This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.mft File: LsJnz2xrO4jpahG_KemnOlWMXkA.mft (raw, json) Hash identifier: B9xTUmqalgI+s1ChIHbqOdW4bkUkAuaEcyXoYqN/2wQ= Subject key identifier: A2:D3:83:B0:E8:8C:9E:6D:1A:9D:6C:0A:5C:3D:37:52:39:AA:20:CF Authority key identifier: 2E:C2:67:CF:6C:6B:3B:88:E9:6A:11:BF:29:E9:A7:3A:55:8C:5E:40 Certificate issuer: /CN=2ec267cf6c6b3b88e96a11bf29e9a73a558c5e40 Certificate serial: 019C4358DA4700C96ADC51BF76B7F8D7934E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LsJnz2xrO4jpahG_KemnOlWMXkA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.mft Manifest number: 179F Signing time: Mon 09 Feb 2026 17:00:22 +0000 Manifest this update: Mon 09 Feb 2026 17:00:22 +0000 Manifest next update: Tue 10 Feb 2026 17:00:22 +0000 Files and hashes: 1: LsJnz2xrO4jpahG_KemnOlWMXkA.crl (hash: /FTPvE+2/Atehw3UWDyD/Q2o99TpS+HiHWjZue+7SK0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.crl rsync://rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.mft rsync://rpki.ripe.net/repository/DEFAULT/LsJnz2xrO4jpahG_KemnOlWMXkA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:da:47:00:c9:6a:dc:51:bf:76:b7:f8:d7:93:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ec267cf6c6b3b88e96a11bf29e9a73a558c5e40 Validity Not Before: Feb 9 17:00:22 2026 GMT Not After : Feb 10 17:00:22 2026 GMT Subject: CN=a2d383b0e88c9e6d1a9d6c0a5c3d375239aa20cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:26:33:d7:25:55:10:78:a6:d9:e9:a0:08:11: f4:fc:7e:54:23:a3:4d:02:b8:7c:d8:4f:cb:1f:a4: 01:ad:7e:ad:aa:ec:be:eb:ab:2d:19:96:57:02:42: 18:7a:9a:25:ed:e5:31:17:d5:d5:cc:a0:72:b4:e9: 3f:11:7c:78:a0:75:a8:55:48:bc:5e:0f:be:4f:fb: fc:ed:33:69:87:ab:54:e3:ff:79:d5:de:ed:7d:75: 39:23:e5:7c:89:84:71:99:12:2d:cc:07:48:86:23: d8:91:bd:f4:35:a9:d7:c9:b4:68:a3:41:48:8a:95: d7:a6:53:22:e6:12:4e:34:3d:40:db:5e:1f:c4:45: f3:d6:4a:c3:42:85:b1:fd:d1:de:66:a9:31:55:d9: 8b:a8:b2:1c:43:de:27:63:26:ae:75:e4:29:71:4d: bf:40:e4:e3:32:28:10:5e:b7:27:b6:c0:4d:ea:63: 65:a1:d7:1f:cc:bb:af:88:36:c4:f2:f8:c8:b6:69: 46:29:53:51:b5:58:1f:ca:93:3a:a5:a7:22:6f:09: ed:e4:47:22:24:3d:4a:4c:a5:c1:34:a0:61:0e:69: 18:00:a4:a8:d6:66:67:84:cb:3a:32:de:dd:f1:de: e3:31:b3:a4:96:d7:89:0d:5c:5a:72:0b:17:33:38: 29:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D3:83:B0:E8:8C:9E:6D:1A:9D:6C:0A:5C:3D:37:52:39:AA:20:CF X509v3 Authority Key Identifier: keyid:2E:C2:67:CF:6C:6B:3B:88:E9:6A:11:BF:29:E9:A7:3A:55:8C:5E:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LsJnz2xrO4jpahG_KemnOlWMXkA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:0a:13:87:df:e9:14:d2:5a:4b:22:66:eb:27:ca:d5:29:73: