This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft File: leooNjXLO9FSOoXdycr1MFaNL4E.mft (raw, json) Hash identifier: blIIr/hWIjTemJoHgiWxyfstW33kQsXtKtxuh60GBDs= Subject key identifier: 0A:35:DF:1D:8D:38:14:D7:B0:B4:C6:75:38:B8:30:DB:B0:66:AF:05 Authority key identifier: 95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81 Certificate issuer: /CN=95ea283635cb3bd1523a85ddc9caf530568d2f81 Certificate serial: 019C4358EC423EA6F0745EFAA1E1B41AB0A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft Manifest number: 0C1F Signing time: Mon 09 Feb 2026 17:00:26 +0000 Manifest this update: Mon 09 Feb 2026 17:00:26 +0000 Manifest next update: Tue 10 Feb 2026 17:00:26 +0000 Files and hashes: 1: leooNjXLO9FSOoXdycr1MFaNL4E.crl (hash: k78VCW5XNJ9pRLrcUR2zpf95I4WUx5lJOoXnnhuQumk=) 2: y8oZ66nLHzO58eQvPIRpmWAPl7c.roa (hash: L/V2Ozu3PD9MBYyFc1nynxKrWqd8IdYQzQ81hC8pp8E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:ec:42:3e:a6:f0:74:5e:fa:a1:e1:b4:1a:b0:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95ea283635cb3bd1523a85ddc9caf530568d2f81 Validity Not Before: Feb 9 17:00:26 2026 GMT Not After : Feb 10 17:00:26 2026 GMT Subject: CN=0a35df1d8d3814d7b0b4c67538b830dbb066af05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4b:76:3d:be:43:70:02:6c:ef:1d:cb:0f:ba: 0f:b6:b5:df:a6:a0:e2:40:c0:4b:32:46:54:49:86: 31:ad:b5:bd:28:6c:bb:58:2a:1c:f9:c9:5f:4e:7f: 8d:47:9e:47:f1:6d:4c:84:88:0a:6a:e5:f9:09:1a: 38:b3:ad:98:2c:95:38:23:57:03:fb:b7:d5:8f:62: 38:6f:5d:84:69:92:53:e0:87:42:c2:f1:2b:df:59: b6:08:4a:04:fd:3a:f9:1d:61:ea:2c:27:87:ee:3a: c4:bc:a6:ce:d6:28:11:7b:3c:31:bc:02:3e:22:8b: 7d:48:f6:c5:5a:67:c9:d4:dd:1b:c4:22:c4:52:a3: e1:72:2c:cf:3e:4e:be:a0:91:2f:0d:c8:5c:f0:13: a4:0b:62:77:09:1d:6c:fb:94:62:a2:c5:71:05:89: 21:13:de:97:e7:7e:ea:cf:5f:bc:19:29:95:fe:3f: 7a:d0:69:e0:d1:0d:31:e7:8f:9c:fa:ec:78:43:54: 6a:ec:8e:b4:5b:f4:3e:99:4f:61:ec:75:4c:39:20: 77:7b:d9:ec:9b:f7:a4:64:86:13:7e:98:5b:4b:c1: 15:ed:ad:e2:ef:3c:7d:82:a6:91:b5:00:9e:de:ad: 52:0c:f5:ae:c4:1d:24:a7:06:31:a5:5f:61:46:f6: f4:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:35:DF:1D:8D:38:14:D7:B0:B4:C6:75:38:B8:30:DB:B0:66:AF:05 X509v3 Authority Key Identifier: keyid:95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:5f:e3:18:8d:2a:39:49:e6:4a:0f:d0:58:d4:49:be:8e:fe: