This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft File: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft (raw, json) Hash identifier: 5E4Ekf63+TKfKUio/uhZF9+aC+W6q2sJpTcbfvv8CmY= Subject key identifier: 31:C5:F7:09:E7:12:1E:88:7D:EF:F2:6B:52:D3:0F:CB:E2:E0:49:D1 Authority key identifier: 94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6 Certificate issuer: /CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6 Certificate serial: 019C42EB3DC413FFCE562B8867B30FC1DD85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft Manifest number: 14AB Signing time: Mon 09 Feb 2026 15:00:38 +0000 Manifest this update: Mon 09 Feb 2026 15:00:38 +0000 Manifest next update: Tue 10 Feb 2026 15:00:38 +0000 Files and hashes: 1: AZhIdfQe8WwT9TZ_N6T1lS4NxsE.roa (hash: xpA4Tx1xSz6uA3Q1dMsrfkLMQuhB5qhwmJuQPXJmqYU=) 2: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl (hash: jAOSBGugU/Mx2oW3HQo5eWTXHwh5ZjzjslCwq4vCj2g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:3d:c4:13:ff:ce:56:2b:88:67:b3:0f:c1:dd:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6 Validity Not Before: Feb 9 15:00:38 2026 GMT Not After : Feb 10 15:00:38 2026 GMT Subject: CN=31c5f709e7121e887deff26b52d30fcbe2e049d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0a:b3:5a:e5:91:d5:ac:e5:1b:cd:30:e4:cb: 24:e7:e1:c1:08:8d:1d:ca:37:11:8c:a3:81:31:68: c7:bc:60:fb:f9:32:50:e7:8d:eb:d7:45:7f:dd:06: 46:43:eb:39:4e:21:c5:5b:59:2d:4c:9d:94:ea:c5: 2b:ea:6f:a8:3c:a3:83:0e:c1:43:91:27:fe:f1:12: 5d:18:d2:8a:d3:ec:f6:05:77:28:13:b7:d3:7a:ea: 54:a3:48:41:32:21:c5:f0:13:09:bd:24:58:3d:ec: 82:ce:c7:69:dc:f2:b6:dd:b6:ee:f4:f7:44:fc:54: 8b:a8:8b:fb:6f:01:72:8d:d1:16:c2:67:4d:5b:ff: a4:f9:c0:a9:90:33:3e:9c:cb:a7:cc:d5:71:00:f3: 6e:41:4c:83:2d:a0:29:cd:06:60:ea:5b:84:f0:57: 7c:79:ae:6a:be:e9:0b:61:a0:02:f8:5e:22:e7:b6: 36:1c:54:1b:62:29:6a:00:13:b6:ef:f9:2c:90:1c: bb:72:7f:08:29:4f:b5:39:9d:51:6c:99:79:4a:40: 88:28:49:79:d9:41:6c:2b:3f:96:ea:c3:df:d3:dd: 5b:c0:20:25:7a:98:ae:38:46:c1:a5:f9:5f:e3:0d: 00:5c:b1:97:4f:68:a5:d9:9a:50:79:c4:b9:b6:fe: 27:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C5:F7:09:E7:12:1E:88:7D:EF:F2:6B:52:D3:0F:CB:E2:E0:49:D1 X509v3 Authority Key Identifier: keyid:94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:6f:2d:76:98:79:04:4b:25:56:5e:02:cc:f4:1b:b5:70:33: 2f:a4:de:c6:d5:2f:51:95:d5:5d:87:a7:76:bb:b7:96:da:e7: 51:02:ac:cd:2f:ba:4d:51:dd:28:09:90:1c:9d:f5:2b:8d:d7: 71:30:cc:75:e4:54:be:6c:12:89:1e:e5:00:b6:ee:a8:ae:f5: 2a:e8:e0:5f:dd:f0:d8:2a:85:16:af:6b:50:d4:e8:e0:7a:93: 47:1f:95:d4:b2:d3:e0:f3:73:6e:7c:fd:3f:f8:25:e7:0e:94: 71:4d:9e:06:9c:f5:77:c2:9f:fa:cc:ed:bf:96:a8:48:47:24: bc:de:dc:52:a6:55:49:87:01:d1:27:91:11:f5:48:ee:a1:29: 9b:f7:a4:45:14:20:d0:f3:6e:39:7b:57:79:92:d2:10:52:dd: ba:ae:1f:43:ad:93:6c:94:ed:20:e6:d1:b1:af:d1:5f:01:f8: 49:99:9e:12:7e:26:ec:29:bb:40:48:46:12:ce:c7:78:93:6b: ae:db:38:ec:c1:18:15:9e:cd:4f:8f:07:04:62:7c:10:02:59: 22:33:55:b3:9f:aa:a5:f3:44:d1:3d:d8:49:f5:0c:ea:4f:bf: 22:3b:83:b4:42:c3:3c:ec:39:85:ae:f5:23:ca:8f:74:ca:ab: 89:7c:11:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6z3EE//OViuIZ7MPwd2FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0ZmE2YzQyOTkzMjFkYzVmYzkxZmM3OTYzYWE1MTQ4N2U0 YWY1ZTYwHhcNMjYwMjA5MTUwMDM4WhcNMjYwMjEwMTUwMDM4WjAzMTEwLwYDVQQD EygzMWM1ZjcwOWU3MTIxZTg4N2RlZmYyNmI1MmQzMGZjYmUyZTA0OWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQqzWuWR1azlG80w5Msk5+HBCI0d yjcRjKOBMWjHvGD7+TJQ543r10V/3QZGQ+s5TiHFW1ktTJ2U6sUr6m+oPKODDsFD kSf+8RJdGNKK0+z2BXcoE7fTeupUo0hBMiHF8BMJvSRYPeyCzsdp3PK23bbu9PdE /FSLqIv7bwFyjdEWwmdNW/+k+cCpkDM+nMunzNVxAPNuQUyDLaApzQZg6luE8Fd8 ea5qvukLYaAC+F4i57Y2HFQbYilqABO27/kskBy7cn8IKU+1OZ1RbJl5SkCIKEl5 2UFsKz+W6sPf091bwCAlepiuOEbBpflf4w0AXLGXT2il2ZpQecS5tv4nUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDHF9wnnEh6Ife/ya1LTD8vi4EnRMB8GA1UdIwQY MBaAFJT6bEKZMh3F/JH8eWOqUUh+SvXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC80M2QyNTUtMjg0YS00NjhmLThiNmUt ZmIxZTlkYjBjMzg4LzEvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC80M2QyNTUtMjg0YS00NjhmLThiNmUtZmIxZTlkYjBjMzg4 LzEvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABW8tdph5 BEslVl4CzPQbtXAzL6TextUvUZXVXYendru3ltrnUQKszS+6TVHdKAmQHJ31K43X cTDMdeRUvmwSiR7lALbuqK71KujgX93w2CqFFq9rUNTo4HqTRx+V1LLT4PNzbnz9 P/gl5w6UcU2eBpz1d8Kf+sztv5aoSEckvN7cUqZVSYcB0SeREfVI7qEpm/ekRRQg 0PNuOXtXeZLSEFLduq4fQ62TbJTtIObRsa/RXwH4SZmeEn4m7Cm7QEhGEs7HeJNr rts47MEYFZ7NT48HBGJ8EAJZIjNVs5+qpfNE0T3YSfUM6k+/IjuDtELDPOw5ha71 I8qPdMqriXwRUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:45 2026 by rpki-client