This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.mft File: lGIh95q-ptPAw0gGQlkN0K4Mqjs.mft (raw, json) Hash identifier: O7Ly6vUCHNNVG5/71vTNG5uwAzXm85R5okZbdCd29Gk= Subject key identifier: 1E:BC:A9:E1:4C:99:1F:93:C3:BB:39:D1:0D:C2:2D:E2:3D:12:AA:AC Authority key identifier: 94:62:21:F7:9A:BE:A6:D3:C0:C3:48:06:42:59:0D:D0:AE:0C:AA:3B Certificate issuer: /CN=946221f79abea6d3c0c3480642590dd0ae0caa3b Certificate serial: 019C4322FBC9B9BE15EBF9B167A28E00BC6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lGIh95q-ptPAw0gGQlkN0K4Mqjs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.mft Manifest number: 1510 Signing time: Mon 09 Feb 2026 16:01:32 +0000 Manifest this update: Mon 09 Feb 2026 16:01:32 +0000 Manifest next update: Tue 10 Feb 2026 16:01:32 +0000 Files and hashes: 1: lGIh95q-ptPAw0gGQlkN0K4Mqjs.crl (hash: cezwMaIAbS06l98CHuvgTJLNq8UxoMJwKQ59B5IoZcU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.crl rsync://rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.mft rsync://rpki.ripe.net/repository/DEFAULT/lGIh95q-ptPAw0gGQlkN0K4Mqjs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:fb:c9:b9:be:15:eb:f9:b1:67:a2:8e:00:bc:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=946221f79abea6d3c0c3480642590dd0ae0caa3b Validity Not Before: Feb 9 16:01:32 2026 GMT Not After : Feb 10 16:01:32 2026 GMT Subject: CN=1ebca9e14c991f93c3bb39d10dc22de23d12aaac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d4:1a:1e:33:92:d4:fa:ab:8d:51:06:6b:2f: c1:df:41:f7:dc:73:76:1d:79:c8:7f:7f:30:32:b2: 3f:88:57:c8:a3:3d:f2:8b:65:c8:0d:3e:0a:17:00: 6a:87:cc:5a:c1:57:a2:e8:1e:79:0a:91:02:2e:42: d6:ed:54:25:dd:44:c9:e2:b3:27:c5:e6:2c:a6:e9: cf:d4:bf:21:d6:17:34:be:72:ce:74:fc:f3:0b:20: a3:74:ab:28:42:84:a6:d0:8c:67:2c:87:b1:94:07: 11:1f:0b:b9:95:bb:42:3f:78:7d:b0:4a:f0:18:47: c7:ac:f6:a5:57:23:c7:e4:d2:1f:d0:32:0f:5b:6b: 3e:b1:d0:96:07:9a:27:d1:09:9a:f9:21:cd:5a:fc: 78:39:5c:83:20:6e:56:ea:11:ef:24:3e:39:74:e8: c7:f0:25:b4:d0:01:b9:1d:81:08:2e:68:44:f5:43: 89:95:f6:3e:e1:0c:a1:52:39:14:22:76:6a:38:18: 9d:f1:b2:4f:87:1b:f4:cc:9e:cb:ac:df:8e:e0:b6: 93:1f:48:7a:cf:f5:d6:d4:04:ed:53:29:dd:28:e6: 85:b0:7d:4c:79:47:78:94:d6:10:5a:a4:cd:45:be: 72:17:61:26:83:5b:4d:b6:ea:49:c3:51:87:0a:b0: 3d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:BC:A9:E1:4C:99:1F:93:C3:BB:39:D1:0D:C2:2D:E2:3D:12:AA:AC X509v3 Authority Key Identifier: keyid:94:62:21:F7:9A:BE:A6:D3:C0:C3:48:06:42:59:0D:D0:AE:0C:AA:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lGIh95q-ptPAw0gGQlkN0K4Mqjs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:f6:71:cb:a5:35:30:39:e1:51:40:00:87:13:de:04:90:d1: 