This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/0add7c-a28c-4ae8-8885-01ce06d315cd/1/LKzIXJmo4dt9HFImfC3b08OeGLI.mft File: LKzIXJmo4dt9HFImfC3b08OeGLI.mft (raw, json) Hash identifier: MN4L1Z1pxKlyeauIJmfjFC54CgpUy5wQUEycbq9Nu5A= Subject key identifier: D5:37:35:2B:FF:60:47:BE:B6:A8:BF:5A:11:75:F5:4D:A0:11:DD:76 Authority key identifier: 2C:AC:C8:5C:99:A8:E1:DB:7D:1C:52:26:7C:2D:DB:D3:C3:9E:18:B2 Certificate issuer: /CN=2cacc85c99a8e1db7d1c52267c2ddbd3c39e18b2 Certificate serial: 019C4321FF9B2FFB2D05E9FA27D4E9048975 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKzIXJmo4dt9HFImfC3b08OeGLI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/0add7c-a28c-4ae8-8885-01ce06d315cd/1/LKzIXJmo4dt9HFImfC3b08OeGLI.mft Manifest number: 0F27 Signing time: Mon 09 Feb 2026 16:00:27 +0000 Manifest this update: Mon 09 Feb 2026 16:00:27 +0000 Manifest next update: Tue 10 Feb 2026 16:00:27 +0000 Files and hashes: 1: LKzIXJmo4dt9HFImfC3b08OeGLI.crl (hash: OHRW+//vIambEI62SCuiVn4MsJNkI+/NygtUzsDmglE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/0add7c-a28c-4ae8-8885-01ce06d315cd/1/LKzIXJmo4dt9HFImfC3b08OeGLI.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/0add7c-a28c-4ae8-8885-01ce06d315cd/1/LKzIXJmo4dt9HFImfC3b08OeGLI.mft rsync://rpki.ripe.net/repository/DEFAULT/LKzIXJmo4dt9HFImfC3b08OeGLI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:ff:9b:2f:fb:2d:05:e9:fa:27:d4:e9:04:89:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2cacc85c99a8e1db7d1c52267c2ddbd3c39e18b2 Validity Not Before: Feb 9 16:00:27 2026 GMT Not After : Feb 10 16:00:27 2026 GMT Subject: CN=d537352bff6047beb6a8bf5a1175f54da011dd76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:48:3e:70:66:85:cc:4b:4e:64:57:bf:c9:eb: 5e:24:be:6f:8c:ef:5b:e5:c9:29:e9:6f:ee:4f:a4: 19:71:78:fa:1c:9d:d0:6f:76:e5:60:4d:59:60:9f: fa:1d:66:16:47:ae:91:74:b8:df:78:e4:1e:79:b6: 7d:41:ac:d3:ab:74:5d:d4:71:0f:fa:ee:35:8c:9e: ee:a3:71:a0:84:59:0e:0a:eb:d5:86:d0:89:01:14: 63:cb:ce:90:ed:25:3e:e3:ae:29:21:27:36:a5:85: 34:f1:7c:2b:73:3a:9f:70:d0:db:66:09:52:e9:b6: a3:6d:45:e4:1b:fb:85:7f:54:06:54:cc:bc:aa:d6: f9:87:50:b9:9a:31:1e:87:e4:bb:de:1e:4b:cb:80: b2:ab:bc:24:dd:1e:3c:31:2e:a0:26:16:fc:df:f8: 79:58:f8:9d:5a:0f:76:e9:12:40:92:d3:1b:a6:94: d6:57:39:79:e2:9b:14:55:c3:ac:cc:d4:81:c2:18: 0a:74:5f:2c:e9:e5:6d:a1:9f:0c:37:8e:c1:38:13: 79:33:7b:f0:61:bf:f6:6b:46:6c:35:20:45:87:2e: 6c:d6:9a:51:81:33:91:87:fb:18:e8:12:8d:2e:42: 25:37:98:5f:65:d3:08:e3:69:02:88:3e:29:e7:a9: 10:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:37:35:2B:FF:60:47:BE:B6:A8:BF:5A:11:75:F5:4D:A0:11:DD:76 X509v3 Authority Key Identifier: