This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.mft File: LZKAom-DFWYViyYXyV0Z0zjuFdM.mft (raw, json) Hash identifier: 1pRf9RRObIWtgZNhf9z/SmY8cOzpZUkrLuenxIHfFHI= Subject key identifier: 05:AE:16:0C:FD:1D:29:F3:B9:2E:1F:CD:55:78:D2:43:67:BF:CF:D1 Authority key identifier: 2D:92:80:A2:6F:83:15:66:15:8B:26:17:C9:5D:19:D3:38:EE:15:D3 Certificate issuer: /CN=2d9280a26f831566158b2617c95d19d338ee15d3 Certificate serial: 019C41D8FCCCF08DAE93E659BB746BB9753F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LZKAom-DFWYViyYXyV0Z0zjuFdM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.mft Manifest number: 0524 Signing time: Mon 09 Feb 2026 10:01:05 +0000 Manifest this update: Mon 09 Feb 2026 10:01:05 +0000 Manifest next update: Tue 10 Feb 2026 10:01:05 +0000 Files and hashes: 1: LZKAom-DFWYViyYXyV0Z0zjuFdM.crl (hash: 5e1Fi8AF7X2k/Om0a0s0aa9JTRhv5DYHXjGWswzNaD4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.crl rsync://rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.mft rsync://rpki.ripe.net/repository/DEFAULT/LZKAom-DFWYViyYXyV0Z0zjuFdM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:fc:cc:f0:8d:ae:93:e6:59:bb:74:6b:b9:75:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d9280a26f831566158b2617c95d19d338ee15d3 Validity Not Before: Feb 9 10:01:05 2026 GMT Not After : Feb 10 10:01:05 2026 GMT Subject: CN=05ae160cfd1d29f3b92e1fcd5578d24367bfcfd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:28:4b:58:f5:f9:a5:2a:c9:22:ca:f7:7c:44: f8:94:f8:a3:0f:b0:27:94:48:2d:8e:14:7a:7c:eb: be:20:ba:80:a1:b8:db:27:00:81:77:b4:6d:38:32: 79:26:94:79:c0:43:47:3b:94:94:72:04:32:89:8f: 48:a6:e9:b0:92:3f:93:ce:85:f9:a8:27:a7:f9:58: b6:61:ff:98:70:76:dd:f4:c9:8d:87:2c:f6:ab:6f: e8:6c:ea:f0:6d:d3:3f:6f:51:69:ed:5d:d4:f7:2b: 37:42:80:5f:87:27:22:e0:26:ff:bb:ab:75:fc:08: 1e:6a:cf:d4:95:5f:27:78:58:85:4e:85:75:f9:b0: 81:5c:0f:28:2c:27:ef:9c:bb:f3:39:47:12:66:2a: 9b:44:bc:d5:e1:de:1a:11:87:6d:92:38:27:75:52: e4:9c:ef:ba:c0:aa:04:02:53:36:0d:a9:32:43:be: 3a:37:bf:25:e1:08:a9:49:30:02:f1:a5:b3:de:6d: c3:fc:ca:60:7a:2e:69:e4:65:7c:e2:89:90:a4:ae: a9:04:f3:33:a3:f5:0c:ea:c9:b1:fa:8e:6b:cb:0b: 1b:d9:f9:88:f1:6c:0c:dc:08:1e:ce:00:c1:48:0c: ac:d1:bd:18:7a:0e:0f:d5:14:04:79:7d:21:77:ad: 1f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:AE:16:0C:FD:1D:29:F3:B9:2E:1F:CD:55:78:D2:43:67:BF:CF:D1 X509v3 Authority Key Identifier: keyid:2D:92:80:A2:6F:83:15:66:15:8B:26:17:C9:5D:19:D3:38:EE:15:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LZKAom-DFWYViyYXyV0Z0zjuFdM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:5a:c9:8b:86:e9:7e:90:78:cf:69:0c:38:13:34:b1:4f:b6: 