This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft File: ltTArxW-ONL8XjD-NFdHXTS3g5o.mft (raw, json) Hash identifier: kD3scYxDsdUWZyCxktjhsLocsRqVI99w+XTbn5xjUng= Subject key identifier: 1B:92:90:04:CF:F0:A5:D7:C6:09:C9:50:F1:DD:D8:B5:ED:AF:8E:54 Authority key identifier: 96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A Certificate issuer: /CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a Certificate serial: 019C4322F4331DC72235073EC6F2C1B02BB2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft Manifest number: 1480 Signing time: Mon 09 Feb 2026 16:01:30 +0000 Manifest this update: Mon 09 Feb 2026 16:01:30 +0000 Manifest next update: Tue 10 Feb 2026 16:01:30 +0000 Files and hashes: 1: ltTArxW-ONL8XjD-NFdHXTS3g5o.crl (hash: Qao9KVTBIXMkPEuEmp+kRyLQZ5g1KkWl4JLAs1jIPI4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:f4:33:1d:c7:22:35:07:3e:c6:f2:c1:b0:2b:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a Validity Not Before: Feb 9 16:01:30 2026 GMT Not After : Feb 10 16:01:30 2026 GMT Subject: CN=1b929004cff0a5d7c609c950f1ddd8b5edaf8e54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9e:cb:2b:af:24:b6:35:18:a2:bd:0a:27:e3: 1a:2c:62:32:09:e3:c3:bf:d0:4e:27:27:3e:7e:51: 1a:96:c2:70:da:f2:a9:39:72:0c:ab:c6:68:e3:b6: ec:12:10:65:3a:cd:20:16:f9:fc:18:eb:b0:6e:7a: 43:fe:8d:fb:77:f3:52:29:f0:7d:90:29:f4:d9:9c: 09:e8:7a:8e:72:fd:e7:e8:1b:b3:7b:12:1b:e8:1c: f4:92:fb:8d:1d:ea:b7:51:e1:f9:5b:15:2d:d0:fb: dd:45:fb:3d:0c:4a:bc:2d:e4:b5:c3:5d:81:d9:96: a7:81:51:c2:f1:95:6a:b4:71:64:c8:fc:c1:cd:37: 79:8f:fe:26:96:f3:48:4f:e7:0f:94:f8:68:e6:61: 5c:a1:88:ab:08:c1:32:69:60:71:61:e1:b1:56:0f: a0:33:3f:d0:db:b9:1a:fa:ab:1a:c6:dc:d2:02:35: 1b:3f:c4:ca:ad:25:64:1a:f2:c4:47:20:2d:a0:14: 0f:fb:25:f7:ad:cd:bd:ab:35:10:d8:ca:f9:c1:75: d9:4b:76:50:06:75:fc:a8:e1:27:f9:1e:1a:97:38: 2a:55:95:bc:05:fb:7f:49:69:34:64:59:d8:76:53: 4d:b9:bf:06:96:01:9e:65:34:09:75:14:60:a2:96: f2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:92:90:04:CF:F0:A5:D7:C6:09:C9:50:F1:DD:D8:B5:ED:AF:8E:54 X509v3 Authority Key Identifier: keyid:96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:f6:54:d7:e9:04:6b:b1:4d:e9:63:49:54:7f:1e:76:1e:42: 00:b4:51:2d:f3:60:13:0b:63:bc:d4:4c:33:00:f6:17:7e:51: 88:53:19:df:e3:1e:82:88:1d:c3:09:e9:9e:7a:d9:45:a2:8a: