This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft File: PtWjaKny40iTSpFIiEVZQ2I_lus.mft (raw, json) Hash identifier: bxUtVCQuFDecwXXSIoje8j8HWpq3Z4w5u1Qg+aWxSN0= Subject key identifier: 22:02:55:85:36:7E:AC:1F:30:AD:B4:94:AC:3A:FC:22:3B:33:62:A6 Authority key identifier: 3E:D5:A3:68:A9:F2:E3:48:93:4A:91:48:88:45:59:43:62:3F:96:EB Certificate issuer: /CN=3ed5a368a9f2e348934a914888455943623f96eb Certificate serial: 019C4133C9570CE4E2EAA5FE899147B6F9E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft Manifest number: 13F2 Signing time: Mon 09 Feb 2026 07:00:38 +0000 Manifest this update: Mon 09 Feb 2026 07:00:38 +0000 Manifest next update: Tue 10 Feb 2026 07:00:38 +0000 Files and hashes: 1: PtWjaKny40iTSpFIiEVZQ2I_lus.crl (hash: e//X/qFjAn35rm19C9dHQOS/UzaOKbbiTN0SlBVwWnA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.crl rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:c9:57:0c:e4:e2:ea:a5:fe:89:91:47:b6:f9:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ed5a368a9f2e348934a914888455943623f96eb Validity Not Before: Feb 9 07:00:38 2026 GMT Not After : Feb 10 07:00:38 2026 GMT Subject: CN=22025585367eac1f30adb494ac3afc223b3362a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:80:0e:c0:dd:5c:76:d1:58:74:e2:e8:ea:f7: 0e:60:42:84:4e:dd:f5:e5:76:6c:2d:be:81:75:a3: 7b:b3:eb:fc:9d:ba:74:f1:b6:e2:1f:b6:f8:7d:f6: 0b:b3:01:58:0d:6a:a5:d1:a8:22:4c:10:be:e4:b2: a1:b8:dd:cc:7e:8f:c4:ef:59:96:83:6b:51:f1:46: 76:0b:35:08:48:7f:d3:93:da:07:72:25:09:48:d5: 42:61:61:39:f6:fc:d3:66:d0:cc:5c:dc:c9:ba:3f: 2e:b3:6c:8a:36:0a:ae:e6:1a:9f:89:7f:8b:c3:4a: e2:9f:f7:67:23:33:e1:ad:82:70:6f:d6:8c:4c:1b: db:cb:2a:4b:0e:98:48:41:01:7a:56:dc:dd:60:10: 1c:69:4a:14:55:37:21:43:cd:e1:fc:7e:9a:2d:aa: 3a:ac:1c:8d:a9:33:a0:f9:01:0b:a9:cf:78:7f:71: e2:9b:40:4d:64:a2:9b:e7:bd:ba:16:31:7f:14:ad: 63:ea:42:bc:05:f8:98:f2:61:50:27:8b:fe:3c:24: 9e:37:2e:08:6e:0a:5c:60:ed:32:61:e1:84:77:f2: 3f:4f:94:0c:5e:ab:9f:68:bd:4a:ef:cb:e6:17:3b: b9:74:15:22:63:32:9b:52:c1:c1:0d:4c:25:0a:26: da:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:02:55:85:36:7E:AC:1F:30:AD:B4:94:AC:3A:FC:22:3B:33:62:A6 X509v3 Authority Key Identifier: keyid:3E:D5:A3:68:A9:F2:E3:48:93:4A:91:48:88:45:59:43:62:3F:96:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:d0:4a:5d:7e:10:aa:2d:94:d8:ed:bf:2e:7b:3f:61:ef:5d: 2a:81:8e:a1:4b:1f:2b:c9:19:5d:d8:ca:df:2d:21:19:cd:3d: