This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft File: LphQiZ2cq14AM9C-lyKn6zBdfGA.mft (raw, json) Hash identifier: 1UhTXzV3h4WZXl7nSt9vka2ie2ZigJaIZRGBWnVHwEY= Subject key identifier: E1:B7:BD:8E:6A:CF:17:8D:D6:B6:C9:9D:15:C2:B9:51:6A:54:9E:CD Authority key identifier: 2E:98:50:89:9D:9C:AB:5E:00:33:D0:BE:97:22:A7:EB:30:5D:7C:60 Certificate issuer: /CN=2e9850899d9cab5e0033d0be9722a7eb305d7c60 Certificate serial: 019C432278ACEF347481988CA321DE8C4FB6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:58 +0000 Manifest this update: Mon 09 Feb 2026 16:00:58 +0000 Manifest next update: Tue 10 Feb 2026 16:00:58 +0000 Files and hashes: 1: LphQiZ2cq14AM9C-lyKn6zBdfGA.crl (hash: 9kuScjO38ayDXOGMck4Fba3GzG35NDPZt5R/V5gmum8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:78:ac:ef:34:74:81:98:8c:a3:21:de:8c:4f:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e9850899d9cab5e0033d0be9722a7eb305d7c60 Validity Not Before: Feb 9 16:00:58 2026 GMT Not After : Feb 10 16:00:58 2026 GMT Subject: CN=e1b7bd8e6acf178dd6b6c99d15c2b9516a549ecd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:64:11:7e:c3:5b:0d:5a:92:39:64:7a:30:a5: 75:8c:0b:05:1a:5c:d6:a1:8d:c4:2e:9d:e9:ed:6d: 13:ff:03:1d:36:94:e2:99:45:93:7c:b4:ce:13:a3: 82:ba:30:ba:19:a4:54:a3:9e:6b:a4:7f:5d:97:de: 46:5f:a7:6f:1b:fd:05:d2:92:80:dc:26:c4:1c:3a: c8:fb:18:81:ab:7b:81:58:2e:db:6d:13:cc:fb:10: a8:88:0c:0c:30:20:48:7a:54:6a:92:00:8f:ac:a9: be:1f:fb:c2:8b:50:e4:25:0a:66:29:ae:83:f0:e2: 64:a7:90:30:ea:3d:50:5d:08:aa:d1:54:f1:b2:65: 43:5e:c7:9f:59:9c:7c:87:06:49:e6:8b:eb:5b:08: 43:45:a4:b5:fd:90:2a:48:dc:87:14:f0:30:49:a6: 0f:2e:94:79:b5:78:b9:7d:75:ff:cb:56:90:7b:0e: 7e:83:97:1f:c5:29:c5:b6:f4:7d:44:a1:88:5f:99: 56:7c:3d:fa:2c:30:0d:4a:1b:b7:0d:c7:55:d6:40: 99:5d:b3:b7:cc:8b:d6:cf:41:c6:cc:8b:18:b0:67: 51:ce:c9:7b:19:37:d0:6c:f6:10:32:fa:10:1f:ea: 21:0f:8e:79:ea:d4:df:73:4b:3c:d8:90:41:4a:b3: fd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B7:BD:8E:6A:CF:17:8D:D6:B6:C9:9D:15:C2:B9:51:6A:54:9E:CD X509v3 Authority Key Identifier: keyid:2E:98:50:89:9D:9C:AB:5E:00:33:D0:BE:97:22:A7:EB:30:5D:7C:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:ab:1f:99:bd:6e:87:c0:69:48:5d:24:59:04:89:a3:64:1d: cf:a7:e3:0a:b3:03:04:51:b0:e2:dc:8b:30:64:da:92:68:5c: 40:16:72:3f:fc:9b:b2:db:29:3a:8c:ec:ed:13:b7:fa:3e:ae: 