This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft File: XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft (raw, json) Hash identifier: iR1DK8XR+Nbzu8hvPg9qrjjY7yZAnCHNvt9C5yhKx1c= Subject key identifier: A9:EA:E4:C7:DD:93:79:B6:38:E5:70:DF:D5:83:D0:AF:99:44:68:38 Authority key identifier: 5E:A6:8C:85:38:10:D0:32:0B:15:68:44:F2:93:17:70:1B:58:61:0D Certificate issuer: /CN=5ea68c853810d0320b156844f29317701b58610d Certificate serial: 019C427DAF8E778E1B8F6A68F6AC261D44A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft Manifest number: 0C4E Signing time: Mon 09 Feb 2026 13:00:59 +0000 Manifest this update: Mon 09 Feb 2026 13:00:59 +0000 Manifest next update: Tue 10 Feb 2026 13:00:59 +0000 Files and hashes: 1: LiEVK06b_iEfWKONoW7STd84p8o.roa (hash: KP0hMh+NQgDSgDAVVXQlg1eOWnVVyRKaORcdjPcukmI=) 2: XqaMhTgQ0DILFWhE8pMXcBtYYQ0.crl (hash: WJnfgHSjoOLddhRqogVkDgYbV+uq3AIP1aLbYzRGFnI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:af:8e:77:8e:1b:8f:6a:68:f6:ac:26:1d:44:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ea68c853810d0320b156844f29317701b58610d Validity Not Before: Feb 9 13:00:59 2026 GMT Not After : Feb 10 13:00:59 2026 GMT Subject: CN=a9eae4c7dd9379b638e570dfd583d0af99446838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:df:60:c4:36:f5:74:2e:f2:08:3e:92:19:34: 18:c1:b6:01:79:42:0a:38:12:8c:da:0f:68:5f:82: f2:96:6c:65:f4:b0:04:20:0d:43:f3:59:3a:73:04: 2c:a6:ce:e7:8a:ac:37:97:f9:30:7f:43:55:2b:6c: a5:26:c9:5b:28:bf:a9:c2:c4:a0:e2:a7:4a:10:8e: 87:71:35:a3:51:0e:bf:c0:1a:2a:7b:42:df:79:e3: 2e:aa:e8:16:0a:94:f4:57:3e:83:31:b7:a2:30:aa: 40:f5:f6:9d:8f:46:3a:50:58:90:10:e4:f6:fe:6a: 40:59:45:9f:6f:f8:f0:e8:31:a9:49:03:2f:79:72: 51:05:56:a0:1e:85:96:09:b5:83:9f:54:b9:b4:da: 6e:02:2f:e1:43:75:d0:f7:63:d5:86:4f:c1:ec:11: f1:48:53:da:4d:2c:87:93:aa:9f:51:3a:3f:cf:4f: 7f:5e:f7:ae:e8:8a:ab:7d:f0:e5:0e:23:c1:72:c5: 86:21:2a:1a:ff:12:1f:1e:1d:aa:9d:aa:03:a5:10: 10:42:8a:d5:13:59:aa:24:a9:84:40:25:01:c7:aa: 50:e8:3f:bb:ec:f9:18:57:82:02:f8:31:8c:63:96: 33:eb:3e:b0:48:ea:b7:5f:be:f1:d0:72:0c:8e:1c: 3e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:EA:E4:C7:DD:93:79:B6:38:E5:70:DF:D5:83:D0:AF:99:44:68:38 X509v3 Authority Key Identifier: keyid:5E:A6:8C:85:38:10:D0:32:0B:15:68:44:F2:93:17:70:1B:58:61:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:42:ac:32:60:32:91:60:84:ab:44:f1:d3:f5:1a:89:58:0a: 