This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft File: Le43b1HIyKVVUo1MFesfTKOZxJE.mft (raw, json) Hash identifier: RpFUTLAclnSqGdtijUjOLxY24qPI5bKhZKTVTyS7X/I= Subject key identifier: F6:9B:86:A7:8A:B7:B7:72:B3:FF:86:CF:80:10:C5:E4:6A:76:A4:1C Authority key identifier: 2D:EE:37:6F:51:C8:C8:A5:55:52:8D:4C:15:EB:1F:4C:A3:99:C4:91 Certificate issuer: /CN=2dee376f51c8c8a555528d4c15eb1f4ca399c491 Certificate serial: 019C43224360DBF3CB72501C187EA925E5D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Le43b1HIyKVVUo1MFesfTKOZxJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:44 +0000 Manifest this update: Mon 09 Feb 2026 16:00:44 +0000 Manifest next update: Tue 10 Feb 2026 16:00:44 +0000 Files and hashes: 1: Le43b1HIyKVVUo1MFesfTKOZxJE.crl (hash: 8sD4Isfxy+TEsF/d1FAx9Bv4G59hxI8WYcsMRrA1d0s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.crl rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft rsync://rpki.ripe.net/repository/DEFAULT/Le43b1HIyKVVUo1MFesfTKOZxJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:43:60:db:f3:cb:72:50:1c:18:7e:a9:25:e5:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2dee376f51c8c8a555528d4c15eb1f4ca399c491 Validity Not Before: Feb 9 16:00:44 2026 GMT Not After : Feb 10 16:00:44 2026 GMT Subject: CN=f69b86a78ab7b772b3ff86cf8010c5e46a76a41c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c5:f8:a0:33:45:4d:86:45:b5:1a:c6:f7:be: 11:60:6a:7e:9c:1a:b2:f1:d3:71:68:9e:dc:40:14: f2:52:de:a4:e2:6d:be:e5:d4:8b:e2:52:1c:d9:f6: 45:11:ef:01:4d:93:3e:8a:17:31:ed:28:69:02:a2: 2f:eb:39:51:3c:ad:63:76:91:39:6b:63:de:92:12: 9b:19:78:a7:dd:45:71:46:46:47:01:95:fe:bf:50: 80:11:0f:37:d8:7b:ce:84:71:ea:7d:a2:0d:16:e9: 70:08:10:1f:a8:72:8f:f9:f3:bc:82:71:dc:c2:fd: bf:f1:a5:c8:20:5f:60:88:ea:e6:bb:ea:8d:67:69: 55:f8:24:3e:5c:c6:1c:20:2f:e7:0e:c5:ef:48:63: 5f:09:47:0a:2d:e8:42:db:45:60:e6:0b:b8:99:55: b5:1c:0e:a5:1f:fa:7b:bc:86:c2:ec:bb:c0:a2:a2: 68:5f:8c:b7:2f:2a:8d:b1:3e:b9:cd:f4:e9:3f:55: fc:a9:26:45:fe:f1:ec:16:2c:13:30:50:8a:b6:2f: 8a:97:8a:5b:c9:9d:80:e4:5c:56:78:6e:c9:4d:74: 06:da:cc:57:af:20:9b:8b:59:b2:31:96:87:00:76: 10:86:cc:e6:da:17:75:85:e5:be:18:5e:80:fe:01: 61:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:9B:86:A7:8A:B7:B7:72:B3:FF:86:CF:80:10:C5:E4:6A:76:A4:1C X509v3 Authority Key Identifier: keyid:2D:EE:37:6F:51:C8:C8:A5:55:52:8D:4C:15:EB:1F:4C:A3:99:C4:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Le43b1HIyKVVUo1MFesfTKOZxJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:70:6a:a8:db:a8:60:f7:b6:bc:e5:47:be:a0:48:98:3c:c4: 