1d:ad:4f:75:75:5a:5c:22:9c:4e:81:9d:6b:a7:76:47:43:80: 64:f5:ee:c0:f1:54:71:c1:7e:28:ba:5e:9c:1f:5c:5a:29:6f: e0:d8:93:17:87:c1:74:0b:33:0f:7d:68:da:4d:c8:71:89:5f: 12:90:bd:fc:a4:db:26:e4:3a:7c:4c:f4:61:e8:68:58:f1:47: 99:4c:5f:89:e0:dc:78:76:3a:11:6f:ae:85:f2:c2:6e:d9:84: 7d:ba:c6:a5:1e:f5:17:70:a6:1b:e5:c1:c5:22:c6:63:77:00: ab:db:f2:9b:32:ca:a9:0e:80:f6:1d:9a:d5:73:4e:0f:51:68: c8:43:c2:f1:e6:9c:dd:ee:4b:5e:72:36:66:1c:ad:68:aa:cd: 28:6e:f2:3b:ea:20:c0:42:42:cb:a4:e9:dd:61:1d:32:cf:03: 84:7a:70:b4:3c:8c:c2:5d:e3:81:85:ac:ac:89:3e:50:ce:8b: 14:f8:63:79:5d:08:0e:d2:9a:87:e2:d0:d4:8a:25:5e:b4:56: 6d:49:9b:17:eb:87:a5:7e:28:4f:b1:81:46:81:2e:77:06:5e: d4:74:2b:ad:27:16:64:5e:71:a7:fc:a7:61:77:5c:f6:1b:a7: b0:97:30:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIvvJub4V6/mxZ6KOALxvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0NjIyMWY3OWFiZWE2ZDNjMGMzNDgwNjQyNTkwZGQwYWUw Y2FhM2IwHhcNMjYwMjA5MTYwMTMyWhcNMjYwMjEwMTYwMTMyWjAzMTEwLwYDVQQD EygxZWJjYTllMTRjOTkxZjkzYzNiYjM5ZDEwZGMyMmRlMjNkMTJhYWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1tQaHjOS1PqrjVEGay/B30H33HN2 HXnIf38wMrI/iFfIoz3yi2XIDT4KFwBqh8xawVei6B55CpECLkLW7VQl3UTJ4rMn xeYspunP1L8h1hc0vnLOdPzzCyCjdKsoQoSm0IxnLIexlAcRHwu5lbtCP3h9sErw GEfHrPalVyPH5NIf0DIPW2s+sdCWB5on0Qma+SHNWvx4OVyDIG5W6hHvJD45dOjH 8CW00AG5HYEILmhE9UOJlfY+4QyhUjkUInZqOBid8bJPhxv0zJ7LrN+O4LaTH0h6 z/XW1ATtUyndKOaFsH1MeUd4lNYQWqTNRb5yF2Emg1tNtupJw1GHCrA9fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB68qeFMmR+Tw7s50Q3CLeI9EqqsMB8GA1UdIwQY MBaAFJRiIfeavqbTwMNIBkJZDdCuDKo7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEdJaDk1cS1wdFBBdzBnR1Fsa04wSzRNcWpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi84ZDlhYTUtZDUyYS00ODZmLWI2NGMt N2M2MDVkMzIxNjVkLzEvbEdJaDk1cS1wdFBBdzBnR1Fsa04wSzRNcWpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi84ZDlhYTUtZDUyYS00ODZmLWI2NGMtN2M2MDVkMzIxNjVk LzEvbEdJaDk1cS1wdFBBdzBnR1Fsa04wSzRNcWpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo/Zxy6U1 MDnhUUAAhxPeBJDRHa1PdXVaXCKcToGda6d2R0OAZPXuwPFUccF+KLpenB9cWilv 4NiTF4fBdAszD31o2k3IcYlfEpC9/KTbJuQ6fEz0YehoWPFHmUxfieDceHY6EW+u hfLCbtmEfbrGpR71F3CmG+XBxSLGY3cAq9vymzLKqQ6A9h2a1XNOD1FoyEPC8eac 3e5LXnI2ZhytaKrNKG7yO+ogwEJCy6Tp3WEdMs8DhHpwtDyMwl3jgYWsrIk+UM6L FPhjeV0IDtKah+LQ1IolXrRWbUmbF+uHpX4oT7GBRoEudwZe1HQrrScWZF5xp/yn YXdc9hunsJcwJA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:52 2026 by rpki-client