This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft File: lmsFxmHHalvMSNqDju22lz8VO4Y.mft (raw, json) Hash identifier: OTqlUYPPCiTa4fPdTlIL8CUqEy7ZRuTWY3M4iXk43X4= Subject key identifier: 6F:81:F6:DF:8B:02:BE:C4:40:66:39:32:E3:B8:A3:12:AD:A5:33:43 Authority key identifier: 96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86 Certificate issuer: /CN=966b05c661c76a5bcc48da838eedb6973f153b86 Certificate serial: 019C41344AE0C7A7C16F5606A7BF433E8735 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft Manifest number: 1815 Signing time: Mon 09 Feb 2026 07:01:11 +0000 Manifest this update: Mon 09 Feb 2026 07:01:11 +0000 Manifest next update: Tue 10 Feb 2026 07:01:11 +0000 Files and hashes: 1: lmsFxmHHalvMSNqDju22lz8VO4Y.crl (hash: Wg7J+P+qQwYbGyLiQmyx3B8jJnKKYoaPLE4dC9nFETE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:4a:e0:c7:a7:c1:6f:56:06:a7:bf:43:3e:87:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=966b05c661c76a5bcc48da838eedb6973f153b86 Validity Not Before: Feb 9 07:01:11 2026 GMT Not After : Feb 10 07:01:11 2026 GMT Subject: CN=6f81f6df8b02bec440663932e3b8a312ada53343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:95:1a:50:1b:7b:90:9b:7c:a5:4e:28:17:5a: 63:7c:6a:30:c4:65:92:c5:09:99:db:ee:0b:f0:fc: 93:93:f1:75:62:a1:8c:4e:1d:c4:96:13:c8:10:a5: 4f:b6:57:47:e8:65:5d:97:81:9d:ee:2f:db:b9:c3: fc:ca:ea:2a:c0:23:d8:13:04:f4:51:f8:9c:ca:62: ab:3f:7d:37:ba:7a:02:cb:aa:e9:76:1a:8e:c6:09: 70:88:8a:6d:c3:c1:0e:d8:10:be:60:b5:7b:18:50: dd:c0:62:cb:cb:19:f5:47:bc:09:89:56:48:4a:ad: f8:5f:51:65:db:79:4e:18:62:46:e1:87:96:95:9e: 9a:bc:38:ff:7a:4e:b3:c2:b0:8e:12:a4:f2:41:fb: 5c:8d:19:39:0d:16:0c:73:ef:8f:d6:4e:a5:b0:38: 1b:87:3a:f0:ed:e2:f7:24:f5:76:70:c0:64:0c:21: 05:c8:6c:5b:ba:b9:b2:94:2b:f5:01:77:fa:a8:8e: ea:fb:dc:69:90:c8:6f:cc:c1:b9:91:ea:e9:fa:2b: 23:c7:0d:1e:ad:b9:a9:f1:53:22:08:99:f5:da:fd: a5:17:13:28:14:0e:ba:8d:bd:84:52:da:81:4a:ce: 8a:ad:94:36:5e:20:09:3c:7c:df:4c:67:98:dc:ca: d3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:81:F6:DF:8B:02:BE:C4:40:66:39:32:E3:B8:A3:12:AD:A5:33:43 X509v3 Authority Key Identifier: keyid:96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:95:a7:e5:62:7b:7f:4b:b7:49:ed:39:2e:b3:be:03:3c:37: ac:e5:9c:a1:09:97:cf:87:a9:f4:58:2b:e9:b4:42:1d:2c:84: ad:83:f8:74:6a:3f:f1:b6:0d:3c:5e:05:3f:b3:8d:dd:eb:8e: 