This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft File: rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft (raw, json) Hash identifier: p1IO0nWajCbUExAPfnqZmdtqEsZC1DGL8hDA1kR2ZHk= Subject key identifier: D3:01:0F:2F:3E:E0:29:21:72:6B:B2:8F:D4:E7:8F:10:7D:EF:18:89 Authority key identifier: AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9 Certificate issuer: /CN=aec5c7ab5b72181e4e4211322215e9776b4900f9 Certificate serial: 019C42EB96C25C12336FB02DF8B1BC6AB012 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft Manifest number: 0D0D Signing time: Mon 09 Feb 2026 15:01:01 +0000 Manifest this update: Mon 09 Feb 2026 15:01:01 +0000 Manifest next update: Tue 10 Feb 2026 15:01:01 +0000 Files and hashes: 1: rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl (hash: ERYixPGB1sMAjEKm98Pgy8g7mS4guQOn2s4q4kwQQdw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:96:c2:5c:12:33:6f:b0:2d:f8:b1:bc:6a:b0:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aec5c7ab5b72181e4e4211322215e9776b4900f9 Validity Not Before: Feb 9 15:01:01 2026 GMT Not After : Feb 10 15:01:01 2026 GMT Subject: CN=d3010f2f3ee02921726bb28fd4e78f107def1889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4e:e4:65:d0:fd:98:5d:be:49:2a:5b:a2:bf: 82:f2:ce:50:55:a2:54:f8:0f:56:c4:1e:40:fd:9b: c4:b2:2c:09:df:25:52:49:2b:43:bb:2b:56:72:ff: 2c:64:83:7b:ce:98:11:61:e3:3f:40:13:fb:cc:a7: 5b:d5:e9:f8:d0:77:fe:f8:f9:9b:3c:0d:80:e9:fe: 61:99:81:36:bc:e9:a7:fc:9e:16:de:1a:4c:07:93: 66:e2:b4:7a:27:73:a7:cd:17:df:54:7e:df:1e:19: 55:1a:95:15:1c:01:df:85:09:18:06:9c:26:16:76: 3c:34:dc:18:0a:a9:e3:81:1d:22:a3:26:8a:90:26: d1:b7:c8:c0:69:30:a4:39:b7:6e:10:f6:fb:9f:3a: 3e:19:36:59:e9:d3:42:be:ac:bf:d1:4e:cd:3c:80: ab:f7:fd:82:2b:0d:d0:5f:d0:58:9f:01:2e:77:5c: 6d:43:ea:15:dc:03:21:cc:60:0a:c8:09:01:1b:c7: 9e:b2:72:c7:5b:ea:c5:0b:11:6d:54:89:14:26:e0: 9e:88:f3:14:3c:cf:7b:b1:4f:73:a6:52:38:d9:7b: e2:98:c4:0a:b3:45:34:8e:9d:7d:06:80:11:75:a5: a8:5a:24:f8:43:98:de:b8:04:b3:06:d3:42:e2:12: 7e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:01:0F:2F:3E:E0:29:21:72:6B:B2:8F:D4:E7:8F:10:7D:EF:18:89 X509v3 Authority Key Identifier: keyid:AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cc:f5:42:78:73:1b:e5:2b:72:68:fe:df:03:ae:ee:2d:76:82: 8a:d7:ea:7b:db:98:58:10:f4:2b:51:a7:69:14:82:d2:68:0f: 0a:f5:3e:aa:78:e3:16:1f:c6:cf:d4:6f:51:2d:81:4b:c1:0c: 4d:05:6f:9c:7d:87:ff:8b:ba:b8:9c:d9:b5:65:c6:8e:34:28: 3d:60:c2:f6:58:2d:be:8a:ea:e6:87:b1:1a:33:f9:60:11:61: 9e:96:44:1c:c0:76:be:ea:50:0b:cd:43:ec:51:67:c6:38:f2: 31:a7:80:f2:b6:0a:24:16:83:ff:9e:7d:7a:fe:e9:53:00:3c: e3:c4:f1:45:39:06:79:b8:23:47:be:18:d6:a2:c3:38:d5:f1: d3:48:31:41:29:b8:e6:5f:13:6d:90:20:5a:ba:aa:24:28:a7: 21:09:d9:9e:34:62:e7:c0:28:cb:7e:e2:7a:d7:69:77:9c:a3: a9:d1:4c:ea:60:a1:aa:d9:4c:48:b2:c8:db:54:a4:c8:c1:92: 82:21:ac:57:44:e7:73:93:de:b8:0e:1a:f4:24:ec:16:e6:35: 1a:3a:03:7b:7b:7c:cd:9f:31:d3:34:d8:cf:87:c3:10:c0:0e: 6a:50:1b:0f:63:52:9f:98:8a:32:c1:0a:eb:40:0a:42:e3:01: 39:31:37:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC65bCXBIzb7At+LG8arASMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlYzVjN2FiNWI3MjE4MWU0ZTQyMTEzMjIyMTVlOTc3NmI0 OTAwZjkwHhcNMjYwMjA5MTUwMTAxWhcNMjYwMjEwMTUwMTAxWjAzMTEwLwYDVQQD EyhkMzAxMGYyZjNlZTAyOTIxNzI2YmIyOGZkNGU3OGYxMDdkZWYxODg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvk7kZdD9mF2+SSpbor+C8s5QVaJU +A9WxB5A/ZvEsiwJ3yVSSStDuytWcv8sZIN7zpgRYeM/QBP7zKdb1en40Hf++Pmb PA2A6f5hmYE2vOmn/J4W3hpMB5Nm4rR6J3OnzRffVH7fHhlVGpUVHAHfhQkYBpwm FnY8NNwYCqnjgR0ioyaKkCbRt8jAaTCkObduEPb7nzo+GTZZ6dNCvqy/0U7NPICr 9/2CKw3QX9BYnwEud1xtQ+oV3AMhzGAKyAkBG8eesnLHW+rFCxFtVIkUJuCeiPMU PM97sU9zplI42XvimMQKs0U0jp19BoARdaWoWiT4Q5jeuASzBtNC4hJ+cwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNMBDy8+4Ckhcmuyj9TnjxB97xiJMB8GA1UdIwQY MBaAFK7Fx6tbchgeTkIRMiIV6XdrSQD5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnNYSHExdHlHQjVPUWhFeUloWHBkMnRKQVBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC85ODgxOGQtZjhiMy00NjQ1LTg2YTgt MzAyZDkyMjI0Y2IyLzEvcnNYSHExdHlHQjVPUWhFeUloWHBkMnRKQVBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC85ODgxOGQtZjhiMy00NjQ1LTg2YTgtMzAyZDkyMjI0Y2Iy LzEvcnNYSHExdHlHQjVPUWhFeUloWHBkMnRKQVBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzPVCeHMb 5StyaP7fA67uLXaCitfqe9uYWBD0K1GnaRSC0mgPCvU+qnjjFh/Gz9RvUS2BS8EM TQVvnH2H/4u6uJzZtWXGjjQoPWDC9lgtvorq5oexGjP5YBFhnpZEHMB2vupQC81D 7FFnxjjyMaeA8rYKJBaD/559ev7pUwA848TxRTkGebgjR74Y1qLDONXx00gxQSm4 5l8TbZAgWrqqJCinIQnZnjRi58Aoy37ietdpd5yjqdFM6mChqtlMSLLI21SkyMGS giGsV0Tnc5PeuA4a9CTsFuY1GjoDe3t8zZ8x0zTYz4fDEMAOalAbD2NSn5iKMsEK 60AKQuMBOTE3XA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:01:17 2026 by rpki-client