This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json) Hash identifier: uV1+eAPxObpZqZMmgSCh9sFeDA4e3Wb6zWBLcJGzvpE= Subject key identifier: 67:0B:90:24:46:17:5D:0C:56:18:4C:DD:33:75:EC:24:20:A1:E7:5B Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63 Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763 Certificate serial: 019C427E29A48F77EBEC72AB5859D17E3ADB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft Manifest number: 15AE Signing time: Mon 09 Feb 2026 13:01:30 +0000 Manifest this update: Mon 09 Feb 2026 13:01:30 +0000 Manifest next update: Tue 10 Feb 2026 13:01:30 +0000 Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: rzUmx2wM+enPTTCgmM1+IH9geCrydJkYlQ02JcS1S8g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:29:a4:8f:77:eb:ec:72:ab:58:59:d1:7e:3a:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763 Validity Not Before: Feb 9 13:01:30 2026 GMT Not After : Feb 10 13:01:30 2026 GMT Subject: CN=670b902446175d0c56184cdd3375ec2420a1e75b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d1:ad:27:08:68:32:ad:99:e8:99:f4:2e:df: 7e:2e:63:58:eb:31:90:f6:de:55:cd:d1:59:be:a8: b4:77:a6:2d:28:8a:88:0f:93:d3:b3:38:c1:3a:a0: 3c:e6:8e:33:9c:a3:40:5e:6e:e9:f3:eb:b3:19:67: ca:62:d8:24:5b:a0:05:66:b2:c0:c1:a4:f0:ae:c3: 08:b1:04:8f:23:05:e4:93:a3:a4:be:e4:c5:10:25: 10:c6:06:d7:a7:97:b7:14:6e:f0:0d:61:19:8a:b9: b2:39:c5:88:ea:41:76:f8:9c:23:e2:f9:f5:88:a4: 30:aa:f5:6f:75:4a:2a:1e:d0:26:a4:2f:43:20:b9: 56:51:0b:ac:ca:df:81:38:dd:e2:10:8c:36:cd:53: a4:ca:46:74:70:fd:ac:f3:d0:dc:c4:9f:42:57:b0: f9:6e:07:9e:4c:3b:af:ef:a6:4b:79:a7:a7:39:48: 05:02:22:4f:cb:1b:22:9b:03:48:00:71:84:1e:4e: eb:ff:57:ed:03:c5:07:33:6a:d3:ec:7d:8a:52:54: 70:c7:8c:bd:59:19:e6:e7:7a:a7:77:29:70:b5:02: 27:54:69:92:b6:14:eb:8d:fe:42:68:a5:76:e6:a6: c2:ae:5a:99:74:56:f1:17:de:12:cb:2d:3e:1a:3c: b3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:0B:90:24:46:17:5D:0C:56:18:4C:DD:33:75:EC:24:20:A1:E7:5B X509v3 Authority Key Identifier: keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:12:fa:d5:09:10:6f:e4:03:f3:62:f8:6e:3f:fb:13:74:65: e6:0c:55:0b:cd:70:a9:ab:ae:71:b6:ee:04:45:42:13:a7:2d: 10:fb:c8:da:94:55:96:0a:c1:b9:fc:8d:b6:35:cd:ed:79:6f: 56:fe:f6:e3:6f:d0:50:bd:d5:3e:12:ea:01:27:5b:d2:e1:c2: 6e:b3:9c:9d:92:e0:1c:4f:10:09:e4:69:de:bc:4c:97:4b:5f: c8:8d:51:6c:8d:bf:f2:cc:4e:4c:91:ff:89:d3:31:08:5e:75: 00:73:a1:b0:f7:26:0c:3a:5b:2e:90:40:8c:13:a1:d4:48:08: e2:15:ea:f4:ff:14:4c:72:8c:62:88:3d:2a:c5:1e:01:b9:79: e3:35:c0:b4:90:2c:cc:7d:cb:a3:54:6b:8a:4f:da:64:c5:cd: a0:3e:d0:5e:7d:7c:9d:ca:ee:03:d3:b3:6a:37:76:0a:d7:27: 3f:a3:3f:22:94:5a:ce:47:9a:5b:47:21:f4:ed:2c:34:25:59: 85:73:78:51:31:f7:a1:49:e8:79:2b:3d:5d:fa:2b:e9:9b:3c: e2:de:85:62:c2:41:51:35:a1:d2:96:29:c7:e6:3c:1d:d0:3f: b2:50:25:9c:fc:4c:1f:ce:2e:62:db:ba:ff:23:91:31:b5:29: d4:cb:59:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfimkj3fr7HKrWFnRfjrbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkMjM2YjU0OGJhNTlhMmFiYjI1ODIzNDFkNTYwY2E4OTNm NDk3NjMwHhcNMjYwMjA5MTMwMTMwWhcNMjYwMjEwMTMwMTMwWjAzMTEwLwYDVQQD Eyg2NzBiOTAyNDQ2MTc1ZDBjNTYxODRjZGQzMzc1ZWMyNDIwYTFlNzViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9GtJwhoMq2Z6Jn0Lt9+LmNY6zGQ 9t5VzdFZvqi0d6YtKIqID5PTszjBOqA85o4znKNAXm7p8+uzGWfKYtgkW6AFZrLA waTwrsMIsQSPIwXkk6OkvuTFECUQxgbXp5e3FG7wDWEZirmyOcWI6kF2+Jwj4vn1 iKQwqvVvdUoqHtAmpC9DILlWUQusyt+BON3iEIw2zVOkykZ0cP2s89DcxJ9CV7D5 bgeeTDuv76ZLeaenOUgFAiJPyxsimwNIAHGEHk7r/1ftA8UHM2rT7H2KUlRwx4y9 WRnm53qndylwtQInVGmSthTrjf5CaKV25qbCrlqZdFbxF94Syy0+GjyzVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGcLkCRGF10MVhhM3TN17CQgoedbMB8GA1UdIwQY MBaAFC0ja1SLpZoquyWCNB1WDKiT9JdjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84NzFkOGItMjIxOS00NmM0LWE0OTAt MjU3MTM2OWMyMDJiLzEvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC84NzFkOGItMjIxOS00NmM0LWE0OTAtMjU3MTM2OWMyMDJi LzEvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALhL61QkQ b+QD82L4bj/7E3Rl5gxVC81wqauucbbuBEVCE6ctEPvI2pRVlgrBufyNtjXN7Xlv Vv7242/QUL3VPhLqASdb0uHCbrOcnZLgHE8QCeRp3rxMl0tfyI1RbI2/8sxOTJH/ idMxCF51AHOhsPcmDDpbLpBAjBOh1EgI4hXq9P8UTHKMYog9KsUeAbl54zXAtJAs zH3Lo1Rrik/aZMXNoD7QXn18ncruA9Ozajd2CtcnP6M/IpRazkeaW0ch9O0sNCVZ hXN4UTH3oUnoeSs9Xfor6Zs84t6FYsJBUTWh0pYpx+Y8HdA/slAlnPxMH84uYtu6 /yORMbUp1MtZEw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:23 2026 by rpki-client