This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft File: lbzyUZp7TPNY-2x4A5pb56GxMFs.mft (raw, json) Hash identifier: SZ9ZzDphfstgSLQvLcUJzDZBUWryrarROtYXMzHOiBM= Subject key identifier: 1F:A8:AA:0D:7B:99:10:61:C4:CC:E1:15:96:76:AF:C1:BB:AE:AE:7E Authority key identifier: 95:BC:F2:51:9A:7B:4C:F3:58:FB:6C:78:03:9A:5B:E7:A1:B1:30:5B Certificate issuer: /CN=95bcf2519a7b4cf358fb6c78039a5be7a1b1305b Certificate serial: 019C43224F24187BEC76E79051AAF4A85D5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft Manifest number: 06E7 Signing time: Mon 09 Feb 2026 16:00:47 +0000 Manifest this update: Mon 09 Feb 2026 16:00:47 +0000 Manifest next update: Tue 10 Feb 2026 16:00:47 +0000 Files and hashes: 1: lbzyUZp7TPNY-2x4A5pb56GxMFs.crl (hash: ADDz6/SMkfyVzJrHFDWg0PCIzFhxGTz5gGDmKBOu7Bs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:4f:24:18:7b:ec:76:e7:90:51:aa:f4:a8:5d:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95bcf2519a7b4cf358fb6c78039a5be7a1b1305b Validity Not Before: Feb 9 16:00:47 2026 GMT Not After : Feb 10 16:00:47 2026 GMT Subject: CN=1fa8aa0d7b991061c4cce1159676afc1bbaeae7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e9:be:8a:d3:ba:69:e4:0a:43:ae:e4:ac:ab: 2e:ab:6a:ba:83:25:15:5b:5e:f0:e4:f3:28:e9:b0: 00:33:fe:86:c9:dc:e8:ce:80:cf:45:bc:f2:ad:92: 17:50:d1:c7:60:cd:16:28:7b:a2:d0:d0:11:3a:06: 59:03:1b:ac:58:14:73:f8:50:c1:40:66:9b:f3:b7: f2:27:cf:5a:08:39:24:76:07:0d:2e:98:38:af:36: d9:b9:50:36:0a:55:e0:ac:19:5e:a2:de:ed:7e:03: fe:9e:80:b7:8e:7f:a1:66:81:7b:ff:72:d9:1f:f8: ae:e2:8c:3e:d8:e2:ba:7c:91:b6:bd:e4:e6:67:d9: 2d:1f:ed:b3:2e:5a:25:d5:da:62:6c:25:57:42:38: ef:2f:2d:0a:fe:4f:c7:93:37:a3:fc:0c:ee:0e:ac: 50:18:5d:61:64:65:ef:5b:60:41:2d:2b:0c:86:03: 7d:5c:85:74:05:40:fb:a7:dc:29:33:9e:9d:89:33: 14:63:2e:a8:64:0d:e4:83:0b:c3:d8:e6:e6:1a:25: 05:2b:91:8e:50:fc:d7:09:d9:9f:62:c0:aa:e9:3b: ff:3c:19:9c:a6:86:18:ff:46:33:d0:65:c7:bc:2d: 2e:0d:d5:f9:b1:d1:1a:d5:59:49:f6:eb:8e:ba:1d: d2:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A8:AA:0D:7B:99:10:61:C4:CC:E1:15:96:76:AF:C1:BB:AE:AE:7E X509v3 Authority Key Identifier: keyid:95:BC:F2:51:9A:7B:4C:F3:58:FB:6C:78:03:9A:5B:E7:A1:B1:30:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:ff:c7:81:71:22:7a:8d:9b:60:33:47:c3:67:78:00:72:79: 86:13:13:b7:76:ec:ff:d3:9d:d9:65:08:f4:fd:4e:31:e2:f3: 