This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft File: Lokc9xG_fhxC4ILWoviaBL7rldE.mft (raw, json) Hash identifier: AildxzujidpCHrAKHIx5RM376ztaQkAREpxvdfmVEMU= Subject key identifier: BD:DD:A2:45:0A:B4:A4:95:7A:37:20:4A:4A:DA:B2:C4:29:80:16:41 Authority key identifier: 2E:89:1C:F7:11:BF:7E:1C:42:E0:82:D6:A2:F8:9A:04:BE:EB:95:D1 Certificate issuer: /CN=2e891cf711bf7e1c42e082d6a2f89a04beeb95d1 Certificate serial: 019C438FEEA4EBC926DA1C451E9AC221ACE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lokc9xG_fhxC4ILWoviaBL7rldE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft Manifest number: 0414 Signing time: Mon 09 Feb 2026 18:00:32 +0000 Manifest this update: Mon 09 Feb 2026 18:00:32 +0000 Manifest next update: Tue 10 Feb 2026 18:00:32 +0000 Files and hashes: 1: Lokc9xG_fhxC4ILWoviaBL7rldE.crl (hash: ssKovSjmAyNvgjUNIMSaOxMnUpWodPir9QxocjU3R2I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.crl rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft rsync://rpki.ripe.net/repository/DEFAULT/Lokc9xG_fhxC4ILWoviaBL7rldE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:ee:a4:eb:c9:26:da:1c:45:1e:9a:c2:21:ac:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e891cf711bf7e1c42e082d6a2f89a04beeb95d1 Validity Not Before: Feb 9 18:00:32 2026 GMT Not After : Feb 10 18:00:32 2026 GMT Subject: CN=bddda2450ab4a4957a37204a4adab2c429801641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5c:4d:87:b3:f0:40:83:1b:04:a8:ce:cd:d5: 9c:94:2d:01:e2:d2:04:b9:a6:28:61:7b:66:63:04: 3e:2c:82:cc:5c:4b:29:4a:98:ad:b6:1e:1a:48:6b: d2:96:3c:13:e7:75:e1:70:af:3c:1b:d4:93:04:54: 6e:20:e9:dd:3d:e5:f4:30:4f:35:ac:de:ce:ab:de: 87:bf:ad:72:e3:c8:40:58:8a:d2:de:a2:37:0a:18: e9:13:a8:a5:83:a4:7c:25:2c:d8:a2:dd:9e:26:60: 3e:0f:68:83:98:bf:2b:3d:c1:46:e6:9b:58:1e:1f: 0f:f7:ba:ca:c9:a8:b3:06:b3:2f:94:f3:76:b8:33: 17:d5:7f:0e:77:26:f6:a4:1a:8c:20:00:35:a3:95: 37:83:ef:7d:e0:dd:44:d2:27:20:a1:04:f3:2d:be: 16:4d:b5:81:45:8e:99:b9:55:23:1a:41:7f:b0:1d: 33:90:86:b0:49:21:bb:32:6a:b3:1d:70:11:36:f2: 16:0c:46:49:7b:3c:77:ed:3a:e3:03:d8:54:84:ea: 2c:ae:f9:42:c8:ae:22:41:fa:91:9a:69:ce:5b:34: 41:1e:92:32:5f:49:2e:63:f2:c8:f1:5a:2b:fc:66: 32:51:11:18:51:62:16:5e:20:d6:d4:70:b0:94:1f: 14:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:DD:A2:45:0A:B4:A4:95:7A:37:20:4A:4A:DA:B2:C4:29:80:16:41 X509v3 Authority Key Identifier: keyid:2E:89:1C:F7:11:BF:7E:1C:42:E0:82:D6:A2:F8:9A:04:BE:EB:95:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lokc9xG_fhxC4ILWoviaBL7rldE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:06:42:29:bd:9e:c8:68:4a:90:3f:4e:d2:e6:34:b7:fd:a4: d2:0a:70:6b:56:24:41:a4:5b:70:86:81:f7:c0:0e:79:ec:60: 5f:f0:77:20:12:ed:72:2e:09:a1:2e:11:e9:ba:66:34:dc:0f: 38:57:fd:4d:9e:ba:07:1d:0c:cf:a7:ee:9a:9a:b8:88:6f:1a: 02:00:bf:2f:b4:63:39:4c:2d:3a:fc:e8:28:d3:64:77:0c:c0: 38:00:d2:b2:d2:ad:ad:a8:08:55:af:20:cd:dc:71:81:92:b4: ee:62:b5:7c:72:09:cc:f6:fe:9d:e3:62:37:37:60:c1:a2:b0: 7f:eb:eb:ff:0d:72:cb:c3:86:a1:95:98:5f:35:6e:47:6c:74: b3:40:fa:b0:ed:57:aa:9b:c0:a1:76:4e:07:8e:b0:14:7c:13: f0:45:c7:f8:37:4f:07:f2:1f:01:3a:02:c0:50:8a:74:e0:b9: 7e:4a:d1:11:0d:68:c6:a2:d0:3a:34:1d:bd:ea:cb:f4:cc:21: d1:70:2e:ab:6e:95:7a:f8:dd:3a:24:af:1f:d5:5b:da:b0:9a: b4:14:14:34:f1:80:71:d1:15:73:fa:a8:63:50:cc:13:6a:ca: e0:f3:18:60:f5:3e:37:fc:ea:4b:a9:70:3a:d7:55:6d:8c:c3: 46:f6:a7:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj+6k68km2hxFHprCIazpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlODkxY2Y3MTFiZjdlMWM0MmUwODJkNmEyZjg5YTA0YmVl Yjk1ZDEwHhcNMjYwMjA5MTgwMDMyWhcNMjYwMjEwMTgwMDMyWjAzMTEwLwYDVQQD EyhiZGRkYTI0NTBhYjRhNDk1N2EzNzIwNGE0YWRhYjJjNDI5ODAxNjQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtVxNh7PwQIMbBKjOzdWclC0B4tIE uaYoYXtmYwQ+LILMXEspSpitth4aSGvSljwT53XhcK88G9STBFRuIOndPeX0ME81 rN7Oq96Hv61y48hAWIrS3qI3ChjpE6ilg6R8JSzYot2eJmA+D2iDmL8rPcFG5ptY Hh8P97rKyaizBrMvlPN2uDMX1X8Odyb2pBqMIAA1o5U3g+994N1E0icgoQTzLb4W TbWBRY6ZuVUjGkF/sB0zkIawSSG7MmqzHXARNvIWDEZJezx37TrjA9hUhOosrvlC yK4iQfqRmmnOWzRBHpIyX0kuY/LI8Vor/GYyUREYUWIWXiDW1HCwlB8UqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL3dokUKtKSVejcgSkrassQpgBZBMB8GA1UdIwQY MBaAFC6JHPcRv34cQuCC1qL4mgS+65XRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG9rYzl4R19maHhDNElMV292aWFCTDdybGRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS81MGI1NTAtZjg1ZS00ODliLTg0NzMt ZTAzNjUzODFiYjg1LzEvTG9rYzl4R19maHhDNElMV292aWFCTDdybGRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS81MGI1NTAtZjg1ZS00ODliLTg0NzMtZTAzNjUzODFiYjg1 LzEvTG9rYzl4R19maHhDNElMV292aWFCTDdybGRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvAZCKb2e yGhKkD9O0uY0t/2k0gpwa1YkQaRbcIaB98AOeexgX/B3IBLtci4JoS4R6bpmNNwP OFf9TZ66Bx0Mz6fumpq4iG8aAgC/L7RjOUwtOvzoKNNkdwzAOADSstKtragIVa8g zdxxgZK07mK1fHIJzPb+neNiNzdgwaKwf+vr/w1yy8OGoZWYXzVuR2x0s0D6sO1X qpvAoXZOB46wFHwT8EXH+DdPB/IfAToCwFCKdOC5fkrREQ1oxqLQOjQdverL9Mwh 0XAuq26VevjdOiSvH9Vb2rCatBQUNPGAcdEVc/qoY1DME2rK4PMYYPU+N/zqS6lw OtdVbYzDRvanYw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:56 2026 by rpki-client