This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft File: Lr_2z7gya0RylaEbEHhoIS5mX90.mft (raw, json) Hash identifier: aj8oiLSGILlvbAf782hE7p7wrr8sOTQuUWbpQn0FS3M= Subject key identifier: 68:C8:D4:4E:06:CB:77:39:D2:86:15:12:8C:50:72:C6:C7:60:B0:6B Authority key identifier: 2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD Certificate issuer: /CN=2ebff6cfb8326b447295a11b107868212e665fdd Certificate serial: 019C44346EF26A4617F932A92BD5C6449163 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft Manifest number: 08F1 Signing time: Mon 09 Feb 2026 21:00:12 +0000 Manifest this update: Mon 09 Feb 2026 21:00:12 +0000 Manifest next update: Tue 10 Feb 2026 21:00:12 +0000 Files and hashes: 1: Lr_2z7gya0RylaEbEHhoIS5mX90.crl (hash: RCKTPumV7CQAv9neY4eWZVssonaNBdu/zkNgAFhhDDs=) 2: wRkYU-8UwR69v9239dh2hReiLIk.roa (hash: qk1tAsneRLOzj3I71YrKf4Qz3NDzdsyT/yJUXhc7iYo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:6e:f2:6a:46:17:f9:32:a9:2b:d5:c6:44:91:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ebff6cfb8326b447295a11b107868212e665fdd Validity Not Before: Feb 9 21:00:12 2026 GMT Not After : Feb 10 21:00:12 2026 GMT Subject: CN=68c8d44e06cb7739d28615128c5072c6c760b06b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:25:b0:f2:da:7f:03:2e:4a:e6:c0:c8:c6:03: 57:af:cf:8a:e6:73:78:53:70:9c:86:9f:bd:5c:8e: 59:f7:ae:4b:28:9e:db:60:f4:7f:7c:6f:3d:1f:03: 2d:2a:2f:86:e2:a2:8d:96:6a:cb:02:b3:92:5a:02: 4b:7e:59:60:c6:44:41:ec:43:ee:f7:ae:f4:4d:b1: 88:4f:49:6b:e3:1e:03:58:5a:f4:88:ea:bc:93:84: 77:3b:86:25:49:54:f5:7e:53:5f:18:cf:ac:d4:64: 8d:a8:7f:9c:ab:c4:fd:10:bc:7f:d7:6c:de:d1:b4: ba:8d:57:90:b7:34:af:c3:02:10:ad:dd:34:90:1e: 98:98:40:a6:d0:84:1d:47:52:ac:82:ca:d3:1b:e4: 02:60:2b:93:3c:88:eb:47:8c:67:09:5c:58:de:ee: 92:38:c3:3c:23:1d:5c:0b:24:b8:c5:6b:4e:ed:5d: de:cc:c8:25:fa:87:84:0f:67:1d:a3:b6:b6:8b:19: 56:61:65:03:09:ad:37:7b:3f:1b:a9:9f:50:9d:1b: f0:a2:cd:64:df:f7:90:55:73:e8:2b:ec:27:10:26: 8e:0f:09:85:ad:4f:a2:06:d6:f7:33:c8:6d:62:fe: 0e:77:51:be:59:c0:32:ba:93:71:b3:97:f6:59:99: 49:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C8:D4:4E:06:CB:77:39:D2:86:15:12:8C:50:72:C6:C7:60:B0:6B X509v3 Authority Key Identifier: keyid:2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:90:50:dc:f7:c8:d7:50:f7:ed:41:45:19:31:6b:8f:2b:0a: 5a:34:2c:b4:42:04:3a:11:ef:98:0e:00:0e:d8:d8:f7:db:31: 