This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft File: lf0DtfNbMXtNMv8aSywXuzdsIeE.mft (raw, json) Hash identifier: MYXkqAi7srERPfSzhXdSflVnluAtWR5HC/P0QTud6MY= Subject key identifier: 18:94:D7:31:20:10:27:A7:21:0A:6C:E1:0B:14:65:BC:6B:89:C6:72 Authority key identifier: 95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1 Certificate issuer: /CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1 Certificate serial: 019C42EADF054C8693CD18EB857D105A826D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft Manifest number: 141D Signing time: Mon 09 Feb 2026 15:00:14 +0000 Manifest this update: Mon 09 Feb 2026 15:00:14 +0000 Manifest next update: Tue 10 Feb 2026 15:00:14 +0000 Files and hashes: 1: lf0DtfNbMXtNMv8aSywXuzdsIeE.crl (hash: 4XpB90u9kXUz47mqbtjzTg3438dU1wbrhCowvpSaf04=) 2: lkOGQ8G7v7KQ2Y0qWOrKVoZYTms.roa (hash: d0roMsqX9vnomDLuPDxCBkqVZxb8IXHny4aGCS66Mnk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:ea:df:05:4c:86:93:cd:18:eb:85:7d:10:5a:82:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1 Validity Not Before: Feb 9 15:00:14 2026 GMT Not After : Feb 10 15:00:14 2026 GMT Subject: CN=1894d731201027a7210a6ce10b1465bc6b89c672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:46:22:82:71:8c:2a:13:e0:33:74:7d:5c:48: fb:16:60:68:ba:6f:bb:a5:36:20:bb:a0:ae:6b:5f: 9a:4c:3d:3e:56:b7:1a:83:21:d8:62:ad:61:76:55: e7:7e:cc:bb:28:97:fb:fc:39:03:80:c1:44:78:8d: c6:03:b3:b1:91:83:67:7e:9e:5a:20:12:01:0b:e8: 98:d7:e9:f9:05:c9:91:75:fa:74:e1:96:ab:1f:fb: 9d:14:ba:8d:e7:47:5f:53:c7:24:48:4c:ba:99:db: 9c:5e:e9:d5:b1:b1:74:00:42:d5:22:97:26:7f:df: 2a:1d:d5:b1:19:e1:c9:38:69:15:d2:a7:22:2a:4c: 9e:03:89:bd:5c:48:c5:33:d2:6f:62:30:ee:38:8c: c2:a0:9d:bf:e3:08:3b:3a:93:5f:1a:3f:98:f4:37: 1b:f1:ca:49:e0:3c:81:3e:73:85:3d:e1:fe:7b:a1: 65:e4:5b:f3:1d:06:ea:f9:07:20:77:31:1d:47:65: dd:de:b6:5c:f1:a3:4b:42:4b:21:43:72:9e:13:ed: 5c:24:24:ca:0b:72:5d:4d:c6:94:5f:f8:33:11:26: 59:80:f8:da:73:86:97:81:ab:96:2f:db:67:f7:c6: 9a:1f:3a:be:48:38:69:68:3b:db:d8:b9:06:b8:c2: e4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:94:D7:31:20:10:27:A7:21:0A:6C:E1:0B:14:65:BC:6B:89:C6:72 X509v3 Authority Key Identifier: keyid:95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:03:28:29:97:c2:84:e3:c5:68:46:44:fd:92:93:1d:a7:48: 15:77:b1:de:70:31:b5:c1:d7:fc:1e:e4:e2:77:ef:04:56:0b: 