a9:42:df:51:2e:a0:e9:4f:21:8e:22:78:b9:87:b6:84:e6:2a: ab:53:52:3d:c8:f9:83:63:fe:69:1c:f4:1f:49:68:ce:f5:23: 18:67:b3:c3:d0:1a:15:a5:b8:fd:81:ee:30:87:ec:a5:a9:db: b8:e9:20:05:ea:b6:1a:ce:f1:21:29:cf:37:b1:c0:c1:08:73: 1c:39:2c:d5:01:14:d8:f3:1f:d5:37:03:47:c8:f7:29:90:8d: 0d:69:55:50:2b:cd:52:6c:0f:17:d1:bd:ca:5a:3f:2e:97:c8: 28:d9:fd:14:19:3f:dd:74:e1:7c:f0:42:30:10:5a:15:c9:d2: a2:e7:0f:0d:73:6a:76:ba:08:36:44:df:8b:8f:df:c8:af:0c: 8f:e1:e8:7d:fd:b2:66:7b:5f:58:a7:c8:bc:8a:6a:b4:e1:63: 6c:d9:a8:64:ba:a0:b2:f2:10:4a:80:57:73:a3:a4:3a:f4:37: 17:72:e0:4e:28:86:8e:c8:85:88:63:be:64:0c:a5:34:d0:bc: 54:dd:12:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIvQzHcciNQc+xvLBsCuyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2ZDRjMGFmMTViZTM4ZDJmYzVlMzBmZTM0NTc0NzVkMzRi NzgzOWEwHhcNMjYwMjA5MTYwMTMwWhcNMjYwMjEwMTYwMTMwWjAzMTEwLwYDVQQD EygxYjkyOTAwNGNmZjBhNWQ3YzYwOWM5NTBmMWRkZDhiNWVkYWY4ZTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs57LK68ktjUYor0KJ+MaLGIyCePD v9BOJyc+flEalsJw2vKpOXIMq8Zo47bsEhBlOs0gFvn8GOuwbnpD/o37d/NSKfB9 kCn02ZwJ6HqOcv3n6BuzexIb6Bz0kvuNHeq3UeH5WxUt0PvdRfs9DEq8LeS1w12B 2ZangVHC8ZVqtHFkyPzBzTd5j/4mlvNIT+cPlPho5mFcoYirCMEyaWBxYeGxVg+g Mz/Q27ka+qsaxtzSAjUbP8TKrSVkGvLERyAtoBQP+yX3rc29qzUQ2Mr5wXXZS3ZQ BnX8qOEn+R4alzgqVZW8Bft/SWk0ZFnYdlNNub8GlgGeZTQJdRRgopbyKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBuSkATP8KXXxgnJUPHd2LXtr45UMB8GA1UdIwQY MBaAFJbUwK8VvjjS/F4w/jRXR100t4OaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHRUQXJ4Vy1PTkw4WGpELU5GZEhYVFMzZzVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9iMWIxMjgtNGYxMC00ODZlLWExZWUt OTUyZjZmYzAyNjcyLzEvbHRUQXJ4Vy1PTkw4WGpELU5GZEhYVFMzZzVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy9iMWIxMjgtNGYxMC00ODZlLWExZWUtOTUyZjZmYzAyNjcy LzEvbHRUQXJ4Vy1PTkw4WGpELU5GZEhYVFMzZzVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHPZU1+kE a7FN6WNJVH8edh5CALRRLfNgEwtjvNRMMwD2F35RiFMZ3+MegogdwwnpnnrZRaKK qULfUS6g6U8hjiJ4uYe2hOYqq1NSPcj5g2P+aRz0H0lozvUjGGezw9AaFaW4/YHu MIfspanbuOkgBeq2Gs7xISnPN7HAwQhzHDks1QEU2PMf1TcDR8j3KZCNDWlVUCvN UmwPF9G9ylo/LpfIKNn9FBk/3XThfPBCMBBaFcnSoucPDXNqdroINkTfi4/fyK8M j+Hoff2yZntfWKfIvIpqtOFjbNmoZLqgsvIQSoBXc6OkOvQ3F3LgTiiGjsiFiGO+ ZAylNNC8VN0S3A== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:49 2026 by rpki-client