60:06:d2:bd:92:5c:bc:e5:47:81:76:bb:c7:ce:e7:d3:d8:25: 9d:70:bd:11:5a:a4:a0:00:04:a3:41:76:95:60:20:48:72:4c: 7d:10:77:99:9c:ed:87:bf:56:26:20:08:05:25:a6:c6:1a:0d: 80:5e:ab:48:b4:50:53:f9:7f:e6:5a:0d:bb:60:d1:c2:5d:2b: a8:3c:1e:66:6a:09:cc:99:5f:a3:12:0c:8c:69:23:e4:88:ec: 50:39:da:7a:50:f4:83:41:51:d6:b0:de:31:af:4b:4f:1c:e2: 27:de:be:7d:ab:37:99:77:a6:b1:1a:dd:c3:ba:14:2a:dc:f1: 97:b0:66:94:bc:d1:03:2b:2d:bb:76:df:06:d7:04:78:28:24: c4:84:9c:21:81:25:5f:44:f3:02:a6:2a:16:6e:87:cb:15:29: f6:25:2c:93:97:b4:13:16:08:48:51:02:d2:1c:34:f6:09:dc: 8e:0e:3e:c8:b1:7c:89:a3:80:bb:ab:2d:de:6e:a1:1d:55:05: dc:0f:a2:21:01:98:91:12:01:e3:b1:34:ea:68:0d:ba:88:96: 56:d2:33:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENG7yakYX+TKpK9XGRJFjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlYmZmNmNmYjgzMjZiNDQ3Mjk1YTExYjEwNzg2ODIxMmU2 NjVmZGQwHhcNMjYwMjA5MjEwMDEyWhcNMjYwMjEwMjEwMDEyWjAzMTEwLwYDVQQD Eyg2OGM4ZDQ0ZTA2Y2I3NzM5ZDI4NjE1MTI4YzUwNzJjNmM3NjBiMDZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5iWw8tp/Ay5K5sDIxgNXr8+K5nN4 U3Cchp+9XI5Z965LKJ7bYPR/fG89HwMtKi+G4qKNlmrLArOSWgJLfllgxkRB7EPu 9670TbGIT0lr4x4DWFr0iOq8k4R3O4YlSVT1flNfGM+s1GSNqH+cq8T9ELx/12ze 0bS6jVeQtzSvwwIQrd00kB6YmECm0IQdR1KsgsrTG+QCYCuTPIjrR4xnCVxY3u6S OMM8Ix1cCyS4xWtO7V3ezMgl+oeED2cdo7a2ixlWYWUDCa03ez8bqZ9QnRvwos1k 3/eQVXPoK+wnECaODwmFrU+iBtb3M8htYv4Od1G+WcAyupNxs5f2WZlJpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGjI1E4Gy3c50oYVEoxQcsbHYLBrMB8GA1UdIwQY MBaAFC6/9s+4MmtEcpWhGxB4aCEuZl/dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHJfMno3Z3lhMFJ5bGFFYkVIaG9JUzVtWDkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS8yZGFmYmMtNTJlZS00YzdiLWIwMDYt YTc4NmNlYmUyMGQzLzEvTHJfMno3Z3lhMFJ5bGFFYkVIaG9JUzVtWDkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS8yZGFmYmMtNTJlZS00YzdiLWIwMDYtYTc4NmNlYmUyMGQz LzEvTHJfMno3Z3lhMFJ5bGFFYkVIaG9JUzVtWDkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGJBQ3PfI 11D37UFFGTFrjysKWjQstEIEOhHvmA4ADtjY99sxYAbSvZJcvOVHgXa7x87n09gl nXC9EVqkoAAEo0F2lWAgSHJMfRB3mZzth79WJiAIBSWmxhoNgF6rSLRQU/l/5loN u2DRwl0rqDweZmoJzJlfoxIMjGkj5IjsUDnaelD0g0FR1rDeMa9LTxziJ96+fas3 mXemsRrdw7oUKtzxl7BmlLzRAystu3bfBtcEeCgkxIScIYElX0TzAqYqFm6HyxUp 9iUsk5e0ExYISFEC0hw09gncjg4+yLF8iaOAu6st3m6hHVUF3A+iIQGYkRIB47E0 6mgNuoiWVtIzQQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:45:45 2026 by rpki-client