This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft File: Lg1AUXqHO33CrrKNDtai-ZOj100.mft (raw, json) Hash identifier: TEDh2rgB13WxBK/3JKiApT3XnV11CDJBPo99PTMAboY= Subject key identifier: 6F:35:71:B2:DC:FD:3D:81:2F:DE:A0:18:B9:71:DB:AD:BC:4B:DE:76 Authority key identifier: 2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D Certificate issuer: /CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d Certificate serial: 019C41D84C6C0EC2A1F53188E608CBD2EA10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft Manifest number: 14F6 Signing time: Mon 09 Feb 2026 10:00:20 +0000 Manifest this update: Mon 09 Feb 2026 10:00:20 +0000 Manifest next update: Tue 10 Feb 2026 10:00:20 +0000 Files and hashes: 1: Lg1AUXqHO33CrrKNDtai-ZOj100.crl (hash: kZ8CFL7LfVd3C05xkZjwZR+AligeYvJ568hIZX60wzg=) 2: mgEpeI12MEc1I9Yl4CGTBmBk2bE.roa (hash: +I2yVa8SpbahJZG3cLdGFLaq+xiLLvaqsYXX2ZnSZ5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:4c:6c:0e:c2:a1:f5:31:88:e6:08:cb:d2:ea:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d Validity Not Before: Feb 9 10:00:20 2026 GMT Not After : Feb 10 10:00:20 2026 GMT Subject: CN=6f3571b2dcfd3d812fdea018b971dbadbc4bde76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:68:c2:03:52:91:5c:4c:1d:5e:18:15:23:0f: 48:36:43:47:1a:36:2f:78:5b:79:aa:79:ea:58:58: fe:fb:1d:99:35:d4:d0:15:3e:2a:e2:41:47:67:04: 48:4b:1b:8d:52:33:b7:f8:67:70:89:a3:08:5d:34: 94:6a:95:b8:cc:4d:81:c3:6a:a2:ca:88:b3:ca:89: d4:b0:b4:e6:61:fa:2e:a9:d7:67:d9:93:b5:32:c5: 82:17:2f:37:36:81:b8:0e:8a:15:b8:fe:4e:6c:74: 40:64:d1:fd:e9:33:bb:a0:1a:26:3d:e2:e9:cf:2a: 0e:e6:df:2f:43:ec:a3:16:03:a2:e2:43:1e:33:a5: b3:5f:cd:39:2d:d1:ec:a1:4e:7d:c0:e2:6f:66:a0: 01:86:ce:0f:1a:e9:66:73:4e:0d:4b:f6:83:80:74: d2:3e:1e:34:36:c8:9a:e1:38:07:a2:bf:60:0f:7b: 9e:4f:8f:c0:20:4f:6c:ef:60:2e:9f:54:d2:0d:41: 05:fe:0f:6f:86:55:b7:73:c3:42:ee:f1:13:69:4c: a6:4d:08:42:a1:22:2a:d7:cd:76:ed:0b:87:ef:e2: 73:c4:99:0e:8c:df:81:cd:6a:37:13:d9:b7:c0:f2: 6d:c8:a6:3b:c8:a8:f9:b5:56:c4:ed:3c:b8:5d:7d: 82:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:35:71:B2:DC:FD:3D:81:2F:DE:A0:18:B9:71:DB:AD:BC:4B:DE:76 X509v3 Authority Key Identifier: keyid:2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:76:37:da:93:ee:6d:46:98:28:0a:b7:1b:d0:26:75:90:b3: 59:3d:66:83:d7:97:78:62:c5:d7:a9:93:5d:5b:23:cd:22:37: cc:7c:38:54:e2:bc:52:18:85:ab:81:c6:02:c2:a9:3d:b6:88: ed:b7:7b:f5:7d:f0:43:a3:f5:1f:97:d1:8c:9a:05:c2:96:f3: 17:23:b4:92:a7:0b:6a:a3:d7:ba:5d:cb:ef:ef:56:5d:7b:77: b6:53:1e:30:e4:de:ed:17:9a:25:e3:6a:44:9a:8e:43:1b:69: 8e:23:40:0f:be:dc:b5:fa:94:09:04:bf:36:92:b7:e5:87:62: db:ff:f2:7d:8a:0f:e4:a7:a4:ad:d2:e8:2d:de:e2:24:96:5c: d9:4e:db:cb:12:fa:27:4d:26:17:9d:c6:0f:ed:ef:98:56:1a: ea:fa:66:98:15:6f:3d:2a:29:a2:03:26:9f:46:70:7e:5e:aa: b1:18:89:eb:7a:d3:42:2c:4f:72:b3:d0:d0:33:fb:cd:c2:ce: 62:cf:a1:7f:db:cd:ad:67:10:9a:67:60:81:9f:ec:29:17:08: 25:95:22:0d:5a:12:2e:3c:dd:1c:80:e9:a9:52:cb:60:62:41: 2b:e6:bd:39:da:a3:2d:60:0b:07:a5:32:18:90:3c:03:53:83: 49:6b:e8:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2ExsDsKh9TGI5gjL0uoQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlMGQ0MDUxN2E4NzNiN2RjMmFlYjI4ZDBlZDZhMmY5OTNh M2Q3NGQwHhcNMjYwMjA5MTAwMDIwWhcNMjYwMjEwMTAwMDIwWjAzMTEwLwYDVQQD Eyg2ZjM1NzFiMmRjZmQzZDgxMmZkZWEwMThiOTcxZGJhZGJjNGJkZTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7WjCA1KRXEwdXhgVIw9INkNHGjYv eFt5qnnqWFj++x2ZNdTQFT4q4kFHZwRISxuNUjO3+GdwiaMIXTSUapW4zE2Bw2qi yoizyonUsLTmYfouqddn2ZO1MsWCFy83NoG4DooVuP5ObHRAZNH96TO7oBomPeLp zyoO5t8vQ+yjFgOi4kMeM6WzX805LdHsoU59wOJvZqABhs4PGulmc04NS/aDgHTS Ph40Nsia4TgHor9gD3ueT4/AIE9s72Aun1TSDUEF/g9vhlW3c8NC7vETaUymTQhC oSIq18127QuH7+JzxJkOjN+BzWo3E9m3wPJtyKY7yKj5tVbE7Ty4XX2CCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG81cbLc/T2BL96gGLlx2628S952MB8GA1UdIwQY MBaAFC4NQFF6hzt9wq6yjQ7WovmTo9dNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGcxQVVYcUhPMzNDcnJLTkR0YWktWk9qMTAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8xNGU5MjAtMTRhNy00MWNmLWJkZDct NTc3ODY5NTFiNzhmLzEvTGcxQVVYcUhPMzNDcnJLTkR0YWktWk9qMTAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8xNGU5MjAtMTRhNy00MWNmLWJkZDctNTc3ODY5NTFiNzhm LzEvTGcxQVVYcUhPMzNDcnJLTkR0YWktWk9qMTAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMXY32pPu bUaYKAq3G9AmdZCzWT1mg9eXeGLF16mTXVsjzSI3zHw4VOK8UhiFq4HGAsKpPbaI 7bd79X3wQ6P1H5fRjJoFwpbzFyO0kqcLaqPXul3L7+9WXXt3tlMeMOTe7ReaJeNq RJqOQxtpjiNAD77ctfqUCQS/NpK35Ydi2//yfYoP5KekrdLoLd7iJJZc2U7byxL6 J00mF53GD+3vmFYa6vpmmBVvPSopogMmn0Zwfl6qsRiJ63rTQixPcrPQ0DP7zcLO Ys+hf9vNrWcQmmdggZ/sKRcIJZUiDVoSLjzdHIDpqVLLYGJBK+a9OdqjLWALB6Uy GJA8A1ODSWvoNw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:27 2026 by rpki-client