This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft File: _l28QbEed7xEvSxzVVS1tCWNDDM.mft (raw, json) Hash identifier: lkC3I/znCDNRODd07ebbt5LPOAA0Eyl52Liu+3U76h0= Subject key identifier: 02:B4:13:ED:04:AF:57:6D:BD:A6:FE:A9:C3:79:13:94:22:2C:69:E2 Authority key identifier: FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33 Certificate issuer: /CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33 Certificate serial: 019C4511301323C77991209CF22A6F73D0F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft Manifest number: 1812 Signing time: Tue 10 Feb 2026 01:01:20 +0000 Manifest this update: Tue 10 Feb 2026 01:01:20 +0000 Manifest next update: Wed 11 Feb 2026 01:01:20 +0000 Files and hashes: 1: _l28QbEed7xEvSxzVVS1tCWNDDM.crl (hash: AIyiqqiHop9Db0HmZdjoBWOsCooZZsV8EoE5CbZrUF0=) 2: vzX0LpiRwEQlpNTtMNXqGCdmemM.roa (hash: KNuGavq6SzPf6J1CyBPc8g7thzHVaBolgWDilffZwwY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.crl rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:11:30:13:23:c7:79:91:20:9c:f2:2a:6f:73:d0:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33 Validity Not Before: Feb 10 01:01:20 2026 GMT Not After : Feb 11 01:01:20 2026 GMT Subject: CN=02b413ed04af576dbda6fea9c3791394222c69e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:47:ff:a5:41:d2:b7:70:b9:ac:3b:59:bf:e9: c3:69:cc:d4:ad:da:43:33:e4:f9:17:0a:0e:18:a4: e8:1e:9c:f6:d5:c2:b5:8e:34:c1:35:cf:74:3e:d1: 5b:d7:0c:14:64:83:56:fe:b4:4c:df:69:31:ca:6b: c6:d7:40:f3:a1:2e:4d:b5:08:d6:b1:33:d1:67:a6: 3a:12:13:6d:fe:fb:9d:fd:84:21:94:15:dc:7e:9c: 8c:5b:3b:9d:c9:08:0f:6f:9f:48:28:e4:5f:13:69: d4:2b:08:d1:58:86:e0:58:7c:98:c1:e2:3c:5a:fc: 9f:f3:d8:d8:ff:87:ea:11:ed:b7:d0:85:5c:67:7c: 96:0d:fd:03:17:59:2a:de:91:d4:3b:0e:60:4f:dc: 35:9d:7f:5c:5b:09:66:07:ed:1e:a3:c0:5f:5e:23: c6:ae:55:aa:db:45:b3:38:26:dc:d0:bd:31:79:3a: 0a:30:7b:4d:21:d4:43:5f:6e:07:d3:88:6d:24:b1: d4:fd:e8:d8:8e:e4:ac:8b:62:84:7e:e6:a2:7b:24: 2e:15:66:4e:bd:75:40:cd:dd:cc:b5:8a:32:ea:c8: 4f:5e:23:e3:9c:b0:e8:4e:05:3d:76:75:be:50:32: a8:17:e7:6d:82:08:d0:43:75:b1:4c:e1:59:81:7f: b8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B4:13:ED:04:AF:57:6D:BD:A6:FE:A9:C3:79:13:94:22:2C:69:E2 X509v3 Authority Key Identifier: keyid:FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:03:2d:5a:af:04:0f:4c:b2:e8:6f:de:74:fc:51:5e:ad:41: ce:bc:62:3e:5a:d0:d3:b2:aa:78:1b:ca:69:80:92:46:04:8a: 