This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft File: LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft (raw, json) Hash identifier: 7fW2lq4COK781RSQjtPR4vbcNviumyM5nAN3tki1G8Q= Subject key identifier: 95:84:C9:9B:10:BE:C7:B3:AA:B2:15:64:E7:B2:08:14:A7:09:D3:BA Authority key identifier: 2C:98:22:00:8D:9C:C7:01:2D:60:30:42:9B:28:D8:58:DB:BA:CA:43 Certificate issuer: /CN=2c9822008d9cc7012d6030429b28d858dbbaca43 Certificate serial: 019C432208DDA2EE257C67ED3FEFB5A6DBBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft Manifest number: 0F70 Signing time: Mon 09 Feb 2026 16:00:29 +0000 Manifest this update: Mon 09 Feb 2026 16:00:29 +0000 Manifest next update: Tue 10 Feb 2026 16:00:29 +0000 Files and hashes: 1: LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl (hash: zJuam7Ec9hAjeTSfwzBrregzyZn7bfUCTlntudXRMRY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:08:dd:a2:ee:25:7c:67:ed:3f:ef:b5:a6:db:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2c9822008d9cc7012d6030429b28d858dbbaca43 Validity Not Before: Feb 9 16:00:29 2026 GMT Not After : Feb 10 16:00:29 2026 GMT Subject: CN=9584c99b10bec7b3aab21564e7b20814a709d3ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2e:4a:be:23:32:c8:06:31:f9:f4:76:45:d3: 69:de:a9:e7:16:cb:3f:d3:c7:7f:dc:a8:40:b6:60: a0:0d:b6:32:45:26:19:b0:bd:34:1f:28:93:b8:1b: 63:79:ec:2a:a0:d2:27:b6:7b:89:c7:c6:ae:7f:8f: 0c:89:3f:d3:61:65:f1:e7:20:c8:5e:d8:fe:61:21: 43:79:2a:47:3f:2d:ea:c2:20:59:f1:f8:62:e7:1d: db:84:a4:f0:f5:89:02:86:13:6b:c7:08:be:a3:8d: 6e:a3:6e:82:ab:b3:74:bf:90:61:b0:7d:98:d7:63: 68:10:2e:00:51:28:f5:98:38:34:df:b3:b1:6b:0f: a2:c6:bd:b7:a9:2a:ae:41:40:36:bb:26:c1:ce:77: 6e:43:15:03:9d:db:0c:d3:6a:b2:f7:f6:51:9b:78: 7c:a1:ed:e4:0a:4e:9f:97:79:03:2a:a5:91:e3:e3: cd:cb:e1:34:e0:8f:0b:c8:ef:10:8e:ac:50:94:84: f4:75:35:2e:36:bd:1c:a5:40:80:a6:a5:6e:02:23: f6:79:42:29:62:04:73:08:b9:09:54:9e:09:90:fd: e3:90:75:50:b8:d8:5c:a9:0f:3c:57:5f:19:e0:35: 2a:1e:bc:e1:c4:eb:e6:05:97:a0:93:c4:1b:58:39: fd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:84:C9:9B:10:BE:C7:B3:AA:B2:15:64:E7:B2:08:14:A7:09:D3:BA X509v3 Authority Key Identifier: keyid:2C:98:22:00:8D:9C:C7:01:2D:60:30:42:9B:28:D8:58:DB:BA:CA:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:9d:2f:21:ae:ea:1e:67:ee:52:4b:3e:45:c9:6c:09:80:44: 29:90:76:59:5e:2d:a2:e3:93:ca:3e:74:1e:57:6a:72:7c:9c: d9:9f:b7:28:18:26:f2:78:b0:16:65:21:55:aa:3e:aa:b5:1b: 02:3d:7a:57:d2:92:12:0a:59:52:32:c9:de:06:16:15:c0:19: 42:ac:db:bd:fa:fc:2e:a3:b7:84:9e:c3:8b:b8:95:c7:ab:e0: e9:88:b2:ee:a7:24:ac:a6:6d:96:e4:56:8d:c6:70:c2:c0:8f: 92:2b:9e:52:79:f5:af:4c:1b:ee:09:53:07:8d:4b:06:92:4d: 3d:90:b8:4f:df:75:8f:64:69:fb:48:0b:bc:00:af:db:d6:e0: 54:d3:fc:7e:57:14:35:55:25:e4:fa:dc:5b:1d:59:a7:c0:c1: 67:4e:df:c2:e1:24:19:22:e9:d4:8e:cd:32:d9:bb:24:b1:c6: 54:8d:af:b7:4e:e5:a1:ed:bb:ac:d8:62:b6:44:c8:e6:a5:cf: 09:83:39:77:7b:4e:18:0f:48:eb:6d:83:7c:23:50:b1:4d:75: 42:93:b4:fe:0d:15:49:8e:0d:ca:b8:bf:d9:fe:1e:30:46:91: 75:36:21:51:45:fe:43:e9:a2:03:0c:66:04:b2:5b:a5:c7:8b: c8:6e:73:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIgjdou4lfGftP++1ptu/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjOTgyMjAwOGQ5Y2M3MDEyZDYwMzA0MjliMjhkODU4ZGJi YWNhNDMwHhcNMjYwMjA5MTYwMDI5WhcNMjYwMjEwMTYwMDI5WjAzMTEwLwYDVQQD Eyg5NTg0Yzk5YjEwYmVjN2IzYWFiMjE1NjRlN2IyMDgxNGE3MDlkM2JhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2C5KviMyyAYx+fR2RdNp3qnnFss/ 08d/3KhAtmCgDbYyRSYZsL00HyiTuBtjeewqoNIntnuJx8auf48MiT/TYWXx5yDI Xtj+YSFDeSpHPy3qwiBZ8fhi5x3bhKTw9YkChhNrxwi+o41uo26Cq7N0v5BhsH2Y 12NoEC4AUSj1mDg037Oxaw+ixr23qSquQUA2uybBznduQxUDndsM02qy9/ZRm3h8 oe3kCk6fl3kDKqWR4+PNy+E04I8LyO8QjqxQlIT0dTUuNr0cpUCApqVuAiP2eUIp YgRzCLkJVJ4JkP3jkHVQuNhcqQ88V18Z4DUqHrzhxOvmBZegk8QbWDn9cwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJWEyZsQvsezqrIVZOeyCBSnCdO6MB8GA1UdIwQY MBaAFCyYIgCNnMcBLWAwQpso2FjbuspDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi81MGFjMTItZmQ5My00OTM5LWEyZWYt NDFjYTJkM2FhZTcxLzEvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi81MGFjMTItZmQ5My00OTM5LWEyZWYtNDFjYTJkM2FhZTcx LzEvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW50vIa7q HmfuUks+RclsCYBEKZB2WV4touOTyj50Hldqcnyc2Z+3KBgm8niwFmUhVao+qrUb Aj16V9KSEgpZUjLJ3gYWFcAZQqzbvfr8LqO3hJ7Di7iVx6vg6Yiy7qckrKZtluRW jcZwwsCPkiueUnn1r0wb7glTB41LBpJNPZC4T991j2Rp+0gLvACv29bgVNP8flcU NVUl5PrcWx1Zp8DBZ07fwuEkGSLp1I7NMtm7JLHGVI2vt07loe27rNhitkTI5qXP CYM5d3tOGA9I622DfCNQsU11QpO0/g0VSY4Nyri/2f4eMEaRdTYhUUX+Q+miAwxm BLJbpceLyG5zvw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:09 2026 by rpki-client