This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft File: LKVMSc_kyVm2nIriZoMm8QX2K50.mft (raw, json) Hash identifier: 1cHpSMjjeHZOUgN0tUt3U3LVvF17jddKxYnLPoOzTsc= Subject key identifier: 1F:C5:C5:34:07:53:B5:72:7C:6C:16:53:6F:E3:E4:B6:B8:43:13:B9 Authority key identifier: 2C:A5:4C:49:CF:E4:C9:59:B6:9C:8A:E2:66:83:26:F1:05:F6:2B:9D Certificate issuer: /CN=2ca54c49cfe4c959b69c8ae2668326f105f62b9d Certificate serial: 019C4246835EB90EF056BE66DCC8D7E1C890 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKVMSc_kyVm2nIriZoMm8QX2K50.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft Manifest number: 07F1 Signing time: Mon 09 Feb 2026 12:00:43 +0000 Manifest this update: Mon 09 Feb 2026 12:00:43 +0000 Manifest next update: Tue 10 Feb 2026 12:00:43 +0000 Files and hashes: 1: LKVMSc_kyVm2nIriZoMm8QX2K50.crl (hash: AZiveIFNDbX0H6RTlsB1/T4mlaB9gzKkrs5hti8/shg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.crl rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft rsync://rpki.ripe.net/repository/DEFAULT/LKVMSc_kyVm2nIriZoMm8QX2K50.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:83:5e:b9:0e:f0:56:be:66:dc:c8:d7:e1:c8:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ca54c49cfe4c959b69c8ae2668326f105f62b9d Validity Not Before: Feb 9 12:00:43 2026 GMT Not After : Feb 10 12:00:43 2026 GMT Subject: CN=1fc5c5340753b5727c6c16536fe3e4b6b84313b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:64:e3:65:57:08:6a:1b:c5:53:9b:96:32:d3: 54:e3:3d:00:d2:b9:f8:08:4f:19:35:db:c6:ee:bd: 2d:b7:85:5f:7d:98:b7:04:84:60:aa:e7:c3:49:28: 7b:8c:33:96:5f:23:90:8e:e2:dc:58:56:95:2e:2e: 70:4b:07:12:b4:f2:44:f0:48:b1:c2:56:2f:5e:35: e0:de:51:ad:d1:aa:4b:a0:db:ad:54:9a:3c:6f:dd: 4d:5d:f4:9f:7c:d8:65:f6:e3:67:66:03:b0:62:d0: eb:41:44:6d:35:3e:25:d9:14:20:3c:38:dd:fd:c5: c6:64:a1:b8:9e:b9:84:30:dd:47:2c:73:a8:52:65: be:99:2d:36:79:f1:f9:18:00:28:20:ea:30:4c:09: 4e:c2:2e:aa:b3:e0:cd:ca:dd:20:d2:ef:78:84:a8: 82:81:c4:32:c7:d6:6c:79:41:87:29:c4:a5:b2:09: d8:3d:21:4d:20:22:6d:91:6f:43:3e:f9:90:c6:ed: bb:bf:19:7a:4c:10:1f:9b:26:23:98:6a:2f:4e:68: 97:85:ff:ac:e5:7c:cb:83:1d:3e:d3:2b:97:b2:59: a6:44:8b:ee:28:cb:a9:11:65:03:0e:1c:ed:ee:88: 44:b6:0a:74:3e:b5:91:b1:c0:e7:2e:b3:d0:29:6d: f6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C5:C5:34:07:53:B5:72:7C:6C:16:53:6F:E3:E4:B6:B8:43:13:B9 X509v3 Authority Key Identifier: keyid:2C:A5:4C:49:CF:E4:C9:59:B6:9C:8A:E2:66:83:26:F1:05:F6:2B:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKVMSc_kyVm2nIriZoMm8QX2K50.