This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft File: LX893KDLOOx7CMaQKeIPUtxAjxc.mft (raw, json) Hash identifier: so3VgWEuRd7IIwqScy0/KgUvi8S05eRSJ+4592t2OrQ= Subject key identifier: EB:C2:69:6B:31:B7:CA:C0:28:19:8C:B3:07:1F:2F:AA:C0:CA:84:FB Authority key identifier: 2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17 Certificate issuer: /CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17 Certificate serial: 019C438FC007A57E71947CA87F40B4F64F09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 18:00:20 +0000 Manifest this update: Mon 09 Feb 2026 18:00:20 +0000 Manifest next update: Tue 10 Feb 2026 18:00:20 +0000 Files and hashes: 1: HBZIofhnEyGMafPIiZxVB_Ns56M.roa (hash: 49lIUj/HnnMzqTTFtrpK2NJtv/LRA6INi2P9F0Ad34E=) 2: LX893KDLOOx7CMaQKeIPUtxAjxc.crl (hash: MzW7lR1OWATT7iGuZYW17jqnJsUy/mhVC3AcqJmNt0s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:c0:07:a5:7e:71:94:7c:a8:7f:40:b4:f6:4f:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17 Validity Not Before: Feb 9 18:00:20 2026 GMT Not After : Feb 10 18:00:20 2026 GMT Subject: CN=ebc2696b31b7cac028198cb3071f2faac0ca84fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8f:5a:5e:43:d5:be:5e:6b:de:39:47:86:9a: 8a:ef:24:c4:53:6c:de:37:21:93:71:58:48:22:8e: fa:bf:4d:07:f2:d0:d6:7c:2d:4d:36:98:47:75:9f: 90:c8:ee:22:a1:3b:d2:8c:41:59:b3:25:e7:f8:59: 9f:6a:62:81:26:04:3e:c4:11:d4:63:91:54:2a:01: 76:e5:10:03:02:7f:2d:6e:32:a1:a8:21:80:fa:9c: 65:85:e3:74:70:0b:4f:96:da:f5:0c:90:4b:e1:61: eb:89:50:bf:30:8f:03:6d:84:f0:37:d2:1f:e0:9f: 57:32:21:ba:f4:7d:d4:6b:e3:11:bc:58:c2:7e:c7: 9d:3f:91:76:9b:40:91:6c:a9:ee:ac:cb:ea:df:90: 2a:a5:fa:ce:87:85:4e:ed:cb:42:b9:ac:d5:79:76: 19:60:4f:47:e3:91:22:10:43:30:37:4c:c2:ab:21: b0:b9:a4:6d:69:78:30:63:63:8b:7f:45:92:73:d4: 8b:12:02:da:2d:a1:b6:dd:af:f2:64:c3:60:af:3f: f9:48:18:bf:06:65:3c:de:55:cc:b5:d5:69:57:fa: 27:34:2f:45:6d:76:60:19:64:d6:06:00:2b:fa:f9: 58:5e:ad:64:2a:a6:8e:f5:b8:94:67:fe:f3:95:39: 24:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C2:69:6B:31:B7:CA:C0:28:19:8C:B3:07:1F:2F:AA:C0:CA:84:FB X509v3 Authority Key Identifier: keyid:2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:7a:a9:2d:3d:84:9c:85:c0:ae:d8:2c:19:80:14:70:d8:1b: 73:97:b2:11:f7:55:fa:26:9c:13:19:b2:c4:29:42:cc:bb:a0: b0:d7:2a:21:0f:98:bf:7e:6a:de:c4:a1:02:df:2e:21:e6:c2: 