This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft File: lPO2Epw0Od376Q21BkyAZt6GSnI.mft (raw, json) Hash identifier: e3+5d+0/Gnaom2Lh45xEB3ZjuQKvoe5YY3PImgapQ7g= Subject key identifier: 7F:8F:5A:1E:22:35:64:E5:58:95:69:96:4B:B6:BD:C6:A7:31:28:A4 Authority key identifier: 94:F3:B6:12:9C:34:39:DD:FB:E9:0D:B5:06:4C:80:66:DE:86:4A:72 Certificate issuer: /CN=94f3b6129c3439ddfbe90db5064c8066de864a72 Certificate serial: 019C43907E5DBC7D03C0E946B946C115E92A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPO2Epw0Od376Q21BkyAZt6GSnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft Manifest number: 0724 Signing time: Mon 09 Feb 2026 18:01:08 +0000 Manifest this update: Mon 09 Feb 2026 18:01:08 +0000 Manifest next update: Tue 10 Feb 2026 18:01:08 +0000 Files and hashes: 1: lPO2Epw0Od376Q21BkyAZt6GSnI.crl (hash: ghlYuG19+IjNqH9PjferZcvYB9D0FY32ljaddU2Oo5I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft rsync://rpki.ripe.net/repository/DEFAULT/lPO2Epw0Od376Q21BkyAZt6GSnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:7e:5d:bc:7d:03:c0:e9:46:b9:46:c1:15:e9:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94f3b6129c3439ddfbe90db5064c8066de864a72 Validity Not Before: Feb 9 18:01:08 2026 GMT Not After : Feb 10 18:01:08 2026 GMT Subject: CN=7f8f5a1e223564e5589569964bb6bdc6a73128a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:11:47:df:96:a4:34:0e:d9:5c:66:eb:52:be: 1c:93:7c:1a:db:93:ac:77:29:0c:57:b6:04:68:0c: 8c:06:4a:22:60:de:50:fd:74:50:42:95:cb:bd:17: fe:9f:b3:a5:3a:c5:90:2a:52:f7:02:53:98:61:bf: 57:57:99:7b:f6:f0:2b:2f:b3:ea:c7:c7:50:aa:00: f1:0e:61:1f:60:cb:f1:04:f0:0d:ec:d0:a3:74:b0: 49:cd:03:c2:92:d3:8f:e2:b1:b7:5b:87:a7:ff:e0: c9:6f:47:78:fb:95:25:32:2a:6b:93:2c:a3:e1:ea: 2e:9a:10:4e:77:c7:11:7e:e5:ab:47:a1:97:99:99: 0e:f9:13:0b:78:db:d8:a8:e3:70:ae:59:91:bf:a2: 52:3e:0d:35:d5:d3:6e:90:7d:af:aa:d4:20:0b:4a: 26:51:1e:5c:5f:4a:4d:54:df:c4:c4:d7:f0:2e:a8: c6:c2:3f:2d:10:7f:a0:c9:1e:d0:67:e1:05:72:e1: 3e:a8:40:04:75:69:82:54:7c:c2:3a:17:ab:21:9a: ee:35:9d:14:c7:d8:7f:a0:1d:c4:5d:88:9c:c2:5d: 4a:88:09:d1:02:46:66:43:46:ea:0e:d4:f0:c6:7e: 7f:0f:b2:0d:33:d4:4f:17:29:a5:4a:b5:fd:68:fe: 3f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:8F:5A:1E:22:35:64:E5:58:95:69:96:4B:B6:BD:C6:A7:31:28:A4 X509v3 Authority Key Identifier: keyid:94:F3:B6:12:9C:34:39:DD:FB:E9:0D:B5:06:4C:80:66:DE:86:4A:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPO2Epw0Od376Q21BkyAZt6GSnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:3f:a1:25:ac:74:84:8a:b5:98:4e:ca:fe:cf:1e:eb:90:a0: 