This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft File: lvMFpB83TbAVgTN3CNHHnr6nlxw.mft (raw, json) Hash identifier: pj1okMTZiDolL1GZE0QGCIZBepxTPSocI6vaZ/wlwbM= Subject key identifier: 85:4A:10:73:83:B9:31:5A:3B:27:60:85:65:31:6B:88:23:4F:82:0B Authority key identifier: 96:F3:05:A4:1F:37:4D:B0:15:81:33:77:08:D1:C7:9E:BE:A7:97:1C Certificate issuer: /CN=96f305a41f374db01581337708d1c79ebea7971c Certificate serial: 019C432250AEEF0682DAF6B6A2D8073DA587 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft Manifest number: 0692 Signing time: Mon 09 Feb 2026 16:00:48 +0000 Manifest this update: Mon 09 Feb 2026 16:00:48 +0000 Manifest next update: Tue 10 Feb 2026 16:00:48 +0000 Files and hashes: 1: lvMFpB83TbAVgTN3CNHHnr6nlxw.crl (hash: f9dZBhp0wifCoPo7Kc0Co7SCLKjs7NXdF8rxewbHqD8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.crl rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:50:ae:ef:06:82:da:f6:b6:a2:d8:07:3d:a5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96f305a41f374db01581337708d1c79ebea7971c Validity Not Before: Feb 9 16:00:48 2026 GMT Not After : Feb 10 16:00:48 2026 GMT Subject: CN=854a107383b9315a3b27608565316b88234f820b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ca:d0:7a:d6:8a:c5:c5:56:67:12:1a:c7:c6: cd:89:28:fc:a8:2c:28:1d:b2:37:f6:08:b4:66:af: 5a:5c:4a:20:1a:a1:bc:dd:43:f9:31:00:65:66:f2: 6e:c2:cd:38:a9:81:d3:2f:9b:10:f2:04:99:b1:4a: 26:a1:2c:37:78:76:26:5c:b9:92:2c:3f:fa:be:fe: 0c:b2:c0:95:ba:22:0a:36:30:55:40:21:39:39:11: 57:20:1f:95:9b:e2:a1:be:b6:4b:a5:86:93:76:9e: 28:24:15:23:92:72:65:06:ca:c4:62:14:ba:6e:5a: d6:14:eb:06:7c:66:1a:e1:9b:ac:8e:a5:ab:46:e2: 6e:70:48:6d:02:20:38:b3:09:38:c4:c3:50:ba:dc: a9:f7:57:3c:36:7c:f3:0e:30:15:9f:86:e1:de:cc: 50:9e:72:b6:d7:1a:cc:6b:d1:f8:ca:62:b8:eb:b0: b0:0d:28:cc:24:e1:92:cb:2b:4b:d4:46:98:de:06: 11:6b:d4:37:f7:b4:7a:6d:d7:a0:53:82:ab:f3:38: df:11:ce:4a:d0:6b:bc:c8:8b:a4:46:1d:90:e6:1e: 39:7c:19:d3:60:c1:28:56:95:4d:e9:71:f5:d9:fe: 4a:f3:7b:35:13:7e:8e:03:e3:46:c5:f9:b6:38:d1: a2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:4A:10:73:83:B9:31:5A:3B:27:60:85:65:31:6B:88:23:4F:82:0B X509v3 Authority Key Identifier: keyid:96:F3:05:A4:1F:37:4D:B0:15:81:33:77:08:D1:C7:9E:BE:A7:97:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:dc:65:78:eb:a1:09:aa:e8:c3:a8:3c:59:f5:f2:90:de:17: 71:96:1c:6d:36:75:1c:eb:38:bd:09:58:e4:fe:65:3f:57:84: d1:d1:38:e1:59:5a:9c:f4:b3:13:66:58:6f:11:26:de:3e:1f: 5b:e6:92:79:66:d9:db:9a:59:a0:9c:27:d2:b3:68:c1:03:9a: 05:0a:f1:ff:7e:55:c7:f1:df:fa:cd:78:00:10:6c:76:d6:16: 87:2d:8e:2f:55:a9:34:44:dd:48:e2:ab:e9:4c:82:0e:ac:20: 4c:94:67:72:3a:fb:00:d3:1a:28:dd:7a:b8:2d:3f:ef:08:9b: 3d:16:49:d1:e3:64:8d:68:00:28:af:76:e5:13:59:8a:5f:51: 57:c9:dd:16:e0:b6:2d:5f:b4:73:ab:13:50:30:19:85:d3:1e: 4b:58:dd:d0:89:58:5d:b7:f4:cd:0d:3e:2f:c9:d4:6f:1f:3b: fe:91:22:12:85:40:c2:d2:ba:77:f1:a2:24:3c:36:d0:08:73: dc:62:b1:37:08:01:9f:50:62:7f:76:3e:a3:13:96:96:2d:d5: 3e:48:70:bb:e5:07:a7:03:a1:77:4d:28:f0:ae:05:3b:bc:3a: cc:e8:ad:14:c7:a8:ef:da:b4:b3:48:37:24:a0:71:8a:6d:6c: c8:36:b3:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlCu7waC2va2otgHPaWHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2ZjMwNWE0MWYzNzRkYjAxNTgxMzM3NzA4ZDFjNzllYmVh Nzk3MWMwHhcNMjYwMjA5MTYwMDQ4WhcNMjYwMjEwMTYwMDQ4WjAzMTEwLwYDVQQD Eyg4NTRhMTA3MzgzYjkzMTVhM2IyNzYwODU2NTMxNmI4ODIzNGY4MjBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucrQetaKxcVWZxIax8bNiSj8qCwo HbI39gi0Zq9aXEogGqG83UP5MQBlZvJuws04qYHTL5sQ8gSZsUomoSw3eHYmXLmS LD/6vv4MssCVuiIKNjBVQCE5ORFXIB+Vm+KhvrZLpYaTdp4oJBUjknJlBsrEYhS6 blrWFOsGfGYa4ZusjqWrRuJucEhtAiA4swk4xMNQutyp91c8NnzzDjAVn4bh3sxQ nnK21xrMa9H4ymK467CwDSjMJOGSyytL1EaY3gYRa9Q397R6bdegU4Kr8zjfEc5K 0Gu8yIukRh2Q5h45fBnTYMEoVpVN6XH12f5K83s1E36OA+NGxfm2ONGiswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIVKEHODuTFaOydghWUxa4gjT4ILMB8GA1UdIwQY MBaAFJbzBaQfN02wFYEzdwjRx56+p5ccMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHZNRnBCODNUYkFWZ1ROM0NOSEhucjZubHh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC8zMTA4YTMtNWI1ZC00OGQyLTg1M2It ZjEyYjZhYzVhMmIyLzEvbHZNRnBCODNUYkFWZ1ROM0NOSEhucjZubHh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC8zMTA4YTMtNWI1ZC00OGQyLTg1M2ItZjEyYjZhYzVhMmIy LzEvbHZNRnBCODNUYkFWZ1ROM0NOSEhucjZubHh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjtxleOuh Carow6g8WfXykN4XcZYcbTZ1HOs4vQlY5P5lP1eE0dE44VlanPSzE2ZYbxEm3j4f W+aSeWbZ25pZoJwn0rNowQOaBQrx/35Vx/Hf+s14ABBsdtYWhy2OL1WpNETdSOKr 6UyCDqwgTJRncjr7ANMaKN16uC0/7wibPRZJ0eNkjWgAKK925RNZil9RV8ndFuC2 LV+0c6sTUDAZhdMeS1jd0IlYXbf0zQ0+L8nUbx87/pEiEoVAwtK6d/GiJDw20Ahz 3GKxNwgBn1Bif3Y+oxOWli3VPkhwu+UHpwOhd00o8K4FO7w6zOitFMeo79q0s0g3 JKBxim1syDazng== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:29 2026 by rpki-client