This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft File: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json) Hash identifier: a8lMaZGCAXF4ghXtRy8uQAKsOMqWjjxzdAklViyF9bU= Subject key identifier: 11:83:FE:98:38:59:BB:CA:D2:E3:3A:1C:1F:1F:21:0C:F7:D2:7F:5C Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac Certificate serial: 019C42B4930AA8E7129B9C60185D4A3256C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft Manifest number: 1579 Signing time: Mon 09 Feb 2026 14:00:56 +0000 Manifest this update: Mon 09 Feb 2026 14:00:56 +0000 Manifest next update: Tue 10 Feb 2026 14:00:56 +0000 Files and hashes: 1: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: 4U6NHob1Y88t6OMrV7kcowdTVOgYqtlN66Q5mn+3gjQ=) 2: xR-_0CxJhk7opaVLnqtilVW0u5k.roa (hash: smIJQKujLMH2xBq3OokVMe7VXadkyznDo/jDUgPKJpc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:93:0a:a8:e7:12:9b:9c:60:18:5d:4a:32:56:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac Validity Not Before: Feb 9 14:00:56 2026 GMT Not After : Feb 10 14:00:56 2026 GMT Subject: CN=1183fe983859bbcad2e33a1c1f1f210cf7d27f5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:aa:84:00:5d:b1:0f:e1:b0:80:90:96:95:77: c5:b6:f5:50:38:bf:5e:29:b8:0d:fb:09:ad:13:91: 1f:a1:c7:8a:1a:27:65:0e:d4:29:f9:74:a0:ba:8e: b1:91:38:e4:a9:44:3a:ed:6d:26:a7:24:ab:16:1a: c0:6b:c4:82:54:95:45:cf:06:01:4b:25:9e:dc:5b: 9e:83:f7:8e:56:d6:8a:27:d5:9d:ee:86:d2:1d:68: d1:f6:ee:b5:66:a1:e8:0a:a6:99:82:8e:77:be:67: 3f:29:c5:e9:5c:5c:86:7a:10:70:ff:5d:d3:f1:b6: f9:42:d0:86:36:3c:81:92:17:b7:28:02:e2:e8:56: c4:08:10:41:9a:ee:f3:4e:e1:89:d3:fe:08:da:43: 55:68:55:43:a6:39:91:73:ee:fc:65:d9:c5:bd:5c: 92:71:85:ef:7a:e3:c8:fe:5b:0c:c6:01:c1:64:90: 1c:9b:79:f5:6a:bd:ff:e1:eb:46:68:56:2b:59:b1: e6:f5:66:78:08:de:88:05:12:db:83:23:e3:45:2e: 1e:d0:82:b5:aa:50:9e:1f:54:bf:85:a5:dc:4f:97: c0:02:33:46:e9:13:43:16:30:52:a6:57:17:d7:7e: ba:90:9d:91:61:15:c8:85:85:23:fa:65:56:b6:9a: 25:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:83:FE:98:38:59:BB:CA:D2:E3:3A:1C:1F:1F:21:0C:F7:D2:7F:5C X509v3 Authority Key Identifier: keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:a2:6c:39:3e:b1:a5:25:04:ea:6e:25:4b:da:f8:dd:b4:4e: 14:52:90:61:9e:8f:ba:c9:a7:05:b2:e5:09:7b:d5:dc:f4:36: ee:d9:09:d8:83:2d:e2:c3:bf:fe:be:2f:c6:b6:ce:61:9f:42: df:94:ca:30:dd:f0:5c:39:8e:4f:a3:42:ea:94:e3:11:57:c9: 3f:e3:73:47:eb:fc:a8:76:34:df:92:0d:6c:0d:23:72:17:d3: f1:b7:54:85:72:13:bd:db:a4:91:b6:66:c6:15:62:31:db:d0: a0:3a:b5:1a:8f:90:a1:20:38:a5:e1:82:f8:93:3c:d7:9c:a7: 0d:b0:69:f2:60:bf:b4:25:1b:16:93:0f:e1:6e:9f:6e:2d:8f: 55:bf:5c:3f:1d:1c:1f:67:66:96:6a:35:ed:1c:80:8d:67:40: 87:e6:4c:6e:5b:c6:90:f1:f4:02:c8:88:bf:96:2e:b2:ee:2f: 42:2f:6f:1f:11:40:b9:d4:ab:2d:06:6a:5a:eb:4a:cb:1c:7f: ec:27:44:b8:5d:0c:4b:79:47:6b:41:9c:c0:74:33:81:2f:45: 78:58:05:2b:60:77:eb:09:9a:9b:f8:c9:68:8c:e6:7b:05:32: 6f:fb:09:ae:f5:7f:8f:d0:37:7f:46:34:ae:6e:b6:e5:92:89: 46:29:86:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtJMKqOcSm5xgGF1KMlbJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MTk5MzYwMjU5ZmE1YjM1YjgyOTUzYzVlZDk3OTk5MjI4 MzQxYWMwHhcNMjYwMjA5MTQwMDU2WhcNMjYwMjEwMTQwMDU2WjAzMTEwLwYDVQQD EygxMTgzZmU5ODM4NTliYmNhZDJlMzNhMWMxZjFmMjEwY2Y3ZDI3ZjVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6qEAF2xD+GwgJCWlXfFtvVQOL9e KbgN+wmtE5EfoceKGidlDtQp+XSguo6xkTjkqUQ67W0mpySrFhrAa8SCVJVFzwYB SyWe3Fueg/eOVtaKJ9Wd7obSHWjR9u61ZqHoCqaZgo53vmc/KcXpXFyGehBw/13T 8bb5QtCGNjyBkhe3KALi6FbECBBBmu7zTuGJ0/4I2kNVaFVDpjmRc+78ZdnFvVyS cYXveuPI/lsMxgHBZJAcm3n1ar3/4etGaFYrWbHm9WZ4CN6IBRLbgyPjRS4e0IK1 qlCeH1S/haXcT5fAAjNG6RNDFjBSplcX1366kJ2RYRXIhYUj+mVWtpol7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBGD/pg4WbvK0uM6HB8fIQz30n9cMB8GA1UdIwQY MBaAFJYZk2Aln6WzW4KVPF7ZeZkig0GsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9iZjcwZDMtNzBmYS00YTMyLTgwOWYt MmE1OTFjMTQ5ZDdhLzEvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9iZjcwZDMtNzBmYS00YTMyLTgwOWYtMmE1OTFjMTQ5ZDdh LzEvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVqJsOT6x pSUE6m4lS9r43bROFFKQYZ6PusmnBbLlCXvV3PQ27tkJ2IMt4sO//r4vxrbOYZ9C 35TKMN3wXDmOT6NC6pTjEVfJP+NzR+v8qHY035INbA0jchfT8bdUhXITvdukkbZm xhViMdvQoDq1Go+QoSA4peGC+JM815ynDbBp8mC/tCUbFpMP4W6fbi2PVb9cPx0c H2dmlmo17RyAjWdAh+ZMblvGkPH0AsiIv5Yusu4vQi9vHxFAudSrLQZqWutKyxx/ 7CdEuF0MS3lHa0GcwHQzgS9FeFgFK2B36wmam/jJaIzmewUyb/sJrvV/j9A3f0Y0 rm625ZKJRimGjA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:59 2026 by rpki-client