keyid:2C:AC:C8:5C:99:A8:E1:DB:7D:1C:52:26:7C:2D:DB:D3:C3:9E:18:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKzIXJmo4dt9HFImfC3b08OeGLI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/0add7c-a28c-4ae8-8885-01ce06d315cd/1/LKzIXJmo4dt9HFImfC3b08OeGLI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/0add7c-a28c-4ae8-8885-01ce06d315cd/1/LKzIXJmo4dt9HFImfC3b08OeGLI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:e2:69:80:f7:c3:60:99:99:9b:54:fc:11:bb:b9:27:e9:5e: a6:9c:6a:04:a5:34:00:c5:22:bd:6d:25:8a:bd:b9:8b:5f:2f: f6:b9:25:e4:8d:83:5d:20:83:45:02:bc:84:d5:3d:56:e1:fb: b6:5a:d0:21:73:69:ef:c7:85:d0:04:b2:cd:87:e5:24:49:35: ec:c7:07:5f:6b:25:56:cf:83:62:d1:a8:a3:4f:7c:bc:6d:f2: dd:42:ac:06:eb:38:7b:93:05:6c:59:b6:da:ba:11:90:25:f4: ec:df:a1:66:33:42:03:be:f9:ae:b6:56:64:7a:86:14:39:56: 36:ff:9f:ae:d2:01:94:90:1d:91:40:f8:b1:fd:d3:ed:09:3f: 21:f0:b3:d7:69:6c:eb:c8:48:d9:be:9f:41:94:7f:32:0d:4e: 2f:2d:8b:79:f1:fa:fb:ec:fa:a4:98:92:f6:df:98:2b:ae:05: a2:a2:21:36:ce:60:d0:79:8f:10:3e:49:f5:c6:7c:cf:ca:07: 1f:c8:96:d7:f3:bd:fe:2b:94:e1:8c:4e:88:af:0f:3b:c0:c3: ad:dd:17:bc:ba:aa:6a:13:98:4c:fc:95:aa:e0:25:1f:e6:62: 45:df:24:cf:88:4c:78:28:11:be:be:05:70:00:8c:da:b4:f4: ce:af:09:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIf+bL/stBen6J9TpBIl1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjYWNjODVjOTlhOGUxZGI3ZDFjNTIyNjdjMmRkYmQzYzM5 ZTE4YjIwHhcNMjYwMjA5MTYwMDI3WhcNMjYwMjEwMTYwMDI3WjAzMTEwLwYDVQQD EyhkNTM3MzUyYmZmNjA0N2JlYjZhOGJmNWExMTc1ZjU0ZGEwMTFkZDc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Ug+cGaFzEtOZFe/yeteJL5vjO9b 5ckp6W/uT6QZcXj6HJ3Qb3blYE1ZYJ/6HWYWR66RdLjfeOQeebZ9QazTq3Rd1HEP +u41jJ7uo3GghFkOCuvVhtCJARRjy86Q7SU+464pISc2pYU08XwrczqfcNDbZglS 6bajbUXkG/uFf1QGVMy8qtb5h1C5mjEeh+S73h5Ly4Cyq7wk3R48MS6gJhb83/h5 WPidWg926RJAktMbppTWVzl54psUVcOszNSBwhgKdF8s6eVtoZ8MN47BOBN5M3vw Yb/2a0ZsNSBFhy5s1ppRgTORh/sY6BKNLkIlN5hfZdMI42kCiD4p56kQ2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNU3NSv/YEe+tqi/WhF19U2gEd12MB8GA1UdIwQY MBaAFCysyFyZqOHbfRxSJnwt29PDnhiyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTEt6SVhKbW80ZHQ5SEZJbWZDM2IwOE9lR0xJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8wYWRkN2MtYTI4Yy00YWU4LTg4ODUt MDFjZTA2ZDMxNWNkLzEvTEt6SVhKbW80ZHQ5SEZJbWZDM2IwOE9lR0xJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC8wYWRkN2MtYTI4Yy00YWU4LTg4ODUtMDFjZTA2ZDMxNWNk LzEvTEt6SVhKbW80ZHQ5SEZJbWZDM2IwOE9lR0xJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi+JpgPfD YJmZm1T8Ebu5J+leppxqBKU0AMUivW0lir25i18v9rkl5I2DXSCDRQK8hNU9VuH7 tlrQIXNp78eF0ASyzYflJEk17McHX2slVs+DYtGoo098vG3y3UKsBus4e5MFbFm2 2roRkCX07N+hZjNCA775rrZWZHqGFDlWNv+frtIBlJAdkUD4sf3T7Qk/IfCz12ls 68hI2b6fQZR/Mg1OLy2LefH6++z6pJiS9t+YK64FoqIhNs5g0HmPED5J9cZ8z8oH H8iW1/O9/iuU4YxOiK8PO8DDrd0XvLqqahOYTPyVquAlH+ZiRd8kz4hMeCgRvr4F cACM2rT0zq8JGQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:56 2026 by rpki-client