This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft File: XO56utwc1TZH4rILdg1aXHqxp8w.mft (raw, json) Hash identifier: ITAQwG7ZrdmJ8cVYIgghW6ozqSw4kyefM6oMoaLtogw= Subject key identifier: 92:AD:14:97:24:10:7E:FE:C1:04:B5:33:AB:4D:F7:53:99:71:97:EF Authority key identifier: 5C:EE:7A:BA:DC:1C:D5:36:47:E2:B2:0B:76:0D:5A:5C:7A:B1:A7:CC Certificate issuer: /CN=5cee7abadc1cd53647e2b20b760d5a5c7ab1a7cc Certificate serial: 019C420F61A35C23F70BC6EA4C78D6734F5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft Manifest number: 02FC Signing time: Mon 09 Feb 2026 11:00:30 +0000 Manifest this update: Mon 09 Feb 2026 11:00:30 +0000 Manifest next update: Tue 10 Feb 2026 11:00:30 +0000 Files and hashes: 1: XO56utwc1TZH4rILdg1aXHqxp8w.crl (hash: uSYBs/vH82ZacDd5Q2r2+Vk9v2j37xCP9QsZe/W0V5c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:61:a3:5c:23:f7:0b:c6:ea:4c:78:d6:73:4f:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5cee7abadc1cd53647e2b20b760d5a5c7ab1a7cc Validity Not Before: Feb 9 11:00:30 2026 GMT Not After : Feb 10 11:00:30 2026 GMT Subject: CN=92ad149724107efec104b533ab4df753997197ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bd:fa:8d:ae:2c:d2:95:04:b1:2e:f1:1b:a7: 0a:fd:92:d3:fa:10:72:0a:7f:b1:b0:31:70:83:d7: a6:d9:b5:98:70:62:69:56:23:4b:1e:69:0f:18:76: b7:16:d4:9f:4b:c6:28:0d:4b:96:92:b4:24:47:54: a4:c1:1d:8b:45:9b:4d:e5:af:f5:5c:16:56:5e:a3: 32:74:01:ef:cb:a9:cc:02:94:f1:da:28:15:c6:26: bb:ad:27:cc:5c:f1:73:84:b8:6b:a3:23:d7:00:b8: ca:3e:2e:3c:05:4e:02:84:2e:2d:9f:77:02:16:34: 89:68:a9:df:ef:24:d1:b7:cd:6c:5e:f6:3f:3a:02: 8a:ea:7d:a2:25:c5:bd:49:7a:83:de:69:ed:65:60: e8:44:9c:f2:95:35:63:f7:20:52:d8:6c:fc:87:c7: 68:38:79:7e:d6:68:91:01:81:1d:df:90:ce:ce:a3: 50:3f:1b:c0:bf:53:3c:cd:58:4b:8d:5f:e6:d4:e7: fd:92:92:e3:e5:3e:45:3b:55:1a:cb:b7:c7:ae:70: 3f:bb:13:a8:5e:1a:87:74:34:ec:06:f5:57:e2:59: 3d:62:c4:aa:2c:97:5d:0a:f4:f9:d8:68:41:c7:22: 11:1b:85:1b:2c:20:fd:f5:50:4f:31:d9:0b:d3:f1: 38:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AD:14:97:24:10:7E:FE:C1:04:B5:33:AB:4D:F7:53:99:71:97:EF X509v3 Authority Key Identifier: keyid:5C:EE:7A:BA:DC:1C:D5:36:47:E2:B2:0B:76:0D:5A:5C:7A:B1:A7:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:06:3b:22:82:65:b6:10:53:67:3f:32:31:80:2c:ce:fe:d2: 76:b6:76:dc:f9:56:51:24:93:d1:9b:25:61:e4:f4:49:27:90: 