This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft File: xLejOGcjuooupILHtoAxpUEirE8.mft (raw, json) Hash identifier: Oos9ndfn8P7oe9TNgdC48h3UMVjUvdnKAwRj24I8W30= Subject key identifier: DB:06:48:EA:F6:EC:3D:E7:69:39:6E:BD:21:FF:5F:25:E3:29:55:BA Authority key identifier: C4:B7:A3:38:67:23:BA:8A:2E:A4:82:C7:B6:80:31:A5:41:22:AC:4F Certificate issuer: /CN=c4b7a3386723ba8a2ea482c7b68031a54122ac4f Certificate serial: 019C420F9C865B5264CC8A47C68D25B5167C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft Manifest number: 0676 Signing time: Mon 09 Feb 2026 11:00:45 +0000 Manifest this update: Mon 09 Feb 2026 11:00:45 +0000 Manifest next update: Tue 10 Feb 2026 11:00:45 +0000 Files and hashes: 1: Mk6KT-G0Nd_n-6Ue0npJ0Pqa4CI.roa (hash: 2cQhzB6rvIgJcWKL8JGJ8AUuDd5CAqSH0lZjme07urY=) 2: xLejOGcjuooupILHtoAxpUEirE8.crl (hash: MdllEyeF2O/Lzr77NGu7UOXce6UNHdPAl3qIiOl7jvY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:9c:86:5b:52:64:cc:8a:47:c6:8d:25:b5:16:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c4b7a3386723ba8a2ea482c7b68031a54122ac4f Validity Not Before: Feb 9 11:00:45 2026 GMT Not After : Feb 10 11:00:45 2026 GMT Subject: CN=db0648eaf6ec3de769396ebd21ff5f25e32955ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d0:d1:49:a1:48:cb:24:79:46:51:d6:36:19: 79:ad:0e:4c:43:10:4f:92:34:18:f5:ed:42:fe:d7: 4a:3c:82:6d:cb:a0:51:51:83:e3:3b:85:a2:15:7b: e1:bf:62:60:34:4d:ee:8b:8e:66:21:63:d4:01:34: 87:39:c5:35:ee:c2:f0:20:8e:a5:2a:8c:fe:ee:f6: 85:7f:86:39:41:90:7f:71:1f:3e:d0:a1:75:df:8f: bd:52:4d:3f:99:26:62:43:ec:22:70:ab:e8:f6:11: 24:04:69:eb:8b:95:ff:7e:01:d0:f7:18:9f:c6:22: 29:a2:02:10:f0:aa:1d:14:c9:c3:35:6b:27:64:22: ee:e9:8e:f4:c8:24:a3:9e:d3:9c:53:34:98:e4:7e: 61:d0:bc:77:27:49:d0:d3:79:1c:c7:f3:9e:0f:75: c0:b6:15:73:d0:b5:fb:58:f0:b9:74:77:23:75:08: 4b:a8:ca:23:14:2f:9e:d4:60:e4:e0:e1:20:0f:50: 47:d8:c7:c1:07:f7:04:30:18:96:66:fa:e0:06:d2: 9c:c1:3b:ca:81:d3:d9:85:88:24:ca:a4:12:43:d7: c2:2d:3d:ef:82:0e:47:bd:e0:70:83:79:b2:17:cd: 14:8e:12:f0:e2:db:e1:24:61:13:e9:d8:d4:d6:8c: 06:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:06:48:EA:F6:EC:3D:E7:69:39:6E:BD:21:FF:5F:25:E3:29:55:BA X509v3 Authority Key Identifier: keyid:C4:B7:A3:38:67:23:BA:8A:2E:A4:82:C7:B6:80:31:A5:41:22:AC:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:bc:a5:25:24:21:42:bd:b0:59:ea:32:93:67:31:1b:fd:d8: 