This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.mft File: lIHpRs_I4ZwWZ683XRCh5AQvDrk.mft (raw, json) Hash identifier: pwMcB8WmmDq8PgbMLqUyqdNfV7Wad0F5wihIyztlxio= Subject key identifier: 55:1B:3C:32:C4:CB:4A:76:0C:66:0E:68:88:D7:A0:88:F8:59:F0:F0 Authority key identifier: 94:81:E9:46:CF:C8:E1:9C:16:67:AF:37:5D:10:A1:E4:04:2F:0E:B9 Certificate issuer: /CN=9481e946cfc8e19c1667af375d10a1e4042f0eb9 Certificate serial: 019C41D85721F393091EB8CE29077C431DB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lIHpRs_I4ZwWZ683XRCh5AQvDrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.mft Manifest number: 0726 Signing time: Mon 09 Feb 2026 10:00:22 +0000 Manifest this update: Mon 09 Feb 2026 10:00:22 +0000 Manifest next update: Tue 10 Feb 2026 10:00:22 +0000 Files and hashes: 1: lIHpRs_I4ZwWZ683XRCh5AQvDrk.crl (hash: ZqTHV9mWgfMka4clwMxOU35a2wN/Vk1ig/MY1zZVQfE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.crl rsync://rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.mft rsync://rpki.ripe.net/repository/DEFAULT/lIHpRs_I4ZwWZ683XRCh5AQvDrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:57:21:f3:93:09:1e:b8:ce:29:07:7c:43:1d:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9481e946cfc8e19c1667af375d10a1e4042f0eb9 Validity Not Before: Feb 9 10:00:22 2026 GMT Not After : Feb 10 10:00:22 2026 GMT Subject: CN=551b3c32c4cb4a760c660e6888d7a088f859f0f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b5:29:7a:9f:8e:7a:89:ab:1b:ec:f1:47:41: 5c:8a:3a:b7:b2:26:e8:b1:e5:4d:17:aa:c1:e1:d1: 1e:4d:76:6c:14:4b:4d:2c:b4:24:a4:ae:4a:12:c5: 79:11:b0:d4:2e:e3:7a:7f:c3:60:93:57:a9:cb:9d: fe:1e:d2:e5:e5:d9:96:3d:36:f5:3a:3e:a5:b8:4b: f2:6f:80:35:0f:3d:ea:55:6b:6b:87:22:01:0f:17: db:b2:89:b7:93:74:95:5b:e0:7c:fd:dc:80:bb:04: 03:b1:c2:91:88:ba:5d:17:16:ff:6f:31:df:80:20: 72:72:ea:5f:3e:b1:ce:90:ae:82:b4:57:36:41:7e: ce:31:d4:ac:9a:1a:45:78:c0:79:1b:a2:65:3a:76: d2:1e:6d:8a:a5:7e:53:0b:ff:7f:b4:c9:1d:22:f7: dc:b0:29:c2:c4:4f:94:d8:ef:26:a3:f4:cc:61:30: 2f:06:10:d6:b5:fd:4a:2c:fb:b6:53:81:27:57:37: 1a:35:5f:8b:58:ab:7c:47:34:c0:d7:e2:8b:ec:da: e0:9c:21:e5:58:68:0c:86:24:cd:45:30:ef:f3:fa: 29:a2:c7:e2:7c:7e:6f:94:65:b6:28:d8:92:f4:00: 9b:4f:73:06:74:95:f9:0b:a0:bd:6f:cf:b7:7a:09: a9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1B:3C:32:C4:CB:4A:76:0C:66:0E:68:88:D7:A0:88:F8:59:F0:F0 X509v3 Authority Key Identifier: keyid:94:81:E9:46:CF:C8:E1:9C:16:67:AF:37:5D:10:A1:E4:04:2F:0E:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lIHpRs_I4ZwWZ683XRCh5AQvDrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:2a:67:81:39:c0:47:09:cc:dc:30:a3:a0:a1:9c:25:3c:21: 