This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft File: x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft (raw, json) Hash identifier: Ut85TulhN6XOaVU4HnKHjPVbNA2eNjIWadVu/sS0qD8= Subject key identifier: 83:DD:84:33:C4:B8:EB:F3:E8:B5:DE:59:92:B3:BE:16:22:99:77:41 Authority key identifier: C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC Certificate issuer: /CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc Certificate serial: 019C4322EE392D32E1F5B8C354DCBAD2A72C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft Manifest number: 14EE Signing time: Mon 09 Feb 2026 16:01:28 +0000 Manifest this update: Mon 09 Feb 2026 16:01:28 +0000 Manifest next update: Tue 10 Feb 2026 16:01:28 +0000 Files and hashes: 1: YYn49ElJf0Sq1r0mfkdIQTwmQdg.roa (hash: QxGuwFKApJYfN3mvWwP7KytzI3pNw7rmnyOPXpRIZcM=) 2: x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl (hash: aGPu47Kr6PGMR7oUqoe67wGjHG5te+G2UGWT8a0KJD0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:ee:39:2d:32:e1:f5:b8:c3:54:dc:ba:d2:a7:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc Validity Not Before: Feb 9 16:01:28 2026 GMT Not After : Feb 10 16:01:28 2026 GMT Subject: CN=83dd8433c4b8ebf3e8b5de5992b3be1622997741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:5e:67:18:44:1a:b5:fa:4b:23:aa:6b:da:59: a8:10:3b:b2:62:03:10:ab:bd:a0:1b:09:cf:34:b5: 20:a8:7f:f6:8f:34:40:19:4c:a5:06:65:90:22:84: 47:ad:e6:64:77:99:c7:b6:e4:f2:17:05:ca:2b:7c: 60:85:40:28:6e:85:b4:4a:f1:62:dd:3e:86:e7:bb: 6b:1e:fb:3c:62:0c:dd:a5:46:a5:17:82:f2:2d:c1: 02:15:b8:a3:84:7e:4b:1a:cf:e4:b1:ef:fb:ef:ec: a4:08:fa:62:b0:7d:95:33:45:ae:07:90:33:80:2c: 02:e2:f3:5d:20:7a:2c:2b:e4:2d:2a:fd:fe:ad:b2: 9b:24:95:1e:f2:7b:f3:5c:7b:fc:e8:7a:63:be:62: 1f:43:81:f2:dc:c3:99:1e:c7:e0:16:34:50:bf:c9: 8a:2f:e7:20:89:4e:6e:39:a7:09:75:ad:37:a8:1b: 66:d0:94:06:b7:04:28:76:70:03:04:cd:23:11:8e: 0b:31:7a:3d:9f:52:2a:74:36:09:b7:a8:b0:07:85: 57:f5:72:92:11:12:89:d4:db:f2:e1:50:ba:cc:04: 54:ee:e6:fb:0d:e5:4d:ca:de:a7:39:ca:d0:d7:65: 0a:85:cf:da:37:04:15:47:e7:d6:d7:5a:70:5a:da: e1:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DD:84:33:C4:B8:EB:F3:E8:B5:DE:59:92:B3:BE:16:22:99:77:41 X509v3 Authority Key Identifier: keyid:C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:33:9f:99:55:27:90:22:f2:b3:61:41:9e:01:e6:95:1c:3f: eb:b6:dc:b7:47:64:78:15:bd:9b:a3:b2:80:5d:7b:fc:f5:cf: e1:3e:58:39:0b:38:cf:fa:cd:53:ee:01:07:58:e6:fd:d7:7b: 6e:35:10:ba:1e:39:04:82:10:69:ce:90:94:25:f1:a6:cf:66: 78:28:cc:b6:83:61:e1:e7:cb:d7:38:20:34:ff:12:a9:2a:f1: 91:ed:8d:f3:ad:c1:76:2b:17:f7:da:eb:21:2c:29:d4:36:c2: 3a:fd:c0:0f:32:5f:f0:45:85:10:c9:f7:90:16:b9:cf:a1:08: 3c:6e:b2:96:b9:ea:45:43:52:8f:82:47:4c:e1:13:2f:7d:63: d9:ce:30:09:4c:d1:21:1b:6a:70:cc:6b:1a:fe:6a:bd:0b:ce: d9:78:fe:03:96:8a:07:db:50:01:c9:79:29:a9:93:f3:db:da: 94:94:93:77:ed:86:37:d4:7a:f1:aa:65:13:70:52:3b:b3:76: 99:5b:29:46:34:a8:ce:05:42:49:e9:e4:4c:20:d3:b0:84:9e: d9:f6:f1:0d:59:a9:16:ef:c5:06:68:c4:5d:4a:04:35:4e:46: 59:75:da:70:e9:5f:3a:78:23:a9:02:25:85:2d:f5:a5:41:3f: 0a:2d:e5:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIu45LTLh9bjDVNy60qcsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3OGI1MmRkZmQwYmU1NjFkNDEwY2E4ODQ2ZmM3OTdlMjI5 OGIzY2MwHhcNMjYwMjA5MTYwMTI4WhcNMjYwMjEwMTYwMTI4WjAzMTEwLwYDVQQD Eyg4M2RkODQzM2M0YjhlYmYzZThiNWRlNTk5MmIzYmUxNjIyOTk3NzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6F5nGEQatfpLI6pr2lmoEDuyYgMQ q72gGwnPNLUgqH/2jzRAGUylBmWQIoRHreZkd5nHtuTyFwXKK3xghUAoboW0SvFi 3T6G57trHvs8YgzdpUalF4LyLcECFbijhH5LGs/kse/77+ykCPpisH2VM0WuB5Az gCwC4vNdIHosK+QtKv3+rbKbJJUe8nvzXHv86HpjvmIfQ4Hy3MOZHsfgFjRQv8mK L+cgiU5uOacJda03qBtm0JQGtwQodnADBM0jEY4LMXo9n1IqdDYJt6iwB4VX9XKS ERKJ1Nvy4VC6zARU7ub7DeVNyt6nOcrQ12UKhc/aNwQVR+fW11pwWtrhmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIPdhDPEuOvz6LXeWZKzvhYimXdBMB8GA1UdIwQY MBaAFMeLUt39C+Vh1BDKiEb8eX4imLPMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDR0UzNmMEw1V0hVRU1xSVJ2eDVmaUtZczh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy81MjU3MDctMWExMi00MTM4LWFlNDYt OWY3ZThhNjEyMmEzLzEveDR0UzNmMEw1V0hVRU1xSVJ2eDVmaUtZczh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy81MjU3MDctMWExMi00MTM4LWFlNDYtOWY3ZThhNjEyMmEz LzEveDR0UzNmMEw1V0hVRU1xSVJ2eDVmaUtZczh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADDOfmVUn kCLys2FBngHmlRw/67bct0dkeBW9m6OygF17/PXP4T5YOQs4z/rNU+4BB1jm/dd7 bjUQuh45BIIQac6QlCXxps9meCjMtoNh4efL1zggNP8SqSrxke2N863BdisX99rr ISwp1DbCOv3ADzJf8EWFEMn3kBa5z6EIPG6ylrnqRUNSj4JHTOETL31j2c4wCUzR IRtqcMxrGv5qvQvO2Xj+A5aKB9tQAcl5KamT89valJSTd+2GN9R68aplE3BSO7N2 mVspRjSozgVCSenkTCDTsISe2fbxDVmpFu/FBmjEXUoENU5GWXXacOlfOngjqQIl hS31pUE/Ci3lwg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:37 2026 by rpki-client