This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft File: lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft (raw, json) Hash identifier: xwDcXI1oO8ReOj7LbESVdIwKpdFJUdy2iMSKyL/UEiE= Subject key identifier: C8:D6:F2:1D:C2:49:1B:49:32:42:A7:62:0E:3C:6E:CF:05:70:26:A9 Authority key identifier: 94:28:2A:60:78:BA:98:FB:4A:6E:34:3E:76:03:A9:60:E7:A6:34:42 Certificate issuer: /CN=94282a6078ba98fb4a6e343e7603a960e7a63442 Certificate serial: 019C439022E35F75584080A8D5A5407EF39A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft Manifest number: 17CB Signing time: Mon 09 Feb 2026 18:00:45 +0000 Manifest this update: Mon 09 Feb 2026 18:00:45 +0000 Manifest next update: Tue 10 Feb 2026 18:00:45 +0000 Files and hashes: 1: konyG3wRd-9i2JxpDmlDMCcy52k.roa (hash: 86FDIPp0O4UJXQA6vPE/wehrfqe3i/KwXCUD7kRjVEo=) 2: lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl (hash: yohRVqsq1modHKk38OzZ0ZEMOr4oZInK0Zi09Uw+ZPg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:22:e3:5f:75:58:40:80:a8:d5:a5:40:7e:f3:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94282a6078ba98fb4a6e343e7603a960e7a63442 Validity Not Before: Feb 9 18:00:45 2026 GMT Not After : Feb 10 18:00:45 2026 GMT Subject: CN=c8d6f21dc2491b493242a7620e3c6ecf057026a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:62:dc:c0:a4:39:03:7a:38:35:88:ce:f3:ba: 6e:58:16:7f:b3:72:dd:1f:87:80:75:30:82:a3:15: bd:f7:e5:e7:ec:6d:cd:cc:d7:92:10:62:8c:aa:42: af:23:cd:4f:b0:56:9c:99:c6:b5:d2:dc:9a:90:52: 73:a7:5d:04:d2:12:e7:ca:c1:2c:12:16:df:e3:60: 49:fb:fc:c3:e7:65:1c:b6:6c:11:c3:8c:11:f6:12: 65:b0:60:f4:e8:a0:b8:42:2b:87:51:75:4b:d4:53: 6d:ff:c2:2e:1b:98:44:41:65:a5:04:b3:88:dd:43: 0b:dc:70:04:39:04:6f:7c:30:97:06:59:a1:0c:39: b1:cd:cb:b7:6d:c5:7d:d5:37:61:76:aa:5d:87:51: 63:22:ce:03:44:eb:b4:89:36:00:cc:48:af:1f:0f: 6d:cd:a7:82:91:75:28:0d:83:50:8f:06:9a:c3:c2: ed:d6:9d:a3:a6:66:d6:0c:7d:3c:22:78:7b:db:f2: ad:02:1a:41:a8:0f:86:a6:f2:a4:58:4c:28:65:ea: 93:3d:3d:97:7f:6e:3c:6d:33:66:09:3c:29:a8:8e: e2:05:91:ae:5c:35:72:3d:9c:d7:f2:6d:01:a4:6c: 7e:30:5f:3b:8b:b3:3e:4c:38:a3:7c:32:b3:3d:fe: e5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D6:F2:1D:C2:49:1B:49:32:42:A7:62:0E:3C:6E:CF:05:70:26:A9 X509v3 Authority Key Identifier: keyid:94:28:2A:60:78:BA:98:FB:4A:6E:34:3E:76:03:A9:60:E7:A6:34:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:c5:a7:6d:b6:8c:e7:d8:e5:a9:c2:15:c7:81:d0:db:04:e1: 