a4:9a:88:5e:c4:7a:28:d2:44:62:05:4c:ee:d1:8f:38:c7:4e: bc:35:25:dc:d8:eb:d3:bf:88:97:07:04:cc:fc:4b:4f:aa:ab: 56:70:5a:c3:f6:65:6b:d6:da:62:7e:e1:ba:6e:b0:fd:3e:f4: 9f:20:12:fd:60:9e:fa:63:42:bd:1d:c8:10:e3:8a:08:82:c2: 11:c6:76:4a:a9:de:ff:06:7f:27:1d:f9:7c:c6:73:2e:b5:1f: 9e:87:53:37:3b:45:10:a5:98:3f:67:2a:96:dc:40:d4:51:43: f0:4f:f3:7d:eb:1a:bd:2b:f7:cb:1e:8d:3b:53:25:c2:1b:1f: 0e:f4:14:31:2f:8f:cf:09:10:dc:c1:4f:5e:f2:c2:56:b3:bc: 8a:51:9f:19:cf:73:3e:74:7d:f5:c3:89:17:84:65:03:ba:c2: 13:38:41:c6:62:2b:cb:95:e5:ee:3b:23:4b:27:5a:05:b4:ce: 6b:ca:cf:c8:48:3e:dc:bb:fd:8a:26:ee:38:8e:55:dd:ea:8d: fa:fc:9c:d4:50:3b:23:72:23:86:73:84:1e:11:f6:a0:3a:c2: 6f:66:4d:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM8lXDOTi6qX+iZFHtvnjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZDVhMzY4YTlmMmUzNDg5MzRhOTE0ODg4NDU1OTQzNjIz Zjk2ZWIwHhcNMjYwMjA5MDcwMDM4WhcNMjYwMjEwMDcwMDM4WjAzMTEwLwYDVQQD EygyMjAyNTU4NTM2N2VhYzFmMzBhZGI0OTRhYzNhZmMyMjNiMzM2MmE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YAOwN1cdtFYdOLo6vcOYEKETt31 5XZsLb6BdaN7s+v8nbp08bbiH7b4ffYLswFYDWql0agiTBC+5LKhuN3Mfo/E71mW g2tR8UZ2CzUISH/Tk9oHciUJSNVCYWE59vzTZtDMXNzJuj8us2yKNgqu5hqfiX+L w0rin/dnIzPhrYJwb9aMTBvbyypLDphIQQF6VtzdYBAcaUoUVTchQ83h/H6aLao6 rByNqTOg+QELqc94f3Him0BNZKKb5726FjF/FK1j6kK8BfiY8mFQJ4v+PCSeNy4I bgpcYO0yYeGEd/I/T5QMXqufaL1K78vmFzu5dBUiYzKbUsHBDUwlCibaqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCICVYU2fqwfMK20lKw6/CI7M2KmMB8GA1UdIwQY MBaAFD7Vo2ip8uNIk0qRSIhFWUNiP5brMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHRXamFLbnk0MGlUU3BGSWlFVlpRMklfbHVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi84YzcwYzQtOTA2MC00ZmZjLThhZDMt NmYwMTdlMWYxZWVkLzEvUHRXamFLbnk0MGlUU3BGSWlFVlpRMklfbHVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi84YzcwYzQtOTA2MC00ZmZjLThhZDMtNmYwMTdlMWYxZWVk LzEvUHRXamFLbnk0MGlUU3BGSWlFVlpRMklfbHVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIdBKXX4Q qi2U2O2/Lns/Ye9dKoGOoUsfK8kZXdjK3y0hGc09pJqIXsR6KNJEYgVM7tGPOMdO vDUl3Njr07+IlwcEzPxLT6qrVnBaw/Zla9baYn7hum6w/T70nyAS/WCe+mNCvR3I EOOKCILCEcZ2Sqne/wZ/Jx35fMZzLrUfnodTNztFEKWYP2cqltxA1FFD8E/zfesa vSv3yx6NO1MlwhsfDvQUMS+PzwkQ3MFPXvLCVrO8ilGfGc9zPnR99cOJF4RlA7rC EzhBxmIry5Xl7jsjSydaBbTOa8rPyEg+3Lv9iibuOI5V3eqN+vyc1FA7I3IjhnOE HhH2oDrCb2ZNEA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:01 2026 by rpki-client