This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft File: lQSgmkWW2BV9pp3DNGxavOTOThM.mft (raw, json) Hash identifier: SmI+r6jFF0kYYylEAU2cjJAZ6ClXGUYuJ7bLIh8zaKc= Subject key identifier: 42:1E:C3:05:20:D9:68:1B:F0:54:8A:1C:AF:80:67:C1:74:9A:49:EB Authority key identifier: 95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13 Certificate issuer: /CN=9504a09a4596d8157da69dc3346c5abce4ce4e13 Certificate serial: 019C43FE3A13E73CE48E49E2B4A336C1FC85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft Manifest number: 046F Signing time: Mon 09 Feb 2026 20:01:00 +0000 Manifest this update: Mon 09 Feb 2026 20:01:00 +0000 Manifest next update: Tue 10 Feb 2026 20:01:00 +0000 Files and hashes: 1: lQSgmkWW2BV9pp3DNGxavOTOThM.crl (hash: W4oCcKiVes6s2rJ/viXBzjVTONSGchp9sU90Hxqr/uE=) 2: sZJjT_2snQotK3ftEGw_d9sZrf0.roa (hash: ZP0upJCIf42M9db5/txOE5l9C4b/LsGAyR1WtYBipm0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:3a:13:e7:3c:e4:8e:49:e2:b4:a3:36:c1:fc:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9504a09a4596d8157da69dc3346c5abce4ce4e13 Validity Not Before: Feb 9 20:01:00 2026 GMT Not After : Feb 10 20:01:00 2026 GMT Subject: CN=421ec30520d9681bf0548a1caf8067c1749a49eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:58:9a:df:a9:44:88:22:af:cf:9e:f3:ca:b4: c7:06:c0:18:50:01:6f:4d:34:87:0f:97:0a:25:b4: 94:0f:78:8a:cb:00:6a:25:e6:cf:6c:2b:2b:24:38: 72:c6:fc:a0:c0:c1:60:5b:35:bc:f8:a4:b3:3c:cf: 5e:fd:c8:9f:51:21:ec:00:ae:39:5e:cd:d0:6e:4c: 33:fd:4f:f5:6c:54:40:47:0e:f1:60:eb:d6:e6:ca: 18:ea:1e:eb:49:75:41:82:bc:84:af:89:e6:d8:b8: aa:23:83:fa:3d:26:a1:a0:59:e1:3d:88:8b:c0:de: 98:8e:c3:18:79:08:b6:97:00:a8:b9:32:45:f9:d2: 90:94:4f:fc:d7:3c:72:99:ee:d9:dc:94:90:95:ed: 29:ff:6d:4c:6a:5f:b8:39:79:a6:3f:65:6d:ff:92: bd:e1:f2:a8:12:d1:8e:65:e1:ee:97:50:de:b0:22: b1:17:07:c8:54:a6:3f:1d:76:e1:65:cc:04:02:01: 22:5f:5e:27:e7:28:4b:1b:d9:88:c3:00:44:f9:d7: 8f:00:27:f0:76:c1:ef:7c:df:07:38:06:5a:e9:a5: d5:dd:5d:35:66:78:02:8a:18:92:1c:58:de:b4:d2: 97:88:76:3a:1c:b5:ec:fc:fd:f8:b0:eb:a3:39:32: 98:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:1E:C3:05:20:D9:68:1B:F0:54:8A:1C:AF:80:67:C1:74:9A:49:EB X509v3 Authority Key Identifier: keyid:95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:59:d9:b8:80:1b:f8:77:5b:ae:db:b1:30:b3:16:69:84:ec: ea:55:6b:f3:f9:66:ce:b3:93:b6:b0:49:ed:14:91:44:14:58: 