8f:bc:3c:68:fe:a5:c6:c3:23:2e:f9:ef:ba:88:d1:92:bc:46: 22:64:be:b4:18:fd:ea:59:56:93:32:b5:b4:51:71:8f:e0:a4: 55:fd:a2:db:e8:19:d3:2b:f7:ae:28:3b:7c:9b:47:b1:71:61: c8:76:83:63:42:04:a6:66:49:a3:6b:30:5c:35:f9:fc:be:4a: 9e:bb:0e:27:86:c0:4d:f1:66:98:53:6b:d8:6a:ff:78:6b:8c: 8f:bd:49:fe:1d:57:09:53:6c:cd:55:76:4d:2e:ec:2b:ef:a0: 71:29:f5:d9:a6:f0:06:92:5c:4a:55:4c:08:ae:37:57:d8:f2: aa:c0:5d:bb:96:89:27:07:05:fb:1d:92:cd:6b:6a:58:41:37: 00:bf:8d:b0:fd:88:cf:be:82:13:3a:c4:ab:68:68:c3:7d:14: 0d:2e:db:d8:a7:1f:c3:97:73:69:e8:ee:04:34:d2:ee:1d:a8: 5e:7e:11:20:0b:19:df:fa:c5:b3:a3:76:ec:3a:cf:a7:5b:9b: 8d:eb:66:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj8AHpX5xlHyof0C09k8JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkN2YzZGRjYTBjYjM4ZWM3YjA4YzY5MDI5ZTIwZjUyZGM0 MDhmMTcwHhcNMjYwMjA5MTgwMDIwWhcNMjYwMjEwMTgwMDIwWjAzMTEwLwYDVQQD EyhlYmMyNjk2YjMxYjdjYWMwMjgxOThjYjMwNzFmMmZhYWMwY2E4NGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyI9aXkPVvl5r3jlHhpqK7yTEU2ze NyGTcVhIIo76v00H8tDWfC1NNphHdZ+QyO4ioTvSjEFZsyXn+FmfamKBJgQ+xBHU Y5FUKgF25RADAn8tbjKhqCGA+pxlheN0cAtPltr1DJBL4WHriVC/MI8DbYTwN9If 4J9XMiG69H3Ua+MRvFjCfsedP5F2m0CRbKnurMvq35AqpfrOh4VO7ctCuazVeXYZ YE9H45EiEEMwN0zCqyGwuaRtaXgwY2OLf0WSc9SLEgLaLaG23a/yZMNgrz/5SBi/ BmU83lXMtdVpV/onNC9FbXZgGWTWBgAr+vlYXq1kKqaO9biUZ/7zlTkkyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOvCaWsxt8rAKBmMswcfL6rAyoT7MB8GA1UdIwQY MBaAFC1/PdygyzjsewjGkCniD1LcQI8XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFg4OTNLRExPT3g3Q01hUUtlSVBVdHhBanhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9jNzVhZjQtOWQyNi00MjkwLWIwMjct YTU2YzUyYmUxOThjLzEvTFg4OTNLRExPT3g3Q01hUUtlSVBVdHhBanhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9jNzVhZjQtOWQyNi00MjkwLWIwMjctYTU2YzUyYmUxOThj LzEvTFg4OTNLRExPT3g3Q01hUUtlSVBVdHhBanhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAHqpLT2E nIXArtgsGYAUcNgbc5eyEfdV+iacExmyxClCzLugsNcqIQ+Yv35q3sShAt8uIebC j7w8aP6lxsMjLvnvuojRkrxGImS+tBj96llWkzK1tFFxj+CkVf2i2+gZ0yv3rig7 fJtHsXFhyHaDY0IEpmZJo2swXDX5/L5KnrsOJ4bATfFmmFNr2Gr/eGuMj71J/h1X CVNszVV2TS7sK++gcSn12abwBpJcSlVMCK43V9jyqsBdu5aJJwcF+x2SzWtqWEE3 AL+NsP2Iz76CEzrEq2how30UDS7b2Kcfw5dzaejuBDTS7h2oXn4RIAsZ3/rFs6N2 7DrPp1ubjetmXQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:27:24 2026 by rpki-client