60:a9:02:1f:21:4d:ff:b9:98:fd:52:a1:7d:9c:2a:da:dc:3b: e6:0d:0b:e4:af:d9:c4:c4:75:2a:d1:a1:f6:3a:12:ed:68:71: 41:a1:06:c3:18:19:43:23:c5:77:0f:d0:70:9d:58:36:96:bf: 77:8a:ca:ff:1b:65:c1:59:60:4c:c0:c7:78:92:9d:9c:e6:4c: dc:61:6d:91:66:d4:38:c1:6a:9e:8e:29:1c:f2:87:67:ad:f7: a6:70:03:51:00:ba:00:5e:e0:71:28:69:76:82:e7:c8:c9:4c: bc:ba:4c:ab:3d:96:c5:8d:71:78:0a:b0:ea:f7:ef:fd:11:99: fe:31:6a:a5:be:36:bc:7d:c8:9f:e2:b3:a1:cf:74:fd:67:5e: 94:da:b3:25:77:bb:bf:3a:d9:f5:49:45:64:ca:7b:b6:c4:eb: 78:91:01:06:0b:07:5d:6e:85:3e:c1:fc:35:28:d8:33:6b:67: 17:17:1c:7f:ea:9f:80:73:04:b1:ea:36:ec:ab:e1:f5:8d:43: 0a:68:7e:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNErgx6fBb1YGp79DPoc1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2NmIwNWM2NjFjNzZhNWJjYzQ4ZGE4MzhlZWRiNjk3M2Yx NTNiODYwHhcNMjYwMjA5MDcwMTExWhcNMjYwMjEwMDcwMTExWjAzMTEwLwYDVQQD Eyg2ZjgxZjZkZjhiMDJiZWM0NDA2NjM5MzJlM2I4YTMxMmFkYTUzMzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJUaUBt7kJt8pU4oF1pjfGowxGWS xQmZ2+4L8PyTk/F1YqGMTh3ElhPIEKVPtldH6GVdl4Gd7i/bucP8yuoqwCPYEwT0 UficymKrP303unoCy6rpdhqOxglwiIptw8EO2BC+YLV7GFDdwGLLyxn1R7wJiVZI Sq34X1Fl23lOGGJG4YeWlZ6avDj/ek6zwrCOEqTyQftcjRk5DRYMc++P1k6lsDgb hzrw7eL3JPV2cMBkDCEFyGxburmylCv1AXf6qI7q+9xpkMhvzMG5kerp+isjxw0e rbmp8VMiCJn12v2lFxMoFA66jb2EUtqBSs6KrZQ2XiAJPHzfTGeY3MrTtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG+B9t+LAr7EQGY5MuO4oxKtpTNDMB8GA1UdIwQY MBaAFJZrBcZhx2pbzEjag47ttpc/FTuGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbG1zRnhtSEhhbHZNU05xRGp1MjJsejhWTzRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC82ODkxZGYtOTcxZS00ZTYwLThjYmMt ZTNjMmYzMmNmM2I3LzEvbG1zRnhtSEhhbHZNU05xRGp1MjJsejhWTzRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC82ODkxZGYtOTcxZS00ZTYwLThjYmMtZTNjMmYzMmNmM2I3 LzEvbG1zRnhtSEhhbHZNU05xRGp1MjJsejhWTzRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE5Wn5WJ7 f0u3Se05LrO+Azw3rOWcoQmXz4ep9Fgr6bRCHSyErYP4dGo/8bYNPF4FP7ON3euO YKkCHyFN/7mY/VKhfZwq2tw75g0L5K/ZxMR1KtGh9joS7WhxQaEGwxgZQyPFdw/Q cJ1YNpa/d4rK/xtlwVlgTMDHeJKdnOZM3GFtkWbUOMFqno4pHPKHZ633pnADUQC6 AF7gcShpdoLnyMlMvLpMqz2WxY1xeAqw6vfv/RGZ/jFqpb42vH3In+Kzoc90/Wde lNqzJXe7vzrZ9UlFZMp7tsTreJEBBgsHXW6FPsH8NSjYM2tnFxccf+qfgHMEseo2 7Kvh9Y1DCmh+5A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:46 2026 by rpki-client