1c:5a:9f:6a:51:c6:2b:4c:d8:6a:67:0f:9a:a6:12:45:e8:23: 16:17:ac:34:8c:b2:f2:a9:ec:a3:ce:23:ea:c7:2c:cd:bb:9b: 73:49:9c:d1:67:ac:bf:be:0e:86:b0:ed:4a:1e:a0:79:b7:56: a6:0b:44:4e:3d:c3:5f:ac:63:b9:83:d5:3f:00:91:24:34:a5: 75:f0:c7:e0:99:d8:c7:5f:99:44:13:29:02:1a:2a:af:5e:da: 2e:18:a7:65:7b:1e:16:54:b7:f0:cb:41:2a:2d:e9:71:33:90: c4:05:2f:46:ad:8c:3f:6c:e8:ea:fe:ab:0e:9e:6e:64:d9:67: 07:7d:bc:17:7a:8d:9b:87:71:66:88:0f:8a:43:31:3b:b0:b5: 67:53:e4:b2:bd:b2:35:ce:8f:24:81:91:22:b1:f7:82:e9:14: 44:4c:3a:51:b1:7b:7d:25:87:04:df:8a:b2:7c:44:f2:43:cb: d8:b3:d7:94:cb:69:92:b1:cf:07:66:97:e1:7f:9a:6f:fa:1d: f5:52:c3:fe:93:8c:af:45:24:bb:ba:f2:b9:68:5c:11:69:94: f3:ce:56:4d:bb:21:74:b8:71:d7:6d:16:79:b7:6f:ab:b9:c8: ca:89:fe:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2PzM8I2uk+ZZu3RruXU/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkOTI4MGEyNmY4MzE1NjYxNThiMjYxN2M5NWQxOWQzMzhl ZTE1ZDMwHhcNMjYwMjA5MTAwMTA1WhcNMjYwMjEwMTAwMTA1WjAzMTEwLwYDVQQD EygwNWFlMTYwY2ZkMWQyOWYzYjkyZTFmY2Q1NTc4ZDI0MzY3YmZjZmQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1yhLWPX5pSrJIsr3fET4lPijD7An lEgtjhR6fOu+ILqAobjbJwCBd7RtODJ5JpR5wENHO5SUcgQyiY9Ipumwkj+TzoX5 qCen+Vi2Yf+YcHbd9MmNhyz2q2/obOrwbdM/b1Fp7V3U9ys3QoBfhyci4Cb/u6t1 /Ageas/UlV8neFiFToV1+bCBXA8oLCfvnLvzOUcSZiqbRLzV4d4aEYdtkjgndVLk nO+6wKoEAlM2DakyQ746N78l4QipSTAC8aWz3m3D/Mpgei5p5GV84omQpK6pBPMz o/UM6smx+o5rywsb2fmI8WwM3AgezgDBSAys0b0Yeg4P1RQEeX0hd60fawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAWuFgz9HSnzuS4fzVV40kNnv8/RMB8GA1UdIwQY MBaAFC2SgKJvgxVmFYsmF8ldGdM47hXTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFpLQW9tLURGV1lWaXlZWHlWMFowemp1RmRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9iZTczMGEtMjdlNi00MTM2LWIyYzUt Y2FlNDAzODRjNmJmLzEvTFpLQW9tLURGV1lWaXlZWHlWMFowemp1RmRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9iZTczMGEtMjdlNi00MTM2LWIyYzUtY2FlNDAzODRjNmJm LzEvTFpLQW9tLURGV1lWaXlZWHlWMFowemp1RmRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI1rJi4bp fpB4z2kMOBM0sU+2HFqfalHGK0zYamcPmqYSRegjFhesNIyy8qnso84j6scszbub c0mc0Wesv74OhrDtSh6gebdWpgtETj3DX6xjuYPVPwCRJDSldfDH4JnYx1+ZRBMp Ahoqr17aLhinZXseFlS38MtBKi3pcTOQxAUvRq2MP2zo6v6rDp5uZNlnB328F3qN m4dxZogPikMxO7C1Z1Pksr2yNc6PJIGRIrH3gukUREw6UbF7fSWHBN+KsnxE8kPL 2LPXlMtpkrHPB2aX4X+ab/od9VLD/pOMr0Uku7ryuWhcEWmU885WTbshdLhx120W ebdvq7nIyon+7A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:35 2026 by rpki-client