This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft File: lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft (raw, json) Hash identifier: +JFjRWnFGZu398izUXjqfvxmazIYXzlG4OXuJ2PFhOQ= Subject key identifier: C7:64:87:34:2F:DA:55:20:06:CF:2A:15:DD:67:D9:3E:0D:30:4E:49 Authority key identifier: 95:6E:31:6C:98:38:04:C2:50:1E:CC:5A:BE:A5:3A:2A:83:B5:73:24 Certificate issuer: /CN=956e316c983804c2501ecc5abea53a2a83b57324 Certificate serial: 019C4133BF36C8601EA97F54E3408E39E64D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lW4xbJg4BMJQHsxavqU6KoO1cyQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft Manifest number: 17DF Signing time: Mon 09 Feb 2026 07:00:36 +0000 Manifest this update: Mon 09 Feb 2026 07:00:36 +0000 Manifest next update: Tue 10 Feb 2026 07:00:36 +0000 Files and hashes: 1: lW4xbJg4BMJQHsxavqU6KoO1cyQ.crl (hash: Qq1I71DetCjXRli9g6pi24EdcT0JzHzaZdz5VB5pGko=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft rsync://rpki.ripe.net/repository/DEFAULT/lW4xbJg4BMJQHsxavqU6KoO1cyQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:bf:36:c8:60:1e:a9:7f:54:e3:40:8e:39:e6:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=956e316c983804c2501ecc5abea53a2a83b57324 Validity Not Before: Feb 9 07:00:36 2026 GMT Not After : Feb 10 07:00:36 2026 GMT Subject: CN=c76487342fda552006cf2a15dd67d93e0d304e49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:be:58:11:ac:f8:73:6f:e9:36:44:ed:5f:d2: 94:49:7c:d1:74:9a:15:19:23:5e:b4:c0:e0:72:5f: 86:20:5e:50:10:76:68:50:18:f4:37:b4:96:98:63: 39:8b:0b:27:b5:04:c2:ab:9f:1a:be:09:d6:07:9a: a6:9b:9f:09:fe:33:a6:ed:d1:7c:ef:9e:0f:77:95: b8:f4:e8:5a:15:ef:e8:04:fc:0d:29:0a:87:c4:2c: 75:41:7f:94:6c:09:11:90:31:16:41:71:42:8f:90: b0:94:53:f7:5b:1f:4b:c3:a2:56:bd:53:91:65:d7: b5:b9:46:8c:56:f4:b9:ba:35:40:ad:89:31:77:e8: 21:29:de:a7:39:17:91:46:ac:27:9b:ed:e1:a8:db: f0:bf:b6:d6:d1:10:0a:74:b8:49:08:59:a6:e5:0e: 01:02:60:77:17:26:12:9d:ef:63:76:f9:73:9a:d1: ba:87:8f:74:4b:95:0a:bd:9c:a0:dd:f1:40:cc:bd: 86:e1:9d:3b:87:ae:35:72:7b:66:54:24:5e:8f:5a: fa:29:e0:14:a6:39:bf:92:6f:1d:84:4c:3b:83:41: 7b:fb:00:4f:3a:cc:0e:8c:97:27:b8:4b:ab:15:e1: 46:5f:96:31:85:0c:65:c8:6f:26:5b:89:47:31:36: 94:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:64:87:34:2F:DA:55:20:06:CF:2A:15:DD:67:D9:3E:0D:30:4E:49 X509v3 Authority Key Identifier: keyid:95:6E:31:6C:98:38:04:C2:50:1E:CC:5A:BE:A5:3A:2A:83:B5:73:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lW4xbJg4BMJQHsxavqU6KoO1cyQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:96:c3:70:b6:51:9e:fb:47:f6:2e:17:67:8d:01:8e:62:09: 