8b:89:2c:4c:3f:63:e8:63:84:96:70:47:d4:66:4a:e3:c6:aa: fb:b6:7b:bd:2b:7d:b1:f9:20:61:5d:bb:50:23:32:84:e0:f7: 47:d4:eb:f2:10:fe:39:e7:4f:76:62:93:c3:0c:da:96:f3:63: bd:73:db:90:9f:ff:a5:34:46:83:0b:c9:3d:36:15:e5:73:4f: af:d7:76:99:d5:8b:f2:5b:14:53:ba:b8:a4:88:a1:65:e4:a9: 0e:d6:e7:39:52:ca:d5:fd:a0:a5:fa:32:86:f6:e2:fe:4b:68: 41:23:d9:a0:04:79:9e:47:1f:d1:16:97:16:1e:75:6e:73:6f: bb:5f:82:31:39:1a:1d:38:21:b3:e1:28:10:b8:2d:87:2b:8d: 12:57:d8:78:27:98:df:f1:b8:a8:36:94:31:40:80:e5:98:89: c4:f7:b3:a3:76:73:17:7a:d0:9d:9c:02:fe:79:f0:c0:9f:3b: 80:52:9e:de:40:92:b3:6a:17:2d:b6:28:5b:76:0f:58:a1:37: b2:f3:9c:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDInis7zR0gZiMoyHejE+2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlOTg1MDg5OWQ5Y2FiNWUwMDMzZDBiZTk3MjJhN2ViMzA1 ZDdjNjAwHhcNMjYwMjA5MTYwMDU4WhcNMjYwMjEwMTYwMDU4WjAzMTEwLwYDVQQD EyhlMWI3YmQ4ZTZhY2YxNzhkZDZiNmM5OWQxNWMyYjk1MTZhNTQ5ZWNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWQRfsNbDVqSOWR6MKV1jAsFGlzW oY3ELp3p7W0T/wMdNpTimUWTfLTOE6OCujC6GaRUo55rpH9dl95GX6dvG/0F0pKA 3CbEHDrI+xiBq3uBWC7bbRPM+xCoiAwMMCBIelRqkgCPrKm+H/vCi1DkJQpmKa6D 8OJkp5Aw6j1QXQiq0VTxsmVDXsefWZx8hwZJ5ovrWwhDRaS1/ZAqSNyHFPAwSaYP LpR5tXi5fXX/y1aQew5+g5cfxSnFtvR9RKGIX5lWfD36LDANShu3DcdV1kCZXbO3 zIvWz0HGzIsYsGdRzsl7GTfQbPYQMvoQH+ohD4556tTfc0s82JBBSrP9UwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOG3vY5qzxeN1rbJnRXCuVFqVJ7NMB8GA1UdIwQY MBaAFC6YUImdnKteADPQvpcip+swXXxgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHBoUWlaMmNxMTRBTTlDLWx5S242ekJkZkdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8zN2ZkOWQtNjFlNi00ZGYzLTljMDct NmI2YWQwNDU2YjY1LzEvTHBoUWlaMmNxMTRBTTlDLWx5S242ekJkZkdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8zN2ZkOWQtNjFlNi00ZGYzLTljMDctNmI2YWQwNDU2YjY1 LzEvTHBoUWlaMmNxMTRBTTlDLWx5S242ekJkZkdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJqsfmb1u h8BpSF0kWQSJo2Qdz6fjCrMDBFGw4tyLMGTakmhcQBZyP/ybstspOozs7RO3+j6u i4ksTD9j6GOElnBH1GZK48aq+7Z7vSt9sfkgYV27UCMyhOD3R9Tr8hD+OedPdmKT wwzalvNjvXPbkJ//pTRGgwvJPTYV5XNPr9d2mdWL8lsUU7q4pIihZeSpDtbnOVLK 1f2gpfoyhvbi/ktoQSPZoAR5nkcf0RaXFh51bnNvu1+CMTkaHTghs+EoELgthyuN ElfYeCeY3/G4qDaUMUCA5ZiJxPezo3ZzF3rQnZwC/nnwwJ87gFKe3kCSs2oXLbYo W3YPWKE3svOc7Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:49 2026 by rpki-client