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:7a:fc:a6:58:2a:d9:a4:d0:1e:4b:a4:5a:d8:ad:c9:4b:d4: af:3a:d7:19:b3:de:cc:8b:18:97:4d:b2:69:be:cc:1b:f0:50: 2c:c9:e5:dc:ac:9a:0c:f3:0a:3b:5f:dd:90:bf:12:7c:1d:1d: 6e:21:78:44:59:1e:77:60:28:5e:ff:03:56:f6:5a:12:62:a2: 34:72:62:bd:08:f7:ad:06:75:48:84:4d:6a:fb:da:9b:a5:2f: c1:24:44:05:08:2c:12:8c:54:12:3c:65:91:e9:2f:f5:50:8d: 88:e8:7e:d2:01:e6:a0:83:75:0b:55:7e:59:44:fb:9b:6f:54: 1b:d4:8e:22:df:9e:a3:e3:c0:8f:af:80:9d:68:a8:62:ff:84: 87:87:09:a1:4a:d2:39:b2:13:c3:a2:6f:0a:4f:14:79:67:61: 0c:a7:1c:9f:ea:b5:61:f6:cd:f7:9c:35:6b:b0:6a:e4:11:d3: ff:64:1d:09:91:fb:8f:61:aa:97:40:d1:a7:fa:35:2d:98:1c: 7d:9e:ab:05:1d:92:90:93:7a:95:8e:bc:31:4c:30:8a:e8:cb: 04:d5:43:e5:3f:a8:41:b9:5a:84:ae:06:c5:e0:3d:6c:8c:48: 96:b8:96:35:24:c8:42:37:2a:42:85:24:ac:7b:ba:d7:41:03: ea:56:f5:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRoNeuQ7wVr5m3MjX4ciQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjYTU0YzQ5Y2ZlNGM5NTliNjljOGFlMjY2ODMyNmYxMDVm NjJiOWQwHhcNMjYwMjA5MTIwMDQzWhcNMjYwMjEwMTIwMDQzWjAzMTEwLwYDVQQD EygxZmM1YzUzNDA3NTNiNTcyN2M2YzE2NTM2ZmUzZTRiNmI4NDMxM2I5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA52TjZVcIahvFU5uWMtNU4z0A0rn4 CE8ZNdvG7r0tt4VffZi3BIRgqufDSSh7jDOWXyOQjuLcWFaVLi5wSwcStPJE8Eix wlYvXjXg3lGt0apLoNutVJo8b91NXfSffNhl9uNnZgOwYtDrQURtNT4l2RQgPDjd /cXGZKG4nrmEMN1HLHOoUmW+mS02efH5GAAoIOowTAlOwi6qs+DNyt0g0u94hKiC gcQyx9ZseUGHKcSlsgnYPSFNICJtkW9DPvmQxu27vxl6TBAfmyYjmGovTmiXhf+s 5XzLgx0+0yuXslmmRIvuKMupEWUDDhzt7ohEtgp0PrWRscDnLrPQKW32SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB/FxTQHU7VyfGwWU2/j5La4QxO5MB8GA1UdIwQY MBaAFCylTEnP5MlZtpyK4maDJvEF9iudMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTEtWTVNjX2t5Vm0ybklyaVpvTW04UVgySzUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80YjFmOWUtODhmZS00OTM5LWFkNTgt ZjIzZjI5Y2VmZWU2LzEvTEtWTVNjX2t5Vm0ybklyaVpvTW04UVgySzUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC80YjFmOWUtODhmZS00OTM5LWFkNTgtZjIzZjI5Y2VmZWU2 LzEvTEtWTVNjX2t5Vm0ybklyaVpvTW04UVgySzUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABHr8plgq 2aTQHkukWtityUvUrzrXGbPezIsYl02yab7MG/BQLMnl3KyaDPMKO1/dkL8SfB0d biF4RFked2AoXv8DVvZaEmKiNHJivQj3rQZ1SIRNavvam6UvwSREBQgsEoxUEjxl kekv9VCNiOh+0gHmoIN1C1V+WUT7m29UG9SOIt+eo+PAj6+AnWioYv+Eh4cJoUrS ObITw6JvCk8UeWdhDKccn+q1YfbN95w1a7Bq5BHT/2QdCZH7j2Gql0DRp/o1LZgc fZ6rBR2SkJN6lY68MUwwiujLBNVD5T+oQblahK4GxeA9bIxIlriWNSTIQjcqQoUk rHu610ED6lb1yQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:59 2026 by rpki-client