03:a3:1f:b1:fc:fa:c5:f8:6f:46:99:60:be:04:ab:5f:6f:7f: 93:20:ed:fc:2a:98:6e:64:49:e2:1d:22:7b:0c:bd:ed:c6:3f: 74:f0:ab:20:8e:ae:2b:56:ec:f5:63:ed:dd:5a:67:da:c4:30: d4:94:3b:46:7f:06:4e:ec:62:da:01:c8:cd:a9:56:c6:5d:12: b8:f7:15:eb:5d:55:18:af:41:63:32:20:3d:53:ec:fc:b9:ae: f0:ea:d4:ca:9b:e2:64:db:10:18:92:03:27:9c:c2:48:a4:67: 9e:32:b3:60:1d:02:9c:66:d4:35:80:29:a0:a1:df:7a:c6:cd: 59:07:9e:86:a4:8d:47:7b:37:01:a0:32:81:e2:f3:1f:c8:17: 06:fd:40:63:9f:95:f4:bd:84:44:0c:c4:fd:ca:a2:f5:e4:0e: 01:35:f8:25:b1:c0:86:1e:a1:2c:bf:b9:ba:37:1e:12:24:04: 10:05:fe:f3:cc:fb:15:82:2d:9c:5a:1c:c3:60:7c:1c:a5:6b: 95:48:93:cf:4a:18:e9:3b:b7:83:72:ff:4c:89:16:82:57:71: f1:6c:7c:d9:8e:17:e0:21:72:1e:b3:66:e3:74:af:67:5d:dd: f0:01:c9:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM782yGAeqX9U40COOeZNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1NmUzMTZjOTgzODA0YzI1MDFlY2M1YWJlYTUzYTJhODNi NTczMjQwHhcNMjYwMjA5MDcwMDM2WhcNMjYwMjEwMDcwMDM2WjAzMTEwLwYDVQQD EyhjNzY0ODczNDJmZGE1NTIwMDZjZjJhMTVkZDY3ZDkzZTBkMzA0ZTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr75YEaz4c2/pNkTtX9KUSXzRdJoV GSNetMDgcl+GIF5QEHZoUBj0N7SWmGM5iwsntQTCq58avgnWB5qmm58J/jOm7dF8 754Pd5W49OhaFe/oBPwNKQqHxCx1QX+UbAkRkDEWQXFCj5CwlFP3Wx9Lw6JWvVOR Zde1uUaMVvS5ujVArYkxd+ghKd6nOReRRqwnm+3hqNvwv7bW0RAKdLhJCFmm5Q4B AmB3FyYSne9jdvlzmtG6h490S5UKvZyg3fFAzL2G4Z07h641cntmVCRej1r6KeAU pjm/km8dhEw7g0F7+wBPOswOjJcnuEurFeFGX5YxhQxlyG8mW4lHMTaURQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMdkhzQv2lUgBs8qFd1n2T4NME5JMB8GA1UdIwQY MBaAFJVuMWyYOATCUB7MWr6lOiqDtXMkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFc0eGJKZzRCTUpRSHN4YXZxVTZLb08xY3lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi8wMjI0MGYtZTA4MC00YmU5LTkzYzQt Mzk2ZmNkYTY0OTBjLzEvbFc0eGJKZzRCTUpRSHN4YXZxVTZLb08xY3lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi8wMjI0MGYtZTA4MC00YmU5LTkzYzQtMzk2ZmNkYTY0OTBj LzEvbFc0eGJKZzRCTUpRSHN4YXZxVTZLb08xY3lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACJbDcLZR nvtH9i4XZ40BjmIJA6Mfsfz6xfhvRplgvgSrX29/kyDt/CqYbmRJ4h0iewy97cY/ dPCrII6uK1bs9WPt3Vpn2sQw1JQ7Rn8GTuxi2gHIzalWxl0SuPcV611VGK9BYzIg PVPs/Lmu8OrUypviZNsQGJIDJ5zCSKRnnjKzYB0CnGbUNYApoKHfesbNWQeehqSN R3s3AaAygeLzH8gXBv1AY5+V9L2ERAzE/cqi9eQOATX4JbHAhh6hLL+5ujceEiQE EAX+88z7FYItnFocw2B8HKVrlUiTz0oY6Tu3g3L/TIkWgldx8Wx82Y4X4CFyHrNm 43SvZ13d8AHJsw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:43 2026 by rpki-client