This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft File: XbomMhShFwVRmA7pFxn42Ixia14.mft (raw, json) Hash identifier: UGnNj94bHoVAQhxS4cCrtmU48wLwphV6/tOFyJHa1+E= Subject key identifier: E8:64:6C:2B:A7:99:EA:2C:71:A2:B5:4A:7B:AD:A5:36:D5:D5:FD:78 Authority key identifier: 5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E Certificate issuer: /CN=5dba263214a1170551980ee91719f8d88c626b5e Certificate serial: 019C43FD9D07F3E19F300670BBF4FDE8E9C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft Manifest number: 137B Signing time: Mon 09 Feb 2026 20:00:20 +0000 Manifest this update: Mon 09 Feb 2026 20:00:20 +0000 Manifest next update: Tue 10 Feb 2026 20:00:20 +0000 Files and hashes: 1: XbomMhShFwVRmA7pFxn42Ixia14.crl (hash: hrAtioPZXba09+ZST3S1OcsSNFE+V46iEEW4PyGI+mI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:9d:07:f3:e1:9f:30:06:70:bb:f4:fd:e8:e9:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dba263214a1170551980ee91719f8d88c626b5e Validity Not Before: Feb 9 20:00:20 2026 GMT Not After : Feb 10 20:00:20 2026 GMT Subject: CN=e8646c2ba799ea2c71a2b54a7bada536d5d5fd78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:76:e4:05:b5:50:58:1e:d1:d3:55:5a:bb:af: 5c:0a:e1:31:7c:26:57:e3:88:02:b9:7e:be:63:7d: 82:08:e5:3f:10:97:d1:de:00:fd:eb:f9:1b:cd:de: 64:ef:a5:79:3b:f9:ef:9b:c8:3f:f2:ea:41:02:fc: 1a:32:27:c9:7a:d8:97:04:9c:3f:7f:d8:89:ae:16: d9:c9:50:b9:0d:78:ba:f0:f4:55:10:f3:ff:e5:be: dc:1d:2c:13:5b:81:3f:06:b4:4c:b1:e8:e1:17:7c: 2a:a6:62:3c:28:4d:1e:8f:81:d8:1b:7c:11:e5:f6: a8:a6:43:08:89:79:8e:74:e3:a3:e6:1a:f8:4d:cf: 74:44:22:2d:32:62:7b:87:64:f7:7f:60:0d:a4:17: dc:d5:3b:b1:7f:fc:99:be:bf:8e:5b:4d:8e:c9:21: 28:e6:85:cb:4e:81:08:ad:c7:b9:33:5a:b5:db:47: 67:a9:3f:dc:0b:9f:a7:48:88:46:7c:bf:06:71:8a: 82:b9:36:a2:26:a8:95:f8:44:f8:82:41:a1:de:6f: 00:6a:a2:78:64:1f:65:c9:18:c8:27:e6:ea:b1:d1: 95:58:9c:a4:16:77:18:d1:4b:a7:04:1c:77:26:ae: 72:31:a9:ea:76:66:ac:3b:1a:36:b3:57:03:a6:93: f2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:64:6C:2B:A7:99:EA:2C:71:A2:B5:4A:7B:AD:A5:36:D5:D5:FD:78 X509v3 Authority Key Identifier: keyid:5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:d1:af:be:a4:1a:9c:f1:56:41:22:b6:dd:4f:8c:6d:23:84: 66:46:e1:84:52:50:eb:96:3b:33:4a:df:24:89:8a:bc:7d:f0: 80:c2:9e:cd:aa:19:2b:b0:e5:00:9c:87:a7:77:75:04:78:db: ac:63:9c:f6:51:25:83:8f:4c:65:62:f5:89:c9:ca:6c:53:30: 4f:41:74:2d:78:80:e3:8e:26:b8:3e:09:13:6b:ed:18:ed:e4: 61:ae:75:17:74:d7:53:86:b0:55:8e:fc:3c:b6:64:d6:a6:f6: f6:19:03:e7:e9:d8:65:75:65:f2:48:7f:0d:ff:71:7f:c9:95: 1c:9f:fa:ee:b9:8b:ec:83:a5:79:c6:83:23:09:62:9d:9c:a0: 56:01:11:26:75:22:39:26:24:d3:aa:c9:d2:5d:d5:0b:ab:8b: 9b:2c:1f:bb:12:74:db:d8:8d:40:5c:90:fe:46:78:c4:7c:db: 44:ec:6c:6a:0e:6c:28:b4:31:83:a3:82:b1:ee:e1:45:3f:cd: 0f:77:a2:a7:c3:e9:8f:f4:24:1e:0d:a6:82:26:83:a5:44:30: e4:e8:54:ec:f5:09:ad:58:71:47:ef:eb:44:0a:84:98:0e:a2: 46:81:a9:45:78:c5:75:9c:8c:32:27:76:13:18:eb:a8:c0:83: 1c:5a:42:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/Z0H8+GfMAZwu/T96OnEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkYmEyNjMyMTRhMTE3MDU1MTk4MGVlOTE3MTlmOGQ4OGM2 MjZiNWUwHhcNMjYwMjA5MjAwMDIwWhcNMjYwMjEwMjAwMDIwWjAzMTEwLwYDVQQD EyhlODY0NmMyYmE3OTllYTJjNzFhMmI1NGE3YmFkYTUzNmQ1ZDVmZDc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsnbkBbVQWB7R01Vau69cCuExfCZX 44gCuX6+Y32CCOU/EJfR3gD96/kbzd5k76V5O/nvm8g/8upBAvwaMifJetiXBJw/ f9iJrhbZyVC5DXi68PRVEPP/5b7cHSwTW4E/BrRMsejhF3wqpmI8KE0ej4HYG3wR 5faopkMIiXmOdOOj5hr4Tc90RCItMmJ7h2T3f2ANpBfc1Tuxf/yZvr+OW02OySEo 5oXLToEIrce5M1q120dnqT/cC5+nSIhGfL8GcYqCuTaiJqiV+ET4gkGh3m8AaqJ4 ZB9lyRjIJ+bqsdGVWJykFncY0UunBBx3Jq5yManqdmasOxo2s1cDppPyPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOhkbCunmeoscaK1SnutpTbV1f14MB8GA1UdIwQY MBaAFF26JjIUoRcFUZgO6RcZ+NiMYmteMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi80ZTQxNGYtMGE3Ni00ZmU5LThiN2It MTM1YTkzOTgyOTMxLzEvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi80ZTQxNGYtMGE3Ni00ZmU5LThiN2ItMTM1YTkzOTgyOTMx LzEvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbdGvvqQa nPFWQSK23U+MbSOEZkbhhFJQ65Y7M0rfJImKvH3wgMKezaoZK7DlAJyHp3d1BHjb rGOc9lElg49MZWL1icnKbFMwT0F0LXiA444muD4JE2vtGO3kYa51F3TXU4awVY78 PLZk1qb29hkD5+nYZXVl8kh/Df9xf8mVHJ/67rmL7IOlecaDIwlinZygVgERJnUi OSYk06rJ0l3VC6uLmywfuxJ029iNQFyQ/kZ4xHzbROxsag5sKLQxg6OCse7hRT/N D3eip8Ppj/QkHg2mgiaDpUQw5OhU7PUJrVhxR+/rRAqEmA6iRoGpRXjFdZyMMid2 ExjrqMCDHFpCJA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:40 2026 by rpki-client