This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft File: L1OI95ZqevrAc2x57WA7K3iGVsQ.mft (raw, json) Hash identifier: pDeihjdWLt9gHJyma5xAndSMYFzEKGJeCRIRau1abyg= Subject key identifier: 07:AD:A1:E8:3C:20:BD:85:36:EB:79:D3:EF:07:17:69:A1:DD:44:5C Authority key identifier: 2F:53:88:F7:96:6A:7A:FA:C0:73:6C:79:ED:60:3B:2B:78:86:56:C4 Certificate issuer: /CN=2f5388f7966a7afac0736c79ed603b2b788656c4 Certificate serial: 019C43C6F1660860B4F640C90E4C0B5E964D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft Manifest number: 0287 Signing time: Mon 09 Feb 2026 19:00:37 +0000 Manifest this update: Mon 09 Feb 2026 19:00:37 +0000 Manifest next update: Tue 10 Feb 2026 19:00:37 +0000 Files and hashes: 1: L1OI95ZqevrAc2x57WA7K3iGVsQ.crl (hash: t2S80K9pM484p7YgNXoRdrh2UxknD7p+y3fpreA23Gg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:f1:66:08:60:b4:f6:40:c9:0e:4c:0b:5e:96:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f5388f7966a7afac0736c79ed603b2b788656c4 Validity Not Before: Feb 9 19:00:37 2026 GMT Not After : Feb 10 19:00:37 2026 GMT Subject: CN=07ada1e83c20bd8536eb79d3ef071769a1dd445c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:a6:11:82:72:31:94:25:0c:b2:f6:db:73:0f: 6c:b9:cf:86:7d:83:85:de:fa:0c:c8:36:b3:fc:a6: 22:f8:76:30:81:d0:d8:a4:35:c0:81:3a:17:38:1c: f4:f1:4e:a9:a8:fe:03:18:ca:7c:b5:4c:96:34:cf: 6c:5a:53:7f:d6:a1:54:6c:1f:55:27:ba:4e:83:e8: aa:40:04:2a:0d:35:fe:0a:e2:6f:72:9f:5a:bc:d2: 01:ae:57:ea:45:33:44:9c:de:b5:50:67:35:8a:9a: b3:b0:22:59:81:6b:6f:0c:7b:2f:81:f3:78:56:bc: d1:50:f0:df:f5:41:72:9f:f7:5e:09:af:25:79:6f: 9f:c3:bf:55:0e:4f:7e:bf:79:1f:be:80:ed:8d:13: a6:d8:5f:7a:07:16:fe:6b:18:c7:40:e5:86:25:cd: f2:7d:ee:76:89:bd:42:a5:98:78:20:f6:2b:76:1e: 80:d6:ff:11:47:a7:ab:02:5f:27:4c:fa:b6:c2:0c: fe:a0:0b:c0:b5:52:39:11:5e:a2:8c:a3:c7:42:fa: 47:cf:48:01:e6:f0:8f:44:2e:de:82:8d:81:2b:19: d9:cd:fd:bb:46:4f:d3:73:ed:78:53:f8:a7:12:ce: f4:42:39:4b:83:a5:fc:37:5b:35:17:49:ae:b0:fd: b5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:AD:A1:E8:3C:20:BD:85:36:EB:79:D3:EF:07:17:69:A1:DD:44:5C X509v3 Authority Key Identifier: keyid:2F:53:88:F7:96:6A:7A:FA:C0:73:6C:79:ED:60:3B:2B:78:86:56:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:dd:f4:1b:76:84:ee:08:6f:98:ff:6d:1a:b8:97:da:d0:3c: f7:c2:e6:5f:a2:36:25:37:68:29:bc:04:6e:4e:2a:bd:db:b2: a6:ba:1c:a5:a0:52:7d:91:65:1d:60:0e:e7:63:e1:98:5e:a0: b1:a9:e7:6b:4b:3b:9d:69:50:63:8c:33:18:4a:a9:e7:52:97: 84:e7:43:7e:e6:2c:b1:ae:6a:cd:77:a7:d9:73:b6:4c:ee:8a: 02:67:ed:28:ce:f4:75:9c:80:9c:de:9a:be:1e:6c:42:52:6a: 14:f4:a8:da:47:2f:7f:9b:56:ac:b1:53:38:20:b7:3c:65:2d: bf:10:6d:85:36:76:16:d7:07:46:1f:d3:5e:de:d1:b9:c6:a6: fd:75:5c:d6:44:fc:d2:50:a1:ec:6d:a9:8e:d9:70:90:65:9f: 73:59:fe:50:e8:d3:fa:41:15:cd:9b:58:49:9a:40:39:20:bb: ec:69:8f:f7:94:c0:2a:b7:50:12:88:31:5c:e1:36:07:dc:2c: a1:3f:a5:4a:d9:55:5c:5b:d7:6e:37:c2:cb:19:67:bc:fc:a3: dc:b6:a5:96:0b:5d:cc:05:e4:29:65:7f:f3:da:c1:5e:85:1b: 25:84:27:f0:9f:6d:24:07:b3:8d:38:10:61:9d:a4:33:51:d3: f5:70:84:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxvFmCGC09kDJDkwLXpZNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmNTM4OGY3OTY2YTdhZmFjMDczNmM3OWVkNjAzYjJiNzg4 NjU2YzQwHhcNMjYwMjA5MTkwMDM3WhcNMjYwMjEwMTkwMDM3WjAzMTEwLwYDVQQD EygwN2FkYTFlODNjMjBiZDg1MzZlYjc5ZDNlZjA3MTc2OWExZGQ0NDVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkqYRgnIxlCUMsvbbcw9suc+GfYOF 3voMyDaz/KYi+HYwgdDYpDXAgToXOBz08U6pqP4DGMp8tUyWNM9sWlN/1qFUbB9V J7pOg+iqQAQqDTX+CuJvcp9avNIBrlfqRTNEnN61UGc1ipqzsCJZgWtvDHsvgfN4 VrzRUPDf9UFyn/deCa8leW+fw79VDk9+v3kfvoDtjROm2F96Bxb+axjHQOWGJc3y fe52ib1CpZh4IPYrdh6A1v8RR6erAl8nTPq2wgz+oAvAtVI5EV6ijKPHQvpHz0gB 5vCPRC7ego2BKxnZzf27Rk/Tc+14U/inEs70QjlLg6X8N1s1F0musP213QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAetoeg8IL2FNut50+8HF2mh3URcMB8GA1UdIwQY MBaAFC9TiPeWanr6wHNsee1gOyt4hlbEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDFPSTk1WnFldnJBYzJ4NTdXQTdLM2lHVnNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8yMjVmNDYtYzQ1Ni00ZjY1LWEzZGIt NDE5MGIxODQ2MGE3LzEvTDFPSTk1WnFldnJBYzJ4NTdXQTdLM2lHVnNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8yMjVmNDYtYzQ1Ni00ZjY1LWEzZGItNDE5MGIxODQ2MGE3 LzEvTDFPSTk1WnFldnJBYzJ4NTdXQTdLM2lHVnNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhd30G3aE 7ghvmP9tGriX2tA898LmX6I2JTdoKbwEbk4qvduyprocpaBSfZFlHWAO52PhmF6g sanna0s7nWlQY4wzGEqp51KXhOdDfuYssa5qzXen2XO2TO6KAmftKM70dZyAnN6a vh5sQlJqFPSo2kcvf5tWrLFTOCC3PGUtvxBthTZ2FtcHRh/TXt7Rucam/XVc1kT8 0lCh7G2pjtlwkGWfc1n+UOjT+kEVzZtYSZpAOSC77GmP95TAKrdQEogxXOE2B9ws oT+lStlVXFvXbjfCyxlnvPyj3LallgtdzAXkKWV/89rBXoUbJYQn8J9tJAezjTgQ YZ2kM1HT9XCEbA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:47 2026 by rpki-client