25:08:5e:b7:e8:e1:9a:54:a3:25:eb:ee:fd:e8:7e:36:69:a9: c3:4f:b5:74:c5:56:b3:2b:25:1b:17:69:4b:5b:c0:2c:11:c0: 10:5e:37:45:88:d3:e6:61:0a:f8:02:99:ec:fb:e1:d9:c7:06: 6f:9a:38:c5:62:34:ed:f8:e7:7b:1e:a6:e2:20:80:0e:c0:48: 6c:12:fc:2b:2e:a9:ba:f5:1b:cf:d3:16:45:08:fb:a8:2e:43: 13:27:67:62:53:85:29:0d:16:b5:46:91:e6:d5:cc:b1:22:77: 4d:c3:1b:77:18:c9:43:4a:90:0d:01:00:31:77:fc:2f:ea:1a: 4a:9b:73:46:ed:ee:e1:05:73:dd:2c:ae:b4:80:a1:a4:d8:91: 8e:a4:3b:ee:98:79:ee:0a:7c:7c:55:60:2c:dd:43:f5:33:30: 18:5d:3f:ba:43:c6:93:3a:33:80:7c:3d:eb:03:02:d9:7e:88: 1f:c9:68:19:f1:82:0d:cc:73:83:5b:34:18:8d:9a:d2:82:62: 9c:28:6c:65:0f:ff:64:1f:ef:67:74:bb:a0:96:f3:61:ac:c3: f9:6c:bc:53:60:a6:e5:d6:dd:cb:7f:2d:ab:e5:37:83:b1:33: 55:d7:67:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkH5dvH0DwOlGuUbBFekqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0ZjNiNjEyOWMzNDM5ZGRmYmU5MGRiNTA2NGM4MDY2ZGU4 NjRhNzIwHhcNMjYwMjA5MTgwMTA4WhcNMjYwMjEwMTgwMTA4WjAzMTEwLwYDVQQD Eyg3ZjhmNWExZTIyMzU2NGU1NTg5NTY5OTY0YmI2YmRjNmE3MzEyOGE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhFH35akNA7ZXGbrUr4ck3wa25Os dykMV7YEaAyMBkoiYN5Q/XRQQpXLvRf+n7OlOsWQKlL3AlOYYb9XV5l79vArL7Pq x8dQqgDxDmEfYMvxBPAN7NCjdLBJzQPCktOP4rG3W4en/+DJb0d4+5UlMiprkyyj 4eoumhBOd8cRfuWrR6GXmZkO+RMLeNvYqONwrlmRv6JSPg011dNukH2vqtQgC0om UR5cX0pNVN/ExNfwLqjGwj8tEH+gyR7QZ+EFcuE+qEAEdWmCVHzCOherIZruNZ0U x9h/oB3EXYicwl1KiAnRAkZmQ0bqDtTwxn5/D7INM9RPFymlSrX9aP4/eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH+PWh4iNWTlWJVplku2vcanMSikMB8GA1UdIwQY MBaAFJTzthKcNDnd++kNtQZMgGbehkpyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFBPMkVwdzBPZDM3NlEyMUJreUFadDZHU25JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS9kNDM1NzItYWQ5MS00NGFkLWFmYTEt YjMzODJlNGFhN2MzLzEvbFBPMkVwdzBPZDM3NlEyMUJreUFadDZHU25JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS9kNDM1NzItYWQ5MS00NGFkLWFmYTEtYjMzODJlNGFhN2Mz LzEvbFBPMkVwdzBPZDM3NlEyMUJreUFadDZHU25JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbz+hJax0 hIq1mE7K/s8e65CgJQhet+jhmlSjJevu/eh+Nmmpw0+1dMVWsyslGxdpS1vALBHA EF43RYjT5mEK+AKZ7Pvh2ccGb5o4xWI07fjnex6m4iCADsBIbBL8Ky6puvUbz9MW RQj7qC5DEydnYlOFKQ0WtUaR5tXMsSJ3TcMbdxjJQ0qQDQEAMXf8L+oaSptzRu3u 4QVz3SyutIChpNiRjqQ77ph57gp8fFVgLN1D9TMwGF0/ukPGkzozgHw96wMC2X6I H8loGfGCDcxzg1s0GI2a0oJinChsZQ//ZB/vZ3S7oJbzYazD+Wy8U2Cm5dbdy38t q+U3g7EzVddniw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:27 2026 by rpki-client