This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft File: xdXOafzPDGu44rJmfh44-5QPPSY.mft (raw, json) Hash identifier: gMApektjRXIZPq0cUBTQpwBc0AE2aWH3337zIUCaBVo= Subject key identifier: D5:2E:E0:9F:F2:0B:A6:CF:9E:90:05:72:6C:A0:E7:68:E2:3E:AB:2B Authority key identifier: C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26 Certificate issuer: /CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26 Certificate serial: 019C438FF920FD8CC3FA26F9AB2328C934EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft Manifest number: 0C7C Signing time: Mon 09 Feb 2026 18:00:34 +0000 Manifest this update: Mon 09 Feb 2026 18:00:34 +0000 Manifest next update: Tue 10 Feb 2026 18:00:34 +0000 Files and hashes: 1: 1-pMzy3XW1_dYsnUwH5bbwkr_jQA.roa (hash: bK9K2skyngCiWtdJ+6ql0BuVrZBCPHHAO74b5mBhnYY=) 2: xdXOafzPDGu44rJmfh44-5QPPSY.crl (hash: 27FrA32ckA9avXoCW/6HnqU/T3mGjBJVAxSgEGIGAfY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:f9:20:fd:8c:c3:fa:26:f9:ab:23:28:c9:34:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26 Validity Not Before: Feb 9 18:00:34 2026 GMT Not After : Feb 10 18:00:34 2026 GMT Subject: CN=d52ee09ff20ba6cf9e9005726ca0e768e23eab2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5b:76:36:65:67:5a:f5:a2:36:31:52:7f:62: 0a:35:f0:66:f8:86:ac:98:e3:a5:14:14:93:a1:ae: a5:46:2d:fa:6b:d3:cf:9f:4c:0f:d5:7b:ef:c9:a2: 26:c4:c9:e8:3b:80:48:71:59:93:b3:c6:f7:db:fb: 63:52:16:09:54:5b:19:07:1e:a8:bf:36:f5:94:6e: 62:f5:72:f8:8d:68:5f:b6:71:c3:2c:78:8b:2f:ad: 08:3b:2c:9f:d3:fa:ce:64:5e:d6:97:73:15:bb:6b: 10:d7:9f:a4:49:90:18:f6:6e:b6:bc:6e:16:00:c9: 63:71:72:dc:fa:96:09:55:cf:4c:d1:34:0c:6a:de: 30:25:5d:96:49:24:b0:f6:4c:9d:ac:21:e6:a2:ed: 37:5e:83:a1:e9:4c:fd:22:e8:f2:76:f0:61:cd:06: a5:e9:91:c4:a5:23:14:55:40:ca:11:55:a1:1f:8b: 01:aa:77:31:06:f7:e7:a6:e6:f7:b5:bd:a5:6f:b2: 2e:85:72:6d:4d:e9:d4:85:6b:c5:f8:41:d4:1e:a9: a8:e2:0d:da:c2:fd:9e:41:5f:82:d9:cb:b7:03:59: 1e:75:4a:58:50:8f:60:00:9a:85:26:d5:11:0a:b8: e2:18:5f:bf:66:86:66:15:d2:c2:55:20:ac:cf:9c: 41:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:2E:E0:9F:F2:0B:A6:CF:9E:90:05:72:6C:A0:E7:68:E2:3E:AB:2B X509v3 Authority Key Identifier: keyid:C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:5b:c4:1e:0b:72:aa:22:eb:09:1b:e4:78:2b:c9:84:84:59: d9:7d:66:83:20:69:48:0e:b5:f5:f5:c6:c9:5d:37:95:bb:bd: 