59:5b:66:8d:48:c9:45:6c:65:3d:1a:a0:0a:ba:05:1c:59:8d: 57:87:3f:91:43:ed:62:95:7e:64:69:4a:fa:eb:65:ca:76:8d: 6f:38:14:a4:60:db:de:10:b1:53:32:f7:f9:0b:eb:5d:76:95: a7:30:ee:18:91:0b:67:86:76:bf:cc:84:d4:a5:48:73:6e:5f: 18:ae:3b:a6:84:c1:c4:1a:50:9f:f8:12:ea:2f:d8:d8:1e:1d: 63:9f:36:a5:c9:f0:3d:de:3e:7e:89:e0:a1:39:db:32:e2:8c: e3:16:f0:ac:26:84:70:66:fc:b1:8b:e4:32:13:67:43:9a:88: 91:65:fd:b5:31:3e:b0:d5:9f:18:0d:ce:3d:5f:21:ad:ba:53: 1c:49:1e:19:16:08:a0:72:d7:6c:c9:96:9a:6c:01:4c:e2:e2: f9:a7:57:85:3b:80:b3:ad:7a:7e:52:7a:61:c5:55:28:8c:ad: f9:19:30:0f:29:e5:68:e8:ba:9e:02:1a:18:38:bb:2c:6d:04: 1e:a8:ff:cd:7c:d5:1f:ea:76:29:07:36:d6:1d:05:7e:2e:47: 3a:95:21:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIk8kGHvsdueQUar0qF1bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1YmNmMjUxOWE3YjRjZjM1OGZiNmM3ODAzOWE1YmU3YTFi MTMwNWIwHhcNMjYwMjA5MTYwMDQ3WhcNMjYwMjEwMTYwMDQ3WjAzMTEwLwYDVQQD EygxZmE4YWEwZDdiOTkxMDYxYzRjY2UxMTU5Njc2YWZjMWJiYWVhZTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+m+itO6aeQKQ67krKsuq2q6gyUV W17w5PMo6bAAM/6GydzozoDPRbzyrZIXUNHHYM0WKHui0NAROgZZAxusWBRz+FDB QGab87fyJ89aCDkkdgcNLpg4rzbZuVA2ClXgrBleot7tfgP+noC3jn+hZoF7/3LZ H/iu4ow+2OK6fJG2veTmZ9ktH+2zLlol1dpibCVXQjjvLy0K/k/Hkzej/AzuDqxQ GF1hZGXvW2BBLSsMhgN9XIV0BUD7p9wpM56diTMUYy6oZA3kgwvD2ObmGiUFK5GO UPzXCdmfYsCq6Tv/PBmcpoYY/0Yz0GXHvC0uDdX5sdEa1VlJ9uuOuh3SyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB+oqg17mRBhxMzhFZZ2r8G7rq5+MB8GA1UdIwQY MBaAFJW88lGae0zzWPtseAOaW+ehsTBbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGJ6eVVacDdUUE5ZLTJ4NEE1cGI1Nkd4TUZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lZjlhNGUtNzkwZS00ZWNlLWE4NDUt MjVjY2YzMjczOWEyLzEvbGJ6eVVacDdUUE5ZLTJ4NEE1cGI1Nkd4TUZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9lZjlhNGUtNzkwZS00ZWNlLWE4NDUtMjVjY2YzMjczOWEy LzEvbGJ6eVVacDdUUE5ZLTJ4NEE1cGI1Nkd4TUZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASf/HgXEi eo2bYDNHw2d4AHJ5hhMTt3bs/9Od2WUI9P1OMeLzWVtmjUjJRWxlPRqgCroFHFmN V4c/kUPtYpV+ZGlK+utlynaNbzgUpGDb3hCxUzL3+QvrXXaVpzDuGJELZ4Z2v8yE 1KVIc25fGK47poTBxBpQn/gS6i/Y2B4dY582pcnwPd4+fongoTnbMuKM4xbwrCaE cGb8sYvkMhNnQ5qIkWX9tTE+sNWfGA3OPV8hrbpTHEkeGRYIoHLXbMmWmmwBTOLi +adXhTuAs616flJ6YcVVKIyt+RkwDynlaOi6ngIaGDi7LG0EHqj/zXzVH+p2KQc2 1h0Ffi5HOpUhVw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:25 2026 by rpki-client