This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/4fba0b-7bee-4312-ab89-b4fcefd37ce1/1/XZ-OhVvxsEMJxJxB9_Qw3Mj5RY0.mft File: XZ-OhVvxsEMJxJxB9_Qw3Mj5RY0.mft (raw, json) Hash identifier: vJVLwxqF0x4a3Wvx6l+0s+7RlIt8SRagM/VbKVlXkFw= Subject key identifier: E0:0A:D1:8D:71:B2:5E:DE:0B:22:B8:D5:D7:3F:CD:CC:BB:C2:AE:E7 Authority key identifier: 5D:9F:8E:85:5B:F1:B0:43:09:C4:9C:41:F7:F4:30:DC:C8:F9:45:8D Certificate issuer: /CN=5d9f8e855bf1b04309c49c41f7f430dcc8f9458d Certificate serial: 019C424633A45F7339C7419558B0C0757789 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZ-OhVvxsEMJxJxB9_Qw3Mj5RY0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/4fba0b-7bee-4312-ab89-b4fcefd37ce1/1/XZ-OhVvxsEMJxJxB9_Qw3Mj5RY0.mft Manifest number: 030E Signing time: Mon 09 Feb 2026 12:00:22 +0000 Manifest this update: Mon 09 Feb 2026 12:00:22 +0000 Manifest next update: Tue 10 Feb 2026 12:00:22 +0000 Files and hashes: 1: XZ-OhVvxsEMJxJxB9_Qw3Mj5RY0.crl (hash: 8I9CRc7w4ORLiNDO9PHMCMlU/ptLA94xzoZ/8UHEzoU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/4fba0b-7bee-4312-ab89-b4fcefd37ce1/1/XZ-OhVvxsEMJxJxB9_Qw3Mj5RY0.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/4fba0b-7bee-4312-ab89-b4fcefd37ce1/1/XZ-OhVvxsEMJxJxB9_Qw3Mj5RY0.mft rsync://rpki.ripe.net/repository/DEFAULT/XZ-OhVvxsEMJxJxB9_Qw3Mj5RY0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:33:a4:5f:73:39:c7:41:95:58:b0:c0:75:77:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d9f8e855bf1b04309c49c41f7f430dcc8f9458d Validity Not Before: Feb 9 12:00:22 2026 GMT Not After : Feb 10 12:00:22 2026 GMT Subject: CN=e00ad18d71b25ede0b22b8d5d73fcdccbbc2aee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:00:ff:41:3c:a8:3d:cc:06:32:fb:e8:23:a9: 41:bc:25:d1:65:24:aa:38:e9:a8:fd:be:67:67:06: 69:ea:d4:36:be:88:77:c7:6e:0c:2b:f8:33:c8:80: 44:43:1c:6f:db:f5:38:f4:ce:b9:03:d2:2d:50:61: 2b:3d:55:3a:59:11:5c:69:69:8c:d5:73:4a:9b:a8: d7:ce:79:99:6b:ed:97:7c:a9:7b:7d:94:84:8d:56: 3b:d5:d2:60:c0:59:41:5e:9a:f6:54:99:26:b9:4c: 66:e3:90:5f:8a:da:b9:48:71:3a:07:39:34:58:19: 52:67:e0:9e:d1:39:72:2d:87:7e:be:7a:41:08:09: 28:c8:f5:db:30:f2:a8:2e:73:56:6f:39:1f:24:7f: 7f:6f:56:bc:31:4c:50:0a:d9:ea:37:b7:3e:d6:b2: 03:25:c8:f2:42:ce:70:c0:70:7a:5a:60:8f:10:17: 4f:78:e2:64:84:9c:90:33:da:4a:cc:9f:df:f0:bd: de:1d:1b:b4:33:e8:e1:bf:66:04:59:d6:e8:ff:64: be:96:fc:3b:ec:52:ec:75:ab:01:cf:db:84:46:66: 54:d0:ef:d4:27:9e:30:7c:fa:56:8b:8f:b1:8e:a8: 55:f7:b5:66:74:f5:a4:95:e0:72:28:b1:02:7b:ea: 9f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:0A:D1:8D:71:B2:5E:DE:0B:22:B8:D5:D7:3F:CD:CC:BB:C2:AE:E7 X509v3 Authority Key Identifier: