cedSOA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:87:51:a3:07:c6:43:f4:18:f8:37:94:f4:09:45:73:75:d3: 6b:64:b6:fe:b1:20:c0:37:aa:e7:21:14:97:3d:e6:a5:f3:b3: 8c:eb:ae:a9:c7:8b:99:e1:f0:0f:43:a1:6b:98:d9:37:5e:74: 66:9c:b6:50:ff:e4:19:2c:5f:4e:89:c1:e6:08:65:eb:08:00: 9e:37:1f:21:51:e1:aa:2b:08:d9:1b:ec:b5:63:91:b3:62:36: db:a0:0e:26:72:72:ab:75:35:9d:b1:72:55:90:ec:18:02:75: 42:ad:12:d4:e7:0b:1a:25:e0:e4:5a:0f:d8:b3:15:c7:86:d2: 93:ac:9e:01:6b:74:a4:26:ab:fa:c8:32:3b:f0:45:ae:16:e0: 75:5c:9b:2c:20:0a:a6:67:26:28:86:d9:b8:16:fe:8d:a0:0a: 6c:52:e1:1d:75:94:ed:15:66:28:60:3f:4d:82:bd:d5:c7:5f: 24:31:fe:a2:77:2f:d4:5e:9a:82:e4:89:18:5d:07:5f:68:3a: 3b:0c:2b:56:64:cf:05:01:20:36:e6:7a:cf:76:8f:fa:f5:57: 0a:45:4d:01:0f:ff:2a:46:3d:44:c8:ea:ed:64:f4:48:88:0f: 24:8e:c2:89:25:a3:95:0c:db:89:b0:f4:35:6c:59:0e:5b:70: e9:05:85:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtAgzgPBma7LchII1lwx6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0YmY3ZTVjMjhkNDJlNjcxNDE5ZTYyYzMyNjA0OWU1Yzc5 ZDQ4ZTAwHhcNMjYwMjA5MTQwMDIwWhcNMjYwMjEwMTQwMDIwWjAzMTEwLwYDVQQD EyhmYWNkYmMzOGE4Y2MzOGI4MjMyMDk2YWNkMzBjODVkOWM2MGNhOWYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPC4fZuzf828E/9gs4o0I/pqsIOw 0bqtzaGXd9ugYPB1t6rPouV7dSRXWx/xJ9czHLhpZkV0SnOBd5HbjPFwvyonqjMf NhHPMEqACcyPpuhn4SCVkykZRM3Dk47qxSDqIkhcep3XuP634Aixk9nbY3opO39e cbXKmPxfpMFE9O7D4JWvH8e5SMsHTo3iIwlgC9R5vZ0FXlafGiEUVV89ZcncqxrB 2cPd7FlQYGKQUHXcotjQGazP4g8HrtPVGUWOV59e/i5KOf5RExC9L//zoLZu4dva u64YNopi6w3w8mj9cIEPQmnMBvogfBnv9Tdpp1Qrv4faSMmn5nh4XNf1wQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPrNvDiozDi4IyCWrNMMhdnGDKnxMB8GA1UdIwQY MBaAFKS/flwo1C5nFBnmLDJgSeXHnUjgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcEw5LVhDalVMbWNVR2VZc01tQko1Y2VkU09BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS80ZWY4YjQtN2UwNi00NzY4LWI0N2Et OTcwZmIwZTQ0YzQ3LzEvcEw5LVhDalVMbWNVR2VZc01tQko1Y2VkU09BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS80ZWY4YjQtN2UwNi00NzY4LWI0N2EtOTcwZmIwZTQ0YzQ3 LzEvcEw5LVhDalVMbWNVR2VZc01tQko1Y2VkU09BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFodRowfG Q/QY+DeU9AlFc3XTa2S2/rEgwDeq5yEUlz3mpfOzjOuuqceLmeHwD0Oha5jZN150 Zpy2UP/kGSxfTonB5ghl6wgAnjcfIVHhqisI2RvstWORs2I226AOJnJyq3U1nbFy VZDsGAJ1Qq0S1OcLGiXg5FoP2LMVx4bSk6yeAWt0pCar+sgyO/BFrhbgdVybLCAK pmcmKIbZuBb+jaAKbFLhHXWU7RVmKGA/TYK91cdfJDH+oncv1F6aguSJGF0HX2g6 OwwrVmTPBQEgNuZ6z3aP+vVXCkVNAQ//KkY9RMjq7WT0SIgPJI7CiSWjlQzbibD0 NWxZDltw6QWFwg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:53:34 2026 by rpki-client