79:5b:08:0f:2b:4a:16:bc:e0:89:0b:59:15:e5:2c:8f:dd:d9: f1:01:dc:90:99:7d:26:40:87:19:5b:27:b6:5f:02:e0:b2:c1: 96:0a:14:c8:18:b1:71:4d:5e:69:d9:34:21:81:74:b4:bc:ee: 8b:e3:92:11:7f:fb:a5:c3:18:08:34:15:04:80:7c:44:67:af: f6:77:24:23:9b:6e:ec:a6:ee:4f:56:79:10:5f:8e:e2:c6:b2: ef:22:7e:c5:1e:61:03:6f:e8:f7:dd:c7:55:51:29:e8:69:1c: 07:7b:66:02:4b:ac:31:60:47:5f:a2:7c:83:61:df:68:1f:9f: d0:09:31:0f:2a:6f:e3:d5:3e:2d:c8:59:2d:39:0f:3e:a8:f6: 33:b0:6b:dd:df:42:f0:bf:7a:ec:e5:a1:31:98:53:e6:74:34: ad:cf:1e:29:df:0e:1d:d1:ee:89:72:5e:13:3e:6d:6b:d1:ee: b2:36:88:d9:7e:63:c7:07:34:9e:ce:05:e7:b8:d1:3a:9f:1f: f7:8e:f6:29:cb:53:dc:6d:74:d8:11:91:49:7a:c1:82:99:fb: d7:8d:b0:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/joT5zzkjknitKM2wfyFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MDRhMDlhNDU5NmQ4MTU3ZGE2OWRjMzM0NmM1YWJjZTRj ZTRlMTMwHhcNMjYwMjA5MjAwMTAwWhcNMjYwMjEwMjAwMTAwWjAzMTEwLwYDVQQD Eyg0MjFlYzMwNTIwZDk2ODFiZjA1NDhhMWNhZjgwNjdjMTc0OWE0OWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnVia36lEiCKvz57zyrTHBsAYUAFv TTSHD5cKJbSUD3iKywBqJebPbCsrJDhyxvygwMFgWzW8+KSzPM9e/cifUSHsAK45 Xs3Qbkwz/U/1bFRARw7xYOvW5soY6h7rSXVBgryEr4nm2LiqI4P6PSahoFnhPYiL wN6YjsMYeQi2lwCouTJF+dKQlE/81zxyme7Z3JSQle0p/21Mal+4OXmmP2Vt/5K9 4fKoEtGOZeHul1DesCKxFwfIVKY/HXbhZcwEAgEiX14n5yhLG9mIwwBE+dePACfw dsHvfN8HOAZa6aXV3V01ZngCihiSHFjetNKXiHY6HLXs/P34sOujOTKYuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEIewwUg2Wgb8FSKHK+AZ8F0mknrMB8GA1UdIwQY MBaAFJUEoJpFltgVfaadwzRsWrzkzk4TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFFTZ21rV1cyQlY5cHAzRE5HeGF2T1RPVGhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC85ZWFmNWMtOGM1NC00NWVkLWJmYzQt NjczYzM4ODkxNjFkLzEvbFFTZ21rV1cyQlY5cHAzRE5HeGF2T1RPVGhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC85ZWFmNWMtOGM1NC00NWVkLWJmYzQtNjczYzM4ODkxNjFk LzEvbFFTZ21rV1cyQlY5cHAzRE5HeGF2T1RPVGhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs1nZuIAb +HdbrtuxMLMWaYTs6lVr8/lmzrOTtrBJ7RSRRBRYeVsIDytKFrzgiQtZFeUsj93Z 8QHckJl9JkCHGVsntl8C4LLBlgoUyBixcU1eadk0IYF0tLzui+OSEX/7pcMYCDQV BIB8RGev9nckI5tu7KbuT1Z5EF+O4say7yJ+xR5hA2/o993HVVEp6GkcB3tmAkus MWBHX6J8g2HfaB+f0AkxDypv49U+LchZLTkPPqj2M7Br3d9C8L967OWhMZhT5nQ0 rc8eKd8OHdHuiXJeEz5ta9HusjaI2X5jxwc0ns4F57jROp8f9472KctT3G102BGR SXrBgpn7142wTQ== -----END CERTIFICATE-----Generated at Mon Feb 9 23:53:24 2026 by rpki-client