This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json) Hash identifier: Rb7NwQDJqFLZWyUDyrFlUtWv9MOeUxWVOwD/rchs2n0= Subject key identifier: 96:F4:68:25:ED:B6:8E:30:BC:01:4D:00:01:AE:4C:BA:19:DB:FF:D1 Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66 Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066 Certificate serial: 019C41A25B8DADA3BD1913DF2958FB957DF7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 09:01:25 +0000 Manifest this update: Mon 09 Feb 2026 09:01:25 +0000 Manifest next update: Tue 10 Feb 2026 09:01:25 +0000 Files and hashes: 1: RZP_EJvUPRy8N5V44f-ykW1wgg8.roa (hash: LUUspyCZgfPy/9PXdd/3xbh9XNVlKFlsig4SSBadF24=) 2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: ze2LKyfUKY+zwkzGLm1M0sVaeuaY46ci4ANsh1jRjtM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:5b:8d:ad:a3:bd:19:13:df:29:58:fb:95:7d:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066 Validity Not Before: Feb 9 09:01:25 2026 GMT Not After : Feb 10 09:01:25 2026 GMT Subject: CN=96f46825edb68e30bc014d0001ae4cba19dbffd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ca:91:f2:33:90:b9:9a:30:13:27:ff:36:f4: 83:ca:5b:7d:a9:79:1b:02:89:90:69:77:c8:2d:4e: 08:7a:6b:7a:0b:18:c2:3d:fd:9f:5f:59:b4:18:56: 27:22:bc:34:7f:95:4d:21:fb:bd:f3:a0:3c:0d:37: 5c:83:42:65:60:f6:44:ab:4c:7b:de:69:86:95:0a: 94:5a:5f:e7:51:d6:94:d8:68:5e:18:94:d6:64:cf: 17:04:18:b3:a1:6e:71:48:36:59:79:f7:2f:61:01: 32:08:4b:a0:a9:83:73:22:02:93:9f:a3:2d:f7:36: bd:6b:b8:e6:31:8b:46:ec:5a:4e:6e:11:0b:dc:83: 50:6c:7c:c3:15:06:d9:9b:2e:b0:35:45:62:e3:52: 5a:27:55:70:68:28:ce:f4:89:b6:76:ed:83:c7:a0: af:10:d2:f7:d8:0a:66:0d:22:93:3b:9f:df:66:b6: 8c:bf:b4:9d:60:ad:da:51:03:af:06:f7:03:f2:e4: 03:70:28:51:7e:ce:4e:d1:49:de:41:41:7d:54:35: 78:65:0b:7f:b7:b0:be:33:a0:16:63:1a:32:d0:2c: 50:42:c2:d6:f0:d0:fc:02:44:96:3a:50:71:97:b0: f4:ee:a7:61:4c:f4:26:e3:f0:da:9e:5f:9e:b4:56: cf:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F4:68:25:ED:B6:8E:30:BC:01:4D:00:01:AE:4C:BA:19:DB:FF:D1 X509v3 Authority Key Identifier: keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:0d:6b:82:f1:37:91:6c:95:6c:cb:a3:02:33:fc:89:ad:1c: 1d:a8:a8:1a:e6:73:73:70:c7:dc:51:44:52:b4:cc:4e:88:5e: 26:8a:cf:54:c4:86:19:dc:fb:62:3e:53:78:5c:a7:65:1d:5d: d7:74:06:e2:27:54:9c:a4:0e:26:df:2c:bc:81:01:23:34:79: 56:23:36:a1:d8:2f:60:df:34:53:3e:7c:31:aa:fa:5f:e9:ff: e2:5d:97:52:26:9f:c6:d7:eb:9f:c0:71:8f:f8:c9:1d:77:bd: 7b:f0:0a:aa:ed:13:25:87:03:e3:7e:b2:4a:ea:61:5a:e2:5d: d6:47:01:2e:f2:31:66:7d:e3:62:4e:ea:2b:5d:7a:30:5d:3c: 75:ba:c0:fe:87:4e:d0:3b:65:9a:b8:48:2e:6d:0b:2f:de:b9: 87:b5:61:da:47:ad:e4:a4:29:31:45:07:24:d8:ee:c0:04:3b: 75:57:c3:76:0e:bf:ca:be:67:45:5b:1d:f6:89:38:fb:b4:1b: c7:8e:e1:07:8e:c3:4d:31:dc:85:80:9c:bc:62:4d:ad:72:29: 65:cf:ec:5a:db:ca:f4:be:07:3d:65:90:a7:f5:7c:dc:04:6f: 9d:b3:fc:63:53:f5:2f:f2:0f:45:11:40:e4:e5:37:13:83:01: 9e:4a:83:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoluNraO9GRPfKVj7lX33MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MTg5YjE1OGQ4ZDYwMTFiYTVmOTYyNTJkMzAyNjZhNzBk M2UwNjYwHhcNMjYwMjA5MDkwMTI1WhcNMjYwMjEwMDkwMTI1WjAzMTEwLwYDVQQD Eyg5NmY0NjgyNWVkYjY4ZTMwYmMwMTRkMDAwMWFlNGNiYTE5ZGJmZmQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcqR8jOQuZowEyf/NvSDylt9qXkb AomQaXfILU4Iemt6CxjCPf2fX1m0GFYnIrw0f5VNIfu986A8DTdcg0JlYPZEq0x7 3mmGlQqUWl/nUdaU2GheGJTWZM8XBBizoW5xSDZZefcvYQEyCEugqYNzIgKTn6Mt 9za9a7jmMYtG7FpObhEL3INQbHzDFQbZmy6wNUVi41JaJ1VwaCjO9Im2du2Dx6Cv ENL32ApmDSKTO5/fZraMv7SdYK3aUQOvBvcD8uQDcChRfs5O0UneQUF9VDV4ZQt/ t7C+M6AWYxoy0CxQQsLW8ND8AkSWOlBxl7D07qdhTPQm4/Danl+etFbPvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJb0aCXtto4wvAFNAAGuTLoZ2//RMB8GA1UdIwQY MBaAFJUYmxWNjWARul+WJS0wJmpw0+BmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUt YWNlMTgwZmY5YjE5LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUtYWNlMTgwZmY5YjE5 LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKg1rgvE3 kWyVbMujAjP8ia0cHaioGuZzc3DH3FFEUrTMToheJorPVMSGGdz7Yj5TeFynZR1d 13QG4idUnKQOJt8svIEBIzR5ViM2odgvYN80Uz58Mar6X+n/4l2XUiafxtfrn8Bx j/jJHXe9e/AKqu0TJYcD436ySuphWuJd1kcBLvIxZn3jYk7qK116MF08dbrA/odO 0DtlmrhILm0LL965h7Vh2ket5KQpMUUHJNjuwAQ7dVfDdg6/yr5nRVsd9ok4+7Qb x47hB47DTTHchYCcvGJNrXIpZc/sWtvK9L4HPWWQp/V83ARvnbP8Y1P1L/IPRRFA 5OU3E4MBnkqDHQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:49 2026 by rpki-client