This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.mft File: X765nwZBwgALrAWjJrQYpMApS3o.mft (raw, json) Hash identifier: 7O9ikweCvozPFEOZfzrHw8Lc7UZfLVQmndSPCCJQ/8E= Subject key identifier: 11:0E:94:D4:85:1A:8B:88:82:EE:FA:23:00:77:C6:D3:0A:AD:75:8F Authority key identifier: 5F:BE:B9:9F:06:41:C2:00:0B:AC:05:A3:26:B4:18:A4:C0:29:4B:7A Certificate issuer: /CN=5fbeb99f0641c2000bac05a326b418a4c0294b7a Certificate serial: 019C432244DDD34177C62DBE985AE0AEC284 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X765nwZBwgALrAWjJrQYpMApS3o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.mft Manifest number: 0302 Signing time: Mon 09 Feb 2026 16:00:44 +0000 Manifest this update: Mon 09 Feb 2026 16:00:44 +0000 Manifest next update: Tue 10 Feb 2026 16:00:44 +0000 Files and hashes: 1: X765nwZBwgALrAWjJrQYpMApS3o.crl (hash: s9g42bABk+irzoFt0edd0QF02kjQiMrqOij8gTdUO04=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.crl rsync://rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.mft rsync://rpki.ripe.net/repository/DEFAULT/X765nwZBwgALrAWjJrQYpMApS3o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:44:dd:d3:41:77:c6:2d:be:98:5a:e0:ae:c2:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5fbeb99f0641c2000bac05a326b418a4c0294b7a Validity Not Before: Feb 9 16:00:44 2026 GMT Not After : Feb 10 16:00:44 2026 GMT Subject: CN=110e94d4851a8b8882eefa230077c6d30aad758f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5a:84:18:b9:34:00:25:18:ce:ea:dd:45:ad: 19:44:aa:17:d6:db:b7:ec:ac:cc:68:d8:e8:a4:e7: d6:97:e1:62:9b:24:5a:2e:79:7d:a1:90:c5:ad:9b: ed:d7:fc:62:7f:4e:7f:46:20:14:be:f2:cc:29:33: e8:04:34:55:9b:d6:c5:8f:0b:c2:c4:a8:e8:d2:af: e1:8d:59:33:05:34:a9:c1:d6:25:5c:72:7f:90:4a: a9:be:2c:55:ad:ed:ce:f6:7c:41:5c:ee:63:9e:2e: 3d:ea:03:25:28:03:6d:6f:ea:cf:ee:e8:79:2d:cb: fc:3e:2e:24:94:e5:3c:f3:b5:40:bb:02:36:1b:56: d2:5a:e6:e6:00:a6:08:b8:a2:a6:fb:ba:70:db:b4: 85:5f:6d:90:44:96:58:e4:0c:e8:c4:b2:c0:bb:91: d7:01:95:3e:80:5b:6b:6c:f7:bc:52:9c:4d:22:b9: 39:26:df:8f:ce:e5:3f:43:77:29:db:d3:94:65:3f: de:ab:83:11:38:3b:46:e6:a5:fd:0a:30:7d:f7:f2: 6d:c1:37:ed:3a:57:b2:8d:48:01:18:c1:19:3f:a3: e1:33:e7:95:4b:f0:f3:90:d9:3c:47:3c:5f:ef:10: 2e:6f:54:06:c4:99:73:6d:ae:e7:03:83:6c:b4:ee: b5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:0E:94:D4:85:1A:8B:88:82:EE:FA:23:00:77:C6:D3:0A:AD:75:8F X509v3 Authority Key Identifier: keyid:5F:BE:B9:9F:06:41:C2:00:0B:AC:05:A3:26:B4:18:A4:C0:29:4B:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X765nwZBwgALrAWjJrQYpMApS3o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:94:ec:b1:48:69:6d:03:c8:5f:53:43:c3:f1:9c:aa:7d:ed: 