This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/d59c75-04a7-429b-86a3-1448aaf92e26/1/RPXOs0u3ciiYLs9BpAD6sQRtlmw.mft File: RPXOs0u3ciiYLs9BpAD6sQRtlmw.mft (raw, json) Hash identifier: qenS011ISTyw3e/TiGnVTdEFGcLosO2JTqKXM9HLVBE= Subject key identifier: 45:63:D5:D8:15:FF:F8:BC:2B:6A:4D:CE:46:67:F4:34:51:BC:81:4A Authority key identifier: 44:F5:CE:B3:4B:B7:72:28:98:2E:CF:41:A4:00:FA:B1:04:6D:96:6C Certificate issuer: /CN=44f5ceb34bb77228982ecf41a400fab1046d966c Certificate serial: 019C416AF5923D06D62D376C15EECEA8D843 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPXOs0u3ciiYLs9BpAD6sQRtlmw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/d59c75-04a7-429b-86a3-1448aaf92e26/1/RPXOs0u3ciiYLs9BpAD6sQRtlmw.mft Manifest number: 108F Signing time: Mon 09 Feb 2026 08:00:54 +0000 Manifest this update: Mon 09 Feb 2026 08:00:54 +0000 Manifest next update: Tue 10 Feb 2026 08:00:54 +0000 Files and hashes: 1: RPXOs0u3ciiYLs9BpAD6sQRtlmw.crl (hash: aLbABpnt/Bf/ByyJb8yEwJYRNbfoZPoBsXPQWrH3XfM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/d59c75-04a7-429b-86a3-1448aaf92e26/1/RPXOs0u3ciiYLs9BpAD6sQRtlmw.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/d59c75-04a7-429b-86a3-1448aaf92e26/1/RPXOs0u3ciiYLs9BpAD6sQRtlmw.mft rsync://rpki.ripe.net/repository/DEFAULT/RPXOs0u3ciiYLs9BpAD6sQRtlmw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:f5:92:3d:06:d6:2d:37:6c:15:ee:ce:a8:d8:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44f5ceb34bb77228982ecf41a400fab1046d966c Validity Not Before: Feb 9 08:00:54 2026 GMT Not After : Feb 10 08:00:54 2026 GMT Subject: CN=4563d5d815fff8bc2b6a4dce4667f43451bc814a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7b:dc:1c:f6:9d:ee:9c:60:c2:b5:3a:b6:c1: 2e:6e:4f:de:e6:25:e1:23:a9:8c:5e:41:fe:3a:bb: 21:c0:86:18:83:55:24:42:b7:37:1f:a8:58:8c:5a: fd:b6:e5:fc:5b:78:7f:9c:17:db:99:5d:6d:0b:b0: 6a:5e:ce:82:4c:9e:15:66:2b:12:c0:fa:d0:2e:10: ef:ce:a1:97:ef:d0:65:75:07:e4:db:77:67:ff:db: 33:b1:1f:ab:ab:6c:71:4c:92:69:cc:88:9b:53:9b: 46:ae:68:b2:ba:a0:16:e8:44:66:a7:a5:27:a0:d7: 65:7e:ec:ec:8a:0c:c0:dc:61:04:9c:9a:fc:51:6b: 02:83:a0:6d:7d:4c:a2:ec:a1:02:db:bf:e9:d2:c0: d7:b2:f6:ff:b0:cc:50:6d:91:78:3a:4d:91:8e:4e: a6:f7:c0:b6:38:1f:f9:5c:2e:6a:3c:a3:61:59:90: db:53:47:45:b5:e0:17:d9:e8:a7:09:c2:ee:e4:a2: d3:55:c6:84:f7:53:eb:27:0d:de:37:a0:72:eb:cd: 12:da:30:45:14:e6:fa:a9:0d:11:32:5f:29:6d:80: 36:05:56:62:ca:43:a5:4d:af:12:e8:25:61:3a:9f: c0:a0:0f:d0:b1:2d:d4:4d:2f:4f:5d:b3:96:df:3b: 7f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:63:D5:D8:15:FF:F8:BC:2B:6A:4D:CE:46:67:F4:34:51:BC:81:4A X509v3 Authority Key Identifier: keyid:44:F5:CE:B3:4B:B7:72:28:98:2E:CF:41:A4:00:FA:B1:04:6D:96:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPXOs0u3ciiYLs9BpAD6sQRtlmw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/d59c75-04a7-429b-86a3-1448aaf92e26/1/RPXOs0u3ciiYLs9BpAD6sQRtlmw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/d59c75-04a7-429b-86a3-1448aaf92e26/1/RPXOs0u3ciiYLs9BpAD6sQRtlmw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ab:d6:6e:fc:05:79:55:3a:a1:1a:6a:9e:af:12:2a:ad:0b: ab:86:37:0c:c0:6e:f3:8a:f5:43:0a:23:9c:f6:a9:44:d6:af: d5:28:4f:41:8e:15:77:83:34:3a:29:dd:aa:33:be:98:eb:8b: 92:ba:6c:11:eb:e2:22:70:11:fa:13:1e:41:9d:60:40:97:05: 4b:81:37:a4:92:16:43:4a:86:ed:de:ef:a6:3f:f4:20:a4:75: 1a:9c:df:f5:4d:2e:19:35:e2:e4:2e:5a:64:f0:9a:88:92:92: 80:30:87:ab:2c:fa:cf:0a:54:af:ca:3c:0f:90:4a:11:98:b8: 94:cc:dd:e6:00:b7:7a:7b:2b:79:ca:4a:98:4a:11:f0:f6:c7: 4e:d8:1c:ab:13:c9:05:63:56:b7:8a:cf:85:56:95:3b:5f:d1: 89:d8:65:95:69:10:68:a0:c3:cc:94:5c:7e:0b:b1:72:5f:81: 7c:b8:09:19:a0:13:ae:02:10:85:e0:34:cc:45:ab:a6:92:cb: 37:ce:3c:ab:b4:99:1c:4b:8e:bc:9b:80:01:44:2e:23:d9:39: 32:14:ac:e8:b3:c3:4b:ef:c8:51:1d:83:bd:df:f4:6f:9b:92: 99:9b:67:72:1f:82:d3:0e:3e:b7:7c:7f:69:fc:1c:6d:d3:46: 55:55:61:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBavWSPQbWLTdsFe7OqNhDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0ZjVjZWIzNGJiNzcyMjg5ODJlY2Y0MWE0MDBmYWIxMDQ2 ZDk2NmMwHhcNMjYwMjA5MDgwMDU0WhcNMjYwMjEwMDgwMDU0WjAzMTEwLwYDVQQD Eyg0NTYzZDVkODE1ZmZmOGJjMmI2YTRkY2U0NjY3ZjQzNDUxYmM4MTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXvcHPad7pxgwrU6tsEubk/e5iXh I6mMXkH+OrshwIYYg1UkQrc3H6hYjFr9tuX8W3h/nBfbmV1tC7BqXs6CTJ4VZisS wPrQLhDvzqGX79BldQfk23dn/9szsR+rq2xxTJJpzIibU5tGrmiyuqAW6ERmp6Un oNdlfuzsigzA3GEEnJr8UWsCg6BtfUyi7KEC27/p0sDXsvb/sMxQbZF4Ok2Rjk6m 98C2OB/5XC5qPKNhWZDbU0dFteAX2einCcLu5KLTVcaE91PrJw3eN6By680S2jBF FOb6qQ0RMl8pbYA2BVZiykOlTa8S6CVhOp/AoA/QsS3UTS9PXbOW3zt/9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEVj1dgV//i8K2pNzkZn9DRRvIFKMB8GA1UdIwQY MBaAFET1zrNLt3IomC7PQaQA+rEEbZZsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlBYT3MwdTNjaWlZTHM5QnBBRDZzUVJ0bG13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9kNTljNzUtMDRhNy00MjliLTg2YTMt MTQ0OGFhZjkyZTI2LzEvUlBYT3MwdTNjaWlZTHM5QnBBRDZzUVJ0bG13Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9kNTljNzUtMDRhNy00MjliLTg2YTMtMTQ0OGFhZjkyZTI2 LzEvUlBYT3MwdTNjaWlZTHM5QnBBRDZzUVJ0bG13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfavWbvwF eVU6oRpqnq8SKq0Lq4Y3DMBu84r1QwojnPapRNav1ShPQY4Vd4M0OindqjO+mOuL krpsEeviInAR+hMeQZ1gQJcFS4E3pJIWQ0qG7d7vpj/0IKR1Gpzf9U0uGTXi5C5a ZPCaiJKSgDCHqyz6zwpUr8o8D5BKEZi4lMzd5gC3ensrecpKmEoR8PbHTtgcqxPJ BWNWt4rPhVaVO1/RidhllWkQaKDDzJRcfguxcl+BfLgJGaATrgIQheA0zEWrppLL N848q7SZHEuOvJuAAUQuI9k5MhSs6LPDS+/IUR2Dvd/0b5uSmZtnch+C0w4+t3x/ afwcbdNGVVVhrg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:05 2026 by rpki-client