ab:61:1b:6b:a8:2f:6f:2f:71:2b:e7:60:47:4c:93:ac:04:52: 98:02:b7:3d:de:cf:74:b5:7b:c7:c8:f8:a8:6d:50:90:2d:1e: 2b:2a:af:78:10:b0:d3:51:a1:48:08:d3:14:f5:78:2c:15:82: 0d:d9:be:10:15:50:51:b0:c2:c6:f4:9a:c0:a4:08:0d:a5:3a: 87:ab:2c:c4:ca:76:a5:4e:3e:a6:81:0d:2a:0b:9f:6c:39:1b: 2b:f2:8d:da:68:19:47:46:09:ca:80:9e:0c:8c:d0:bd:7c:94: 77:19:1c:a5:8e:43:18:6c:38:bb:91:70:75:58:9d:a0:72:89: 71:56:16:09:4a:79:c6:dc:67:36:a9:3d:ac:a1:ab:98:24:6b: 6e:a6:4c:ea:d3:64:34:24:ed:36:45:a6:90:28:81:a0:f1:2f: 2a:b8:d3:c1:fb:96:7b:81:6d:e6:34:7e:f3:5b:d0:91:80:e1: dc:58:1c:d7:b7:b4:ad:68:a7:48:20:31:13:38:35:4f:40:da: c8:dd:7b:00:2c:25:40:12:bf:2c:8a:bc:21:98:3e:e9:21:b1: 0e:77:5d:78:48:9e:07:4d:70:11:15:ef:44:53:04:f8:e1:04: d6:e9:bc:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWOxCPqbwdF76oeG0GrCjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1ZWEyODM2MzVjYjNiZDE1MjNhODVkZGM5Y2FmNTMwNTY4 ZDJmODEwHhcNMjYwMjA5MTcwMDI2WhcNMjYwMjEwMTcwMDI2WjAzMTEwLwYDVQQD EygwYTM1ZGYxZDhkMzgxNGQ3YjBiNGM2NzUzOGI4MzBkYmIwNjZhZjA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Ut2Pb5DcAJs7x3LD7oPtrXfpqDi QMBLMkZUSYYxrbW9KGy7WCoc+clfTn+NR55H8W1MhIgKauX5CRo4s62YLJU4I1cD +7fVj2I4b12EaZJT4IdCwvEr31m2CEoE/Tr5HWHqLCeH7jrEvKbO1igRezwxvAI+ Iot9SPbFWmfJ1N0bxCLEUqPhcizPPk6+oJEvDchc8BOkC2J3CR1s+5RiosVxBYkh E96X537qz1+8GSmV/j960Gng0Q0x54+c+ux4Q1Rq7I60W/Q+mU9h7HVMOSB3e9ns m/ekZIYTfphbS8EV7a3i7zx9gqaRtQCe3q1SDPWuxB0kpwYxpV9hRvb0vQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAo13x2NOBTXsLTGdTi4MNuwZq8FMB8GA1UdIwQY MBaAFJXqKDY1yzvRUjqF3cnK9TBWjS+BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi81YjQ2YmItMGFmNC00N2Q2LWE0Yjgt N2JhMjY4NmVhNTE4LzEvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi81YjQ2YmItMGFmNC00N2Q2LWE0YjgtN2JhMjY4NmVhNTE4 LzEvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYV/jGI0q OUnmSg/QWNRJvo7+q2Eba6gvby9xK+dgR0yTrARSmAK3Pd7PdLV7x8j4qG1QkC0e KyqveBCw01GhSAjTFPV4LBWCDdm+EBVQUbDCxvSawKQIDaU6h6ssxMp2pU4+poEN KgufbDkbK/KN2mgZR0YJyoCeDIzQvXyUdxkcpY5DGGw4u5FwdVidoHKJcVYWCUp5 xtxnNqk9rKGrmCRrbqZM6tNkNCTtNkWmkCiBoPEvKrjTwfuWe4Ft5jR+81vQkYDh 3Fgc17e0rWinSCAxEzg1T0DayN17ACwlQBK/LIq8IZg+6SGxDnddeEieB01wERXv RFME+OEE1um81g== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:59 2026 by rpki-client