This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft File: XWU9B97R6Nf08uoEvTaELFsS8V4.mft (raw, json) Hash identifier: /Fqey17CI85/7WDZXJr0NnEQaTyE+H37i7AQkBsc0io= Subject key identifier: 5D:B4:41:82:1C:7C:4F:36:19:49:50:A3:01:CB:17:59:6A:08:D2:78 Authority key identifier: 5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E Certificate issuer: /CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e Certificate serial: 019C43FE20009F1A2B8A85B0F3ABCBA01BB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft Manifest number: 1039 Signing time: Mon 09 Feb 2026 20:00:53 +0000 Manifest this update: Mon 09 Feb 2026 20:00:53 +0000 Manifest next update: Tue 10 Feb 2026 20:00:53 +0000 Files and hashes: 1: XWU9B97R6Nf08uoEvTaELFsS8V4.crl (hash: y7Z2SFWoR8aCX8CEUE3TnwmleZgASCa+V+56eGJKQSU=) 2: y8aS9NjGoMwtiWTSfAPqlGnxCWs.roa (hash: ZuvgKYnV+P1b5dUwqqoJerGmgiPYibNQHqD2j8CfPTc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:20:00:9f:1a:2b:8a:85:b0:f3:ab:cb:a0:1b:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e Validity Not Before: Feb 9 20:00:53 2026 GMT Not After : Feb 10 20:00:53 2026 GMT Subject: CN=5db441821c7c4f36194950a301cb17596a08d278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dc:79:54:19:e3:3c:d4:f9:08:7c:5c:e9:e1: 26:72:a8:0c:35:af:75:4c:ad:c0:da:a8:78:34:6b: f6:62:fb:06:c2:20:48:2e:42:12:19:87:db:79:81: 3b:79:0b:f2:b1:bb:3a:7e:cb:4e:43:30:96:ca:68: 7e:9e:b1:2c:c5:b1:59:3c:48:0c:1a:fa:9b:27:be: 68:b6:93:39:eb:40:dc:b2:8f:20:c4:bc:68:b1:da: 12:16:09:03:b9:39:d0:08:ba:a6:8d:66:4a:9c:21: 4b:4d:ad:88:67:c5:ca:18:01:7e:f4:e3:56:cf:74: 3c:f6:33:8d:91:f0:7c:c0:2c:26:d4:ec:8d:03:0e: da:24:87:84:2c:5d:7c:cf:1d:7f:98:d7:3e:c8:f1: 23:60:e9:25:bc:f0:2e:ff:41:6f:37:35:69:80:8a: ee:81:71:73:c7:d5:57:b6:fe:45:1a:31:30:67:9f: 67:e4:07:d2:e7:ae:d3:7a:d9:62:ca:6f:ca:98:0e: 3a:33:50:5e:89:db:73:96:8f:74:6e:a4:21:a9:8c: 81:91:10:e6:1a:12:8f:9e:4b:30:50:bd:16:9d:37: 4a:8e:cb:8d:3c:7f:1c:f5:2b:12:ac:25:83:96:e8: 3e:21:b0:bf:4a:82:11:4d:86:6b:17:97:1e:f2:36: ab:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B4:41:82:1C:7C:4F:36:19:49:50:A3:01:CB:17:59:6A:08:D2:78 X509v3 Authority Key Identifier: keyid:5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:ca:b7:bb:08:d9:cf:3c:7f:dc:ac:96:1f:6d:52:81:73:14: 26:a8:a4:00:44:fa:3c:0d:c4:4a:2b:24:47:9e:de:6d:83:7c: 