82:3c:65:e3:25:a6:c1:b5:2b:e1:b4:69:39:d5:05:7a:d6:b1: cb:2e:85:fd:ce:05:02:04:e7:ba:16:5f:a5:d8:99:05:08:12: 1c:68:75:13:a1:ba:98:6b:81:92:3f:6e:9d:1b:f9:8d:8d:6b: 5b:b0:fe:11:60:56:ff:23:52:58:e1:74:3c:fb:51:19:7f:e9: c5:4f:ea:84:79:09:b3:6f:c7:0c:b9:f8:c7:fd:2a:97:bb:19: 18:20:b9:8f:84:a7:d7:9b:10:7c:d4:a6:9f:e8:47:26:32:26: 44:60:43:87:20:f9:cd:6d:c5:e7:ab:b6:2b:f2:fa:aa:fe:15: 99:8a:a9:78:b5:89:e1:26:e8:47:12:b3:65:e1:7b:91:cb:a9: 7e:8c:c0:e1:e6:47:32:69:d0:1b:1e:05:cd:15:69:b9:a8:52: 2c:de:ec:0c:99:b9:8d:0e:bd:a4:ce:c4:e5:0c:06:f3:5a:81: 3f:1d:91:87:d6:86:aa:8d:c4:7f:a8:6a:15:45:a5:b3:8b:2e: 9b:2a:17:34:83:18:f1:4d:ec:bd:25:33:3f:54:f1:5c:61:fa: be:71:f0:24:bf:8f:ff:fa:d1:25:7f:47:a2:fb:18:b7:63:27: df:5c:5d:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkTd00F3xi2+mFrgrsKEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmYmViOTlmMDY0MWMyMDAwYmFjMDVhMzI2YjQxOGE0YzAy OTRiN2EwHhcNMjYwMjA5MTYwMDQ0WhcNMjYwMjEwMTYwMDQ0WjAzMTEwLwYDVQQD EygxMTBlOTRkNDg1MWE4Yjg4ODJlZWZhMjMwMDc3YzZkMzBhYWQ3NThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlqEGLk0ACUYzurdRa0ZRKoX1tu3 7KzMaNjopOfWl+FimyRaLnl9oZDFrZvt1/xif05/RiAUvvLMKTPoBDRVm9bFjwvC xKjo0q/hjVkzBTSpwdYlXHJ/kEqpvixVre3O9nxBXO5jni496gMlKANtb+rP7uh5 Lcv8Pi4klOU887VAuwI2G1bSWubmAKYIuKKm+7pw27SFX22QRJZY5AzoxLLAu5HX AZU+gFtrbPe8UpxNIrk5Jt+PzuU/Q3cp29OUZT/eq4MRODtG5qX9CjB99/JtwTft OleyjUgBGMEZP6PhM+eVS/DzkNk8Rzxf7xAub1QGxJlzba7nA4NstO615QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBEOlNSFGouIgu76IwB3xtMKrXWPMB8GA1UdIwQY MBaAFF++uZ8GQcIAC6wFoya0GKTAKUt6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDc2NW53WkJ3Z0FMckFXakpyUVlwTUFwUzNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS82NTNkYWMtYTY5Yy00OGU1LWI3Yzgt NTc1YTIwODA4OTZhLzEvWDc2NW53WkJ3Z0FMckFXakpyUVlwTUFwUzNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS82NTNkYWMtYTY5Yy00OGU1LWI3YzgtNTc1YTIwODA4OTZh LzEvWDc2NW53WkJ3Z0FMckFXakpyUVlwTUFwUzNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMpTssUhp bQPIX1NDw/Gcqn3tgjxl4yWmwbUr4bRpOdUFetaxyy6F/c4FAgTnuhZfpdiZBQgS HGh1E6G6mGuBkj9unRv5jY1rW7D+EWBW/yNSWOF0PPtRGX/pxU/qhHkJs2/HDLn4 x/0ql7sZGCC5j4Sn15sQfNSmn+hHJjImRGBDhyD5zW3F56u2K/L6qv4VmYqpeLWJ 4SboRxKzZeF7kcupfozA4eZHMmnQGx4FzRVpuahSLN7sDJm5jQ69pM7E5QwG81qB Px2Rh9aGqo3Ef6hqFUWls4sumyoXNIMY8U3svSUzP1TxXGH6vnHwJL+P//rRJX9H ovsYt2Mn31xdVA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:11 2026 by rpki-client