58:a4:e7:80:e0:db:b6:73:ac:53:98:eb:15:30:db:47:f3:9d: 11:a2:8e:aa:3f:c9:39:a9:48:a7:62:25:21:cd:4c:7a:7d:be: 60:48:8d:64:5e:b5:6b:80:de:3d:06:08:70:be:7b:cf:b4:b9: 3a:1f:95:a2:94:92:74:e2:b8:f6:db:21:c8:20:50:67:d9:86: 9b:27:3f:e4:52:63:8c:03:e6:28:3e:70:b6:3b:07:e5:19:70: d3:a6:4d:7e:b1:a0:a8:25:55:36:34:a0:52:8b:1e:53:2d:1f: 5d:e8:e3:49:6d:89:b1:02:c9:47:52:3b:85:28:14:34:15:31: 8f:a5:fa:f4:c4:fb:f0:a7:81:44:67:28:57:e3:8f:d4:b6:e6: 1c:39:70:8c:0e:13:f0:0b:9e:ed:00:2f:a8:da:fc:a0:9d:ca: 6e:90:38:6d:f5:c5:7a:57:c4:d4:b3:7c:b5:5a:2a:84:96:43: a8:14:b0:9b:a1:9e:70:00:50:35:84:be:62:fa:ce:c3:52:95: d8:d3:d4:27:28:cf:73:24:07:39:8b:4d:45:7c:b0:07:ea:52: 35:39:dd:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6t8FTIaTzRjrhX0QWoJtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1ZmQwM2I1ZjM1YjMxN2I0ZDMyZmYxYTRiMmMxN2JiMzc2 YzIxZTEwHhcNMjYwMjA5MTUwMDE0WhcNMjYwMjEwMTUwMDE0WjAzMTEwLwYDVQQD EygxODk0ZDczMTIwMTAyN2E3MjEwYTZjZTEwYjE0NjViYzZiODljNjcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEYignGMKhPgM3R9XEj7FmBoum+7 pTYgu6Cua1+aTD0+VrcagyHYYq1hdlXnfsy7KJf7/DkDgMFEeI3GA7OxkYNnfp5a IBIBC+iY1+n5BcmRdfp04ZarH/udFLqN50dfU8ckSEy6mducXunVsbF0AELVIpcm f98qHdWxGeHJOGkV0qciKkyeA4m9XEjFM9JvYjDuOIzCoJ2/4wg7OpNfGj+Y9Dcb 8cpJ4DyBPnOFPeH+e6Fl5FvzHQbq+QcgdzEdR2Xd3rZc8aNLQkshQ3KeE+1cJCTK C3JdTcaUX/gzESZZgPjac4aXgauWL9tn98aaHzq+SDhpaDvb2LkGuMLkhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBiU1zEgECenIQps4QsUZbxricZyMB8GA1UdIwQY MBaAFJX9A7XzWzF7TTL/GkssF7s3bCHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGYwRHRmTmJNWHROTXY4YVN5d1h1emRzSWVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9mOWQwZTktYmRhNC00MmIyLThlN2Et ZDYwZjQ0YTkzNGIxLzEvbGYwRHRmTmJNWHROTXY4YVN5d1h1emRzSWVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC9mOWQwZTktYmRhNC00MmIyLThlN2EtZDYwZjQ0YTkzNGIx LzEvbGYwRHRmTmJNWHROTXY4YVN5d1h1emRzSWVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAigMoKZfC hOPFaEZE/ZKTHadIFXex3nAxtcHX/B7k4nfvBFYLWKTngODbtnOsU5jrFTDbR/Od EaKOqj/JOalIp2IlIc1Men2+YEiNZF61a4DePQYIcL57z7S5Oh+VopSSdOK49tsh yCBQZ9mGmyc/5FJjjAPmKD5wtjsH5Rlw06ZNfrGgqCVVNjSgUoseUy0fXejjSW2J sQLJR1I7hSgUNBUxj6X69MT78KeBRGcoV+OP1LbmHDlwjA4T8Aue7QAvqNr8oJ3K bpA4bfXFelfE1LN8tVoqhJZDqBSwm6GecABQNYS+YvrOw1KV2NPUJyjPcyQHOYtN RXywB+pSNTndbA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:41 2026 by rpki-client