This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft File: xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft (raw, json) Hash identifier: pcjBuYVY24bWAaGNqVr+1jVQKpXMj1CSIa9JeLm/3FQ= Subject key identifier: 9A:5D:89:AC:D5:22:78:95:C0:AF:BE:8D:DD:64:1D:6E:AB:C7:28:5E Authority key identifier: C5:D1:8E:1A:1D:C6:55:8C:4D:BA:73:1E:FA:32:76:9C:45:F5:4B:A0 Certificate issuer: /CN=c5d18e1a1dc6558c4dba731efa32769c45f54ba0 Certificate serial: 019C4322CD21BFB462D7A0C20AA968BBB154 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdGOGh3GVYxNunMe-jJ2nEX1S6A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:01:19 +0000 Manifest this update: Mon 09 Feb 2026 16:01:19 +0000 Manifest next update: Tue 10 Feb 2026 16:01:19 +0000 Files and hashes: 1: xdGOGh3GVYxNunMe-jJ2nEX1S6A.crl (hash: MbYHJ9K4IKtVoYZEUDuMIODk4GXeDQaqUC47VYMjoQg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.crl rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft rsync://rpki.ripe.net/repository/DEFAULT/xdGOGh3GVYxNunMe-jJ2nEX1S6A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:cd:21:bf:b4:62:d7:a0:c2:0a:a9:68:bb:b1:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5d18e1a1dc6558c4dba731efa32769c45f54ba0 Validity Not Before: Feb 9 16:01:19 2026 GMT Not After : Feb 10 16:01:19 2026 GMT Subject: CN=9a5d89acd5227895c0afbe8ddd641d6eabc7285e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:d8:04:5a:d5:15:c5:2c:cb:a9:9c:16:d6:81: b6:96:d0:49:79:58:82:f3:a0:77:43:65:23:5c:0f: b6:76:ca:07:2f:34:c7:19:c6:3d:45:9d:a5:96:09: 0d:9c:ee:29:18:f0:ac:93:c6:22:99:6f:08:eb:9c: 93:7e:c1:7e:49:a8:fc:99:74:99:6a:e8:36:57:e5: f7:8a:0a:28:39:f0:a8:6d:67:4c:1c:12:62:87:b4: 01:5e:a8:24:07:ab:42:eb:bc:c0:17:e1:35:6c:8e: 5e:c9:51:0b:bc:fc:33:3f:e9:02:49:75:a0:49:e6: 39:53:8b:ff:e8:0e:8b:ed:21:38:e9:e4:fc:de:00: 0c:27:ff:16:11:83:33:3d:34:23:39:7d:cb:7b:8b: 77:3c:34:33:29:41:44:20:7f:ab:5c:e8:06:ba:a9: 85:33:95:d1:1e:9b:75:a0:fc:55:ff:68:3c:b1:63: 83:0f:48:02:82:52:68:45:0e:00:c5:4e:b9:48:33: 6f:08:27:c5:dd:87:bd:48:9b:09:af:e0:82:c0:96: 2f:94:85:12:3c:93:18:bf:a3:be:e1:13:81:68:34: 95:b9:e8:b6:b4:a7:54:0a:1b:27:48:a0:a3:a3:bf: c3:72:4d:1c:54:72:b5:b1:0d:60:09:6f:d9:c6:45: 53:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5D:89:AC:D5:22:78:95:C0:AF:BE:8D:DD:64:1D:6E:AB:C7:28:5E X509v3 Authority Key Identifier: keyid:C5:D1:8E:1A:1D:C6:55:8C:4D:BA:73:1E:FA:32:76:9C:45:F5:4B:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdGOGh3GVYxNunMe-jJ2nEX1S6A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:66:a0:13:73:04:f5:d5:eb:f2:b4:5a:7c:00:fb:b3:d9:67: 