keyid:5D:9F:8E:85:5B:F1:B0:43:09:C4:9C:41:F7:F4:30:DC:C8:F9:45:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZ-OhVvxsEMJxJxB9_Qw3Mj5RY0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4fba0b-7bee-4312-ab89-b4fcefd37ce1/1/XZ-OhVvxsEMJxJxB9_Qw3Mj5RY0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4fba0b-7bee-4312-ab89-b4fcefd37ce1/1/XZ-OhVvxsEMJxJxB9_Qw3Mj5RY0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:fd:a4:ff:ae:2b:4a:58:d8:5c:07:56:56:fb:a9:67:cc:09: 93:c5:98:cf:68:bb:1b:23:ba:75:a1:5b:31:01:d6:7d:08:17: 8f:f8:ed:59:20:42:ae:59:a2:28:48:44:c4:60:74:0a:40:b0: 09:22:6a:48:55:5d:31:45:12:2f:00:5c:09:ed:41:48:a5:2a: e1:2b:c7:b0:14:67:b9:f8:14:84:2a:65:1d:a7:7d:eb:d3:a5: 2b:e9:12:f3:eb:18:b5:86:a9:55:e7:52:ee:ff:98:ce:9e:5e: 62:5a:13:17:54:e8:58:e6:34:7e:40:21:de:1a:f3:92:e3:96: 29:98:a0:34:a6:83:3a:c6:ba:ef:79:50:56:5d:e4:38:89:42: 45:14:6e:22:33:74:24:e9:3b:93:45:ea:a1:fb:9a:d1:e3:5c: fb:de:3f:65:2c:a0:c7:cb:40:9b:e0:29:89:e1:82:8a:29:9e: 67:5d:c1:09:81:32:cb:e1:dc:d5:8e:48:ca:79:b2:d0:a1:18: c6:4c:f5:97:61:60:65:ce:3f:1d:53:0a:0e:57:ec:12:d0:e0: a9:d7:df:e5:ce:3e:11:f0:bc:39:c2:da:ab:a1:84:93:a9:23: 5a:cc:d6:67:d2:e4:af:01:97:08:2a:5f:31:95:f8:84:73:c7: a7:58:09:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRjOkX3M5x0GVWLDAdXeJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkOWY4ZTg1NWJmMWIwNDMwOWM0OWM0MWY3ZjQzMGRjYzhm OTQ1OGQwHhcNMjYwMjA5MTIwMDIyWhcNMjYwMjEwMTIwMDIyWjAzMTEwLwYDVQQD EyhlMDBhZDE4ZDcxYjI1ZWRlMGIyMmI4ZDVkNzNmY2RjY2JiYzJhZWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAD/QTyoPcwGMvvoI6lBvCXRZSSq OOmo/b5nZwZp6tQ2voh3x24MK/gzyIBEQxxv2/U49M65A9ItUGErPVU6WRFcaWmM 1XNKm6jXznmZa+2XfKl7fZSEjVY71dJgwFlBXpr2VJkmuUxm45Bfitq5SHE6Bzk0 WBlSZ+Ce0TlyLYd+vnpBCAkoyPXbMPKoLnNWbzkfJH9/b1a8MUxQCtnqN7c+1rID JcjyQs5wwHB6WmCPEBdPeOJkhJyQM9pKzJ/f8L3eHRu0M+jhv2YEWdbo/2S+lvw7 7FLsdasBz9uERmZU0O/UJ54wfPpWi4+xjqhV97VmdPWkleByKLECe+qfiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOAK0Y1xsl7eCyK41dc/zcy7wq7nMB8GA1UdIwQY MBaAFF2fjoVb8bBDCcScQff0MNzI+UWNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFotT2hWdnhzRU1KeEp4QjlfUXczTWo1UlkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS80ZmJhMGItN2JlZS00MzEyLWFiODkt YjRmY2VmZDM3Y2UxLzEvWFotT2hWdnhzRU1KeEp4QjlfUXczTWo1UlkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS80ZmJhMGItN2JlZS00MzEyLWFiODktYjRmY2VmZDM3Y2Ux LzEvWFotT2hWdnhzRU1KeEp4QjlfUXczTWo1UlkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEP2k/64r SljYXAdWVvupZ8wJk8WYz2i7GyO6daFbMQHWfQgXj/jtWSBCrlmiKEhExGB0CkCw CSJqSFVdMUUSLwBcCe1BSKUq4SvHsBRnufgUhCplHad969OlK+kS8+sYtYapVedS 7v+Yzp5eYloTF1ToWOY0fkAh3hrzkuOWKZigNKaDOsa673lQVl3kOIlCRRRuIjN0 JOk7k0Xqofua0eNc+94/ZSygx8tAm+ApieGCiimeZ13BCYEyy+Hc1Y5Iynmy0KEY xkz1l2FgZc4/HVMKDlfsEtDgqdff5c4+EfC8OcLaq6GEk6kjWszWZ9LkrwGXCCpf MZX4hHPHp1gJNg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:29 2026 by rpki-client