This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft File: l37KDVyVbeF79pcQRvLrlc5hXik.mft (raw, json) Hash identifier: 0j7ipRqS/3H+XMLBAoP1E7x4H6DmR19fVw64u4nrzaU= Subject key identifier: 31:ED:A3:E5:5C:23:AF:2F:FB:AB:F2:20:82:45:DB:76:FA:18:5C:70 Authority key identifier: 97:7E:CA:0D:5C:95:6D:E1:7B:F6:97:10:46:F2:EB:95:CE:61:5E:29 Certificate issuer: /CN=977eca0d5c956de17bf6971046f2eb95ce615e29 Certificate serial: 019C4322DFE7917AEA4DA77F55B12A76D89C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:01:24 +0000 Manifest this update: Mon 09 Feb 2026 16:01:24 +0000 Manifest next update: Tue 10 Feb 2026 16:01:24 +0000 Files and hashes: 1: l37KDVyVbeF79pcQRvLrlc5hXik.crl (hash: GsLgB/t7dvpRJ2K3JiDRtfVeEpXGuqQhFAq08WSmn4M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.crl rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:df:e7:91:7a:ea:4d:a7:7f:55:b1:2a:76:d8:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=977eca0d5c956de17bf6971046f2eb95ce615e29 Validity Not Before: Feb 9 16:01:24 2026 GMT Not After : Feb 10 16:01:24 2026 GMT Subject: CN=31eda3e55c23af2ffbabf2208245db76fa185c70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:99:7d:38:90:3e:97:b4:76:66:85:45:8e:16: e0:45:c0:bb:f7:57:23:d2:3d:77:e7:e9:c1:99:a4: 11:bb:cb:7f:e1:ae:30:a7:a1:4e:2c:b0:48:d8:b5: 77:6e:41:a6:69:c3:fb:1c:74:a5:f1:d0:12:1b:bb: 12:54:a1:f8:c3:7b:85:9e:7e:a1:55:c7:9e:92:6f: b6:3b:21:6e:85:4b:69:74:79:4e:a6:13:e3:72:9b: e1:47:f6:46:74:cd:3b:43:73:f3:02:ab:2c:5d:7e: 5c:90:86:7e:ba:a0:d1:9e:47:af:ab:66:5b:a2:e5: 52:a2:63:2b:05:fb:86:1d:cd:4e:43:c8:ff:e9:ff: 2d:42:ec:6c:ba:e7:9c:9a:58:9f:c8:d1:5d:cb:6e: 82:0d:38:c6:45:58:d9:f4:d1:c6:22:7b:f8:9a:c6: 5d:bb:ac:cf:5c:58:8b:5a:6a:89:e4:71:8c:9d:22: 51:68:20:f8:98:bc:a6:a6:c4:4b:a6:0b:9f:87:dd: 5c:c1:8c:31:71:d2:a8:11:c2:55:37:4c:c4:16:6e: 03:87:32:14:4b:79:0f:ef:26:b6:ed:ce:cd:4c:d5: 55:d5:10:09:e5:e1:d8:9e:ec:7d:9d:22:6f:2b:7c: 07:f4:67:ef:08:6f:d1:8d:da:68:bd:3c:50:99:8c: b9:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:ED:A3:E5:5C:23:AF:2F:FB:AB:F2:20:82:45:DB:76:FA:18:5C:70 X509v3 Authority Key Identifier: keyid:97:7E:CA:0D:5C:95:6D:E1:7B:F6:97:10:46:F2:EB:95:CE:61:5E:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:e7:9e:0a:a2:d2:73:0b:8c:18:ec:d1:94:83:c6:00:3f:8c: 58:54:7a:0a:53:85:7f:d5:8f:89:c2:9b:1c:07:11:53:cd:c0: a9:2f:82:2c:26:d9:11:9f:43:86:c2:69:6e:aa:e9:9b:d0:80: 76:57:75:b7:0f:9a:e8:c8:df:a4:9b:c0:af:42:00:9b:b2:49: 3e:02:0b:13:19:31:4c:84:c7:55:b7:97:ba:de:a6:b1:5f:67: be:db:5e:ac:0d:90:66:95:89:ed:ea:54:0b:06:c7:1e:73:cf: fc:7f:f5:a5:53:07:22:47:1d:77:99:91:f4:52:19:33:d2:19: c9:7f:1d:85:a8:f8:65:e5:3e:03:e0:84:e2:39:d2:d8:c7:6d: 41:56:ce:6d:5e:d0:70:36:0e:2c:ae:7d:81:f0:b7:41:c7:25: 09:6f:3b:c1:45:93:cd:77:83:c0:f7:be:9a:4e:74:e3:2f:db: 48:e5:ab:f0:d3:fd:a1:90:bc:aa:07:de:ef:c2:99:87:f1:b0: 18:b7:9a:82:7b:20:86:01:af:78:b5:30:e0:2c:6a:16:66:46: 75:86:bc:c1:0e:5a:58:ec:92:55:b8:20:6e:37:b7:ec:af:c4: d8:7f:0e:37:dd:7e:d3:35:b1:4f:3d:a7:60:60:a1:f2:c1:37: 65:73:bc:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIt/nkXrqTad/VbEqdticMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3N2VjYTBkNWM5NTZkZTE3YmY2OTcxMDQ2ZjJlYjk1Y2U2 MTVlMjkwHhcNMjYwMjA5MTYwMTI0WhcNMjYwMjEwMTYwMTI0WjAzMTEwLwYDVQQD EygzMWVkYTNlNTVjMjNhZjJmZmJhYmYyMjA4MjQ1ZGI3NmZhMTg1YzcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpl9OJA+l7R2ZoVFjhbgRcC791cj 0j135+nBmaQRu8t/4a4wp6FOLLBI2LV3bkGmacP7HHSl8dASG7sSVKH4w3uFnn6h Vceekm+2OyFuhUtpdHlOphPjcpvhR/ZGdM07Q3PzAqssXX5ckIZ+uqDRnkevq2Zb ouVSomMrBfuGHc1OQ8j/6f8tQuxsuuecmlifyNFdy26CDTjGRVjZ9NHGInv4msZd u6zPXFiLWmqJ5HGMnSJRaCD4mLympsRLpgufh91cwYwxcdKoEcJVN0zEFm4DhzIU S3kP7ya27c7NTNVV1RAJ5eHYnux9nSJvK3wH9GfvCG/RjdpovTxQmYy56wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDHto+VcI68v+6vyIIJF23b6GFxwMB8GA1UdIwQY MBaAFJd+yg1clW3he/aXEEby65XOYV4pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDM3S0RWeVZiZUY3OXBjUVJ2THJsYzVoWGlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8zMmFiZDgtYmVkYi00YjdkLWE0NjMt Nzk3MDZiMzQ1YmJiLzEvbDM3S0RWeVZiZUY3OXBjUVJ2THJsYzVoWGlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8zMmFiZDgtYmVkYi00YjdkLWE0NjMtNzk3MDZiMzQ1YmJi LzEvbDM3S0RWeVZiZUY3OXBjUVJ2THJsYzVoWGlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXOeeCqLS cwuMGOzRlIPGAD+MWFR6ClOFf9WPicKbHAcRU83AqS+CLCbZEZ9DhsJpbqrpm9CA dld1tw+a6MjfpJvAr0IAm7JJPgILExkxTITHVbeXut6msV9nvtterA2QZpWJ7epU CwbHHnPP/H/1pVMHIkcdd5mR9FIZM9IZyX8dhaj4ZeU+A+CE4jnS2MdtQVbObV7Q cDYOLK59gfC3QcclCW87wUWTzXeDwPe+mk504y/bSOWr8NP9oZC8qgfe78KZh/Gw GLeagnsghgGveLUw4CxqFmZGdYa8wQ5aWOySVbggbje37K/E2H8ON91+0zWxTz2n YGCh8sE3ZXO8Bg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:06 2026 by rpki-client