e8:00:43:42:f6:92:d1:e4:f4:1e:7b:27:6e:e1:1b:ae:d7:6a: 83:b3:f1:75:e1:bb:48:df:48:f0:00:34:9e:83:ae:5d:d1:ce: 6b:e4:eb:b1:b0:32:33:fe:5d:40:6f:93:93:ff:23:d4:83:28: 50:0f:ea:17:99:b6:e2:67:6d:f2:02:22:30:ed:51:ef:bc:4d: 2a:9e:0e:37:1b:80:87:f5:cb:a5:49:00:d4:a1:7f:8f:f4:59: 20:9a:fe:ec:4b:27:3c:d5:d6:b6:43:bb:21:92:f9:ba:77:02: 4f:3b:b2:6e:5f:97:14:c5:c9:47:6e:dc:f4:6f:a8:8c:8f:fa: e3:af:2b:d0:ab:a9:13:31:56:5e:97:b7:3b:77:c4:93:60:b8: 01:73:44:23:cc:84:2f:ba:be:f8:54:97:a9:16:e2:18:14:51: c5:11:f5:59:9d:be:a5:f0:fc:eb:e1:11:85:29:ad:51:9b:8c: dc:6d:61:c0:51:2c:a7:f4:cc:fe:01:a5:ad:7e:82:ea:73:7f: a2:60:b5:31:9b:87:8b:08:be:eb:35:88:e3:5f:94:54:f4:26: 28:8c:55:06:8c:10:7d:29:f3:9d:1d:8f:99:73:39:62:3c:84: d4:ae:15:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWNpHAMlq3FG/drf415NOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlYzI2N2NmNmM2YjNiODhlOTZhMTFiZjI5ZTlhNzNhNTU4 YzVlNDAwHhcNMjYwMjA5MTcwMDIyWhcNMjYwMjEwMTcwMDIyWjAzMTEwLwYDVQQD EyhhMmQzODNiMGU4OGM5ZTZkMWE5ZDZjMGE1YzNkMzc1MjM5YWEyMGNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryYz1yVVEHim2emgCBH0/H5UI6NN Arh82E/LH6QBrX6tquy+66stGZZXAkIYepol7eUxF9XVzKBytOk/EXx4oHWoVUi8 Xg++T/v87TNph6tU4/951d7tfXU5I+V8iYRxmRItzAdIhiPYkb30NanXybRoo0FI ipXXplMi5hJOND1A214fxEXz1krDQoWx/dHeZqkxVdmLqLIcQ94nYyaudeQpcU2/ QOTjMigQXrcntsBN6mNlodcfzLuviDbE8vjItmlGKVNRtVgfypM6pacibwnt5Eci JD1KTKXBNKBhDmkYAKSo1mZnhMs6Mt7d8d7jMbOklteJDVxacgsXMzgpLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKLTg7DojJ5tGp1sClw9N1I5qiDPMB8GA1UdIwQY MBaAFC7CZ89sazuI6WoRvynppzpVjF5AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHNKbnoyeHJPNGpwYWhHX0tlbW5PbFdNWGtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9jZWEwMWItZWU5NC00YTAyLThkNjIt MGRjMDFmYzg4MTQxLzEvTHNKbnoyeHJPNGpwYWhHX0tlbW5PbFdNWGtBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9jZWEwMWItZWU5NC00YTAyLThkNjItMGRjMDFmYzg4MTQx LzEvTHNKbnoyeHJPNGpwYWhHX0tlbW5PbFdNWGtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmAoTh9/p FNJaSyJm6yfK1Slz6ABDQvaS0eT0HnsnbuEbrtdqg7PxdeG7SN9I8AA0noOuXdHO a+TrsbAyM/5dQG+Tk/8j1IMoUA/qF5m24mdt8gIiMO1R77xNKp4ONxuAh/XLpUkA 1KF/j/RZIJr+7EsnPNXWtkO7IZL5uncCTzuybl+XFMXJR27c9G+ojI/6468r0Kup EzFWXpe3O3fEk2C4AXNEI8yEL7q++FSXqRbiGBRRxRH1WZ2+pfD86+ERhSmtUZuM 3G1hwFEsp/TM/gGlrX6C6nN/omC1MZuHiwi+6zWI41+UVPQmKIxVBowQfSnznR2P mXM5YjyE1K4VsA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:43 2026 by rpki-client