1c:24:7f:bf:74:4e:05:9f:e2:14:96:56:90:a2:4e:79:99:a7: d5:77:84:2a:19:e5:8c:6d:80:aa:78:d2:ca:d9:72:09:02:74: 90:89:b7:f0:45:3e:37:ae:ec:b0:2d:36:2c:2d:dd:58:82:e7: d5:2a:b6:10:d1:53:6c:0f:89:2b:0e:95:71:a1:62:b3:56:df: c4:3d:76:db:d5:e3:6e:3d:d4:c3:88:e0:8a:dc:28:f8:3c:13: 27:69:a7:0d:46:b7:b0:9c:48:1b:d4:6c:3d:05:c7:f3:42:5a: bf:f6:d3:86:bc:9f:d8:ae:2a:f6:93:64:46:4a:f5:81:dd:da: 27:00:9d:82:71:76:0e:26:24:53:da:a2:b0:a5:78:74:fb:0a: 8d:3e:2b:83:1a:05:f5:7f:3e:63:44:fe:2d:46:2c:59:1c:64: 84:e8:b6:ad:01:58:23:1f:99:f6:37:8f:d2:8f:49:40:fe:d1: 83:ee:60:3d:a9:50:83:e6:fb:38:c1:07:0c:53:fd:18:e7:57: 2b:7e:a4:a4:85:4c:58:6b:82:a6:4c:50:66:dd:30:60:a2:24: bc:ec:b6:15:09:ed:d3:b7:93:9a:b3:ef:db:65:4d:38:fc:a8: 56:3f:62:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfa+Od44bj2po9qwmHUSpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlYTY4Yzg1MzgxMGQwMzIwYjE1Njg0NGYyOTMxNzcwMWI1 ODYxMGQwHhcNMjYwMjA5MTMwMDU5WhcNMjYwMjEwMTMwMDU5WjAzMTEwLwYDVQQD EyhhOWVhZTRjN2RkOTM3OWI2MzhlNTcwZGZkNTgzZDBhZjk5NDQ2ODM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAst9gxDb1dC7yCD6SGTQYwbYBeUIK OBKM2g9oX4Lylmxl9LAEIA1D81k6cwQsps7niqw3l/kwf0NVK2ylJslbKL+pwsSg 4qdKEI6HcTWjUQ6/wBoqe0LfeeMuqugWCpT0Vz6DMbeiMKpA9fadj0Y6UFiQEOT2 /mpAWUWfb/jw6DGpSQMveXJRBVagHoWWCbWDn1S5tNpuAi/hQ3XQ92PVhk/B7BHx SFPaTSyHk6qfUTo/z09/Xveu6IqrffDlDiPBcsWGISoa/xIfHh2qnaoDpRAQQorV E1mqJKmEQCUBx6pQ6D+77PkYV4IC+DGMY5Yz6z6wSOq3X77x0HIMjhw+dQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKnq5Mfdk3m2OOVw39WD0K+ZRGg4MB8GA1UdIwQY MBaAFF6mjIU4ENAyCxVoRPKTF3AbWGENMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHFhTWhUZ1EwRElMRldoRThwTVhjQnRZWVEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8zZTIzZDctYTNiNy00MTZmLTg4MTAt MWVmYTdjZjc3M2EwLzEvWHFhTWhUZ1EwRElMRldoRThwTVhjQnRZWVEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8zZTIzZDctYTNiNy00MTZmLTg4MTAtMWVmYTdjZjc3M2Ew LzEvWHFhTWhUZ1EwRElMRldoRThwTVhjQnRZWVEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUkKsMmAy kWCEq0Tx0/UaiVgKHCR/v3ROBZ/iFJZWkKJOeZmn1XeEKhnljG2AqnjSytlyCQJ0 kIm38EU+N67ssC02LC3dWILn1Sq2ENFTbA+JKw6VcaFis1bfxD1229Xjbj3Uw4jg itwo+DwTJ2mnDUa3sJxIG9RsPQXH80Jav/bThryf2K4q9pNkRkr1gd3aJwCdgnF2 DiYkU9qisKV4dPsKjT4rgxoF9X8+Y0T+LUYsWRxkhOi2rQFYIx+Z9jeP0o9JQP7R g+5gPalQg+b7OMEHDFP9GOdXK36kpIVMWGuCpkxQZt0wYKIkvOy2FQnt07eTmrPv 22VNOPyoVj9iyw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:58 2026 by rpki-client