This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/4c941d-992d-4eef-88f5-f0f8008dfc4c/1/LZCTZ9vd0eSGa9ier3J1mKR7WD0.mft File: LZCTZ9vd0eSGa9ier3J1mKR7WD0.mft (raw, json) Hash identifier: p7lk3/Bl8S7qYr08vRQl/X9TFUK9HClbe8IpK82hk5E= Subject key identifier: 1B:BD:7F:DE:BF:91:28:C1:7B:E1:B5:98:A6:EC:E9:B2:DF:80:12:BA Authority key identifier: 2D:90:93:67:DB:DD:D1:E4:86:6B:D8:9E:AF:72:75:98:A4:7B:58:3D Certificate issuer: /CN=2d909367dbddd1e4866bd89eaf727598a47b583d Certificate serial: 019C4322C51DBF776D969A93ABEDD2BC40B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LZCTZ9vd0eSGa9ier3J1mKR7WD0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/4c941d-992d-4eef-88f5-f0f8008dfc4c/1/LZCTZ9vd0eSGa9ier3J1mKR7WD0.mft Manifest number: 02C4 Signing time: Mon 09 Feb 2026 16:01:18 +0000 Manifest this update: Mon 09 Feb 2026 16:01:18 +0000 Manifest next update: Tue 10 Feb 2026 16:01:18 +0000 Files and hashes: 1: LZCTZ9vd0eSGa9ier3J1mKR7WD0.crl (hash: 6UkkeKc/bnJyRUkmgbQUgHLqNm/j41SyKYgFVMLvqJc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/4c941d-992d-4eef-88f5-f0f8008dfc4c/1/LZCTZ9vd0eSGa9ier3J1mKR7WD0.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/4c941d-992d-4eef-88f5-f0f8008dfc4c/1/LZCTZ9vd0eSGa9ier3J1mKR7WD0.mft rsync://rpki.ripe.net/repository/DEFAULT/LZCTZ9vd0eSGa9ier3J1mKR7WD0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:c5:1d:bf:77:6d:96:9a:93:ab:ed:d2:bc:40:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d909367dbddd1e4866bd89eaf727598a47b583d Validity Not Before: Feb 9 16:01:18 2026 GMT Not After : Feb 10 16:01:18 2026 GMT Subject: CN=1bbd7fdebf9128c17be1b598a6ece9b2df8012ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4b:b2:3c:da:82:16:7e:49:cb:81:a9:ab:00: 2d:10:9b:2a:e2:bc:bc:3a:81:d2:06:cf:b9:90:56: af:84:2a:cc:1d:1e:2f:6c:67:b1:5c:4a:43:40:86: fb:a4:f8:70:8e:2a:d8:53:a5:cf:64:f6:24:ab:ff: 7f:b5:00:15:4f:af:ed:0d:93:94:c4:3c:f6:ef:5b: 2f:e3:9f:15:c9:3e:84:75:75:b5:48:3d:a5:3c:bd: 1c:a7:44:9b:fe:0b:ad:ff:78:ad:85:f7:91:50:4a: df:f9:6f:c4:26:4d:bc:ee:42:0a:8d:7a:d2:ea:99: 7d:aa:ca:1b:4c:03:97:d8:c8:94:11:2b:79:d8:88: 27:3c:9f:01:6b:47:e5:7b:27:94:a7:ce:27:cd:16: e4:2d:35:79:20:c5:f5:03:97:5d:0e:e3:91:d3:20: dc:5a:28:1b:d2:c6:ac:eb:51:e8:6d:a5:a4:76:77: c5:87:9d:2a:d2:4f:21:a8:7c:46:ab:bd:b4:15:22: 70:2a:70:ae:c2:15:b8:1c:e7:a0:a6:ad:35:58:ea: 61:78:74:2b:ae:f8:37:0c:df:25:c4:9a:ce:60:33: f1:98:07:89:6a:18:d5:3e:cd:94:72:bc:8b:d3:1c: 14:10:93:02:55:55:44:6f:8c:8f:0d:9f:c2:9c:85: 3e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:BD:7F:DE:BF:91:28:C1:7B:E1:B5:98:A6:EC:E9:B2:DF:80:12:BA X509v3 Authority Key Identifier: keyid:2D:90:93:67:DB:DD:D1:E4:86:6B:D8:9E:AF:72:75:98:A4:7B:58:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LZCTZ9vd0eSGa9ier3J1mKR7WD0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/4c941d-992d-4eef-88f5-f0f8008dfc4c/1/LZCTZ9vd0eSGa9ier3J1mKR7WD0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/4c941d-992d-4eef-88f5-f0f8008dfc4c/1/LZCTZ9vd0eSGa9ier3J1mKR7WD0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:bf:35:2b:83:5c:4b:02:41:ed:a6:3c:1e:e7:41:b7:e4:18: ed:01:31:c4:4f:17:df:2c:52:d0:71:06:7c:4d:d0:4a:93:15: f4:c5:6f:07:3d:48:d6:73:16:cb:a8:7e:25:36:75:73:c1:71: 66:31:5f:5d:10:cf:e3:6a:ef:81:dd:8a:f9:67:da:ad:56:ef: a9:26:f5:b2:fc:4f:2a:27:36:7a:7c:fd:d3:2a:c5:79:ae:e7: 38:ae:6e:58:67:9d:63:64:a6:35:19:91:20:fa:fd:75:c9:8d: 5c:7e:18:c6:b1:b2:8d:8a:82:93:20:2b:1d:a6:d1:ff:12:7c: 1f:03:90:a0:58:34:fb:79:c6:44:98:74:14:d2:ab:87:40:f3: ca:6f:38:e7:e5:28:f7:1e:93:9e:37:54:da:09:86:3f:c8:14: 9c:19:3f:b4:56:d5:1b:b4:81:59:d0:d6:4f:79:03:95:12:e8: c1:b5:51:ae:43:3e:4b:17:1c:9a:f7:16:ec:3c:f5:d0:f0:a7: 84:9a:48:e0:a8:0e:89:6d:99:7e:51:0b:a6:06:df:eb:34:b5: 5f:bb:09:f7:6f:ba:cc:86:a3:e3:0f:2b:d6:83:54:f6:07:1a: 67:82:17:87:66:41:e7:c5:e3:86:d3:14:f1:84:a5:20:e5:0f: 33:c0:fe:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIsUdv3dtlpqTq+3SvECzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkOTA5MzY3ZGJkZGQxZTQ4NjZiZDg5ZWFmNzI3NTk4YTQ3 YjU4M2QwHhcNMjYwMjA5MTYwMTE4WhcNMjYwMjEwMTYwMTE4WjAzMTEwLwYDVQQD EygxYmJkN2ZkZWJmOTEyOGMxN2JlMWI1OThhNmVjZTliMmRmODAxMmJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEuyPNqCFn5Jy4GpqwAtEJsq4ry8 OoHSBs+5kFavhCrMHR4vbGexXEpDQIb7pPhwjirYU6XPZPYkq/9/tQAVT6/tDZOU xDz271sv458VyT6EdXW1SD2lPL0cp0Sb/gut/3ithfeRUErf+W/EJk287kIKjXrS 6pl9qsobTAOX2MiUESt52IgnPJ8Ba0fleyeUp84nzRbkLTV5IMX1A5ddDuOR0yDc Wigb0sas61HobaWkdnfFh50q0k8hqHxGq720FSJwKnCuwhW4HOegpq01WOpheHQr rvg3DN8lxJrOYDPxmAeJahjVPs2UcryL0xwUEJMCVVVEb4yPDZ/CnIU+OQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBu9f96/kSjBe+G1mKbs6bLfgBK6MB8GA1UdIwQY MBaAFC2Qk2fb3dHkhmvYnq9ydZike1g9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFpDVFo5dmQwZVNHYTlpZXIzSjFtS1I3V0QwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy80Yzk0MWQtOTkyZC00ZWVmLTg4ZjUt ZjBmODAwOGRmYzRjLzEvTFpDVFo5dmQwZVNHYTlpZXIzSjFtS1I3V0QwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy80Yzk0MWQtOTkyZC00ZWVmLTg4ZjUtZjBmODAwOGRmYzRj LzEvTFpDVFo5dmQwZVNHYTlpZXIzSjFtS1I3V0QwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvb81K4Nc SwJB7aY8HudBt+QY7QExxE8X3yxS0HEGfE3QSpMV9MVvBz1I1nMWy6h+JTZ1c8Fx ZjFfXRDP42rvgd2K+WfarVbvqSb1svxPKic2enz90yrFea7nOK5uWGedY2SmNRmR IPr9dcmNXH4YxrGyjYqCkyArHabR/xJ8HwOQoFg0+3nGRJh0FNKrh0Dzym845+Uo 9x6TnjdU2gmGP8gUnBk/tFbVG7SBWdDWT3kDlRLowbVRrkM+SxccmvcW7Dz10PCn hJpI4KgOiW2ZflELpgbf6zS1X7sJ92+6zIaj4w8r1oNU9gcaZ4IXh2ZB58XjhtMU 8YSlIOUPM8D+kg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:45 2026 by rpki-client