84:94:46:90:74:94:a9:1b:f1:40:14:40:ea:79:83:70:5e:e8: 8c:f6:04:28:5d:01:e3:bc:ec:1c:0b:c7:f7:01:96:c9:e1:42: f3:f6:a5:2c:a4:6e:6c:18:1b:6a:60:44:4c:98:6f:d5:e4:2a: 68:36:07:3e:0f:9b:01:79:89:db:92:3d:51:f2:dd:b0:9c:c2: 77:0b:1e:e2:e0:c2:4c:35:ca:3b:70:7d:9a:7f:06:a1:2f:6a: 61:66:60:2e:59:3d:2a:40:ba:07:ec:89:2b:6a:35:57:91:1f: 68:d3:bd:c4:92:10:6d:82:5c:a6:2e:24:20:0f:24:be:e7:87: 72:1a:de:67:48:e2:f1:d6:7e:f0:f1:bc:d1:f1:d2:02:2e:66: a9:af:e3:9a:f8:0b:5e:59:c4:1c:79:bb:66:05:79:f4:7a:12: 64:a6:f9:b1:9b:d4:34:a2:8c:e3:0d:b1:44:ac:9b:4e:e5:be: cd:33:f1:05:84:20:9d:a9:2d:d3:ff:e7:24:c3:58:97:62:4d: 5a:80:6e:ed:3f:0c:b8:f9:4d:6b:e1:b5:5a:c2:59:bb:85:fa: d0:5f:0d:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/iAAnxorioWw86vLoBu4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkNjUzZDA3ZGVkMWU4ZDdmNGYyZWEwNGJkMzY4NDJjNWIx MmYxNWUwHhcNMjYwMjA5MjAwMDUzWhcNMjYwMjEwMjAwMDUzWjAzMTEwLwYDVQQD Eyg1ZGI0NDE4MjFjN2M0ZjM2MTk0OTUwYTMwMWNiMTc1OTZhMDhkMjc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvtx5VBnjPNT5CHxc6eEmcqgMNa91 TK3A2qh4NGv2YvsGwiBILkISGYfbeYE7eQvysbs6fstOQzCWymh+nrEsxbFZPEgM GvqbJ75otpM560Dcso8gxLxosdoSFgkDuTnQCLqmjWZKnCFLTa2IZ8XKGAF+9ONW z3Q89jONkfB8wCwm1OyNAw7aJIeELF18zx1/mNc+yPEjYOklvPAu/0FvNzVpgIru gXFzx9VXtv5FGjEwZ59n5AfS567Tetliym/KmA46M1Beidtzlo90bqQhqYyBkRDm GhKPnkswUL0WnTdKjsuNPH8c9SsSrCWDlug+IbC/SoIRTYZrF5ce8jarmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF20QYIcfE82GUlQowHLF1lqCNJ4MB8GA1UdIwQY MBaAFF1lPQfe0ejX9PLqBL02hCxbEvFeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFdVOUI5N1I2TmYwOHVvRXZUYUVMRnNTOFY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hMDQ3NWYtY2E5Ny00YjE2LTk2ZGIt MjE0NWNhNzVlMzgzLzEvWFdVOUI5N1I2TmYwOHVvRXZUYUVMRnNTOFY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9hMDQ3NWYtY2E5Ny00YjE2LTk2ZGItMjE0NWNhNzVlMzgz LzEvWFdVOUI5N1I2TmYwOHVvRXZUYUVMRnNTOFY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmcq3uwjZ zzx/3KyWH21SgXMUJqikAET6PA3ESiskR57ebYN8hJRGkHSUqRvxQBRA6nmDcF7o jPYEKF0B47zsHAvH9wGWyeFC8/alLKRubBgbamBETJhv1eQqaDYHPg+bAXmJ25I9 UfLdsJzCdwse4uDCTDXKO3B9mn8GoS9qYWZgLlk9KkC6B+yJK2o1V5EfaNO9xJIQ bYJcpi4kIA8kvueHchreZ0ji8dZ+8PG80fHSAi5mqa/jmvgLXlnEHHm7ZgV59HoS ZKb5sZvUNKKM4w2xRKybTuW+zTPxBYQgnakt0//nJMNYl2JNWoBu7T8MuPlNa+G1 WsJZu4X60F8N4g== -----END CERTIFICATE-----Generated at Tue Feb 10 01:43:48 2026 by rpki-client