This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json) Hash identifier: HtrW+dwg5tPGABxmIpjhiYZMZ5RQbsCvOZ4CdvNl6ro= Subject key identifier: F9:BA:8B:25:3A:1B:F7:E2:40:45:6F:1F:DC:E3:A3:AD:68:0E:1E:22 Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a Certificate serial: 019C41D84D6CAF118857217F4DE999A56088 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 10:00:20 +0000 Manifest this update: Mon 09 Feb 2026 10:00:20 +0000 Manifest next update: Tue 10 Feb 2026 10:00:20 +0000 Files and hashes: 1: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: oSJsAlFNl1SdGe9Z7RlP+kVAWTiZgFoOTVrcNyrdhTw=) 2: tz4P9nF3Ei3wUS8VYP6Gfwtlguc.roa (hash: WI+TvaMT1Y9cC04iUl0U1l9xEwrwqSAkBoEDvp55Sj0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:4d:6c:af:11:88:57:21:7f:4d:e9:99:a5:60:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a Validity Not Before: Feb 9 10:00:20 2026 GMT Not After : Feb 10 10:00:20 2026 GMT Subject: CN=f9ba8b253a1bf7e240456f1fdce3a3ad680e1e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:21:a4:8c:cb:3f:f1:7d:dc:84:dd:50:b3:f4: eb:47:f1:a2:5c:84:cf:25:cf:04:b6:67:c5:ab:cd: 25:1f:1b:8a:3c:66:c0:34:cd:32:e3:90:02:b4:e8: 6a:88:b5:ff:a9:3c:bb:59:90:4b:23:63:9a:80:53: 0a:b1:e6:05:a3:ea:b1:de:ba:b5:6e:ef:01:5f:ec: e4:ab:4f:b3:58:7c:3f:36:46:ed:2f:e6:1b:c6:83: 1b:5e:5a:00:70:b7:d6:44:7b:d2:d9:3f:57:89:1c: 4d:90:ea:20:ff:cb:08:34:fd:0c:5b:27:c6:c3:92: dd:49:d2:11:64:a3:aa:1a:42:96:23:42:53:61:71: 19:1e:11:90:62:1a:6d:58:e3:2a:73:c2:4f:2f:1d: e3:63:c7:cf:ca:31:b5:67:f9:fe:d7:53:d3:e7:d5: 6e:8d:92:64:44:3b:b9:6e:a7:3c:d5:cf:14:a9:ef: 35:a5:27:37:9d:23:a8:11:c3:3e:9a:43:b1:7c:eb: 86:18:81:3a:91:55:a4:c2:20:71:09:96:9b:e3:31: 81:2d:a7:6c:f0:06:d2:80:9f:b4:1f:f5:76:99:f1: 57:78:1a:b2:b8:5e:3b:03:36:f9:45:b8:28:d9:78: 0a:e2:81:08:06:2d:52:ea:39:27:0d:61:26:ac:93: 06:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:BA:8B:25:3A:1B:F7:E2:40:45:6F:1F:DC:E3:A3:AD:68:0E:1E:22 X509v3 Authority Key Identifier: keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:fc:c8:fb:85:ba:57:e9:55:48:92:b1:42:f1:40:e7:12:1d: 3b:d5:cd:18:84:6a:a8:08:02:3a:f8:23:74:31:a1:d1:53:b1: 55:11:60:00:ea:46:91:9b:fd:e3:07:55:d7:d1:1a:a5:1f:33: e9:74:b2:dd:77:85:52:a7:eb:95:6d:2e:5b:e8:2d:19:58:d9: b9:4a:f1:2e:e5:26:ff:8c:35:c8:95:f8:e1:4f:bd:e7:51:20: 1e:6c:24:a5:6e:a5:86:3e:8f:38:3b:ad:c4:53:12:9f:45:a8: 82:6e:00:1a:3d:de:b9:40:7f:fc:47:57:9b:d4:9c:25:1b:6e: 8e:f6:74:3c:90:15:a9:0f:9e:f4:ec:cb:50:8d:d5:a2:4a:a9: c0:bf:be:bf:7a:9e:54:f7:59:9b:05:33:a8:8d:5c:64:ab:36: db:87:a2:b9:8e:63:0b:12:e0:cc:77:f0:09:39:ce:59:0d:c1: 7f:63:86:78:a3:91:8d:51:c4:1b:e1:88:f0:0c:3a:dd:e8:1f: 6a:c4:0b:8e:70:a3:58:93:e2:de:4d:c1:d2:65:c8:b6:ef:c9: a4:58:b0:d5:06:94:cd:d1:3c:e7:da:7d:67:b6:83:5d:82:14: 3b:b9:36:7d:6e:53:db:f3:a4:01:59:52:92:97:f7:ba:9f:ac: 5d:4a:84:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2E1srxGIVyF/TemZpWCIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0Yzg2YzliMzVkNzgyMTE2YjJjZDg1ODNhMjdjZWI0MDNi OGY2MWEwHhcNMjYwMjA5MTAwMDIwWhcNMjYwMjEwMTAwMDIwWjAzMTEwLwYDVQQD EyhmOWJhOGIyNTNhMWJmN2UyNDA0NTZmMWZkY2UzYTNhZDY4MGUxZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiGkjMs/8X3chN1Qs/TrR/GiXITP Jc8EtmfFq80lHxuKPGbANM0y45ACtOhqiLX/qTy7WZBLI2OagFMKseYFo+qx3rq1 bu8BX+zkq0+zWHw/NkbtL+YbxoMbXloAcLfWRHvS2T9XiRxNkOog/8sINP0MWyfG w5LdSdIRZKOqGkKWI0JTYXEZHhGQYhptWOMqc8JPLx3jY8fPyjG1Z/n+11PT59Vu jZJkRDu5bqc81c8Uqe81pSc3nSOoEcM+mkOxfOuGGIE6kVWkwiBxCZab4zGBLads 8AbSgJ+0H/V2mfFXeBqyuF47Azb5Rbgo2XgK4oEIBi1S6jknDWEmrJMGqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPm6iyU6G/fiQEVvH9zjo61oDh4iMB8GA1UdIwQY MBaAFJTIbJs114IRayzYWDonzrQDuPYaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMt MzViMGM5NjUyNGZhLzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMtMzViMGM5NjUyNGZh LzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZfzI+4W6 V+lVSJKxQvFA5xIdO9XNGIRqqAgCOvgjdDGh0VOxVRFgAOpGkZv94wdV19EapR8z 6XSy3XeFUqfrlW0uW+gtGVjZuUrxLuUm/4w1yJX44U+951EgHmwkpW6lhj6PODut xFMSn0Wogm4AGj3euUB//EdXm9ScJRtujvZ0PJAVqQ+e9OzLUI3VokqpwL++v3qe VPdZmwUzqI1cZKs224eiuY5jCxLgzHfwCTnOWQ3Bf2OGeKORjVHEG+GI8Aw63egf asQLjnCjWJPi3k3B0mXItu/JpFiw1QaUzdE859p9Z7aDXYIUO7k2fW5T2/OkAVlS kpf3up+sXUqExg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:38 2026 by rpki-client