This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/c81297-62b7-49fb-ba3f-2560f8690cd2/1/XM8SiZ81jRw0GiB_3iHUPHCmlF4.mft File: XM8SiZ81jRw0GiB_3iHUPHCmlF4.mft (raw, json) Hash identifier: d5sSC5uTKKIF14PjSYVtfmV+ETH50pKnkwh0IxPCvdk= Subject key identifier: 8D:8F:B9:7A:B0:1A:67:33:D5:35:E1:67:DF:BE:92:35:13:28:DD:89 Authority key identifier: 5C:CF:12:89:9F:35:8D:1C:34:1A:20:7F:DE:21:D4:3C:70:A6:94:5E Certificate issuer: /CN=5ccf12899f358d1c341a207fde21d43c70a6945e Certificate serial: 019C44348E6401B81787ED76780249F194E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM8SiZ81jRw0GiB_3iHUPHCmlF4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/c81297-62b7-49fb-ba3f-2560f8690cd2/1/XM8SiZ81jRw0GiB_3iHUPHCmlF4.mft Manifest number: 0458 Signing time: Mon 09 Feb 2026 21:00:20 +0000 Manifest this update: Mon 09 Feb 2026 21:00:20 +0000 Manifest next update: Tue 10 Feb 2026 21:00:20 +0000 Files and hashes: 1: XM8SiZ81jRw0GiB_3iHUPHCmlF4.crl (hash: 5/jIU9Hlb0aNSbD6k2XjPyZeGEB/kMcv4jMvCZ+EWH0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/c81297-62b7-49fb-ba3f-2560f8690cd2/1/XM8SiZ81jRw0GiB_3iHUPHCmlF4.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/c81297-62b7-49fb-ba3f-2560f8690cd2/1/XM8SiZ81jRw0GiB_3iHUPHCmlF4.mft rsync://rpki.ripe.net/repository/DEFAULT/XM8SiZ81jRw0GiB_3iHUPHCmlF4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:8e:64:01:b8:17:87:ed:76:78:02:49:f1:94:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ccf12899f358d1c341a207fde21d43c70a6945e Validity Not Before: Feb 9 21:00:20 2026 GMT Not After : Feb 10 21:00:20 2026 GMT Subject: CN=8d8fb97ab01a6733d535e167dfbe92351328dd89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2d:ae:be:de:a1:ec:23:92:7b:52:19:f7:96: 5c:d8:32:c5:f7:e3:e4:3f:a0:f2:40:35:0a:26:95: 40:6f:6e:01:87:71:9d:48:f7:d5:95:5a:f6:c5:a6: 16:c6:8c:c1:22:9a:55:f0:f5:09:f0:84:1e:46:d5: 71:d4:af:55:41:ec:e4:2b:12:c2:da:39:d2:24:b8: 26:6b:4e:18:ff:3d:cf:31:79:66:3b:42:f3:72:d1: 4e:41:b1:8b:52:41:65:04:aa:c5:8d:d1:64:fb:83: 7b:96:f8:7a:a4:bb:58:9e:ff:e2:f1:9f:1d:75:0e: 5b:6e:6a:8a:4c:97:80:ed:a9:05:15:80:be:72:6c: 78:30:c8:72:6b:d5:10:77:68:7b:c0:0c:1c:43:95: 5e:cc:c5:2c:fb:c6:af:55:8b:47:b2:02:2f:f5:a1: 04:39:9f:78:39:f8:20:34:06:92:9f:df:74:3d:d7: 44:3b:27:54:2d:43:a8:00:ad:11:bb:1f:94:d6:75: 83:f8:a6:6a:1f:9e:40:39:0b:34:ff:e1:09:15:a4: 50:f4:83:c7:fc:e7:ea:b4:b1:40:eb:24:10:7c:20: 1f:b2:f7:df:1e:b7:19:a5:a6:69:51:a4:73:3a:54: ee:7b:4d:7b:fe:d5:65:d1:3b:4e:6a:c5:60:73:1f: c6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:8F:B9:7A:B0:1A:67:33:D5:35:E1:67:DF:BE:92:35:13:28:DD:89 X509v3 Authority Key Identifier: keyid:5C:CF:12:89:9F:35:8D:1C:34:1A:20:7F:DE:21:D4:3C:70:A6:94:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM8SiZ81jRw0GiB_3iHUPHCmlF4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c81297-62b7-49fb-ba3f-2560f8690cd2/1/XM8SiZ81jRw0GiB_3iHUPHCmlF4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c81297-62b7-49fb-ba3f-2560f8690cd2/1/XM8SiZ81jRw0GiB_3iHUPHCmlF4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:5e:16:29:be:e3:c8:d3:a5:c1:b4:4e:ba:25:94:25:e2:f3: 5d:f3:da:45:33:3a:de:e8:f3:74:c8:c4:50:2a:ee:10:97:c9: 97:bd:1c:dc:fc:2c:62:6e:8d:be:0e:84:22:66:a7:c2:a5:32: 88:a7:f6:ac:b7:aa:4e:94:28:40:cd:be:fc:7b:33:ed:63:43: d6:7d:5b:01:7d:fa:14:db:cd:f6:dc:5d:35:ff:78:6f:6b:9f: 71:d4:e8:23:fa:42:a7:d1:79:bc:ae:d4:5c:3b:d5:c8:9c:36: 77:3e:b4:31:7a:40:15:ca:02:16:23:6b:d3:8b:84:c3:f0:5e: 54:51:4d:a3:98:0e:aa:93:e0:36:cb:b8:98:ea:1b:c2:65:3b: 16:b6:70:c0:1a:b9:59:2c:42:16:a3:47:42:2e:0e:4d:dc:e0: df:49:69:a2:50:ee:53:4a:be:5e:01:77:6e:ad:1e:06:88:52: b3:d9:9b:17:a9:f7:f5:f7:a5:42:e7:e2:05:a5:52:f3:4d:0c: 02:58:03:e6:bd:50:e9:45:a9:39:f3:d1:29:af:22:94:89:5d: 51:24:b3:f3:74:0d:9d:00:96:5e:03:5a:f8:de:7b:8b:0a:48: a8:78:22:0a:f1:fb:47:28:a5:02:e2:be:7a:b4:00:01:5e:ca: ea:18:18:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENI5kAbgXh+12eAJJ8ZTnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjY2YxMjg5OWYzNThkMWMzNDFhMjA3ZmRlMjFkNDNjNzBh Njk0NWUwHhcNMjYwMjA5MjEwMDIwWhcNMjYwMjEwMjEwMDIwWjAzMTEwLwYDVQQD Eyg4ZDhmYjk3YWIwMWE2NzMzZDUzNWUxNjdkZmJlOTIzNTEzMjhkZDg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2y2uvt6h7COSe1IZ95Zc2DLF9+Pk P6DyQDUKJpVAb24Bh3GdSPfVlVr2xaYWxozBIppV8PUJ8IQeRtVx1K9VQezkKxLC 2jnSJLgma04Y/z3PMXlmO0LzctFOQbGLUkFlBKrFjdFk+4N7lvh6pLtYnv/i8Z8d dQ5bbmqKTJeA7akFFYC+cmx4MMhya9UQd2h7wAwcQ5VezMUs+8avVYtHsgIv9aEE OZ94OfggNAaSn990PddEOydULUOoAK0Rux+U1nWD+KZqH55AOQs0/+EJFaRQ9IPH /OfqtLFA6yQQfCAfsvffHrcZpaZpUaRzOlTue017/tVl0TtOasVgcx/GBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI2PuXqwGmcz1TXhZ9++kjUTKN2JMB8GA1UdIwQY MBaAFFzPEomfNY0cNBogf94h1DxwppReMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWE04U2laODFqUncwR2lCXzNpSFVQSENtbEY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9jODEyOTctNjJiNy00OWZiLWJhM2Yt MjU2MGY4NjkwY2QyLzEvWE04U2laODFqUncwR2lCXzNpSFVQSENtbEY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS9jODEyOTctNjJiNy00OWZiLWJhM2YtMjU2MGY4NjkwY2Qy LzEvWE04U2laODFqUncwR2lCXzNpSFVQSENtbEY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKl4WKb7j yNOlwbROuiWUJeLzXfPaRTM63ujzdMjEUCruEJfJl70c3PwsYm6Nvg6EImanwqUy iKf2rLeqTpQoQM2+/Hsz7WND1n1bAX36FNvN9txdNf94b2ufcdToI/pCp9F5vK7U XDvVyJw2dz60MXpAFcoCFiNr04uEw/BeVFFNo5gOqpPgNsu4mOobwmU7FrZwwBq5 WSxCFqNHQi4OTdzg30lpolDuU0q+XgF3bq0eBohSs9mbF6n39felQufiBaVS800M AlgD5r1Q6UWpOfPRKa8ilIldUSSz83QNnQCWXgNa+N57iwpIqHgiCvH7RyilAuK+ erQAAV7K6hgY2Q== -----END CERTIFICATE-----Generated at Tue Feb 10 02:50:10 2026 by rpki-client