This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft File: XZOOJrKYSy-hYarAewS9uFCq3RY.mft (raw, json) Hash identifier: 5wzTdNKcRsivw4T0a8MVvnHDKzM0rQMViJkb+xsbluM= Subject key identifier: 90:9C:17:D7:83:F4:06:FD:79:7C:EF:AE:88:D0:AE:BE:50:FF:54:14 Authority key identifier: 5D:93:8E:26:B2:98:4B:2F:A1:61:AA:C0:7B:04:BD:B8:50:AA:DD:16 Certificate issuer: /CN=5d938e26b2984b2fa161aac07b04bdb850aadd16 Certificate serial: 019C43FDF2BE32B848131021971762602803 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft Manifest number: 0BF6 Signing time: Mon 09 Feb 2026 20:00:41 +0000 Manifest this update: Mon 09 Feb 2026 20:00:41 +0000 Manifest next update: Tue 10 Feb 2026 20:00:41 +0000 Files and hashes: 1: XZOOJrKYSy-hYarAewS9uFCq3RY.crl (hash: lRGzat67HODAPfYTM2NOpTVbMZPzOkJyX1VgrRw6Qi0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.crl rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:f2:be:32:b8:48:13:10:21:97:17:62:60:28:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d938e26b2984b2fa161aac07b04bdb850aadd16 Validity Not Before: Feb 9 20:00:41 2026 GMT Not After : Feb 10 20:00:41 2026 GMT Subject: CN=909c17d783f406fd797cefae88d0aebe50ff5414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:51:c5:4e:5c:61:96:81:c2:7b:e3:6e:42:2f: 92:85:5e:68:a0:7a:e0:61:4f:57:e7:e0:23:6c:7a: 5d:32:fb:39:33:ef:bf:0b:59:12:d2:d1:73:0a:2f: c7:5b:35:74:ae:a7:85:ab:b7:b9:32:90:07:f3:8f: b6:d2:b2:06:e2:33:00:82:23:f0:3e:f9:10:c8:28: 9e:21:5f:25:04:d7:43:97:2e:2b:28:a4:b9:3e:3c: 42:8a:0d:24:d3:39:94:06:fb:95:da:f1:f1:c7:9d: 02:c1:c7:bd:57:17:72:16:d8:d3:9a:0e:24:78:9c: 08:83:00:d5:ab:7e:4f:a1:8a:c2:ff:9b:a9:ff:e7: 4e:dd:9e:8c:53:10:ad:56:6a:07:68:e0:fe:3e:09: 71:c1:b5:88:55:30:38:cc:f3:f7:fc:c3:02:ca:8a: 3a:90:ab:8c:0d:80:53:b8:b6:21:3f:ff:64:17:09: 58:cc:87:d8:05:05:2e:34:b6:00:fb:e4:53:ff:8b: ab:a8:e4:5a:e6:2d:4f:05:c9:29:b0:57:b4:75:a0: 7a:b6:95:04:fc:20:da:a7:73:52:25:d4:9c:2f:6b: 24:ba:d9:08:77:ce:0e:1e:b7:d1:bb:fd:d8:81:03: e4:74:00:27:4f:77:7c:5b:2f:2f:e0:07:c0:39:5f: 15:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9C:17:D7:83:F4:06:FD:79:7C:EF:AE:88:D0:AE:BE:50:FF:54:14 X509v3 Authority Key Identifier: keyid:5D:93:8E:26:B2:98:4B:2F:A1:61:AA:C0:7B:04:BD:B8:50:AA:DD:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:bb:6e:06:92:2e:03:88:a5:76:06:e1:f5:28:56:e0:2d:7f: 8d:fd:7b:e3:d9:98:5d:02:dd:97:b6:77:29:80:69:c2:40:82: 