This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft File: lb24W36o8fqvdR52xBR8gbYOmU0.mft (raw, json) Hash identifier: VEAuaWS6Xz5Nq8fnU0Oz1Jq0dCI2TQvimg/mn2lpcWA= Subject key identifier: 42:49:47:C1:37:C3:E9:C7:D6:6B:D8:1C:5E:6F:F6:50:8C:9C:47:C6 Authority key identifier: 95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D Certificate issuer: /CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d Certificate serial: 019BFC8A5212B74058957E17FD0DD25BC542 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft Manifest number: 019F Signing time: Mon 26 Jan 2026 23:01:21 +0000 Manifest this update: Mon 26 Jan 2026 23:01:21 +0000 Manifest next update: Tue 27 Jan 2026 23:01:21 +0000 Files and hashes: 1: X3R-floHCctncemlohut39fAAWo.roa (hash: HcALHXWtxViwkG5KOnEw6VMEEbxHOixZaFpjLNGdypY=) 2: lb24W36o8fqvdR52xBR8gbYOmU0.crl (hash: +vcj61+aFcffmUIGr9q9OKPzU7xE+TyeHPdhfxnyrBU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 23:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:8a:52:12:b7:40:58:95:7e:17:fd:0d:d2:5b:c5:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d Validity Not Before: Jan 26 23:01:21 2026 GMT Not After : Jan 27 23:01:21 2026 GMT Subject: CN=424947c137c3e9c7d66bd81c5e6ff6508c9c47c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:17:32:65:29:5b:01:45:1f:6f:31:b6:7c:88: 18:b1:c0:74:87:45:f2:b5:33:5e:2d:65:0f:44:d0: a2:cc:8b:41:15:f5:6e:5d:0b:ad:80:60:27:f1:65: dd:59:28:89:e9:50:68:9b:c6:44:75:cf:6a:d9:88: 91:7f:21:3e:3a:b0:e8:10:64:31:2b:2f:c7:c9:84: 1a:a0:96:24:bb:aa:9c:e3:60:e3:89:0c:48:6e:af: 8d:7b:87:44:a9:e7:d6:08:d7:0c:5e:b8:51:bd:8c: f5:17:43:8f:2f:25:91:25:e4:6b:c2:c0:61:04:34: 2a:0a:59:91:0d:af:a3:eb:a3:ab:76:55:5b:e8:c7: 4f:0b:fe:45:83:3a:56:cf:2f:91:51:43:17:67:8c: 2f:89:bc:e2:34:96:02:3a:81:7b:55:29:5b:62:8d: a0:22:db:99:9b:22:55:37:85:89:89:02:bb:8b:6a: e3:3c:86:89:db:f6:93:bb:6e:02:de:0d:a7:56:2c: c2:1e:c7:a3:54:65:ee:bf:9d:5c:57:e5:a7:b9:8d: 46:05:de:12:ca:fd:0c:f0:29:84:53:b9:50:12:2b: f8:70:8a:30:e8:93:d0:de:ac:8d:76:95:46:cc:30: 0c:1f:e6:40:fe:6a:eb:b9:1c:8e:8a:4f:74:8f:a3: 23:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:49:47:C1:37:C3:E9:C7:D6:6B:D8:1C:5E:6F:F6:50:8C:9C:47:C6 X509v3 Authority Key Identifier: keyid:95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:5a:f9:e0:be:98:9d:16:ff:e4:5d:02:c8:e3:30:70:fd:c7: 9e:a3:49:38:85:68:82:27:ad:5e:c9:3e:34:bd:a9:4e:10:3e: a3:1f:ad:45:99:ce:ee:dd:40:07:be:2f:af:1b:af:00:82:a6: e3:6e:28:94:3f:2d:b2:8d:4e:a7:2a:01:4b:1c:3d:2e:6d:76: a7:f6:3c:7a:cf:84:19:f4:c9:32:08:2f:81:88:0d:e6:a0:eb: 3b:e9:c4:6e:22:b3:c1:ce:f4:fc:b6:55:cd:ea:d0:34:de:7d: 65:4e:10:18:55:96:32:3b:08:3d:da:d8:94:b3:c9:d5:30:7e: 33:a1:d5:93:2f:0c:29:a7:26:4f:08:ca:b5:9e:23:20:20:17: 68:bb:51:7f:46:41:ff:5d:a4:65:9b:1c:2d:c0:01:29:15:fc: 58:e1:2a:fd:5a:cf:a2:82:2b:15:04:bd:60:57:3d:ff:14:e8: 62:0b:c0:0f:d5:b9:6f:c2:a2:00:3b:c1:0d:a5:1f:78:7d:63: 8e:63:45:f5:71:7b:3c:a7:e7:d6:6d:dc:9f:7e:3a:f2:c7:5a: 0e:7f:a3:d5:c3:cc:17:39:97:25:4d:63:0e:15:2a:b0:7d:46: 6a:fc:e5:45:df:cc:2e:fd:60:2d:1e:98:3c:77:b7:f2:18:4f: 3f:19:37:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8ilISt0BYlX4X/Q3SW8VCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1YmRiODViN2VhOGYxZmFhZjc1MWU3NmM0MTQ3YzgxYjYw ZTk5NGQwHhcNMjYwMTI2MjMwMTIxWhcNMjYwMTI3MjMwMTIxWjAzMTEwLwYDVQQD Eyg0MjQ5NDdjMTM3YzNlOWM3ZDY2YmQ4MWM1ZTZmZjY1MDhjOWM0N2M2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBcyZSlbAUUfbzG2fIgYscB0h0Xy tTNeLWUPRNCizItBFfVuXQutgGAn8WXdWSiJ6VBom8ZEdc9q2YiRfyE+OrDoEGQx Ky/HyYQaoJYku6qc42DjiQxIbq+Ne4dEqefWCNcMXrhRvYz1F0OPLyWRJeRrwsBh BDQqClmRDa+j66OrdlVb6MdPC/5FgzpWzy+RUUMXZ4wvibziNJYCOoF7VSlbYo2g ItuZmyJVN4WJiQK7i2rjPIaJ2/aTu24C3g2nVizCHsejVGXuv51cV+WnuY1GBd4S yv0M8CmEU7lQEiv4cIow6JPQ3qyNdpVGzDAMH+ZA/mrruRyOik90j6MjWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEJJR8E3w+nH1mvYHF5v9lCMnEfGMB8GA1UdIwQY MBaAFJW9uFt+qPH6r3UedsQUfIG2DplNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGIyNFczNm84ZnF2ZFI1MnhCUjhnYllPbVUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8wMzM3MDAtZjkwNC00MjJmLWE0YWMt MTAyNDBjYTBiMTgyLzEvbGIyNFczNm84ZnF2ZFI1MnhCUjhnYllPbVUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy8wMzM3MDAtZjkwNC00MjJmLWE0YWMtMTAyNDBjYTBiMTgy LzEvbGIyNFczNm84ZnF2ZFI1MnhCUjhnYllPbVUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW1r54L6Y nRb/5F0CyOMwcP3HnqNJOIVogietXsk+NL2pThA+ox+tRZnO7t1AB74vrxuvAIKm 424olD8tso1OpyoBSxw9Lm12p/Y8es+EGfTJMggvgYgN5qDrO+nEbiKzwc70/LZV zerQNN59ZU4QGFWWMjsIPdrYlLPJ1TB+M6HVky8MKacmTwjKtZ4jICAXaLtRf0ZB /12kZZscLcABKRX8WOEq/VrPooIrFQS9YFc9/xToYgvAD9W5b8KiADvBDaUfeH1j jmNF9XF7PKfn1m3cn3468sdaDn+j1cPMFzmXJU1jDhUqsH1GavzlRd/MLv1gLR6Y PHe38hhPPxk3Uw== -----END CERTIFICATE-----Generated at Tue Jan 27 07:17:35 2026 by rpki-client