This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft File: lN7qVibZ6DJkDx7N9_i7clckCEc.mft (raw, json) Hash identifier: h21m3JFSaiF15hrMBTIGTEaIa5Wts4/+rrikyvDR5C0= Subject key identifier: D2:56:4E:70:9E:F5:BA:F4:85:79:AE:9A:7A:CA:5B:BC:2A:FC:9E:DF Authority key identifier: 94:DE:EA:56:26:D9:E8:32:64:0F:1E:CD:F7:F8:BB:72:57:24:08:47 Certificate issuer: /CN=94deea5626d9e832640f1ecdf7f8bb7257240847 Certificate serial: 019C4246B158FE1177165483983AD0CFC5A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft Manifest number: 0D04 Signing time: Mon 09 Feb 2026 12:00:54 +0000 Manifest this update: Mon 09 Feb 2026 12:00:54 +0000 Manifest next update: Tue 10 Feb 2026 12:00:54 +0000 Files and hashes: 1: lN7qVibZ6DJkDx7N9_i7clckCEc.crl (hash: kuK9bq986DZ/2GtfuVUJY78UwyqqBnZ4k940b7IugqA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:b1:58:fe:11:77:16:54:83:98:3a:d0:cf:c5:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94deea5626d9e832640f1ecdf7f8bb7257240847 Validity Not Before: Feb 9 12:00:54 2026 GMT Not After : Feb 10 12:00:54 2026 GMT Subject: CN=d2564e709ef5baf48579ae9a7aca5bbc2afc9edf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ce:d0:67:48:a3:59:58:e9:f3:7f:dd:85:42: 37:67:71:2c:5f:a6:b1:b6:a1:5e:23:0a:e5:3f:8b: f5:b5:ea:7a:f9:23:65:5f:d2:fc:c5:91:23:0e:b8: 76:eb:8e:56:e9:da:9f:b9:15:bf:0b:00:e9:d0:ff: 53:30:1b:1f:55:8e:25:b3:8b:2b:1a:07:e5:fc:55: a2:a0:3e:6c:a3:d0:6b:17:df:02:94:17:98:b5:7e: 40:34:d8:55:71:77:41:12:b7:bb:1b:6c:33:81:9a: c9:8d:a5:38:34:70:e1:23:5d:43:88:8c:38:fa:2f: 79:07:20:30:7e:fd:4f:fb:dc:58:27:ec:c4:ba:95: 4b:dc:28:cc:8f:16:be:63:43:b1:0b:80:9a:28:54: 0a:a1:a0:83:5f:21:da:82:09:53:ad:d5:54:01:64: e0:38:2c:c4:e1:7c:41:15:5d:e1:ce:bc:e4:f3:03: 0c:db:52:07:5c:ba:27:c5:36:ea:9a:5f:33:a3:67: 61:75:2e:34:f8:d5:68:99:bc:1b:80:41:fa:00:22: ca:ad:8e:80:1b:7a:b8:5a:ea:86:70:0e:f7:9f:56: b7:9e:32:d9:e3:50:d2:eb:e5:ed:ec:69:ea:4a:df: 8b:81:b5:8f:8c:4f:8e:ff:0f:d8:38:6b:43:5b:80: 04:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:56:4E:70:9E:F5:BA:F4:85:79:AE:9A:7A:CA:5B:BC:2A:FC:9E:DF X509v3 Authority Key Identifier: keyid:94:DE:EA:56:26:D9:E8:32:64:0F:1E:CD:F7:F8:BB:72:57:24:08:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:dc:65:d0:b1:f6:ab:4a:da:3e:30:ac:47:f4:6f:a2:dd:f2: 46:23:79:14:dd:d4:3e:f2:bd:11:de:b2:cc:dd:72:78:3a:f1: a4:1a:e6:c5:be:b5:34:13:9d:66:f5:96:6f:79:ee:ba:aa:76: f7:35:5a:14:86:df:30:02:0e:27:31:8b:cc:21:42:94:9f:b6: f0:e9:69:cf:9e:0c:5e:2b:e0:b9:62:26:ab:01:71:e7:1d:05: fa:54:92:80:d3:e1:8c:8e:3c:f9:c0:d0:e0:5a:84:b3:aa:d7: d7:8a:21:cc:24:8a:86:2a:d6:36:04:4a:8f:05:7f:9e:59:7f: b6:c6:90:a2:6b:8e:fb:0c:2d:c3:0d:31:f5:d0:b8:9c:c7:db: cf:bb:e1:49:db:34:16:cd:88:04:9a:7f:3f:83:78:25:3e:ff: 89:d2:70:6f:49:58:a0:66:f9:59:87:14:ff:d4:5b:e1:73:a0: 9d:7c:0c:81:c8:0a:3e:a7:07:6e:4e:fc:5e:8d:8d:a4:c5:82: 70:dc:bc:a5:be:91:74:87:d4:2b:aa:ad:c2:69:89:53:25:d4: b7:a2:8f:63:4b:a5:b2:40:76:24:8e:ce:9f:de:d2:dd:15:6c: 22:2e:7e:42:b2:43:ba:81:e4:27:7c:25:26:5b:48:82:4e:3d: e9:6b:96:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRrFY/hF3FlSDmDrQz8WkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0ZGVlYTU2MjZkOWU4MzI2NDBmMWVjZGY3ZjhiYjcyNTcy NDA4NDcwHhcNMjYwMjA5MTIwMDU0WhcNMjYwMjEwMTIwMDU0WjAzMTEwLwYDVQQD EyhkMjU2NGU3MDllZjViYWY0ODU3OWFlOWE3YWNhNWJiYzJhZmM5ZWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr87QZ0ijWVjp83/dhUI3Z3EsX6ax tqFeIwrlP4v1tep6+SNlX9L8xZEjDrh2645W6dqfuRW/CwDp0P9TMBsfVY4ls4sr Ggfl/FWioD5so9BrF98ClBeYtX5ANNhVcXdBEre7G2wzgZrJjaU4NHDhI11DiIw4 +i95ByAwfv1P+9xYJ+zEupVL3CjMjxa+Y0OxC4CaKFQKoaCDXyHagglTrdVUAWTg OCzE4XxBFV3hzrzk8wMM21IHXLonxTbqml8zo2dhdS40+NVombwbgEH6ACLKrY6A G3q4WuqGcA73n1a3njLZ41DS6+Xt7GnqSt+LgbWPjE+O/w/YOGtDW4AEwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNJWTnCe9br0hXmumnrKW7wq/J7fMB8GA1UdIwQY MBaAFJTe6lYm2egyZA8ezff4u3JXJAhHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE43cVZpYlo2REprRHg3TjlfaTdjbGNrQ0VjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy8zNDQ3ZGQtOGRjNC00MDVkLTljMGIt NmZmYzVkOWUwZmVkLzEvbE43cVZpYlo2REprRHg3TjlfaTdjbGNrQ0VjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy8zNDQ3ZGQtOGRjNC00MDVkLTljMGItNmZmYzVkOWUwZmVk LzEvbE43cVZpYlo2REprRHg3TjlfaTdjbGNrQ0VjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC9xl0LH2 q0raPjCsR/Rvot3yRiN5FN3UPvK9Ed6yzN1yeDrxpBrmxb61NBOdZvWWb3nuuqp2 9zVaFIbfMAIOJzGLzCFClJ+28Olpz54MXivguWImqwFx5x0F+lSSgNPhjI48+cDQ 4FqEs6rX14ohzCSKhirWNgRKjwV/nll/tsaQomuO+wwtww0x9dC4nMfbz7vhSds0 Fs2IBJp/P4N4JT7/idJwb0lYoGb5WYcU/9Rb4XOgnXwMgcgKPqcHbk78Xo2NpMWC cNy8pb6RdIfUK6qtwmmJUyXUt6KPY0ulskB2JI7On97S3RVsIi5+QrJDuoHkJ3wl JltIgk496WuWzQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:35 2026 by rpki-client