54:21:b6:da:89:f6:c8:7e:0d:90:bd:51:bd:67:59:55:03:ac: 23:73:f7:61:d8:5e:da:bc:39:a1:73:e7:87:1d:89:20:3d:df: ee:84:56:21:da:ed:33:e6:0c:13:0a:89:55:3e:75:81:c3:ec: bc:b3:da:06:05:f1:3b:7d:37:0c:95:ae:f8:14:74:f8:7f:c8: 1b:f0:94:1f:79:ef:b7:3c:93:95:b1:19:38:23:9c:d8:de:6f: b5:1b:7f:08:fd:de:da:e7:e6:2b:88:ba:e2:f5:19:a4:74:b0: 07:6b:ae:dc:9d:2b:f8:54:b7:1b:43:dc:c4:44:23:51:5c:3a: 73:22:3b:d3:f8:18:35:ad:90:05:20:13:49:6d:46:73:cd:64: c7:c9:31:41:cb:ce:56:2c:dd:fb:f5:51:f7:1e:c4:63:2d:b5: ae:af:35:9b:90:22:44:8f:4c:8d:03:bc:74:72:95:7e:84:53: 2d:13:b6:ff:06:65:0c:62:fc:5e:5d:e5:66:37:17:b3:5b:eb: 0d:47:d1:54:22:c4:b7:fe:90:72:65:a8:d3:bd:d8:ce:3b:2b: 5c:66:2d:44:52:a9:37:90:85:f1:7b:94:d8:41:5e:c6:d6:f0: 10:eb:84:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2Fch85MJHrjOKQd8Qx24MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0ODFlOTQ2Y2ZjOGUxOWMxNjY3YWYzNzVkMTBhMWU0MDQy ZjBlYjkwHhcNMjYwMjA5MTAwMDIyWhcNMjYwMjEwMTAwMDIyWjAzMTEwLwYDVQQD Eyg1NTFiM2MzMmM0Y2I0YTc2MGM2NjBlNjg4OGQ3YTA4OGY4NTlmMGYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrUpep+OeomrG+zxR0Fcijq3sibo seVNF6rB4dEeTXZsFEtNLLQkpK5KEsV5EbDULuN6f8Ngk1epy53+HtLl5dmWPTb1 Oj6luEvyb4A1Dz3qVWtrhyIBDxfbsom3k3SVW+B8/dyAuwQDscKRiLpdFxb/bzHf gCBycupfPrHOkK6CtFc2QX7OMdSsmhpFeMB5G6JlOnbSHm2KpX5TC/9/tMkdIvfc sCnCxE+U2O8mo/TMYTAvBhDWtf1KLPu2U4EnVzcaNV+LWKt8RzTA1+KL7NrgnCHl WGgMhiTNRTDv8/oposfifH5vlGW2KNiS9ACbT3MGdJX5C6C9b8+3egmpAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFUbPDLEy0p2DGYOaIjXoIj4WfDwMB8GA1UdIwQY MBaAFJSB6UbPyOGcFmevN10QoeQELw65MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbElIcFJzX0k0WndXWjY4M1hSQ2g1QVF2RHJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xM2MzM2EtYTQ2Zi00ODg5LWI4MDkt NTczMDNhYTQ1Y2JiLzEvbElIcFJzX0k0WndXWjY4M1hSQ2g1QVF2RHJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xM2MzM2EtYTQ2Zi00ODg5LWI4MDktNTczMDNhYTQ1Y2Ji LzEvbElIcFJzX0k0WndXWjY4M1hSQ2g1QVF2RHJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWipngTnA RwnM3DCjoKGcJTwhVCG22on2yH4NkL1RvWdZVQOsI3P3Ydhe2rw5oXPnhx2JID3f 7oRWIdrtM+YMEwqJVT51gcPsvLPaBgXxO303DJWu+BR0+H/IG/CUH3nvtzyTlbEZ OCOc2N5vtRt/CP3e2ufmK4i64vUZpHSwB2uu3J0r+FS3G0PcxEQjUVw6cyI70/gY Na2QBSATSW1Gc81kx8kxQcvOVizd+/VR9x7EYy21rq81m5AiRI9MjQO8dHKVfoRT LRO2/wZlDGL8Xl3lZjcXs1vrDUfRVCLEt/6QcmWo073YzjsrXGYtRFKpN5CF8XuU 2EFextbwEOuE8w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:09 2026 by rpki-client