This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c07b78-daed-4991-9db7-bec1a92a2f9f/1/Lamd3TmQcoABaWYXi_aOXEY8LrY.mft File: Lamd3TmQcoABaWYXi_aOXEY8LrY.mft (raw, json) Hash identifier: +DhOzMMNGmDfDitW+u1s7vZrpwcrjHjAsmhq1XBvg6w= Subject key identifier: B2:CF:99:D0:5F:3E:03:4F:13:0B:3C:62:B2:90:E5:88:7D:C2:A4:65 Authority key identifier: 2D:A9:9D:DD:39:90:72:80:01:69:66:17:8B:F6:8E:5C:46:3C:2E:B6 Certificate issuer: /CN=2da99ddd39907280016966178bf68e5c463c2eb6 Certificate serial: 019C43228C132D2E8E72174A979CA2CB5E3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lamd3TmQcoABaWYXi_aOXEY8LrY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c07b78-daed-4991-9db7-bec1a92a2f9f/1/Lamd3TmQcoABaWYXi_aOXEY8LrY.mft Manifest number: 02C4 Signing time: Mon 09 Feb 2026 16:01:03 +0000 Manifest this update: Mon 09 Feb 2026 16:01:03 +0000 Manifest next update: Tue 10 Feb 2026 16:01:03 +0000 Files and hashes: 1: Lamd3TmQcoABaWYXi_aOXEY8LrY.crl (hash: NB7Dt81OBmzu1SgSxNLCC1IKEz/9M4suTwvsqpuaGMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/c07b78-daed-4991-9db7-bec1a92a2f9f/1/Lamd3TmQcoABaWYXi_aOXEY8LrY.crl rsync://rpki.ripe.net/repository/DEFAULT/82/c07b78-daed-4991-9db7-bec1a92a2f9f/1/Lamd3TmQcoABaWYXi_aOXEY8LrY.mft rsync://rpki.ripe.net/repository/DEFAULT/Lamd3TmQcoABaWYXi_aOXEY8LrY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:8c:13:2d:2e:8e:72:17:4a:97:9c:a2:cb:5e:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2da99ddd39907280016966178bf68e5c463c2eb6 Validity Not Before: Feb 9 16:01:03 2026 GMT Not After : Feb 10 16:01:03 2026 GMT Subject: CN=b2cf99d05f3e034f130b3c62b290e5887dc2a465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b5:21:af:71:20:e6:cf:09:00:62:05:b5:8b: 0b:a9:f1:d8:39:76:6d:a1:cc:46:d8:4e:46:80:f6: 6d:82:9e:a3:63:0c:93:12:c9:cf:24:2d:d6:e0:d5: 64:2a:c9:a7:a4:66:9c:27:1c:39:2d:2e:2d:c8:e2: 0c:68:44:6f:66:9b:92:36:56:48:fe:fc:ed:32:93: 72:0e:99:a1:05:ae:b3:e7:b3:14:1d:90:df:83:cd: 4d:0a:6a:97:1a:ee:ba:d1:f8:ae:f7:b9:db:6d:3b: 04:82:f6:52:38:c9:e6:02:6f:e9:0d:a7:b2:17:fd: 9b:fc:e8:e6:f8:69:de:52:8c:bf:e4:25:66:1b:cc: 76:04:e1:06:48:95:00:93:ee:aa:68:6c:c8:a7:bf: 88:bf:b4:9c:d3:09:c0:39:a5:02:47:31:43:6a:45: 13:8a:83:5b:c0:04:04:af:75:9c:9e:75:ee:3c:91: 36:05:b5:c1:a0:d8:ad:de:55:43:92:f2:51:e1:e3: bd:b3:a9:30:d6:31:f7:a8:6a:72:13:e3:32:be:e6: 1c:41:e7:68:d7:b1:53:6d:8e:41:23:06:4c:aa:03: 46:df:45:a8:f8:76:07:1a:9c:d9:17:1d:70:d3:3a: 14:30:74:cb:9f:80:3f:0c:8d:8f:35:e2:60:da:d7: 4e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:CF:99:D0:5F:3E:03:4F:13:0B:3C:62:B2:90:E5:88:7D:C2:A4:65 X509v3 Authority Key Identifier: keyid:2D:A9:9D:DD:39:90:72:80:01:69:66:17:8B:F6:8E:5C:46:3C:2E:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lamd3TmQcoABaWYXi_aOXEY8LrY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c07b78-daed-4991-9db7-bec1a92a2f9f/1/Lamd3TmQcoABaWYXi_aOXEY8LrY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c07b78-daed-4991-9db7-bec1a92a2f9f/1/Lamd3TmQcoABaWYXi_aOXEY8LrY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:d4:7c:5b:f4:a1:78:00:dd:4c:b2:f6:9d:3d:22:df:8c:9b: 70:28:87:31:92:0c:24:e7:93:d9:18:13:f2:9e:61:d5:b7:d4: 76:70:76:23:20:ad:65:d1:09:8f:b6:26:12:02:2a:8e:6e:8e: b5:77:ee:a4:2a:ff:3f:ce:3e:a6:64:ef:a4:d3:c7:b5:28:ba: 72:59:43:1c:35:ce:81:5e:8b:63:73:2f:0f:d9:96:f7:87:24: 17:af:67:3d:5f:c2:98:a6:1b:3e:69:f9:5b:b1:a6:51:76:ae: b0:48:0f:0e:f0:34:40:b2:c6:67:6b:c6:d4:e9:d6:36:98:97: 56:91:fb:98:a7:03:00:44:95:8f:76:94:e0:63:fe:ad:45:fd: 09:cc:63:33:28:6d:57:f6:03:81:7b:43:b4:03:2b:64:8e:0a: 19:f7:fc:f6:04:2a:2c:91:c8:ea:06:4c:66:2f:3f:85:a0:b9: db:54:62:74:88:61:f7:82:f2:e4:22:c8:a8:eb:83:29:fd:16: 3e:90:5b:66:3a:61:7b:40:d9:fe:79:44:c7:f2:83:62:36:9e: b8:9e:ec:3b:ee:1e:86:4d:aa:4f:a7:04:ac:54:f1:c6:da:eb: 7d:30:b1:e6:c7:6f:79:b7:c0:c0:74:26:23:f8:fb:8f:01:d8: 4b:d1:68:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIowTLS6OchdKl5yiy14/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkYTk5ZGRkMzk5MDcyODAwMTY5NjYxNzhiZjY4ZTVjNDYz YzJlYjYwHhcNMjYwMjA5MTYwMTAzWhcNMjYwMjEwMTYwMTAzWjAzMTEwLwYDVQQD EyhiMmNmOTlkMDVmM2UwMzRmMTMwYjNjNjJiMjkwZTU4ODdkYzJhNDY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7Uhr3Eg5s8JAGIFtYsLqfHYOXZt ocxG2E5GgPZtgp6jYwyTEsnPJC3W4NVkKsmnpGacJxw5LS4tyOIMaERvZpuSNlZI /vztMpNyDpmhBa6z57MUHZDfg81NCmqXGu660fiu97nbbTsEgvZSOMnmAm/pDaey F/2b/Ojm+GneUoy/5CVmG8x2BOEGSJUAk+6qaGzIp7+Iv7Sc0wnAOaUCRzFDakUT ioNbwAQEr3WcnnXuPJE2BbXBoNit3lVDkvJR4eO9s6kw1jH3qGpyE+MyvuYcQedo 17FTbY5BIwZMqgNG30Wo+HYHGpzZFx1w0zoUMHTLn4A/DI2PNeJg2tdOLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLLPmdBfPgNPEws8YrKQ5Yh9wqRlMB8GA1UdIwQY MBaAFC2pnd05kHKAAWlmF4v2jlxGPC62MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGFtZDNUbVFjb0FCYVdZWGlfYU9YRVk4THJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9jMDdiNzgtZGFlZC00OTkxLTlkYjct YmVjMWE5MmEyZjlmLzEvTGFtZDNUbVFjb0FCYVdZWGlfYU9YRVk4THJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi9jMDdiNzgtZGFlZC00OTkxLTlkYjctYmVjMWE5MmEyZjlm LzEvTGFtZDNUbVFjb0FCYVdZWGlfYU9YRVk4THJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs9R8W/Sh eADdTLL2nT0i34ybcCiHMZIMJOeT2RgT8p5h1bfUdnB2IyCtZdEJj7YmEgIqjm6O tXfupCr/P84+pmTvpNPHtSi6cllDHDXOgV6LY3MvD9mW94ckF69nPV/CmKYbPmn5 W7GmUXausEgPDvA0QLLGZ2vG1OnWNpiXVpH7mKcDAESVj3aU4GP+rUX9CcxjMyht V/YDgXtDtAMrZI4KGff89gQqLJHI6gZMZi8/haC521RidIhh94Ly5CLIqOuDKf0W PpBbZjphe0DZ/nlEx/KDYjaeuJ7sO+4ehk2qT6cErFTxxtrrfTCx5sdvebfAwHQm I/j7jwHYS9FoSQ== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:46 2026 by rpki-client