5e:8e:d5:89:c4:0f:25:8f:c6:9b:62:54:35:5f:47:04:7a:f6: d7:4d:93:fb:bb:fe:73:91:71:90:bc:c9:3d:af:17:fc:7f:f2: f4:7f:0f:52:15:7f:ce:53:92:91:dc:a1:1d:37:69:9f:1b:ee: 92:59:27:9e:b7:1f:2e:2b:83:42:ce:94:c8:59:2e:76:27:d7: ee:c5:3e:d5:17:3b:9c:a7:e7:37:4d:f7:70:0e:e1:2e:4e:51: de:27:38:fa:d9:2b:60:3e:35:dc:52:c3:a3:9d:37:d1:fc:6c: aa:7f:24:56:28:7d:c4:02:c6:35:c4:e4:68:f6:50:b2:f1:3e: 87:23:d9:b2:e6:2d:63:e5:be:c0:fc:85:f7:22:6b:56:91:3d: 72:19:74:e5:f1:c4:62:2a:e0:fc:74:e0:da:f4:29:c3:5d:22: 62:9f:75:75:b8:3d:22:cd:7c:1f:da:dd:71:5d:0d:ac:0f:21: 96:63:64:56:44:60:9e:52:ee:2d:f9:5c:2a:ba:1f:22:cb:91: ff:1e:01:05:6a:ee:30:2f:8c:04:d2:23:4a:c6:11:b1:3c:7b: 50:e4:69:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD2GjXCP3C8bqTHjWc09eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjZWU3YWJhZGMxY2Q1MzY0N2UyYjIwYjc2MGQ1YTVjN2Fi MWE3Y2MwHhcNMjYwMjA5MTEwMDMwWhcNMjYwMjEwMTEwMDMwWjAzMTEwLwYDVQQD Eyg5MmFkMTQ5NzI0MTA3ZWZlYzEwNGI1MzNhYjRkZjc1Mzk5NzE5N2VmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsL36ja4s0pUEsS7xG6cK/ZLT+hBy Cn+xsDFwg9em2bWYcGJpViNLHmkPGHa3FtSfS8YoDUuWkrQkR1SkwR2LRZtN5a/1 XBZWXqMydAHvy6nMApTx2igVxia7rSfMXPFzhLhroyPXALjKPi48BU4ChC4tn3cC FjSJaKnf7yTRt81sXvY/OgKK6n2iJcW9SXqD3mntZWDoRJzylTVj9yBS2Gz8h8do OHl+1miRAYEd35DOzqNQPxvAv1M8zVhLjV/m1Of9kpLj5T5FO1Uay7fHrnA/uxOo XhqHdDTsBvVX4lk9YsSqLJddCvT52GhBxyIRG4UbLCD99VBPMdkL0/E4pwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJKtFJckEH7+wQS1M6tN91OZcZfvMB8GA1UdIwQY MBaAFFzuerrcHNU2R+KyC3YNWlx6safMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWE81NnV0d2MxVFpINHJJTGRnMWFYSHF4cDh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi81MGMyMDUtMjE4OS00NzM0LTk2NDgt NDg2YThjZGRkYmU4LzEvWE81NnV0d2MxVFpINHJJTGRnMWFYSHF4cDh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi81MGMyMDUtMjE4OS00NzM0LTk2NDgtNDg2YThjZGRkYmU4 LzEvWE81NnV0d2MxVFpINHJJTGRnMWFYSHF4cDh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbwY7IoJl thBTZz8yMYAszv7SdrZ23PlWUSST0ZslYeT0SSeQXo7VicQPJY/Gm2JUNV9HBHr2 102T+7v+c5FxkLzJPa8X/H/y9H8PUhV/zlOSkdyhHTdpnxvuklknnrcfLiuDQs6U yFkudifX7sU+1Rc7nKfnN033cA7hLk5R3ic4+tkrYD413FLDo5030fxsqn8kVih9 xALGNcTkaPZQsvE+hyPZsuYtY+W+wPyF9yJrVpE9chl05fHEYirg/HTg2vQpw10i Yp91dbg9Is18H9rdcV0NrA8hlmNkVkRgnlLuLflcKrofIsuR/x4BBWruMC+MBNIj SsYRsTx7UORpPw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:22 2026 by rpki-client