85:0e:5a:be:a6:0f:8d:f1:fb:7a:6e:b5:8e:60:f2:5c:3d:a8: 25:70:52:69:79:28:55:1a:5c:cc:93:21:65:55:95:3a:e3:3a: 39:84:b2:23:d4:92:a1:b4:a6:7c:29:e3:b5:09:df:82:6d:c9: b4:03:de:54:b8:d5:da:de:9f:88:69:51:a4:28:52:c0:40:67: 23:ec:59:aa:23:1e:42:93:bd:a3:ab:19:ba:5e:1a:ae:99:e7: d3:4c:83:9b:76:5b:14:f4:fc:7e:04:fc:26:e6:c9:67:5e:16: 54:2f:0c:4f:67:d0:b5:c0:e7:56:e4:7a:b8:01:87:97:46:4a: 01:cf:db:33:a7:2f:00:04:e7:fd:2f:78:a1:99:67:aa:21:c5: 07:4b:5c:8b:9a:bf:fc:38:48:c2:dc:28:8d:fe:72:5b:0b:23: 27:a8:a1:07:16:58:00:57:e7:66:6f:b5:28:ec:19:95:58:f4: 2d:1a:06:3d:9b:54:ad:c9:0b:a0:4b:cf:24:a6:55:3c:bd:6a: 8b:9e:de:f5:0f:fd:d3:65:41:f8:30:58:8b:30:2e:c0:d0:36: 25:ae:4d:99:ef:a4:ca:29:1b:05:85:aa:0c:84:98:90:62:2e: a1:0b:fe:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIs0hv7Ri16DCCqlou7FUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1ZDE4ZTFhMWRjNjU1OGM0ZGJhNzMxZWZhMzI3NjljNDVm NTRiYTAwHhcNMjYwMjA5MTYwMTE5WhcNMjYwMjEwMTYwMTE5WjAzMTEwLwYDVQQD Eyg5YTVkODlhY2Q1MjI3ODk1YzBhZmJlOGRkZDY0MWQ2ZWFiYzcyODVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjNgEWtUVxSzLqZwW1oG2ltBJeViC 86B3Q2UjXA+2dsoHLzTHGcY9RZ2llgkNnO4pGPCsk8YimW8I65yTfsF+Saj8mXSZ aug2V+X3igooOfCobWdMHBJih7QBXqgkB6tC67zAF+E1bI5eyVELvPwzP+kCSXWg SeY5U4v/6A6L7SE46eT83gAMJ/8WEYMzPTQjOX3Le4t3PDQzKUFEIH+rXOgGuqmF M5XRHpt1oPxV/2g8sWODD0gCglJoRQ4AxU65SDNvCCfF3Ye9SJsJr+CCwJYvlIUS PJMYv6O+4ROBaDSVuei2tKdUChsnSKCjo7/Dck0cVHK1sQ1gCW/ZxkVTuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJpdiazVIniVwK++jd1kHW6rxyheMB8GA1UdIwQY MBaAFMXRjhodxlWMTbpzHvoydpxF9UugMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGRHT0doM0dWWXhOdW5NZS1qSjJuRVgxUzZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC82ZjZiMDctMmU0NS00MTBmLTkzMTgt MWNiZTY2MWE2M2ZmLzEveGRHT0doM0dWWXhOdW5NZS1qSjJuRVgxUzZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC82ZjZiMDctMmU0NS00MTBmLTkzMTgtMWNiZTY2MWE2M2Zm LzEveGRHT0doM0dWWXhOdW5NZS1qSjJuRVgxUzZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm2agE3ME 9dXr8rRafAD7s9lnhQ5avqYPjfH7em61jmDyXD2oJXBSaXkoVRpczJMhZVWVOuM6 OYSyI9SSobSmfCnjtQnfgm3JtAPeVLjV2t6fiGlRpChSwEBnI+xZqiMeQpO9o6sZ ul4arpnn00yDm3ZbFPT8fgT8JubJZ14WVC8MT2fQtcDnVuR6uAGHl0ZKAc/bM6cv AATn/S94oZlnqiHFB0tci5q//DhIwtwojf5yWwsjJ6ihBxZYAFfnZm+1KOwZlVj0 LRoGPZtUrckLoEvPJKZVPL1qi57e9Q/902VB+DBYizAuwNA2Ja5Nme+kyikbBYWq DISYkGIuoQv++A== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:00 2026 by rpki-client