This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft File: LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft (raw, json) Hash identifier: 1LXl3km2MLOpoYKh25fGqv43IPWrGK6pFhn+Z8hKQkA= Subject key identifier: E9:68:C4:6A:3E:B8:3A:3D:10:2B:11:25:2D:B6:C1:A3:DE:FA:F5:95 Authority key identifier: 2F:32:52:07:D5:CE:E0:EC:EA:99:E4:70:24:53:40:7B:56:4C:39:CA Certificate issuer: /CN=2f325207d5cee0ecea99e4702453407b564c39ca Certificate serial: 019C43226233FFAFCF1DB384B3A93A5F6FB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:52 +0000 Manifest this update: Mon 09 Feb 2026 16:00:52 +0000 Manifest next update: Tue 10 Feb 2026 16:00:52 +0000 Files and hashes: 1: LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl (hash: 5KvdWfMTYqtC9W/lDWcogmXjP/ZnvHRKDrmQh0o97uQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:62:33:ff:af:cf:1d:b3:84:b3:a9:3a:5f:6f:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f325207d5cee0ecea99e4702453407b564c39ca Validity Not Before: Feb 9 16:00:52 2026 GMT Not After : Feb 10 16:00:52 2026 GMT Subject: CN=e968c46a3eb83a3d102b11252db6c1a3defaf595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:04:c6:8b:91:cc:10:b1:c3:cb:dc:37:0d:3d: 12:bc:d8:70:30:e3:77:aa:96:a2:cd:c8:7d:48:e6: bd:db:6a:41:0b:31:09:34:e1:cf:41:dc:d2:90:94: 8d:09:05:6f:82:67:79:9e:d1:d0:9c:c6:4e:0c:e3: 45:17:2a:0f:71:f9:54:74:79:79:9d:3f:d3:c4:b1: 97:c8:d9:4c:3a:94:83:47:46:7c:33:4c:63:76:82: 5c:a9:58:05:f1:76:83:45:d8:11:7d:11:c9:c0:d7: d4:59:74:17:09:ff:4d:8f:2b:1b:ce:c3:58:4f:14: ef:7c:28:56:30:7b:f3:bc:2a:08:18:02:d2:96:01: b5:2b:3d:7a:ac:a3:ab:ae:0e:08:bc:84:e6:1c:2b: 4e:ee:c0:4e:c8:36:47:5d:fe:7d:9a:80:97:d6:6a: 27:4e:65:d3:bc:35:0b:5c:c8:9c:b2:4a:70:0f:c6: af:69:86:86:ba:38:e4:a6:ce:bf:f0:84:37:d2:b5: 5c:b8:dc:a3:2d:e3:bf:31:5e:16:21:0d:aa:3b:1b: bf:fa:cb:01:91:43:2f:c7:d0:6a:85:d9:59:3c:ab: cf:da:10:a9:5f:ca:8e:3e:24:07:c3:75:05:25:83: 8f:31:17:20:19:9d:45:2b:1d:42:2b:56:17:e9:9e: dd:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:68:C4:6A:3E:B8:3A:3D:10:2B:11:25:2D:B6:C1:A3:DE:FA:F5:95 X509v3 Authority Key Identifier: keyid:2F:32:52:07:D5:CE:E0:EC:EA:99:E4:70:24:53:40:7B:56:4C:39:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:73:97:05:92:e6:3a:1f:54:3d:c7:5a:e1:19:61:df:64:95: 37:b2:46:67:db:4f:e1:73:c8:f5:66:1c:19:a8:c8:0b:86:df: d7:6f:37:ff:38:87:4d:52:d8:15:d0:14:32:de:07:94:05:d9: 5f:09:67:0b:a2:a2:bb:27:f3:48:00:a3:fc:bd:b7:78:7b:d1: 03:71:ee:cc:61:93:b2:aa:96:61:f1:4c:bb:04:22:d2:7d:c4: df:4c:65:ae:ac:3b:07:9b:e4:ac:ee:43:fe:80:d5:f2:1c:84: ae:3a:a8:7d:5e:6c:2a:47:c4:bf:0b:4a:2e:a9:10:02:7c:ea: 80:bc:2c:f6:7b:44:cf:2c:47:2d:b9:43:8c:1b:a3:c1:a0:1c: 7d:fe:2a:3f:3b:ee:0c:df:96:3e:cd:ba:45:09:c7:a3:98:a4: 14:39:e7:81:73:be:2f:cb:99:07:2f:74:04:95:ca:61:d5:17: 74:31:b5:2d:6a:6c:c9:e2:13:69:e7:98:57:16:94:c0:f2:5c: 47:97:1f:63:4f:2f:e1:3c:8d:37:ed:22:61:e4:c3:11:fc:c8: 9b:57:8b:26:97:0d:7e:42:e5:a3:cc:dd:97:d8:47:28:54:41: 31:4c:e3:88:a1:63:3e:fa:b0:82:81:9a:96:0e:16:94:44:16: 7f:79:53:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImIz/6/PHbOEs6k6X2+4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmMzI1MjA3ZDVjZWUwZWNlYTk5ZTQ3MDI0NTM0MDdiNTY0 YzM5Y2EwHhcNMjYwMjA5MTYwMDUyWhcNMjYwMjEwMTYwMDUyWjAzMTEwLwYDVQQD EyhlOTY4YzQ2YTNlYjgzYTNkMTAyYjExMjUyZGI2YzFhM2RlZmFmNTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1QTGi5HMELHDy9w3DT0SvNhwMON3 qpaizch9SOa922pBCzEJNOHPQdzSkJSNCQVvgmd5ntHQnMZODONFFyoPcflUdHl5 nT/TxLGXyNlMOpSDR0Z8M0xjdoJcqVgF8XaDRdgRfRHJwNfUWXQXCf9NjysbzsNY TxTvfChWMHvzvCoIGALSlgG1Kz16rKOrrg4IvITmHCtO7sBOyDZHXf59moCX1mon TmXTvDULXMicskpwD8avaYaGujjkps6/8IQ30rVcuNyjLeO/MV4WIQ2qOxu/+ssB kUMvx9BqhdlZPKvP2hCpX8qOPiQHw3UFJYOPMRcgGZ1FKx1CK1YX6Z7dhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOloxGo+uDo9ECsRJS22waPe+vWVMB8GA1UdIwQY MBaAFC8yUgfVzuDs6pnkcCRTQHtWTDnKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHpKU0I5WE80T3pxbWVSd0pGTkFlMVpNT2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS80YmUyZDctOWE0Mi00NTc4LThiOGIt OTBhZTZkMGM5YjMzLzEvTHpKU0I5WE80T3pxbWVSd0pGTkFlMVpNT2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS80YmUyZDctOWE0Mi00NTc4LThiOGItOTBhZTZkMGM5YjMz LzEvTHpKU0I5WE80T3pxbWVSd0pGTkFlMVpNT2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASnOXBZLm Oh9UPcda4Rlh32SVN7JGZ9tP4XPI9WYcGajIC4bf1283/ziHTVLYFdAUMt4HlAXZ XwlnC6KiuyfzSACj/L23eHvRA3HuzGGTsqqWYfFMuwQi0n3E30xlrqw7B5vkrO5D /oDV8hyErjqofV5sKkfEvwtKLqkQAnzqgLws9ntEzyxHLblDjBujwaAcff4qPzvu DN+WPs26RQnHo5ikFDnngXO+L8uZBy90BJXKYdUXdDG1LWpsyeITaeeYVxaUwPJc R5cfY08v4TyNN+0iYeTDEfzIm1eLJpcNfkLlo8zdl9hHKFRBMUzjiKFjPvqwgoGa lg4WlEQWf3lTaQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:06:34 2026 by rpki-client