04:5d:23:aa:c9:51:98:ff:84:98:a2:e8:67:11:8e:7e:91:d1: 06:f5:ad:3c:8a:04:c5:8c:76:e5:5e:64:e0:a2:7a:83:84:1c: c0:55:d2:64:83:6e:0d:5a:11:17:a6:40:8c:96:33:ab:5b:34: 2a:20:5e:98:59:9f:d0:e4:b1:a5:71:20:87:48:f5:f1:e9:79: f7:9e:1d:80:10:db:b7:b3:25:95:20:d7:7e:53:76:91:0e:47: e1:15:3c:e8:28:cf:83:a9:89:1b:d5:5c:5e:08:7f:dc:75:64: e8:65:45:b0:2a:62:c7:ea:b9:0f:0d:ba:d7:a1:3f:04:90:36: 90:0b:c0:cd:22:33:32:91:18:eb:8a:ee:1d:63:f9:e3:51:73: 06:ce:ef:4a:d5:8b:06:85:ad:3c:77:ea:04:4a:b3:23:c9:11: 45:e7:53:5c:63:0a:4e:8d:c4:c1:09:0b:22:a4:7e:7e:ee:7a: ef:25:28:22:05:9a:8f:8e:55:42:d9:31:49:1f:43:b3:88:9a: 88:5a:1f:b3:9c:3f:4a:88:24:77:8d:54:9b:f3:0c:a4:82:e0: 97:fd:2d:e9:86:42:64:dc:9e:9f:c7:e3:3a:0b:35:2c:a9:9a: 74:d5:1b:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkNg2/PLclAcGH6pJeXYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkZWUzNzZmNTFjOGM4YTU1NTUyOGQ0YzE1ZWIxZjRjYTM5 OWM0OTEwHhcNMjYwMjA5MTYwMDQ0WhcNMjYwMjEwMTYwMDQ0WjAzMTEwLwYDVQQD EyhmNjliODZhNzhhYjdiNzcyYjNmZjg2Y2Y4MDEwYzVlNDZhNzZhNDFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5sX4oDNFTYZFtRrG974RYGp+nBqy 8dNxaJ7cQBTyUt6k4m2+5dSL4lIc2fZFEe8BTZM+ihcx7ShpAqIv6zlRPK1jdpE5 a2PekhKbGXin3UVxRkZHAZX+v1CAEQ832HvOhHHqfaINFulwCBAfqHKP+fO8gnHc wv2/8aXIIF9giOrmu+qNZ2lV+CQ+XMYcIC/nDsXvSGNfCUcKLehC20Vg5gu4mVW1 HA6lH/p7vIbC7LvAoqJoX4y3LyqNsT65zfTpP1X8qSZF/vHsFiwTMFCKti+Kl4pb yZ2A5FxWeG7JTXQG2sxXryCbi1myMZaHAHYQhszm2hd1heW+GF6A/gFhWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPabhqeKt7dys/+Gz4AQxeRqdqQcMB8GA1UdIwQY MBaAFC3uN29RyMilVVKNTBXrH0yjmcSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGU0M2IxSEl5S1ZWVW8xTUZlc2ZUS09aeEpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8zYmUwOTctMjhmNC00OWU4LWFkMjUt ZmY1Y2JkYWM1ODQ1LzEvTGU0M2IxSEl5S1ZWVW8xTUZlc2ZUS09aeEpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS8zYmUwOTctMjhmNC00OWU4LWFkMjUtZmY1Y2JkYWM1ODQ1 LzEvTGU0M2IxSEl5S1ZWVW8xTUZlc2ZUS09aeEpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgHBqqNuo YPe2vOVHvqBImDzEBF0jqslRmP+EmKLoZxGOfpHRBvWtPIoExYx25V5k4KJ6g4Qc wFXSZINuDVoRF6ZAjJYzq1s0KiBemFmf0OSxpXEgh0j18el5954dgBDbt7MllSDX flN2kQ5H4RU86CjPg6mJG9VcXgh/3HVk6GVFsCpix+q5Dw2616E/BJA2kAvAzSIz MpEY64ruHWP541FzBs7vStWLBoWtPHfqBEqzI8kRRedTXGMKTo3EwQkLIqR+fu56 7yUoIgWaj45VQtkxSR9Ds4iaiFofs5w/Sogkd41Um/MMpILgl/0t6YZCZNyen8fj Ogs1LKmadNUbcQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:20 2026 by rpki-client