8e:67:af:6f:1f:21:b2:32:8b:14:66:c7:b0:c6:55:1e:47:7c: 91:b8:5e:e5:c8:85:71:17:74:cb:22:a0:2c:6f:da:95:98:19: b0:f6:01:23:a4:39:db:d4:0b:37:60:c9:87:86:34:1c:fd:85: d8:cf:66:ab:47:9d:b8:7a:f4:83:41:34:bf:30:5f:96:45:f7: a1:1b:92:06:1c:fd:98:59:55:f8:4b:d7:2d:92:7e:3b:86:b8: 8f:e8:51:3b:f8:da:9f:d6:e5:38:f0:5b:5b:1d:80:75:4d:c4: 00:fb:6d:e3:02:60:f4:95:2f:78:5d:d2:c5:ed:be:04:66:ac: 67:e5:1c:71:60:dd:ca:0e:25:98:7e:8a:e8:16:5b:39:d6:cb: f2:fa:a9:58:0e:7d:ec:c8:58:8f:e1:76:b9:a3:7a:8b:1f:0a: 75:55:51:71:78:41:86:d9:c6:b2:0b:d8:a6:6e:53:0e:6b:b1: 14:95:88:52:06:85:c4:b5:5a:da:85:bb:32:d9:f0:cc:78:f9: a2:5e:1a:a7:c7:85:6b:40:42:98:33:2b:be:71:92:3e:f2:33: 5f:09:4a:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFETATI8d5kSCc8ipvc9DwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlNWRiYzQxYjExZTc3YmM0NGJkMmM3MzU1NTRiNWI0MjU4 ZDBjMzMwHhcNMjYwMjEwMDEwMTIwWhcNMjYwMjExMDEwMTIwWjAzMTEwLwYDVQQD EygwMmI0MTNlZDA0YWY1NzZkYmRhNmZlYTljMzc5MTM5NDIyMmM2OWUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0f/pUHSt3C5rDtZv+nDaczUrdpD M+T5FwoOGKToHpz21cK1jjTBNc90PtFb1wwUZINW/rRM32kxymvG10DzoS5NtQjW sTPRZ6Y6EhNt/vud/YQhlBXcfpyMWzudyQgPb59IKORfE2nUKwjRWIbgWHyYweI8 Wvyf89jY/4fqEe230IVcZ3yWDf0DF1kq3pHUOw5gT9w1nX9cWwlmB+0eo8BfXiPG rlWq20WzOCbc0L0xeToKMHtNIdRDX24H04htJLHU/ejYjuSsi2KEfuaieyQuFWZO vXVAzd3MtYoy6shPXiPjnLDoTgU9dnW+UDKoF+dtggjQQ3WxTOFZgX+4uwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAK0E+0Er1dtvab+qcN5E5QiLGniMB8GA1UdIwQY MBaAFP5dvEGxHne8RL0sc1VUtbQljQwzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2wyOFFiRWVkN3hFdlN4elZWUzF0Q1dORERNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8wODRkMzMtOWZlZC00NjIwLWI0NmMt ODhhNjMxNDgwMjZmLzEvX2wyOFFiRWVkN3hFdlN4elZWUzF0Q1dORERNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8wODRkMzMtOWZlZC00NjIwLWI0NmMtODhhNjMxNDgwMjZm LzEvX2wyOFFiRWVkN3hFdlN4elZWUzF0Q1dORERNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfAMtWq8E D0yy6G/edPxRXq1BzrxiPlrQ07KqeBvKaYCSRgSKjmevbx8hsjKLFGbHsMZVHkd8 kbhe5ciFcRd0yyKgLG/alZgZsPYBI6Q529QLN2DJh4Y0HP2F2M9mq0eduHr0g0E0 vzBflkX3oRuSBhz9mFlV+EvXLZJ+O4a4j+hRO/jan9blOPBbWx2AdU3EAPtt4wJg 9JUveF3Sxe2+BGasZ+UccWDdyg4lmH6K6BZbOdbL8vqpWA597MhYj+F2uaN6ix8K dVVRcXhBhtnGsgvYpm5TDmuxFJWIUgaFxLVa2oW7MtnwzHj5ol4ap8eFa0BCmDMr vnGSPvIzXwlK3A== -----END CERTIFICATE-----Generated at Tue Feb 10 04:20:36 2026 by rpki-client