This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft File: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft (raw, json) Hash identifier: hPIQb13VeFKdEAhLcljD3JNhT8VA4B4uZJ9bglEFumY= Subject key identifier: 6F:63:E9:CC:D1:E8:9D:60:69:05:88:08:70:15:F9:D7:99:F3:C7:9E Authority key identifier: 94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13 Certificate issuer: /CN=94d161593da815cac58d3479652d048480d26713 Certificate serial: 019C4358DCCDA9D31F98DAEA4F654020037A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 17:00:22 +0000 Manifest this update: Mon 09 Feb 2026 17:00:22 +0000 Manifest next update: Tue 10 Feb 2026 17:00:22 +0000 Files and hashes: 1: NMR7KZn1Z_LDb0FIsWed94Of3O8.roa (hash: UuPG/G90OEoV3EyjWzry/XA+lmqTIoigWKSMDTb4YCw=) 2: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl (hash: xKQB4g1TCPQZ91Enle/rRJzwT5ppQABw8ksiXX7B1/4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:dc:cd:a9:d3:1f:98:da:ea:4f:65:40:20:03:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94d161593da815cac58d3479652d048480d26713 Validity Not Before: Feb 9 17:00:22 2026 GMT Not After : Feb 10 17:00:22 2026 GMT Subject: CN=6f63e9ccd1e89d60690588087015f9d799f3c79e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4e:56:fa:40:53:ba:71:2f:91:0a:32:10:40: fe:5a:6d:ea:5b:63:33:61:26:84:94:43:36:a9:8c: 84:68:5c:2a:90:72:a0:5f:d4:18:2d:8c:5d:d6:49: e7:b6:d3:3d:4c:5a:af:7a:95:c2:1b:16:eb:97:1d: 17:96:80:04:0a:e6:d7:9b:54:19:5f:ab:da:b1:67: 01:2f:5b:c7:28:a5:a7:28:3b:27:a0:f4:42:61:e6: 1a:02:2e:a8:21:c5:31:13:44:da:26:97:76:f5:46: bf:a6:49:8d:ff:68:99:36:89:fe:1e:ef:33:0b:a3: c2:73:a8:eb:71:27:71:c6:92:c7:b8:ac:76:2f:93: 30:b1:6b:35:85:5e:b1:02:98:72:44:71:2d:1a:43: 94:54:ff:4e:13:c6:7f:26:bc:3b:e1:54:38:78:ca: 0d:74:77:b1:ba:5e:73:ad:24:c6:61:43:92:bb:3a: f2:2b:3f:d9:4e:7f:47:62:a8:03:0c:0e:36:31:56: 35:3d:6a:f8:a2:88:e0:d6:91:1c:e8:51:d4:68:29: f1:7c:bd:3e:59:00:0c:23:25:83:10:50:bd:14:e7: b3:f1:31:e0:4f:53:68:7b:a6:03:e4:12:d9:9f:61: 98:e1:72:c1:b7:39:2b:2e:32:d7:d5:8f:ac:31:9e: 2c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:63:E9:CC:D1:E8:9D:60:69:05:88:08:70:15:F9:D7:99:F3:C7:9E X509v3 Authority Key Identifier: keyid:94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:94:e7:b6:bc:32:04:10:37:92:b6:80:f3:c5:89:c6:95:6d: 02:19:09:77:fe:d8:73:23:02:f4:93:fb:8d:48:40:6a:16:94: 53:4c:e1:15:24:4c:50:73:da:c1:3e:65:aa:2b:9f:bb:54:6e: 26:2f:3c:14:0f:b3:20:36:d9:1e:c0:33:70:9e:0c:c3:05:88: da:af:30:ef:13:03:48:9d:06:cd:44:7b:46:c8:d5:c1:27:24: c4:2e:23:84:a2:06:19:c8:b7:82:dd:a7:91:ac:23:84:f6:43: 87:4d:48:9c:56:b0:73:8d:89:9e:3f:68:66:7f:9f:81:ee:45: d5:99:a3:e1:e5:ab:d4:be:45:db:d5:3a:4e:b8:6e:86:a3:fb: 9d:26:84:56:a9:9f:05:9f:74:10:ef:19:9d:13:ec:b4:49:31: a8:d9:ca:7f:91:59:37:29:91:c1:95:db:b0:71:c5:67:3e:15: f8:1e:fc:02:1c:af:d5:a5:f4:38:95:dd:df:38:34:2a:3f:10: 9b:69:6c:51:64:e1:59:c6:2e:13:89:33:e1:f2:f5:ab:06:ea: ba:54:81:46:ef:11:d4:70:14:4f:dd:f4:d2:db:a1:75:80:d9: da:fd:f2:96:18:0a:f5:58:3c:1f:5c:a9:90:07:51:42:12:9f: c4:44:cb:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWNzNqdMfmNrqT2VAIAN6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0ZDE2MTU5M2RhODE1Y2FjNThkMzQ3OTY1MmQwNDg0ODBk MjY3MTMwHhcNMjYwMjA5MTcwMDIyWhcNMjYwMjEwMTcwMDIyWjAzMTEwLwYDVQQD Eyg2ZjYzZTljY2QxZTg5ZDYwNjkwNTg4MDg3MDE1ZjlkNzk5ZjNjNzllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyU5W+kBTunEvkQoyEED+Wm3qW2Mz YSaElEM2qYyEaFwqkHKgX9QYLYxd1knnttM9TFqvepXCGxbrlx0XloAECubXm1QZ X6vasWcBL1vHKKWnKDsnoPRCYeYaAi6oIcUxE0TaJpd29Ua/pkmN/2iZNon+Hu8z C6PCc6jrcSdxxpLHuKx2L5MwsWs1hV6xAphyRHEtGkOUVP9OE8Z/Jrw74VQ4eMoN dHexul5zrSTGYUOSuzryKz/ZTn9HYqgDDA42MVY1PWr4oojg1pEc6FHUaCnxfL0+ WQAMIyWDEFC9FOez8THgT1Noe6YD5BLZn2GY4XLBtzkrLjLX1Y+sMZ4s8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG9j6czR6J1gaQWICHAV+deZ88eeMB8GA1UdIwQY MBaAFJTRYVk9qBXKxY00eWUtBISA0mcTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE5GaFdUMm9GY3JGalRSNVpTMEVoSURTWnhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8zYzI5NTYtZGY5ZC00MDQ4LWIwMTEt ZDhlOThiODVhZWE0LzEvbE5GaFdUMm9GY3JGalRSNVpTMEVoSURTWnhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS8zYzI5NTYtZGY5ZC00MDQ4LWIwMTEtZDhlOThiODVhZWE0 LzEvbE5GaFdUMm9GY3JGalRSNVpTMEVoSURTWnhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcJTntrwy BBA3kraA88WJxpVtAhkJd/7YcyMC9JP7jUhAahaUU0zhFSRMUHPawT5lqiufu1Ru Ji88FA+zIDbZHsAzcJ4MwwWI2q8w7xMDSJ0GzUR7RsjVwSckxC4jhKIGGci3gt2n kawjhPZDh01InFawc42Jnj9oZn+fge5F1Zmj4eWr1L5F29U6TrhuhqP7nSaEVqmf BZ90EO8ZnRPstEkxqNnKf5FZNymRwZXbsHHFZz4V+B78Ahyv1aX0OJXd3zg0Kj8Q m2lsUWThWcYuE4kz4fL1qwbqulSBRu8R1HAUT9300tuhdYDZ2v3ylhgK9Vg8H1yp kAdRQhKfxETL8w== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:27 2026 by rpki-client