This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json) Hash identifier: 42hiJNTQEtny/3C23kbPzHoGVWs87exC0+utLBYdPao= Subject key identifier: 50:8C:A8:E1:82:9C:D4:36:B4:BD:4D:58:58:4A:70:6D:2F:6E:A3:4A Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8 Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8 Certificate serial: 019C42100D4E4A42A7B12A8D24C2C3A44B31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft Manifest number: 0C9A Signing time: Mon 09 Feb 2026 11:01:13 +0000 Manifest this update: Mon 09 Feb 2026 11:01:13 +0000 Manifest next update: Tue 10 Feb 2026 11:01:13 +0000 Files and hashes: 1: 6aoHpGpaWGGkl83xUFlNJm53NDk.roa (hash: /4TBotBrPhIQMbRC6QsWTde66kPhdMjvMCRoCWnf4ms=) 2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: kwA1KblP1efhcs0n03QgFwKhei4qmfjUW8O/XjRjip4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:0d:4e:4a:42:a7:b1:2a:8d:24:c2:c3:a4:4b:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8 Validity Not Before: Feb 9 11:01:13 2026 GMT Not After : Feb 10 11:01:13 2026 GMT Subject: CN=508ca8e1829cd436b4bd4d58584a706d2f6ea34a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ec:be:63:5d:8c:91:c5:ee:5f:6f:cc:ac:a5: fb:7c:dc:74:4d:bf:a8:b8:02:39:57:c3:74:4e:ac: 9f:f2:3a:3c:b0:3a:e9:da:d3:a2:51:ba:fa:e1:39: db:1c:7a:07:ad:0a:0c:bd:8e:20:07:f6:9a:6f:48: 9c:89:04:e7:95:c0:82:b7:af:21:1c:66:e3:0e:75: 26:c0:70:c7:0e:f6:46:24:50:1c:de:e5:b7:e3:e8: 88:bc:56:02:db:61:21:db:bb:6a:25:34:8e:9d:03: 92:f8:1d:65:2f:88:ad:4e:ae:2a:d9:c9:1b:c8:4b: 71:1f:de:37:81:6f:92:18:56:78:04:3e:5c:e6:d3: 96:1f:e6:57:18:6c:50:ef:56:46:47:38:91:49:75: 95:38:b1:45:49:69:75:17:cf:90:5f:66:b4:0d:a4: 05:a4:6d:04:22:c0:b2:79:24:e1:a4:b4:81:e8:c2: 0f:67:11:7b:0a:cf:b3:03:a7:45:e3:1a:31:0f:2b: 26:3e:9d:2e:c3:08:8c:fc:94:7e:5c:6e:66:f1:3a: e8:a8:d8:43:93:58:7d:74:8a:9f:82:81:19:33:dd: 93:02:70:bc:13:2f:02:86:73:ca:a9:fe:21:f3:ca: 8a:29:8c:1a:4e:71:83:38:29:30:75:e1:ea:da:11: 7b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:8C:A8:E1:82:9C:D4:36:B4:BD:4D:58:58:4A:70:6D:2F:6E:A3:4A X509v3 Authority Key Identifier: keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:52:a3:43:2b:b1:1e:db:35:0f:8b:de:45:d2:ce:3b:f6:e1: 27:ff:8e:62:49:70:23:76:71:30:d0:e2:b3:8a:12:73:17:28: 1d:1d:16:7f:85:8f:16:3d:6a:ee:33:f6:a2:f1:4d:52:ae:52: 5f:6e:5f:44:88:4c:4e:f6:4d:f9:35:aa:eb:86:73:dd:90:2a: 66:1f:d7:34:d6:58:3f:7b:0d:97:14:0b:87:89:22:e8:5b:8c: 20:21:24:f2:67:7c:18:15:2f:53:c1:a3:8b:e9:92:cc:5b:27: a4:0d:7b:20:26:98:e1:69:62:d4:eb:ed:65:89:b9:e1:1d:5e: da:d9:ec:1f:2b:ad:52:3e:d4:11:cb:27:c3:0b:8b:7d:9a:92: e6:6f:ad:50:f4:02:38:a3:9c:78:80:24:79:eb:ef:11:91:15: 0f:ef:cc:64:64:29:a5:28:43:3f:d3:3d:2a:7d:6d:30:58:c7: 23:b0:22:56:0c:70:cf:04:ef:a4:5a:db:8c:94:54:55:1e:f8: 56:55:c2:25:90:a7:45:2f:7c:f1:68:2c:4b:2c:f0:f2:7b:b7: 9c:82:54:5a:ee:a3:6b:97:ed:b6:12:f3:f2:46:8e:bf:3b:2a: dd:f8:f8:9b:68:97:88:71:59:04:65:fb:ff:2a:f2:08:bf:52: 41:a3:c6:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEA1OSkKnsSqNJMLDpEsxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkNTlmNDkwZDNiNjliMjJlMWUyN2MzMjZiYWY3MjMxMTA1 NmRkYjgwHhcNMjYwMjA5MTEwMTEzWhcNMjYwMjEwMTEwMTEzWjAzMTEwLwYDVQQD Eyg1MDhjYThlMTgyOWNkNDM2YjRiZDRkNTg1ODRhNzA2ZDJmNmVhMzRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+y+Y12MkcXuX2/MrKX7fNx0Tb+o uAI5V8N0Tqyf8jo8sDrp2tOiUbr64TnbHHoHrQoMvY4gB/aab0iciQTnlcCCt68h HGbjDnUmwHDHDvZGJFAc3uW34+iIvFYC22Eh27tqJTSOnQOS+B1lL4itTq4q2ckb yEtxH943gW+SGFZ4BD5c5tOWH+ZXGGxQ71ZGRziRSXWVOLFFSWl1F8+QX2a0DaQF pG0EIsCyeSThpLSB6MIPZxF7Cs+zA6dF4xoxDysmPp0uwwiM/JR+XG5m8TroqNhD k1h9dIqfgoEZM92TAnC8Ey8ChnPKqf4h88qKKYwaTnGDOCkwdeHq2hF70wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFCMqOGCnNQ2tL1NWFhKcG0vbqNKMB8GA1UdIwQY MBaAFF1Z9JDTtpsi4eJ8MmuvcjEQVt24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEt NzkzNDhlODM2NmJjLzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEtNzkzNDhlODM2NmJj LzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKlKjQyux Hts1D4veRdLOO/bhJ/+OYklwI3ZxMNDis4oScxcoHR0Wf4WPFj1q7jP2ovFNUq5S X25fRIhMTvZN+TWq64Zz3ZAqZh/XNNZYP3sNlxQLh4ki6FuMICEk8md8GBUvU8Gj i+mSzFsnpA17ICaY4Wli1OvtZYm54R1e2tnsHyutUj7UEcsnwwuLfZqS5m+tUPQC OKOceIAkeevvEZEVD+/MZGQppShDP9M9Kn1tMFjHI7AiVgxwzwTvpFrbjJRUVR74 VlXCJZCnRS988WgsSyzw8nu3nIJUWu6ja5ftthLz8kaOvzsq3fj4m2iXiHFZBGX7 /yryCL9SQaPGFA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:53 2026 by rpki-client