This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft File: lsgslDmkFHsuorWXz_xRALqNMnw.mft (raw, json) Hash identifier: D9CIaYIQ0qyUnxycUWVPtspOeRPjDXpW39S15asbtmM= Subject key identifier: DC:7D:6F:C0:3E:F2:AD:DF:91:59:33:7D:1D:7B:69:D1:B3:A9:3D:C6 Authority key identifier: 96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C Certificate issuer: /CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c Certificate serial: 019C4321D107DC3B11C041E53F316B461BAE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft Manifest number: 13D0 Signing time: Mon 09 Feb 2026 16:00:15 +0000 Manifest this update: Mon 09 Feb 2026 16:00:15 +0000 Manifest next update: Tue 10 Feb 2026 16:00:15 +0000 Files and hashes: 1: lsgslDmkFHsuorWXz_xRALqNMnw.crl (hash: Ya1gOLv4e33Mcd5BJMQPQpuHZeisoqgQVmfyrzw+NFc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:d1:07:dc:3b:11:c0:41:e5:3f:31:6b:46:1b:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c Validity Not Before: Feb 9 16:00:15 2026 GMT Not After : Feb 10 16:00:15 2026 GMT Subject: CN=dc7d6fc03ef2addf9159337d1d7b69d1b3a93dc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ff:af:82:ff:50:15:da:61:d0:b2:ed:36:84: 8d:1e:b4:8d:1d:03:1a:3d:08:c1:ff:f2:29:61:5f: c7:e4:e9:7e:4c:a4:40:00:2f:b8:7b:49:8f:24:cc: 2a:af:5c:46:c2:13:80:f6:23:36:72:11:5d:7a:9d: 0c:b7:d2:06:02:61:57:87:80:32:2a:f1:7a:a8:51: 65:68:25:80:01:d6:60:20:f6:e7:ee:6e:bf:dc:59: 78:35:7a:64:73:f0:9c:6f:d9:c8:a0:91:c3:04:41: 93:98:54:89:27:0c:1c:91:5c:bf:3c:6d:c2:1e:b0: 2d:59:e1:91:17:34:b2:87:2a:70:7e:49:0c:07:a5: 0d:6a:3c:00:99:89:28:93:14:20:f0:c0:17:78:b0: fa:64:86:ef:83:a3:4c:e3:15:77:25:20:0c:d6:2d: b9:34:0e:57:f9:eb:a2:dc:22:6c:2b:ec:c3:3b:84: e6:ca:61:e3:d9:62:68:b8:28:99:27:75:d0:a1:9b: b7:98:b0:3c:a7:72:65:18:48:bc:63:bc:6d:05:41: 81:47:bd:f7:46:d9:ef:1d:5b:74:b3:3c:97:79:29: ab:20:e8:7d:99:10:58:77:88:59:b1:26:b6:1e:82: 51:f3:87:12:33:3c:0d:9a:e7:01:17:25:6d:c4:2d: 40:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7D:6F:C0:3E:F2:AD:DF:91:59:33:7D:1D:7B:69:D1:B3:A9:3D:C6 X509v3 Authority Key Identifier: keyid:96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:4b:bb:38:8d:b3:79:08:07:70:5e:af:5b:01:0a:bc:9c:0c: d9:61:db:ca:11:fc:1f:ca:c6:f3:44:3f:2d:31:f8:78:4e:38: dd:21:f9:f8:16:45:d6:5f:53:29:53:c3:d4:ab:bf:6a:52:df: e5:7d:65:49:7c:4b:97:19:f9:58:34:86:62:60:0e:12:79:4c: 20:55:b7:82:91:a1:81:9b:c4:71:a8:39:e5:0b:30:46:8f:7e: 4f:b4:90:39:9c:70:c8:8c:65:d6:23:f5:61:d7:1d:82:ce:8b: 6e:79:c4:82:15:dc:25:30:e5:63:cd:42:76:e9:21:a0:16:13: 8a:da:9b:ce:4a:95:ba:65:38:6a:6c:2d:f1:f5:6e:00:86:3c: fb:1f:de:57:cd:f2:1f:1b:f9:b9:71:98:d0:e5:0e:71:71:63: 56:e5:e5:92:dc:58:ec:94:57:1e:03:1b:3f:c6:01:33:b5:27: b2:1b:24:c6:3c:2e:d0:95:d3:5c:09:e5:bc:1f:e9:6c:d2:9f: 0e:aa:e3:7b:42:f1:47:a8:e2:2e:4c:a5:12:af:b6:6e:bc:1e: 5d:cb:a9:05:c7:8d:64:e0:16:1a:0a:c4:f0:ee:8f:53:9b:e1: 3e:38:b0:ab:86:56:4d:5c:58:92:97:22:13:7f:75:5b:4a:b8: e1:65:4a:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdEH3DsRwEHlPzFrRhuuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2YzgyYzk0MzlhNDE0N2IyZWEyYjU5N2NmZmM1MTAwYmE4 ZDMyN2MwHhcNMjYwMjA5MTYwMDE1WhcNMjYwMjEwMTYwMDE1WjAzMTEwLwYDVQQD EyhkYzdkNmZjMDNlZjJhZGRmOTE1OTMzN2QxZDdiNjlkMWIzYTkzZGM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/+vgv9QFdph0LLtNoSNHrSNHQMa PQjB//IpYV/H5Ol+TKRAAC+4e0mPJMwqr1xGwhOA9iM2chFdep0Mt9IGAmFXh4Ay KvF6qFFlaCWAAdZgIPbn7m6/3Fl4NXpkc/Ccb9nIoJHDBEGTmFSJJwwckVy/PG3C HrAtWeGRFzSyhypwfkkMB6UNajwAmYkokxQg8MAXeLD6ZIbvg6NM4xV3JSAM1i25 NA5X+eui3CJsK+zDO4TmymHj2WJouCiZJ3XQoZu3mLA8p3JlGEi8Y7xtBUGBR733 RtnvHVt0szyXeSmrIOh9mRBYd4hZsSa2HoJR84cSMzwNmucBFyVtxC1ARwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNx9b8A+8q3fkVkzfR17adGzqT3GMB8GA1UdIwQY MBaAFJbILJQ5pBR7LqK1l8/8UQC6jTJ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHNnc2xEbWtGSHN1b3JXWHpfeFJBTHFOTW53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9iM2M0MWEtNDkyYy00NWU0LTg5ZDYt ZGNjNGM0NWJmMTYyLzEvbHNnc2xEbWtGSHN1b3JXWHpfeFJBTHFOTW53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9iM2M0MWEtNDkyYy00NWU0LTg5ZDYtZGNjNGM0NWJmMTYy LzEvbHNnc2xEbWtGSHN1b3JXWHpfeFJBTHFOTW53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASku7OI2z eQgHcF6vWwEKvJwM2WHbyhH8H8rG80Q/LTH4eE443SH5+BZF1l9TKVPD1Ku/alLf 5X1lSXxLlxn5WDSGYmAOEnlMIFW3gpGhgZvEcag55QswRo9+T7SQOZxwyIxl1iP1 Ydcdgs6LbnnEghXcJTDlY81CdukhoBYTitqbzkqVumU4amwt8fVuAIY8+x/eV83y Hxv5uXGY0OUOcXFjVuXlktxY7JRXHgMbP8YBM7Unshskxjwu0JXTXAnlvB/pbNKf Dqrje0LxR6jiLkylEq+2brweXcupBceNZOAWGgrE8O6PU5vhPjiwq4ZWTVxYkpci E391W0q44WVKEw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:24 2026 by rpki-client