This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json) Hash identifier: rbWh77OqD3eZ8dqMF9v5cGVvdAJBrnX+diHbKWOtjM0= Subject key identifier: 49:44:2A:43:64:64:4A:D7:2E:94:BB:3F:0E:AB:D3:8D:55:9E:DD:18 Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72 Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572 Certificate serial: 019BF6BF6F918B39A653E8E35F0E5A395036 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft Manifest number: 0C8E Signing time: Sun 25 Jan 2026 20:01:39 +0000 Manifest this update: Sun 25 Jan 2026 20:01:39 +0000 Manifest next update: Mon 26 Jan 2026 20:01:39 +0000 Files and hashes: 1: 5tq-dphgnapNG8uID0bzWyuSiiI.roa (hash: Geh8HxvdWtRdjQA8GTRZhRKQeMt/TQkbrTaKQX7hwuM=) 2: SNXaMmatRq7Y2yZacERGh_Byx3c.roa (hash: 1VfAG/PWe9ADh3l7lJxuP3CaKheNhNOZc9+mMKVHmsc=) 3: aeJRC_Zrs1Xdsza3m-Bp94bJ1dk.roa (hash: 31o9/oasTnGfM4n9yp1biNvrc9x/A8EYFBmDcG491Fg=) 4: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: hGuRJD6UwtpC91UN5bGiLy1A/Bn00FW1vszNhbau+FU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:bf:6f:91:8b:39:a6:53:e8:e3:5f:0e:5a:39:50:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572 Validity Not Before: Jan 25 20:01:39 2026 GMT Not After : Jan 26 20:01:39 2026 GMT Subject: CN=49442a4364644ad72e94bb3f0eabd38d559edd18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4b:9d:80:ad:cd:3e:2f:c5:cb:fb:11:e6:8e: 56:af:1a:07:e6:20:d0:b7:41:8c:e1:b5:9f:07:74: 2e:cc:e3:55:6e:a0:76:fb:f1:f7:7e:00:6c:af:53: b6:f2:f9:a1:23:e3:ae:52:0e:af:6d:6b:19:73:f7: 2e:8f:de:e4:28:ef:e3:ef:b9:21:b7:2c:6d:d2:d7: 7b:50:ed:f9:50:d9:8f:cf:2d:38:05:fb:0b:17:b0: 61:1b:fd:b5:ea:38:41:c5:e8:ca:e2:a8:8d:e5:38: 47:ae:3b:ba:94:a8:f9:f2:1d:10:9e:e6:fb:2e:69: 34:70:93:18:eb:94:44:3f:dc:d1:83:f9:3f:18:9e: ef:89:a0:71:19:02:5b:ec:c3:2d:fc:2c:f4:c0:15: ad:73:44:a4:87:ff:41:68:5b:d0:b0:d4:b1:83:e5: 07:ec:64:50:00:1d:f8:94:a3:5c:5d:5c:f8:b9:83: 5d:6d:a3:e6:2f:b4:a7:72:7c:9e:25:b8:a6:a0:b7: a3:b1:ab:d5:d7:cb:a0:ec:ec:24:d4:cf:c2:30:65: ad:34:58:e2:70:98:34:4c:39:d0:dd:70:40:2b:59: cd:91:32:05:7d:af:4c:d1:76:59:ae:33:07:82:29: 25:8f:6d:63:bc:18:9f:1e:18:c0:3a:55:10:b5:39: e6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:44:2A:43:64:64:4A:D7:2E:94:BB:3F:0E:AB:D3:8D:55:9E:DD:18 X509v3 Authority Key Identifier: keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:52:b9:f1:53:52:a9:41:76:1e:af:ad:a9:53:69:7c:6e:31: 8b:3e:09:31:e4:df:87:f8:eb:1b:71:51:8b:fd:01:c8:5e:4f: ff:39:63:76:ca:4f:40:ca:a6:9b:08:41:7e:a8:6e:fa:81:91: 78:30:98:eb:8a:2e:e8:65:7a:f6:09:bf:9d:ad:c1:3c:f4:46: 2a:27:d2:6d:99:36:dc:c8:d0:3f:10:47:7a:b0:93:1b:d5:0d: 3c:bd:23:81:e3:5d:be:3e:d0:9e:64:f3:5d:70:c3:c8:5f:c1: a4:0d:81:e7:36:6d:13:85:32:5e:00:05:3c:a2:7f:a4:d8:7f: c1:0f:22:a1:08:c2:1d:05:2e:07:68:eb:e4:ff:f0:58:3b:b0: 60:b8:11:30:3a:71:50:f6:00:a8:09:f9:a9:c2:ca:63:ed:2d: b2:f2:5b:9e:e4:ed:d4:21:0a:70:c6:fb:b4:d2:e4:28:25:38: a8:0d:1d:79:7f:e9:a1:43:2b:cc:85:bf:4f:62:1d:ee:48:b0: f7:30:0b:bd:df:86:ae:35:21:15:77:2f:e4:39:3b:a0:9c:44: 67:3e:13:ff:7e:c6:97:91:fb:08:e5:9d:4e:86:44:7e:7f:6d: a2:99:33:c2:0a:cd:ab:0c:3d:c4:bc:8b:02:70:f3:22:0b:c6: 78:08:15:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2v2+RizmmU+jjXw5aOVA2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2OWNlZGE1YmYzNzkwMWZlOWU0NGY3M2I1YmY4MmI2ODdi MzQ1NzIwHhcNMjYwMTI1MjAwMTM5WhcNMjYwMTI2MjAwMTM5WjAzMTEwLwYDVQQD Eyg0OTQ0MmE0MzY0NjQ0YWQ3MmU5NGJiM2YwZWFiZDM4ZDU1OWVkZDE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUudgK3NPi/Fy/sR5o5WrxoH5iDQ t0GM4bWfB3QuzONVbqB2+/H3fgBsr1O28vmhI+OuUg6vbWsZc/cuj97kKO/j77kh tyxt0td7UO35UNmPzy04BfsLF7BhG/216jhBxejK4qiN5ThHrju6lKj58h0Qnub7 Lmk0cJMY65REP9zRg/k/GJ7viaBxGQJb7MMt/Cz0wBWtc0Skh/9BaFvQsNSxg+UH 7GRQAB34lKNcXVz4uYNdbaPmL7SncnyeJbimoLejsavV18ug7Owk1M/CMGWtNFji cJg0TDnQ3XBAK1nNkTIFfa9M0XZZrjMHgiklj21jvBifHhjAOlUQtTnmBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFElEKkNkZErXLpS7Pw6r041Vnt0YMB8GA1UdIwQY MBaAFJac7aW/N5Af6eRPc7W/graHs0VyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS81Y2ZmZDItYjU2OC00ZDU1LWExMjQt MjFmYzlhZmM4YWMxLzEvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS81Y2ZmZDItYjU2OC00ZDU1LWExMjQtMjFmYzlhZmM4YWMx LzEvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATVK58VNS qUF2Hq+tqVNpfG4xiz4JMeTfh/jrG3FRi/0ByF5P/zljdspPQMqmmwhBfqhu+oGR eDCY64ou6GV69gm/na3BPPRGKifSbZk23MjQPxBHerCTG9UNPL0jgeNdvj7QnmTz XXDDyF/BpA2B5zZtE4UyXgAFPKJ/pNh/wQ8ioQjCHQUuB2jr5P/wWDuwYLgRMDpx UPYAqAn5qcLKY+0tsvJbnuTt1CEKcMb7tNLkKCU4qA0deX/poUMrzIW/T2Id7kiw 9zALvd+GrjUhFXcv5Dk7oJxEZz4T/37Gl5H7COWdToZEfn9topkzwgrNqww9xLyL AnDzIgvGeAgVKw== -----END CERTIFICATE-----Generated at Mon Jan 26 04:01:20 2026 by rpki-client