38:48:aa:f1:22:dd:d9:c6:3d:9e:2f:c3:50:55:28:22:f7:66: bf:92:cc:30:81:a4:74:cd:3f:b1:fa:c4:10:1a:10:cf:f0:0d: 6c:8c:16:54:05:9f:fb:f7:8a:f3:f3:53:88:8e:09:32:f9:21: 8a:06:ae:a2:90:20:27:81:d6:f1:40:90:0e:cd:72:ae:0d:1c: a7:ca:a4:b0:12:15:4b:c8:78:68:46:6e:bb:20:f7:20:b7:86: 6f:be:d1:22:a6:e8:68:5a:a8:2f:bc:1b:34:35:a7:db:d4:14: bd:8f:7b:9b:9a:aa:c2:7c:6c:e6:dd:f2:a3:23:60:1f:82:76: 7e:e0:a4:53:ca:b2:21:e5:26:b6:d8:a4:f0:3d:17:7a:4f:af: e0:b0:dc:ce:2c:60:01:b5:a6:5b:ca:8a:42:47:98:da:60:58: b4:b3:86:a2:f5:f1:3d:61:6c:3b:e9:94:ba:37:ba:0a:22:8a: b0:e1:07:40:49:41:e2:b7:5b:29:71:2c:dc:a8:32:0f:5c:26: 9e:d2:20:a6:46:6b:24:10:81:7b:d8:c3:20:5b:09:32:0d:fb: b0:e5:96:97:77:e0:3a:b3:f9:9c:6f:f5:94:b4:4f:f7:2c:1a: a0:1e:5e:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkCLjX3VYQICo1aVAfvOaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MjgyYTYwNzhiYTk4ZmI0YTZlMzQzZTc2MDNhOTYwZTdh NjM0NDIwHhcNMjYwMjA5MTgwMDQ1WhcNMjYwMjEwMTgwMDQ1WjAzMTEwLwYDVQQD EyhjOGQ2ZjIxZGMyNDkxYjQ5MzI0MmE3NjIwZTNjNmVjZjA1NzAyNmE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk2LcwKQ5A3o4NYjO87puWBZ/s3Ld H4eAdTCCoxW99+Xn7G3NzNeSEGKMqkKvI81PsFacmca10tyakFJzp10E0hLnysEs Ehbf42BJ+/zD52UctmwRw4wR9hJlsGD06KC4QiuHUXVL1FNt/8IuG5hEQWWlBLOI 3UML3HAEOQRvfDCXBlmhDDmxzcu3bcV91Tdhdqpdh1FjIs4DROu0iTYAzEivHw9t zaeCkXUoDYNQjwaaw8Lt1p2jpmbWDH08Inh72/KtAhpBqA+GpvKkWEwoZeqTPT2X f248bTNmCTwpqI7iBZGuXDVyPZzX8m0BpGx+MF87i7M+TDijfDKzPf7l7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMjW8h3CSRtJMkKnYg48bs8FcCapMB8GA1UdIwQY MBaAFJQoKmB4upj7Sm40PnYDqWDnpjRCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbENncVlIaTZtUHRLYmpRLWRnT3BZT2VtTkVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yYTk2YjgtMDQ2ZC00YWMzLWIyM2Qt ZDgxOTc5NGEzMmEzLzEvbENncVlIaTZtUHRLYmpRLWRnT3BZT2VtTkVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8yYTk2YjgtMDQ2ZC00YWMzLWIyM2QtZDgxOTc5NGEzMmEz LzEvbENncVlIaTZtUHRLYmpRLWRnT3BZT2VtTkVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkcWnbbaM 59jlqcIVx4HQ2wThOEiq8SLd2cY9ni/DUFUoIvdmv5LMMIGkdM0/sfrEEBoQz/AN bIwWVAWf+/eK8/NTiI4JMvkhigauopAgJ4HW8UCQDs1yrg0cp8qksBIVS8h4aEZu uyD3ILeGb77RIqboaFqoL7wbNDWn29QUvY97m5qqwnxs5t3yoyNgH4J2fuCkU8qy IeUmttik8D0Xek+v4LDczixgAbWmW8qKQkeY2mBYtLOGovXxPWFsO+mUuje6CiKK sOEHQElB4rdbKXEs3KgyD1wmntIgpkZrJBCBe9jDIFsJMg37sOWWl3fgOrP5nG/1 lLRP9ywaoB5e1g== -----END CERTIFICATE-----Generated at Tue Feb 10 02:52:03 2026 by rpki-client