This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft File: XOackdRTOWv6Fm8FG_jwbAOghcs.mft (raw, json) Hash identifier: fjzLIRruuGqL78PGGf4Hl6y6o71DZUssL2gfT5zVOXg= Subject key identifier: B1:C0:E6:7C:49:B5:3B:10:CB:F8:99:23:94:D3:0E:69:7C:32:BB:40 Authority key identifier: 5C:E6:9C:91:D4:53:39:6B:FA:16:6F:05:1B:F8:F0:6C:03:A0:85:CB Certificate issuer: /CN=5ce69c91d453396bfa166f051bf8f06c03a085cb Certificate serial: 019C45115E23EBDE366654C15C2D2FD82C59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOackdRTOWv6Fm8FG_jwbAOghcs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft Manifest number: 0D1D Signing time: Tue 10 Feb 2026 01:01:31 +0000 Manifest this update: Tue 10 Feb 2026 01:01:31 +0000 Manifest next update: Wed 11 Feb 2026 01:01:31 +0000 Files and hashes: 1: XOackdRTOWv6Fm8FG_jwbAOghcs.crl (hash: 1lfLK7R17nJMI2QBUWDUFutGo4gHvpu7vlaFZzfmwUs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.crl rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft rsync://rpki.ripe.net/repository/DEFAULT/XOackdRTOWv6Fm8FG_jwbAOghcs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:11:5e:23:eb:de:36:66:54:c1:5c:2d:2f:d8:2c:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ce69c91d453396bfa166f051bf8f06c03a085cb Validity Not Before: Feb 10 01:01:31 2026 GMT Not After : Feb 11 01:01:31 2026 GMT Subject: CN=b1c0e67c49b53b10cbf8992394d30e697c32bb40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fa:62:2f:1f:d9:c3:11:42:6c:79:70:cc:57: df:53:3f:2f:cb:0b:4d:84:7b:f8:fb:63:d1:27:25: 01:bf:72:e3:d6:2a:36:a4:3a:5e:5d:de:57:22:9e: 6d:88:93:01:39:19:ea:e3:d1:49:6a:29:c2:83:ef: 20:07:7b:15:b5:a2:a3:7f:ea:71:10:27:eb:56:f8: 3d:da:1a:be:98:82:20:88:5c:b8:3c:58:83:ad:d1: b5:57:a6:80:12:f9:c2:05:c4:c4:de:ee:83:e0:bf: 9a:fc:fc:fd:14:3a:0a:8a:61:89:60:d5:d5:ee:8c: 2e:27:52:2e:e1:ef:e5:7f:44:9e:cd:51:97:59:75: be:0f:7a:4c:e4:80:91:39:ac:5a:85:52:29:75:43: a9:9b:ac:c1:07:1e:38:a1:e2:58:23:fa:29:7a:02: 94:70:39:7b:91:20:a5:b2:6b:21:3a:a2:f4:7d:13: 7f:05:18:8e:4e:25:bf:44:ce:c7:69:57:97:c4:2f: 42:4b:af:45:1a:06:1b:91:d5:07:aa:c8:b3:67:49: af:32:ff:80:5b:5a:75:1d:09:b3:0f:06:3f:f7:37: 58:5e:e5:50:3e:04:6d:35:36:e3:71:87:b7:cc:22: cc:74:a9:60:96:0a:89:18:7e:47:ac:ee:40:fb:bd: 0a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:C0:E6:7C:49:B5:3B:10:CB:F8:99:23:94:D3:0E:69:7C:32:BB:40 X509v3 Authority Key Identifier: keyid:5C:E6:9C:91:D4:53:39:6B:FA:16:6F:05:1B:F8:F0:6C:03:A0:85:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOackdRTOWv6Fm8FG_jwbAOghcs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:cc:ca:a4:9b:42:31:09:c9:9c:8a:67:34:a5:21:c7:e5:42: ac:1e:ee:58:9d:ac:87:d8:03:22:1e:d7:71:40:67:d7:cd:1c: 67:30:7a:59:4b:7e:ed:1c:f1:c0:63:66:db:a7:9e:2c:f8:b8: 7e:91:27:5e:22:cb:eb:7e:3d:0b:ed:03:be:f5:e6:ad:80:03: 7a:07:ac:6b:b3:ad:be:43:5f:7d:66:8d:8d:79:96:27:37:69: 77:94:5f:0b:ac:54:d0:d8:f7:19:05:3f:bd:e9:56:e4:3a:80: b5:07:ac:57:38:2d:d1:ee:c2:8f:8c:49:17:ad:e1:d1:bb:b9: dd:54:63:87:7f:47:19:fe:2f:ca:e8:ff:90:96:63:02:31:25: 65:8b:c2:32:18:22:86:21:db:df:01:f7:ca:6b:a0:fa:35:38: f7:a9:64:3e:3f:36:c6:9f:80:19:61:f8:94:df:21:1b:bb:92: ff:bf:2b:87:05:ad:4d:a7:94:f4:e6:29:b4:2b:0f:a5:d9:ed: a4:f0:8d:e4:2a:73:f8:6a:8f:62:4c:cb:d9:f8:9a:19:7b:16: e5:88:31:ec:53:4d:44:ae:33:52:dc:86:f6:42:3d:c1:15:6e: 67:4e:f0:f3:f8:4a:f5:88:9a:4a:b3:99:d2:93:18:eb:8d:21: a0:10:c8:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEV4j6942ZlTBXC0v2CxZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjZTY5YzkxZDQ1MzM5NmJmYTE2NmYwNTFiZjhmMDZjMDNh MDg1Y2IwHhcNMjYwMjEwMDEwMTMxWhcNMjYwMjExMDEwMTMxWjAzMTEwLwYDVQQD EyhiMWMwZTY3YzQ5YjUzYjEwY2JmODk5MjM5NGQzMGU2OTdjMzJiYjQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfpiLx/ZwxFCbHlwzFffUz8vywtN hHv4+2PRJyUBv3Lj1io2pDpeXd5XIp5tiJMBORnq49FJainCg+8gB3sVtaKjf+px ECfrVvg92hq+mIIgiFy4PFiDrdG1V6aAEvnCBcTE3u6D4L+a/Pz9FDoKimGJYNXV 7owuJ1Iu4e/lf0SezVGXWXW+D3pM5ICROaxahVIpdUOpm6zBBx44oeJYI/opegKU cDl7kSClsmshOqL0fRN/BRiOTiW/RM7HaVeXxC9CS69FGgYbkdUHqsizZ0mvMv+A W1p1HQmzDwY/9zdYXuVQPgRtNTbjcYe3zCLMdKlglgqJGH5HrO5A+70K5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLHA5nxJtTsQy/iZI5TTDml8MrtAMB8GA1UdIwQY MBaAFFzmnJHUUzlr+hZvBRv48GwDoIXLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWE9hY2tkUlRPV3Y2Rm04RkdfandiQU9naGNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC82ZTZkZDgtMWJjYS00NjMwLTk1NzQt YTU5N2VlNjM3ZGI0LzEvWE9hY2tkUlRPV3Y2Rm04RkdfandiQU9naGNzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC82ZTZkZDgtMWJjYS00NjMwLTk1NzQtYTU5N2VlNjM3ZGI0 LzEvWE9hY2tkUlRPV3Y2Rm04RkdfandiQU9naGNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqMzKpJtC MQnJnIpnNKUhx+VCrB7uWJ2sh9gDIh7XcUBn180cZzB6WUt+7RzxwGNm26eeLPi4 fpEnXiLL6349C+0DvvXmrYADegesa7OtvkNffWaNjXmWJzdpd5RfC6xU0Nj3GQU/ velW5DqAtQesVzgt0e7Cj4xJF63h0bu53VRjh39HGf4vyuj/kJZjAjElZYvCMhgi hiHb3wH3ymug+jU496lkPj82xp+AGWH4lN8hG7uS/78rhwWtTaeU9OYptCsPpdnt pPCN5Cpz+GqPYkzL2fiaGXsW5Ygx7FNNRK4zUtyG9kI9wRVuZ07w8/hK9YiaSrOZ 0pMY640hoBDIbA== -----END CERTIFICATE-----Generated at Tue Feb 10 03:15:44 2026 by rpki-client