51:28:ad:b5:49:4d:ca:12:ba:81:90:5e:3f:80:54:de:f8:af: ce:8d:91:71:cd:2e:bd:56:f7:90:ff:34:66:d4:07:f9:7d:a7: e5:93:35:5d:68:18:83:56:7e:41:5e:f5:45:fb:d0:e8:0c:37: 94:6f:25:3a:bd:d3:57:04:56:67:67:6e:fe:c4:40:5a:5a:1d: f8:74:b8:ff:e5:5a:b6:9b:fe:b7:c9:2f:af:f7:4e:46:ff:be: 4b:cf:44:e4:27:8f:ba:e3:9f:c3:f4:87:dc:44:71:01:2f:10: 32:4f:09:ca:d2:aa:1a:62:f6:97:6d:fb:93:17:a3:76:7b:5b: c1:c1:da:23:dd:dc:52:97:a8:58:3c:78:0a:88:7c:56:37:94: 58:10:4b:05:e6:f5:2b:dc:09:5a:84:95:8a:09:97:00:96:7b: ed:ce:bf:12:1f:c9:16:1d:c0:af:59:e9:49:81:4c:ac:e6:40: 38:63:d3:a0:23:64:27:20:38:71:a2:21:8a:77:e5:4e:e4:2e: ce:4a:df:4e:54:ec:8a:76:50:c0:6f:17:50:df:b5:53:68:ae: 8f:7c:c3:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/fK+MrhIExAhlxdiYCgDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkOTM4ZTI2YjI5ODRiMmZhMTYxYWFjMDdiMDRiZGI4NTBh YWRkMTYwHhcNMjYwMjA5MjAwMDQxWhcNMjYwMjEwMjAwMDQxWjAzMTEwLwYDVQQD Eyg5MDljMTdkNzgzZjQwNmZkNzk3Y2VmYWU4OGQwYWViZTUwZmY1NDE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFHFTlxhloHCe+NuQi+ShV5ooHrg YU9X5+AjbHpdMvs5M++/C1kS0tFzCi/HWzV0rqeFq7e5MpAH84+20rIG4jMAgiPw PvkQyCieIV8lBNdDly4rKKS5PjxCig0k0zmUBvuV2vHxx50Cwce9VxdyFtjTmg4k eJwIgwDVq35PoYrC/5up/+dO3Z6MUxCtVmoHaOD+PglxwbWIVTA4zPP3/MMCyoo6 kKuMDYBTuLYhP/9kFwlYzIfYBQUuNLYA++RT/4urqORa5i1PBckpsFe0daB6tpUE /CDap3NSJdScL2skutkId84OHrfRu/3YgQPkdAAnT3d8Wy8v4AfAOV8VMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJCcF9eD9Ab9eXzvrojQrr5Q/1QUMB8GA1UdIwQY MBaAFF2TjiaymEsvoWGqwHsEvbhQqt0WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFpPT0pyS1lTeS1oWWFyQWV3Uzl1RkNxM1JZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8xYmU5ZjEtNWM0OC00NDI3LWEyYjEt NmVjN2RiZTI3YmIzLzEvWFpPT0pyS1lTeS1oWWFyQWV3Uzl1RkNxM1JZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi8xYmU5ZjEtNWM0OC00NDI3LWEyYjEtNmVjN2RiZTI3YmIz LzEvWFpPT0pyS1lTeS1oWWFyQWV3Uzl1RkNxM1JZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh7tuBpIu A4ildgbh9ShW4C1/jf1749mYXQLdl7Z3KYBpwkCCUSittUlNyhK6gZBeP4BU3viv zo2Rcc0uvVb3kP80ZtQH+X2n5ZM1XWgYg1Z+QV71RfvQ6Aw3lG8lOr3TVwRWZ2du /sRAWlod+HS4/+Vatpv+t8kvr/dORv++S89E5CePuuOfw/SH3ERxAS8QMk8JytKq GmL2l237kxejdntbwcHaI93cUpeoWDx4Coh8VjeUWBBLBeb1K9wJWoSVigmXAJZ7 7c6/Eh/JFh3Ar1npSYFMrOZAOGPToCNkJyA4caIhinflTuQuzkrfTlTsinZQwG8X UN+1U2iuj3zDZw== -----END CERTIFICATE-----Generated at Tue Feb 10 02:54:58 2026 by rpki-client