This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft File: X06OdhPaoX6FqhB4yOwlXPGNQio.mft (raw, json) Hash identifier: wW95618Gykdf/EFmPIPPYsHEcKbT7NNVyNl6pb6Ezgc= Subject key identifier: 47:4B:3D:24:26:07:06:8B:70:35:24:A5:07:D1:59:AF:AC:66:41:86 Authority key identifier: 5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A Certificate issuer: /CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a Certificate serial: 019C4322D06960CBD35C44A6443749550EA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft Manifest number: 0F3B Signing time: Mon 09 Feb 2026 16:01:20 +0000 Manifest this update: Mon 09 Feb 2026 16:01:20 +0000 Manifest next update: Tue 10 Feb 2026 16:01:20 +0000 Files and hashes: 1: X06OdhPaoX6FqhB4yOwlXPGNQio.crl (hash: iQY7ws5RCV4gyfv2AB++SAKwrgBvrFa34YKbiKH+J7w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:d0:69:60:cb:d3:5c:44:a6:44:37:49:55:0e:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a Validity Not Before: Feb 9 16:01:20 2026 GMT Not After : Feb 10 16:01:20 2026 GMT Subject: CN=474b3d242607068b703524a507d159afac664186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:44:4e:5a:6c:6f:fb:f4:40:20:57:ce:78:92: 41:45:22:bf:e5:a0:87:60:26:23:f5:ae:85:84:ac: 4e:eb:2a:92:27:9c:1b:6c:3e:ef:e4:87:67:de:04: de:0b:13:b8:df:1a:4d:1d:66:fd:52:14:b3:4c:15: 9c:ee:0f:11:44:6b:71:bd:33:30:37:ec:c9:d7:0e: 12:17:4d:1a:a3:f5:f7:b1:8d:07:24:ff:04:39:ea: 12:5a:42:9f:ea:d8:66:f6:c0:16:42:14:ed:34:79: e6:f5:51:cd:e9:03:6c:89:55:7a:33:14:bf:e8:63: 9a:83:24:e7:5b:94:ca:00:f8:8e:9e:4c:02:2e:fc: 5e:9a:2e:4a:65:a9:db:93:ca:20:51:a0:91:b4:ee: 19:61:7a:03:ec:03:32:b1:2d:ef:35:53:6d:06:91: 5c:43:d9:eb:37:b6:d7:18:6f:9b:cf:f4:57:64:90: 31:ee:ac:50:fa:be:31:04:78:78:07:1d:69:9f:49: b5:3e:10:df:f3:56:c6:88:cf:7c:43:e0:77:a4:22: e5:b2:b2:63:7d:fc:79:8d:ba:ab:40:e4:8a:6c:a7: 5f:d2:c1:cd:a0:39:ce:03:12:ab:64:7e:3b:62:4d: 56:a4:b7:6e:d2:b9:7b:fd:b3:fe:6a:c4:50:d2:2b: cd:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:4B:3D:24:26:07:06:8B:70:35:24:A5:07:D1:59:AF:AC:66:41:86 X509v3 Authority Key Identifier: keyid:5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:b6:33:a7:61:1d:cd:ef:72:7a:b7:e7:11:f6:3a:d0:ca:cb: ff:d7:a7:74:0d:94:17:59:ff:27:07:35:4b:17:4f:88:5c:8f: 4d:ec:0b:06:cd:7b:c1:bf:45:c2:5e:b8:da:00:a7:f6:f7:bd: 2f:ba:2e:65:ea:38:25:f7:c0:90:6e:d5:af:8e:96:c6:e8:3f: f9:e9:3b:7d:32:c9:c8:3d:e1:d4:a0:26:38:5f:45:0e:25:e1: 28:0b:20:ea:cd:99:ae:4e:3e:77:c0:ca:09:f8:95:56:4c:57: ad:f9:96:62:58:b6:1b:3e:bf:c9:bd:9f:0f:fc:37:65:bb:61: cf:95:20:66:05:11:dc:ea:41:c4:bf:ef:11:1d:b2:b7:2c:09: b6:96:1b:f3:7f:f1:69:1e:6d:fe:4d:62:d1:90:1a:75:0c:64: 60:64:ed:42:40:25:41:c6:31:6f:73:33:9f:98:41:59:e2:9f: b8:50:2d:66:50:c9:cc:48:68:aa:3a:fd:d3:cd:29:e0:f5:6c: a0:6e:cb:8f:4d:ca:a3:17:9e:db:da:d3:3b:9c:46:a4:2f:6d: bf:0f:49:9f:5c:be:59:e9:11:80:02:7e:39:17:6c:2c:d8:ec: 53:29:b6:6c:b0:0d:03:27:86:94:82:9a:4b:fe:79:2d:5d:2a: ea:45:23:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDItBpYMvTXESmRDdJVQ6oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmNGU4ZTc2MTNkYWExN2U4NWFhMTA3OGM4ZWMyNTVjZjE4 ZDQyMmEwHhcNMjYwMjA5MTYwMTIwWhcNMjYwMjEwMTYwMTIwWjAzMTEwLwYDVQQD Eyg0NzRiM2QyNDI2MDcwNjhiNzAzNTI0YTUwN2QxNTlhZmFjNjY0MTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA20ROWmxv+/RAIFfOeJJBRSK/5aCH YCYj9a6FhKxO6yqSJ5wbbD7v5Idn3gTeCxO43xpNHWb9UhSzTBWc7g8RRGtxvTMw N+zJ1w4SF00ao/X3sY0HJP8EOeoSWkKf6thm9sAWQhTtNHnm9VHN6QNsiVV6MxS/ 6GOagyTnW5TKAPiOnkwCLvxemi5KZanbk8ogUaCRtO4ZYXoD7AMysS3vNVNtBpFc Q9nrN7bXGG+bz/RXZJAx7qxQ+r4xBHh4Bx1pn0m1PhDf81bGiM98Q+B3pCLlsrJj ffx5jbqrQOSKbKdf0sHNoDnOAxKrZH47Yk1WpLdu0rl7/bP+asRQ0ivNGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEdLPSQmBwaLcDUkpQfRWa+sZkGGMB8GA1UdIwQY MBaAFF9OjnYT2qF+haoQeMjsJVzxjUIqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy83MGJmZDctNzExZC00YWQ5LTgyZjct MmYzYzAwMzJlNDQ2LzEvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy83MGJmZDctNzExZC00YWQ5LTgyZjctMmYzYzAwMzJlNDQ2 LzEvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPLYzp2Ed ze9yerfnEfY60MrL/9endA2UF1n/Jwc1SxdPiFyPTewLBs17wb9Fwl642gCn9ve9 L7ouZeo4JffAkG7Vr46Wxug/+ek7fTLJyD3h1KAmOF9FDiXhKAsg6s2Zrk4+d8DK CfiVVkxXrfmWYli2Gz6/yb2fD/w3Zbthz5UgZgUR3OpBxL/vER2ytywJtpYb83/x aR5t/k1i0ZAadQxkYGTtQkAlQcYxb3Mzn5hBWeKfuFAtZlDJzEhoqjr9080p4PVs oG7Lj03Koxee29rTO5xGpC9tvw9Jn1y+WekRgAJ+ORdsLNjsUym2bLANAyeGlIKa S/55LV0q6kUjjQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:38 2026 by rpki-client