This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft File: lhzPqdAsvwWWDjovkHmFnM1urW0.mft (raw, json) Hash identifier: YGdtnj+OGrrMVA1H8hGTuIQTv3iKA2iwphMSbWATBB0= Subject key identifier: 27:EE:84:6A:E6:0E:71:2E:00:79:F5:42:C5:88:0D:95:90:D3:92:B1 Authority key identifier: 96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D Certificate issuer: /CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d Certificate serial: 019C41D82F9C4598F41230021482E277BEFA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 10:00:12 +0000 Manifest this update: Mon 09 Feb 2026 10:00:12 +0000 Manifest next update: Tue 10 Feb 2026 10:00:12 +0000 Files and hashes: 1: lhzPqdAsvwWWDjovkHmFnM1urW0.crl (hash: 92F34oX2KcqObMB/4Z8yyd3C8id4W6GsAicee/ZCFR8=) 2: w0kB1zEMHJSO_FqxY-PIC1zhJaM.roa (hash: Jo7kfxvYvl4YezCWXB8JTsC1u0CS/mCRNmsNeTUMvRs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:2f:9c:45:98:f4:12:30:02:14:82:e2:77:be:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d Validity Not Before: Feb 9 10:00:12 2026 GMT Not After : Feb 10 10:00:12 2026 GMT Subject: CN=27ee846ae60e712e0079f542c5880d9590d392b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:60:01:eb:bc:54:c4:71:41:11:27:5a:2d:48: df:24:bd:55:19:ce:e4:1e:d4:dd:46:59:19:91:67: b8:1c:d4:2e:5a:ba:61:5d:69:3e:3d:c0:b3:ed:30: 85:be:ec:c8:ff:44:19:35:f7:7c:c1:9a:20:bc:65: fc:e9:3f:a5:91:db:7a:9f:83:b4:f1:a7:75:27:c2: 11:e7:66:e1:31:2b:de:23:4d:66:74:53:fb:89:11: de:22:06:10:24:5f:02:f0:1c:88:c0:89:e5:23:3f: 3e:02:2f:5b:07:3e:3d:85:fb:f3:a7:87:4d:68:36: 90:be:65:a1:80:57:08:25:95:eb:74:92:3f:85:12: 83:4d:9d:7b:cf:b7:3f:12:ec:d5:8d:16:ab:ab:de: 0b:81:3f:30:4d:1d:c5:2c:e9:c7:50:3a:97:5b:22: 0a:a7:16:5f:96:d5:b2:8d:4b:f7:85:7b:6c:08:ac: ef:f4:07:63:08:2f:93:e1:04:f4:58:9d:64:49:ca: e0:7a:9b:c4:c9:f2:2c:6a:a5:7a:27:89:c2:51:e4: d7:b0:da:c5:da:76:43:d6:ad:93:a7:0a:34:93:bd: 25:98:9c:c7:39:6d:c3:05:5f:33:5c:fc:fd:cd:8b: a4:5e:13:0e:3d:b2:14:9e:7f:b3:b5:3c:2a:ca:69: f7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:EE:84:6A:E6:0E:71:2E:00:79:F5:42:C5:88:0D:95:90:D3:92:B1 X509v3 Authority Key Identifier: keyid:96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:d1:43:15:b5:45:fa:74:26:a4:2f:c1:e4:11:15:76:65:12: 16:e4:25:1d:2b:9e:c9:71:69:4d:fa:79:46:a5:a1:71:a6:44: da:b5:40:6a:42:e7:96:c9:42:56:70:ea:28:ce:a7:08:f2:a1: 59:36:3b:cd:fa:c4:9b:1c:20:2d:62:72:34:f0:2c:51:27:b0: e6:7d:ce:68:d4:61:63:9e:04:2c:43:65:d5:4d:c3:1e:46:6c: 93:87:42:29:9e:f9:f0:bc:cf:7c:34:7b:ec:ac:9b:e8:70:2c: 0a:d1:f7:64:9d:32:70:eb:6c:b0:7c:f9:07:b8:fe:f7:33:c4: 76:c2:ff:50:bf:ea:09:f5:71:70:8c:cf:ad:8c:df:a9:15:55: bb:4e:ff:b2:d6:85:dc:47:89:e2:42:91:1e:9d:11:e4:26:08: 2b:f4:6a:6e:b8:86:1b:aa:39:30:21:0e:f6:12:84:55:22:d4: c8:17:ee:10:e0:9b:dd:28:0e:b4:c4:5c:d7:43:b8:5e:5b:3f: 2d:26:0f:47:c9:18:ff:aa:e6:c7:ad:06:72:4e:27:e7:43:c1: d0:82:a8:19:52:d1:60:ce:a9:f6:91:1b:fb:40:da:fd:f6:f7: cb:5f:18:04:16:30:26:68:02:65:b0:ba:30:eb:fa:ce:19:06: 5b:6f:c0:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2C+cRZj0EjACFILid776MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MWNjZmE5ZDAyY2JmMDU5NjBlM2EyZjkwNzk4NTljY2Q2 ZWFkNmQwHhcNMjYwMjA5MTAwMDEyWhcNMjYwMjEwMTAwMDEyWjAzMTEwLwYDVQQD EygyN2VlODQ2YWU2MGU3MTJlMDA3OWY1NDJjNTg4MGQ5NTkwZDM5MmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2AB67xUxHFBESdaLUjfJL1VGc7k HtTdRlkZkWe4HNQuWrphXWk+PcCz7TCFvuzI/0QZNfd8wZogvGX86T+lkdt6n4O0 8ad1J8IR52bhMSveI01mdFP7iRHeIgYQJF8C8ByIwInlIz8+Ai9bBz49hfvzp4dN aDaQvmWhgFcIJZXrdJI/hRKDTZ17z7c/EuzVjRarq94LgT8wTR3FLOnHUDqXWyIK pxZfltWyjUv3hXtsCKzv9AdjCC+T4QT0WJ1kScrgepvEyfIsaqV6J4nCUeTXsNrF 2nZD1q2Tpwo0k70lmJzHOW3DBV8zXPz9zYukXhMOPbIUnn+ztTwqymn3PQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCfuhGrmDnEuAHn1QsWIDZWQ05KxMB8GA1UdIwQY MBaAFJYcz6nQLL8Flg46L5B5hZzNbq1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi81NTU3ZmMtNzY1My00MGE5LTk5YzMt N2VhOTkwNWMzZmJkLzEvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi81NTU3ZmMtNzY1My00MGE5LTk5YzMtN2VhOTkwNWMzZmJk LzEvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI9FDFbVF +nQmpC/B5BEVdmUSFuQlHSueyXFpTfp5RqWhcaZE2rVAakLnlslCVnDqKM6nCPKh WTY7zfrEmxwgLWJyNPAsUSew5n3OaNRhY54ELENl1U3DHkZsk4dCKZ758LzPfDR7 7Kyb6HAsCtH3ZJ0ycOtssHz5B7j+9zPEdsL/UL/qCfVxcIzPrYzfqRVVu07/staF 3EeJ4kKRHp0R5CYIK/RqbriGG6o5MCEO9hKEVSLUyBfuEOCb3SgOtMRc10O4Xls/ LSYPR8kY/6rmx60Gck4n50PB0IKoGVLRYM6p9pEb+0Da/fb3y18YBBYwJmgCZbC6 MOv6zhkGW2/AsQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:01 2026 by rpki-client