This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft File: lfdgXoUMnb8X2vC6OONvzGPCy_o.mft (raw, json) Hash identifier: 8pfIiU4ImZzUeyVDWO+gH8u2fOVX/Ikdm6I8Th+Z+vQ= Subject key identifier: 20:01:12:12:7F:35:9B:87:25:2D:9A:48:FA:65:EC:A9:D7:24:BA:BC Authority key identifier: 95:F7:60:5E:85:0C:9D:BF:17:DA:F0:BA:38:E3:6F:CC:63:C2:CB:FA Certificate issuer: /CN=95f7605e850c9dbf17daf0ba38e36fcc63c2cbfa Certificate serial: 019C438FB2BB20902C7EB18A944DA5859680 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lfdgXoUMnb8X2vC6OONvzGPCy_o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 18:00:16 +0000 Manifest this update: Mon 09 Feb 2026 18:00:16 +0000 Manifest next update: Tue 10 Feb 2026 18:00:16 +0000 Files and hashes: 1: T3Gte_sAcOYHDUpylqXZ9Stq9po.roa (hash: Z/AdHSzAsTqsVCU0cNeiAf6MSfmrxAUqR0oWpvYC1ec=) 2: lfdgXoUMnb8X2vC6OONvzGPCy_o.crl (hash: 212sIHlLrYRgG52d7SDwOBb+nJBnNf6TyH2mdN6cnTo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.crl rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft rsync://rpki.ripe.net/repository/DEFAULT/lfdgXoUMnb8X2vC6OONvzGPCy_o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:b2:bb:20:90:2c:7e:b1:8a:94:4d:a5:85:96:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95f7605e850c9dbf17daf0ba38e36fcc63c2cbfa Validity Not Before: Feb 9 18:00:16 2026 GMT Not After : Feb 10 18:00:16 2026 GMT Subject: CN=200112127f359b87252d9a48fa65eca9d724babc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:42:7a:51:80:a1:1a:5c:0b:31:b5:0b:a1:8e: eb:8b:f4:57:82:9b:0b:e6:63:66:27:2c:04:1a:8f: 2d:5b:a9:9c:b8:92:5b:0b:69:0c:ba:22:ec:bc:72: 6c:0b:35:1a:46:49:5d:e2:7f:fc:68:90:0d:af:d5: 66:fc:4a:20:8a:0e:02:05:50:7b:24:c3:69:d3:aa: c7:34:2a:27:4c:a5:c2:5d:02:9f:fa:08:a6:61:cd: dd:a4:87:cc:40:23:bf:f4:33:cb:16:53:ef:18:0c: 91:53:b1:d9:72:af:9a:08:ac:a5:cb:f2:37:a5:70: 4c:50:bd:04:d8:2c:80:ce:07:99:14:be:12:02:24: a1:bd:c8:64:b7:d2:b5:44:b2:3f:b9:5f:16:f9:6f: 74:04:52:2a:3b:d8:d5:01:1c:e4:a6:2a:0a:2e:68: d5:6e:bf:7f:4e:0e:e0:11:93:ca:08:89:7c:86:16: 75:0e:72:41:25:1d:de:7b:92:73:ba:8a:91:41:b2: a2:43:5f:aa:d5:d3:40:47:f2:30:c4:41:b5:c3:dd: 35:f1:4a:8c:9c:7d:93:0b:47:ab:ca:13:5d:f4:0d: ad:5c:e9:da:6a:b0:5d:11:28:81:cd:bb:e5:84:69: aa:e6:e7:ff:23:5f:ea:27:a3:22:b7:c0:e9:c0:1d: 91:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:01:12:12:7F:35:9B:87:25:2D:9A:48:FA:65:EC:A9:D7:24:BA:BC X509v3 Authority Key Identifier: keyid:95:F7:60:5E:85:0C:9D:BF:17:DA:F0:BA:38:E3:6F:CC:63:C2:CB:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lfdgXoUMnb8X2vC6OONvzGPCy_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:fd:f8:50:d8:20:38:e3:1f:ef:f6:35:f9:22:74:74:e7:5c: 5e:99:b0:2c:ab:63:38:54:56:3a:4c:c1:b4:a8:b8:5e:2a:83: ee:a9:09:35:cc:24:cb:f0:40:9f:73:55:5d:08:3d:03:42:73: 78:17:be:d2:52:3a:f5:18:37:80:55:0d:e9:70:a8:39:dc:64: 18:86:f5:55:f1:94:c3:25:da:23:d0:cb:e3:17:94:70:47:1b: 7e:45:51:9e:3b:28:d2:9e:28:2c:f4:77:ff:44:6d:8a:17:d8: 60:33:7b:c3:18:ad:66:a3:08:91:5a:1e:de:a4:27:db:c8:f3: dc:00:6f:9d:79:5b:08:cc:89:be:42:d4:d3:ae:7b:7f:18:fd: 04:af:b7:ab:8e:8e:2b:b0:a0:f9:0c:8d:9e:eb:96:91:dc:ac: d9:27:67:24:6a:38:06:b7:c6:1d:5d:05:73:be:bb:6b:fb:a4: 5f:75:bd:a7:32:c2:31:92:51:3e:35:66:6f:ce:b0:40:70:93: cb:af:d4:94:93:e1:ea:8f:8f:cc:89:a1:bc:43:d4:76:e7:f1: 15:70:f6:d8:b7:ae:0f:7e:68:95:38:8b:f1:f1:0c:e6:b1:a5: f3:5a:60:93:16:5f:12:5d:c2:83:ba:cb:7b:6f:3b:e1:e1:3b: d3:c0:65:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj7K7IJAsfrGKlE2lhZaAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1Zjc2MDVlODUwYzlkYmYxN2RhZjBiYTM4ZTM2ZmNjNjNj MmNiZmEwHhcNMjYwMjA5MTgwMDE2WhcNMjYwMjEwMTgwMDE2WjAzMTEwLwYDVQQD EygyMDAxMTIxMjdmMzU5Yjg3MjUyZDlhNDhmYTY1ZWNhOWQ3MjRiYWJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn0J6UYChGlwLMbULoY7ri/RXgpsL 5mNmJywEGo8tW6mcuJJbC2kMuiLsvHJsCzUaRkld4n/8aJANr9Vm/Eogig4CBVB7 JMNp06rHNConTKXCXQKf+gimYc3dpIfMQCO/9DPLFlPvGAyRU7HZcq+aCKyly/I3 pXBMUL0E2CyAzgeZFL4SAiShvchkt9K1RLI/uV8W+W90BFIqO9jVARzkpioKLmjV br9/Tg7gEZPKCIl8hhZ1DnJBJR3ee5JzuoqRQbKiQ1+q1dNAR/IwxEG1w9018UqM nH2TC0eryhNd9A2tXOnaarBdESiBzbvlhGmq5uf/I1/qJ6Mit8DpwB2RLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCABEhJ/NZuHJS2aSPpl7KnXJLq8MB8GA1UdIwQY MBaAFJX3YF6FDJ2/F9rwujjjb8xjwsv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGZkZ1hvVU1uYjhYMnZDNk9PTnZ6R1BDeV9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC85ZjNiZmEtZWYzYi00MzYxLWIzMTEt NjcwNWRjMmUzYWFhLzEvbGZkZ1hvVU1uYjhYMnZDNk9PTnZ6R1BDeV9vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC85ZjNiZmEtZWYzYi00MzYxLWIzMTEtNjcwNWRjMmUzYWFh LzEvbGZkZ1hvVU1uYjhYMnZDNk9PTnZ6R1BDeV9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPP34UNgg OOMf7/Y1+SJ0dOdcXpmwLKtjOFRWOkzBtKi4XiqD7qkJNcwky/BAn3NVXQg9A0Jz eBe+0lI69Rg3gFUN6XCoOdxkGIb1VfGUwyXaI9DL4xeUcEcbfkVRnjso0p4oLPR3 /0RtihfYYDN7wxitZqMIkVoe3qQn28jz3ABvnXlbCMyJvkLU0657fxj9BK+3q46O K7Cg+QyNnuuWkdys2SdnJGo4BrfGHV0Fc767a/ukX3W9pzLCMZJRPjVmb86wQHCT y6/UlJPh6o+PzImhvEPUdufxFXD22LeuD35olTiL8fEM5rGl81pgkxZfEl3Cg7rL e2874eE708BlFA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:22:11 2026 by rpki-client