This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/fe6725-7609-4bc2-b48b-25477dad9434/1/l3rc9I_t4Rk44XfcBNxnnGktjBw.mft File: l3rc9I_t4Rk44XfcBNxnnGktjBw.mft (raw, json) Hash identifier: pa0b5Wd9ii3nJoOfSjDrkRjCd5Xsg56DxtEMjeNHXlU= Subject key identifier: 1B:6C:AB:ED:08:D6:F0:AD:15:AB:03:AF:70:D1:5B:A0:CD:C9:B8:10 Authority key identifier: 97:7A:DC:F4:8F:ED:E1:19:38:E1:77:DC:04:DC:67:9C:69:2D:8C:1C Certificate issuer: /CN=977adcf48fede11938e177dc04dc679c692d8c1c Certificate serial: 019C4321DC44AF875A3EEBA07ACC45A6ADC8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3rc9I_t4Rk44XfcBNxnnGktjBw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/fe6725-7609-4bc2-b48b-25477dad9434/1/l3rc9I_t4Rk44XfcBNxnnGktjBw.mft Manifest number: 01C1 Signing time: Mon 09 Feb 2026 16:00:18 +0000 Manifest this update: Mon 09 Feb 2026 16:00:18 +0000 Manifest next update: Tue 10 Feb 2026 16:00:18 +0000 Files and hashes: 1: l3rc9I_t4Rk44XfcBNxnnGktjBw.crl (hash: P3SyX44qPFBP7s7FynGuL7qGBY4AdKvGmyMthtSNRMs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/fe6725-7609-4bc2-b48b-25477dad9434/1/l3rc9I_t4Rk44XfcBNxnnGktjBw.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/fe6725-7609-4bc2-b48b-25477dad9434/1/l3rc9I_t4Rk44XfcBNxnnGktjBw.mft rsync://rpki.ripe.net/repository/DEFAULT/l3rc9I_t4Rk44XfcBNxnnGktjBw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:dc:44:af:87:5a:3e:eb:a0:7a:cc:45:a6:ad:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=977adcf48fede11938e177dc04dc679c692d8c1c Validity Not Before: Feb 9 16:00:18 2026 GMT Not After : Feb 10 16:00:18 2026 GMT Subject: CN=1b6cabed08d6f0ad15ab03af70d15ba0cdc9b810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a1:6c:91:fa:ed:ee:08:b9:97:75:aa:d5:ac: 3f:cd:cf:da:7d:d5:bd:95:45:9e:6b:48:fd:33:cc: 3d:4b:0a:ac:33:88:6c:46:bf:69:db:7b:80:a2:03: c3:e9:2c:75:51:36:3c:9f:94:21:b8:b4:17:58:45: 56:3a:9f:f3:62:6b:8a:dc:d1:7a:b8:8f:6a:91:01: 01:cc:6c:fb:96:88:f8:f2:a1:a4:74:d5:e4:9b:5c: bc:b6:ce:47:de:01:66:d8:13:ac:f0:e2:c7:42:40: 54:f1:fb:3d:8c:b0:e9:92:d5:80:9a:9c:d5:43:4b: fb:0a:e9:fe:1b:74:e1:d8:70:df:9e:47:e8:31:96: 7d:4c:76:94:d2:56:78:e0:5b:0b:de:b1:34:e1:a5: 98:7e:e1:5c:73:99:7c:b7:d9:c6:f3:e7:10:af:40: a1:6f:f5:40:48:ba:b7:f1:a7:10:68:b4:bb:2f:9b: 27:09:0e:b5:0e:1d:52:d9:a0:eb:82:6d:bf:c6:1e: 69:0a:19:be:68:85:ca:b4:41:0a:da:0b:b1:71:08: 04:38:6c:5d:04:4c:8a:80:ac:2e:c2:bd:c5:5b:bf: 95:87:91:52:ea:49:23:29:90:22:43:46:11:05:98: cb:93:ed:57:42:88:93:d2:75:47:8c:8a:25:7c:70: 8f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:6C:AB:ED:08:D6:F0:AD:15:AB:03:AF:70:D1:5B:A0:CD:C9:B8:10 X509v3 Authority Key Identifier: keyid:97:7A:DC:F4:8F:ED:E1:19:38:E1:77:DC:04:DC:67:9C:69:2D:8C:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3rc9I_t4Rk44XfcBNxnnGktjBw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fe6725-7609-4bc2-b48b-25477dad9434/1/l3rc9I_t4Rk44XfcBNxnnGktjBw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fe6725-7609-4bc2-b48b-25477dad9434/1/l3rc9I_t4Rk44XfcBNxnnGktjBw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:c6:a6:ae:d7:ec:99:e2:f6:66:e6:7c:3f:26:79:d6:e0:0b: 2f:9d:d7:89:ef:21:b2:a9:9d:b3:72:46:23:26:51:9d:c4:ef: 17:60:5b:f3:9b:a9:20:1d:0f:7e:fd:a8:83:5f:bd:bb:da:4d: d1:e6:13:b7:4d:87:75:5a:9f:b3:98:32:bb:98:17:1a:46:4b: be:0a:ca:79:8b:60:4b:8e:01:37:6c:a1:d3:a0:91:01:0b:cc: 71:21:8d:0c:0a:17:17:b8:a1:1c:4c:c5:85:d6:c9:e7:13:a0: 00:db:ac:84:6c:ef:9c:65:a8:53:87:b7:35:00:99:87:86:75: 63:af:a8:da:91:34:7b:ab:1f:3d:4e:b9:6a:bc:6a:0c:ab:19: 8e:e4:b1:04:e8:73:f5:9a:28:b5:0a:9e:8b:54:4f:26:c1:11: ac:12:f9:61:06:36:60:7b:5c:e4:5b:f3:39:2f:c8:5b:1c:c2: fe:c6:a7:d7:2b:d3:87:89:90:f5:75:b2:fa:50:5c:31:47:fa: 60:4a:a9:46:57:97:73:94:2c:c4:77:b0:1f:1b:06:cd:7c:48: 43:7f:3e:ef:2c:a6:c8:d5:67:a6:1e:53:3d:28:16:cb:39:ba: 1f:06:be:86:64:6e:e1:32:8e:c2:e7:c2:bf:43:36:fc:eb:86: 47:0a:8c:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdxEr4daPuugesxFpq3IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3N2FkY2Y0OGZlZGUxMTkzOGUxNzdkYzA0ZGM2NzljNjky ZDhjMWMwHhcNMjYwMjA5MTYwMDE4WhcNMjYwMjEwMTYwMDE4WjAzMTEwLwYDVQQD EygxYjZjYWJlZDA4ZDZmMGFkMTVhYjAzYWY3MGQxNWJhMGNkYzliODEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6Fskfrt7gi5l3Wq1aw/zc/afdW9 lUWea0j9M8w9SwqsM4hsRr9p23uAogPD6Sx1UTY8n5QhuLQXWEVWOp/zYmuK3NF6 uI9qkQEBzGz7loj48qGkdNXkm1y8ts5H3gFm2BOs8OLHQkBU8fs9jLDpktWAmpzV Q0v7Cun+G3Th2HDfnkfoMZZ9THaU0lZ44FsL3rE04aWYfuFcc5l8t9nG8+cQr0Ch b/VASLq38acQaLS7L5snCQ61Dh1S2aDrgm2/xh5pChm+aIXKtEEK2guxcQgEOGxd BEyKgKwuwr3FW7+Vh5FS6kkjKZAiQ0YRBZjLk+1XQoiT0nVHjIolfHCPJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBtsq+0I1vCtFasDr3DRW6DNybgQMB8GA1UdIwQY MBaAFJd63PSP7eEZOOF33ATcZ5xpLYwcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDNyYzlJX3Q0Ums0NFhmY0JOeG5uR2t0akJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9mZTY3MjUtNzYwOS00YmMyLWI0OGIt MjU0NzdkYWQ5NDM0LzEvbDNyYzlJX3Q0Ums0NFhmY0JOeG5uR2t0akJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9mZTY3MjUtNzYwOS00YmMyLWI0OGItMjU0NzdkYWQ5NDM0 LzEvbDNyYzlJX3Q0Ums0NFhmY0JOeG5uR2t0akJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI8amrtfs meL2ZuZ8PyZ51uALL53Xie8hsqmds3JGIyZRncTvF2Bb85upIB0Pfv2og1+9u9pN 0eYTt02HdVqfs5gyu5gXGkZLvgrKeYtgS44BN2yh06CRAQvMcSGNDAoXF7ihHEzF hdbJ5xOgANushGzvnGWoU4e3NQCZh4Z1Y6+o2pE0e6sfPU65arxqDKsZjuSxBOhz 9ZootQqei1RPJsERrBL5YQY2YHtc5FvzOS/IWxzC/san1yvTh4mQ9XWy+lBcMUf6 YEqpRleXc5QsxHewHxsGzXxIQ38+7yymyNVnph5TPSgWyzm6Hwa+hmRu4TKOwufC v0M2/OuGRwqMnw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:37:11 2026 by rpki-client