This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft File: LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft (raw, json) Hash identifier: DQ3nMJ+hwMQFqejU3+7ybDbkxgyaVSKnA7tRPbD/XHQ= Subject key identifier: E2:E5:7C:5A:A0:23:CD:01:B1:B7:71:BC:EC:C4:B5:92:82:78:A3:6B Authority key identifier: 2F:15:B7:3A:7C:2D:13:1E:C1:4E:BD:90:71:71:8B:54:C3:FB:A6:92 Certificate issuer: /CN=2f15b73a7c2d131ec14ebd9071718b54c3fba692 Certificate serial: 019C42EAE2C25A6514A4FB4ECC12D0F6743F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft Manifest number: 0524 Signing time: Mon 09 Feb 2026 15:00:15 +0000 Manifest this update: Mon 09 Feb 2026 15:00:15 +0000 Manifest next update: Tue 10 Feb 2026 15:00:15 +0000 Files and hashes: 1: LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl (hash: IY1/715PFdWapic+WtYyI0TSSxDQYAUPXz2xnczYhXg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:ea:e2:c2:5a:65:14:a4:fb:4e:cc:12:d0:f6:74:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f15b73a7c2d131ec14ebd9071718b54c3fba692 Validity Not Before: Feb 9 15:00:15 2026 GMT Not After : Feb 10 15:00:15 2026 GMT Subject: CN=e2e57c5aa023cd01b1b771bcecc4b5928278a36b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f6:6f:26:a7:2c:c5:31:16:d1:af:3a:b9:30: 63:7c:41:dc:78:2b:fb:91:c4:04:cd:e8:46:7c:4a: 8c:a6:a9:f1:dc:ef:12:0d:8d:dd:73:8c:26:91:59: a0:3d:4d:b0:35:5e:5c:8a:a0:93:a5:fc:1e:c3:08: e4:b9:05:3d:8e:dd:f5:79:5d:8e:7b:1b:00:82:a4: 60:d7:2a:a6:e0:53:2f:dd:fa:44:d8:4d:14:56:f3: 0f:11:42:92:b4:03:29:90:a6:11:2e:ce:9b:11:ab: 68:af:cd:a0:7c:21:28:5d:94:66:f7:df:fc:6f:8d: 46:44:14:4a:05:13:f4:8a:d8:c2:54:c6:0c:3d:95: a6:d2:f8:85:01:68:fb:ad:a4:4d:c3:e1:f9:50:21: fd:87:39:1f:5f:07:f4:f7:1d:2a:c3:d4:54:a0:ad: 6a:12:ec:30:e7:87:a9:7b:b0:18:6c:34:b5:38:58: c2:2b:c4:80:75:ec:9c:c4:99:14:ea:e1:f6:6e:d1: 14:17:37:f5:49:73:9b:73:97:f6:00:1a:51:07:79: 4a:f2:30:e9:fd:a6:3c:38:86:0f:13:e8:a9:16:d2: bf:75:1e:d6:25:73:5d:a3:fc:6e:ab:57:94:a7:25: 21:fd:8a:cd:81:7a:e7:d4:8d:7c:27:97:b9:86:8b: 06:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E5:7C:5A:A0:23:CD:01:B1:B7:71:BC:EC:C4:B5:92:82:78:A3:6B X509v3 Authority Key Identifier: keyid:2F:15:B7:3A:7C:2D:13:1E:C1:4E:BD:90:71:71:8B:54:C3:FB:A6:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:c1:22:0d:ff:d1:c2:a9:88:31:9a:c6:1b:36:6e:8d:50:eb: cb:4c:4d:d5:ea:4d:e9:04:94:e9:e5:8e:f0:57:51:a6:17:b5: a3:bd:a3:71:f7:e9:b3:e0:b3:c1:28:19:94:88:00:b4:a3:cb: b2:cb:ee:f3:63:8d:8d:81:fd:8c:d9:40:4b:d7:92:d0:a4:02: 4d:b4:c1:6e:98:dd:a1:e5:3e:ff:e9:38:0a:dd:69:a9:6c:5a: dc:05:24:5f:6e:4d:ec:a6:1d:c5:3f:4b:72:c5:9c:a0:17:f2: 84:83:93:d2:41:54:cd:b3:13:b0:d9:8a:4a:2d:51:de:4d:04: 66:c3:de:10:20:a8:fd:17:f0:28:c5:d2:da:82:63:d1:75:45: 64:3c:a7:05:4a:f0:94:a6:74:7b:ec:ad:a8:41:f8:79:17:52: f1:bc:14:83:0a:c3:30:3d:01:6b:13:5c:6e:0e:fb:7b:66:54: 7d:3d:01:38:76:f9:07:e3:7e:a4:42:3c:31:36:1f:7e:df:08: be:3c:44:e0:43:a6:09:d4:35:7d:46:30:36:e7:73:5b:c3:d3: 9b:3a:81:59:52:80:0e:ea:93:ae:49:53:ef:3c:bd:96:58:a0: 06:42:31:51:dd:51:44:51:e8:67:a9:19:75:64:1e:33:59:bf: c5:13:81:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6uLCWmUUpPtOzBLQ9nQ/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmMTViNzNhN2MyZDEzMWVjMTRlYmQ5MDcxNzE4YjU0YzNm YmE2OTIwHhcNMjYwMjA5MTUwMDE1WhcNMjYwMjEwMTUwMDE1WjAzMTEwLwYDVQQD EyhlMmU1N2M1YWEwMjNjZDAxYjFiNzcxYmNlY2M0YjU5MjgyNzhhMzZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPZvJqcsxTEW0a86uTBjfEHceCv7 kcQEzehGfEqMpqnx3O8SDY3dc4wmkVmgPU2wNV5ciqCTpfwewwjkuQU9jt31eV2O exsAgqRg1yqm4FMv3fpE2E0UVvMPEUKStAMpkKYRLs6bEator82gfCEoXZRm99/8 b41GRBRKBRP0itjCVMYMPZWm0viFAWj7raRNw+H5UCH9hzkfXwf09x0qw9RUoK1q Euww54epe7AYbDS1OFjCK8SAdeycxJkU6uH2btEUFzf1SXObc5f2ABpRB3lK8jDp /aY8OIYPE+ipFtK/dR7WJXNdo/xuq1eUpyUh/YrNgXrn1I18J5e5hosGxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOLlfFqgI80BsbdxvOzEtZKCeKNrMB8GA1UdIwQY MBaAFC8Vtzp8LRMewU69kHFxi1TD+6aSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHhXM09ud3RFeDdCVHIyUWNYR0xWTVA3cHBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83OTI5ZjQtZWMzNS00ZDljLTkyYTgt MGViNDVlZjYyZDhkLzEvTHhXM09ud3RFeDdCVHIyUWNYR0xWTVA3cHBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi83OTI5ZjQtZWMzNS00ZDljLTkyYTgtMGViNDVlZjYyZDhk LzEvTHhXM09ud3RFeDdCVHIyUWNYR0xWTVA3cHBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHsEiDf/R wqmIMZrGGzZujVDry0xN1epN6QSU6eWO8FdRphe1o72jcffps+CzwSgZlIgAtKPL ssvu82ONjYH9jNlAS9eS0KQCTbTBbpjdoeU+/+k4Ct1pqWxa3AUkX25N7KYdxT9L csWcoBfyhIOT0kFUzbMTsNmKSi1R3k0EZsPeECCo/RfwKMXS2oJj0XVFZDynBUrw lKZ0e+ytqEH4eRdS8bwUgwrDMD0BaxNcbg77e2ZUfT0BOHb5B+N+pEI8MTYfft8I vjxE4EOmCdQ1fUYwNudzW8PTmzqBWVKADuqTrklT7zy9lligBkIxUd1RRFHoZ6kZ dWQeM1m/xROB+w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:27:10 2026 by rpki-client