This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft File: xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft (raw, json) Hash identifier: 1HenzPWdyncCRfi8lZkXmlQkVXGyXdEBOklX4xe6pAw= Subject key identifier: C3:86:55:60:7B:43:8C:60:31:75:46:62:1D:C4:0D:E8:A6:EA:2D:E3 Authority key identifier: C4:A0:F3:11:09:84:CC:FB:F5:29:98:0B:6D:41:6D:DD:4E:1A:88:25 Certificate issuer: /CN=c4a0f3110984ccfbf529980b6d416ddd4e1a8825 Certificate serial: 019C41D8BE609CAF48E48DC56455D3F97A51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft Manifest number: 05F8 Signing time: Mon 09 Feb 2026 10:00:49 +0000 Manifest this update: Mon 09 Feb 2026 10:00:49 +0000 Manifest next update: Tue 10 Feb 2026 10:00:49 +0000 Files and hashes: 1: 1-ujLZVA2eD9Q0LVsUuabSgXoS8I.roa (hash: eGVzw06cOI2ubQS+bEsoP6kSWSoInZkg8QfLxOIOYxE=) 2: xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl (hash: EXfzNdTTv/jsAiuO5+OYGM3C+azgYtEkoX1t7RSUcOw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:be:60:9c:af:48:e4:8d:c5:64:55:d3:f9:7a:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c4a0f3110984ccfbf529980b6d416ddd4e1a8825 Validity Not Before: Feb 9 10:00:49 2026 GMT Not After : Feb 10 10:00:49 2026 GMT Subject: CN=c38655607b438c60317546621dc40de8a6ea2de3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b1:0e:1f:87:e5:4b:44:9c:26:de:2b:ba:ff: 34:ad:be:a0:8c:c4:a8:df:8f:a1:21:ef:a9:8f:8f: 64:89:28:c1:a1:ab:53:79:26:b7:52:9d:2e:c9:95: 78:22:88:31:d2:20:15:52:a2:07:94:74:fb:19:5e: 48:ef:9a:d3:df:10:d9:9e:af:a8:df:ce:8d:d0:1e: e0:fb:a8:aa:f4:21:f8:2d:0b:13:30:63:29:61:1c: 6e:46:ba:32:b9:ee:b6:20:03:cb:fd:2f:8e:f5:55: e2:ae:87:4d:20:d7:7d:50:43:fb:50:11:eb:98:a6: a7:e3:a6:8a:a6:40:f0:14:d2:33:c2:2b:37:8a:87: 0b:8f:63:2a:7f:5e:d0:dc:13:17:21:5d:be:1a:a1: 99:de:fb:a0:e6:16:98:53:4b:68:55:61:f6:95:ce: 9b:cb:a5:95:c0:31:d2:0d:74:30:9c:85:85:51:be: c9:36:99:1f:cb:55:ab:7e:cf:2d:fe:3a:8c:1c:d9: 9c:8d:a2:2e:de:f0:ae:b5:e7:d2:77:36:0c:42:95: da:dd:bf:e6:a3:6b:77:64:13:f6:3e:66:ac:ab:eb: 13:6b:32:97:14:68:43:4d:d5:27:9b:89:22:04:7c: 40:1f:2f:91:a0:6e:f0:7e:30:66:52:1d:a3:92:a0: 4b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:86:55:60:7B:43:8C:60:31:75:46:62:1D:C4:0D:E8:A6:EA:2D:E3 X509v3 Authority Key Identifier: keyid:C4:A0:F3:11:09:84:CC:FB:F5:29:98:0B:6D:41:6D:DD:4E:1A:88:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:5e:5a:01:d3:8a:bb:3b:a8:57:d2:e3:d5:31:41:26:74:6c: d0:a4:b4:a6:0c:2a:20:b4:fb:f9:91:a6:59:dd:42:3a:1f:ff: bb:fe:50:36:e4:20:70:3b:96:2d:7a:17:64:1a:f9:68:87:97: 16:73:a4:43:93:71:29:dc:89:e1:57:eb:6b:50:bf:81:aa:4b: cd:a7:8f:64:41:b1:1e:02:fe:a0:83:ed:0b:16:a3:cc:ea:b1: 52:22:89:ca:bf:37:23:0e:18:cd:fe:94:f7:25:7a:8c:02:83: 3d:bd:e1:6a:73:60:db:aa:75:f5:59:d7:f4:b5:3c:56:eb:cf: 40:ca:99:93:ff:33:6a:98:10:de:26:ef:fb:c4:4d:04:4a:98: 36:c3:e4:03:af:d0:f0:cd:0b:e9:e0:ec:75:ba:29:61:3e:c8: a2:87:89:26:9b:09:fd:46:6c:e7:2a:85:c9:05:48:89:22:7c: e5:c5:1c:10:2c:b6:2c:97:83:95:85:fb:04:9a:ba:df:f4:5c: 57:8a:e4:84:db:55:1a:4c:06:1c:76:10:c5:91:2d:49:60:fb: 07:99:12:ea:27:c5:7f:5a:34:72:7f:91:ca:41:bd:2f:42:42: 3e:90:b9:93:d4:87:17:14:56:dd:79:86:e0:f5:b4:9e:2c:2b: 8d:a1:64:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2L5gnK9I5I3FZFXT+XpRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0YTBmMzExMDk4NGNjZmJmNTI5OTgwYjZkNDE2ZGRkNGUx YTg4MjUwHhcNMjYwMjA5MTAwMDQ5WhcNMjYwMjEwMTAwMDQ5WjAzMTEwLwYDVQQD EyhjMzg2NTU2MDdiNDM4YzYwMzE3NTQ2NjIxZGM0MGRlOGE2ZWEyZGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrEOH4flS0ScJt4ruv80rb6gjMSo 34+hIe+pj49kiSjBoatTeSa3Up0uyZV4Iogx0iAVUqIHlHT7GV5I75rT3xDZnq+o 386N0B7g+6iq9CH4LQsTMGMpYRxuRroyue62IAPL/S+O9VXirodNINd9UEP7UBHr mKan46aKpkDwFNIzwis3iocLj2Mqf17Q3BMXIV2+GqGZ3vug5haYU0toVWH2lc6b y6WVwDHSDXQwnIWFUb7JNpkfy1Wrfs8t/jqMHNmcjaIu3vCutefSdzYMQpXa3b/m o2t3ZBP2Pmasq+sTazKXFGhDTdUnm4kiBHxAHy+RoG7wfjBmUh2jkqBL4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMOGVWB7Q4xgMXVGYh3EDeim6i3jMB8GA1UdIwQY MBaAFMSg8xEJhMz79SmYC21Bbd1OGoglMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEtEekVRbUV6UHYxS1pnTGJVRnQzVTRhaUNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hNmM1ZjYtNjA0Zi00Mzk5LTk0NDMt ZDEyYTkwYmY1MDJlLzEveEtEekVRbUV6UHYxS1pnTGJVRnQzVTRhaUNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9hNmM1ZjYtNjA0Zi00Mzk5LTk0NDMtZDEyYTkwYmY1MDJl LzEveEtEekVRbUV6UHYxS1pnTGJVRnQzVTRhaUNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZF5aAdOK uzuoV9Lj1TFBJnRs0KS0pgwqILT7+ZGmWd1COh//u/5QNuQgcDuWLXoXZBr5aIeX FnOkQ5NxKdyJ4Vfra1C/gapLzaePZEGxHgL+oIPtCxajzOqxUiKJyr83Iw4Yzf6U 9yV6jAKDPb3hanNg26p19VnX9LU8VuvPQMqZk/8zapgQ3ibv+8RNBEqYNsPkA6/Q 8M0L6eDsdbopYT7IooeJJpsJ/UZs5yqFyQVIiSJ85cUcECy2LJeDlYX7BJq63/Rc V4rkhNtVGkwGHHYQxZEtSWD7B5kS6ifFf1o0cn+RykG9L0JCPpC5k9SHFxRW3XmG 4PW0niwrjaFkNQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:53 2026 by rpki-client