64:ba:04:2d:ae:c9:55:fc:57:26:9d:5f:0b:07:84:c4:77:19: 9c:91:f1:4f:49:01:2e:f2:3f:8b:46:a4:f2:e5:db:95:5f:43: 03:f7:69:29:0b:c5:07:05:f6:ae:53:80:69:e5:8d:57:d6:c3: af:18:ad:df:c5:7f:c3:c6:ac:a0:1f:bb:e5:b3:8b:4f:76:f2: e2:1c:95:0e:1b:68:43:45:9a:60:87:bb:4e:af:7e:b1:2e:45: 85:9c:04:7e:ec:14:e3:7c:64:19:eb:e8:2c:79:b3:89:53:b5: 9f:bb:8d:14:b9:1a:43:e7:e2:0e:3f:06:78:a0:e7:b5:de:2f: b7:b0:90:44:90:b3:c9:c9:1c:b0:93:cd:e2:a8:50:24:f5:c1: 95:9a:9e:72:53:24:61:52:fd:ff:23:0e:0e:36:3d:76:b2:43: e8:c3:c5:2f:f2:8e:8c:bd:c8:eb:3d:27:75:e9:60:f2:cb:36: 3a:7c:ec:19:57:45:59:aa:98:41:a0:23:2e:4e:e9:ca:71:c4: ef:0b:cf:cb:5c:15:69:8f:e2:e0:cb:d7:8d:26:be:d7:50:8b: 6c:71:b2:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj/kg/YzD+ib5qyMoyTTrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1ZDVjZTY5ZmNjZjBjNmJiOGUyYjI2NjdlMWUzOGZiOTQw ZjNkMjYwHhcNMjYwMjA5MTgwMDM0WhcNMjYwMjEwMTgwMDM0WjAzMTEwLwYDVQQD EyhkNTJlZTA5ZmYyMGJhNmNmOWU5MDA1NzI2Y2EwZTc2OGUyM2VhYjJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlt2NmVnWvWiNjFSf2IKNfBm+Ias mOOlFBSToa6lRi36a9PPn0wP1XvvyaImxMnoO4BIcVmTs8b32/tjUhYJVFsZBx6o vzb1lG5i9XL4jWhftnHDLHiLL60IOyyf0/rOZF7Wl3MVu2sQ15+kSZAY9m62vG4W AMljcXLc+pYJVc9M0TQMat4wJV2WSSSw9kydrCHmou03XoOh6Uz9IujydvBhzQal 6ZHEpSMUVUDKEVWhH4sBqncxBvfnpub3tb2lb7IuhXJtTenUhWvF+EHUHqmo4g3a wv2eQV+C2cu3A1kedUpYUI9gAJqFJtURCrjiGF+/ZoZmFdLCVSCsz5xB+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNUu4J/yC6bPnpAFcmyg52jiPqsrMB8GA1UdIwQY MBaAFMXVzmn8zwxruOKyZn4eOPuUDz0mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGRYT2FmelBER3U0NHJKbWZoNDQtNVFQUFNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hMjgyY2QtZWUzMC00OWMzLTljOWUt NDcxZGI3ZWI3MTllLzEveGRYT2FmelBER3U0NHJKbWZoNDQtNVFQUFNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9hMjgyY2QtZWUzMC00OWMzLTljOWUtNDcxZGI3ZWI3MTll LzEveGRYT2FmelBER3U0NHJKbWZoNDQtNVFQUFNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT1vEHgty qiLrCRvkeCvJhIRZ2X1mgyBpSA619fXGyV03lbu9ZLoELa7JVfxXJp1fCweExHcZ nJHxT0kBLvI/i0ak8uXblV9DA/dpKQvFBwX2rlOAaeWNV9bDrxit38V/w8asoB+7 5bOLT3by4hyVDhtoQ0WaYIe7Tq9+sS5FhZwEfuwU43xkGevoLHmziVO1n7uNFLka Q+fiDj8GeKDntd4vt7CQRJCzyckcsJPN4qhQJPXBlZqeclMkYVL9/yMODjY9drJD 6MPFL/KOjL3I6z0ndelg8ss2OnzsGVdFWaqYQaAjLk7pynHE7wvPy1wVaY/i4MvX jSa+11CLbHGyUg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:48 2026 by rpki-client