26:d2:e7:27:5a:c2:0b:a4:20:9b:72:b0:db:18:96:53:d8:b7: 72:44:0b:7f:e3:4e:75:cc:7b:23:67:d3:20:d6:4a:36:d2:3f: 0f:01:33:5c:f0:32:fd:db:17:e9:c1:b2:91:b5:da:fb:30:7b: 97:ad:b3:28:8c:e6:b1:ad:4b:a2:96:dd:4d:2a:d0:7b:87:be: 7b:bb:d9:22:83:4d:96:a7:31:e9:42:69:3b:17:d1:8b:bd:57: 05:18:4f:a9:c8:26:22:8c:a7:dd:b7:38:d6:3d:3f:1b:20:a3: 31:d4:ec:b0:8a:cd:51:ed:a7:52:3e:99:db:7d:8b:21:6f:e0: df:be:fa:33:74:e7:42:b0:6d:81:08:8d:37:1e:f3:04:a2:a1: 94:92:80:5e:5c:bc:52:3c:31:4f:77:e5:6a:68:ef:81:0e:71: 5b:0d:8a:2e:6d:58:90:24:6c:5f:a0:59:6f:44:6f:21:1b:62: 46:8c:95:5c:cb:e3:f4:bc:fe:e2:c7:f3:4e:3c:4c:e0:4a:b9: 21:4f:76:eb:8a:6b:c0:d6:41:ab:5a:74:d9:32:3a:1a:fa:9c: 7f:23:d6:cc:3a:36:9b:88:24:4b:38:5c:d4:85:a8:53:df:8b: b5:6f:a0:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD5yGW1JkzIpHxo0ltRZ8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0YjdhMzM4NjcyM2JhOGEyZWE0ODJjN2I2ODAzMWE1NDEy MmFjNGYwHhcNMjYwMjA5MTEwMDQ1WhcNMjYwMjEwMTEwMDQ1WjAzMTEwLwYDVQQD EyhkYjA2NDhlYWY2ZWMzZGU3NjkzOTZlYmQyMWZmNWYyNWUzMjk1NWJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdDRSaFIyyR5RlHWNhl5rQ5MQxBP kjQY9e1C/tdKPIJty6BRUYPjO4WiFXvhv2JgNE3ui45mIWPUATSHOcU17sLwII6l Koz+7vaFf4Y5QZB/cR8+0KF134+9Uk0/mSZiQ+wicKvo9hEkBGnri5X/fgHQ9xif xiIpogIQ8KodFMnDNWsnZCLu6Y70yCSjntOcUzSY5H5h0Lx3J0nQ03kcx/OeD3XA thVz0LX7WPC5dHcjdQhLqMojFC+e1GDk4OEgD1BH2MfBB/cEMBiWZvrgBtKcwTvK gdPZhYgkyqQSQ9fCLT3vgg5HveBwg3myF80UjhLw4tvhJGET6djU1owG3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNsGSOr27D3naTluvSH/XyXjKVW6MB8GA1UdIwQY MBaAFMS3ozhnI7qKLqSCx7aAMaVBIqxPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveExlak9HY2p1b291cElMSHRvQXhwVUVpckU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9hYTdiZjYtNjUyNS00Mzk0LTgwYmEt YmQ0MGRmYWU3ODg2LzEveExlak9HY2p1b291cElMSHRvQXhwVUVpckU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9hYTdiZjYtNjUyNS00Mzk0LTgwYmEtYmQ0MGRmYWU3ODg2 LzEveExlak9HY2p1b291cElMSHRvQXhwVUVpckU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALbylJSQh Qr2wWeoyk2cxG/3YJtLnJ1rCC6Qgm3Kw2xiWU9i3ckQLf+NOdcx7I2fTINZKNtI/ DwEzXPAy/dsX6cGykbXa+zB7l62zKIzmsa1LopbdTSrQe4e+e7vZIoNNlqcx6UJp OxfRi71XBRhPqcgmIoyn3bc41j0/GyCjMdTssIrNUe2nUj6Z232LIW/g3776M3Tn QrBtgQiNNx7zBKKhlJKAXly8UjwxT3flamjvgQ5xWw2KLm1YkCRsX6BZb0RvIRti RoyVXMvj9Lz+4sfzTjxM4Eq5IU9264prwNZBq1p02TI6GvqcfyPWzDo2m4gkSzhc 1IWoU9+LtW+g7Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:57 2026 by rpki-client