This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft File: XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft (raw, json) Hash identifier: i+ywe57DO5Mz5EsZVxZcCqRmFVcPhN4scQpCDWeJaog= Subject key identifier: 66:D4:45:31:62:6B:96:8C:41:5F:16:FD:E1:D5:7F:BB:98:D9:D6:2E Authority key identifier: 5E:D6:77:2B:90:21:2E:57:72:49:F7:35:6C:21:8E:D1:06:8B:67:76 Certificate issuer: /CN=5ed6772b90212e577249f7356c218ed1068b6776 Certificate serial: 019C432293D8BD649A93F5457DDDE008DF5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 16:01:05 +0000 Manifest this update: Mon 09 Feb 2026 16:01:05 +0000 Manifest next update: Tue 10 Feb 2026 16:01:05 +0000 Files and hashes: 1: XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl (hash: gGDhcax7SsjQpzVjg9PRoMAg4XJsSxi/m9GzTfxymO8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:93:d8:bd:64:9a:93:f5:45:7d:dd:e0:08:df:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ed6772b90212e577249f7356c218ed1068b6776 Validity Not Before: Feb 9 16:01:05 2026 GMT Not After : Feb 10 16:01:05 2026 GMT Subject: CN=66d44531626b968c415f16fde1d57fbb98d9d62e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3e:6a:72:4f:17:90:54:36:99:14:30:a9:dc: e5:89:5c:5b:f4:ad:14:4d:41:2a:ac:eb:11:c1:83: 55:dd:7b:1e:61:ad:28:da:f7:33:de:e6:55:48:3f: f5:c6:df:94:94:71:1a:17:01:2e:a4:4a:76:01:24: ea:73:64:62:80:7c:ed:4a:95:2a:d1:01:70:bf:4a: e8:2f:01:d9:bb:f9:4c:cc:9f:b4:78:10:4e:38:53: 90:55:4d:e7:5e:6e:c7:10:04:83:bd:e5:02:27:85: 00:3b:6f:02:ba:06:93:c3:ab:74:3d:dc:bd:1b:02: 78:bb:6d:93:02:29:f2:32:cd:66:ce:a5:b0:fc:18: ac:4f:7b:6e:b5:41:6d:e6:0f:bf:c6:2a:74:59:50: 2b:37:87:51:eb:05:21:36:1e:84:dc:36:8a:ae:fa: 3c:55:69:ac:6c:72:09:5f:8d:76:c6:1a:7e:6b:1f: 5f:61:a1:b8:8f:b0:9b:b1:ba:7e:b6:a3:71:a9:70: 8a:aa:e1:98:c2:ba:ab:df:fa:24:90:a6:c1:be:00: 54:cf:79:52:61:52:99:3b:8b:e7:dc:5b:54:c4:ce: c8:30:6d:45:7b:37:78:b7:56:73:ee:2b:06:aa:29: 86:16:2f:7a:b2:1b:6d:31:27:40:7d:09:28:c3:7a: c7:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:D4:45:31:62:6B:96:8C:41:5F:16:FD:E1:D5:7F:BB:98:D9:D6:2E X509v3 Authority Key Identifier: keyid:5E:D6:77:2B:90:21:2E:57:72:49:F7:35:6C:21:8E:D1:06:8B:67:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d8:7c:7f:9e:6d:06:44:b3:47:6f:99:bb:65:8f:13:2b:08:77: 78:4b:3d:7d:b4:16:16:53:c5:b8:c3:09:5f:5e:2f:ac:b6:e7: 2b:36:fa:5f:e1:a5:9e:87:c5:be:fe:80:e9:79:ef:52:65:55: bf:b7:e5:85:3a:72:cc:d5:48:c6:88:b5:8a:f0:2d:7e:a9:c8: 56:d9:a5:8d:ad:5e:18:b5:1e:eb:18:c0:4f:98:8a:c9:63:76: 7e:c0:48:6c:3b:5b:70:88:f1:b6:c6:69:5e:b1:87:ec:f4:ce: 5e:75:17:f8:8e:66:84:d6:10:2a:64:dc:ae:23:21:f7:f0:d9: a8:d4:9b:91:8f:55:e8:52:e1:8d:50:9c:5f:10:aa:80:7d:f8: 5c:de:85:b9:e4:5f:65:ab:bc:f0:74:70:26:96:d5:7d:4a:8a: dd:cf:8c:ad:77:48:3f:b2:00:db:89:9b:74:39:04:69:99:14: d5:b9:e7:d2:6c:1c:b2:8d:b2:17:20:5f:d4:8f:e1:dc:2f:5a: 1f:a9:75:65:f3:52:ed:f3:dc:00:5e:78:15:fb:2b:d5:bb:3b: 18:ac:e2:6c:1e:48:39:f1:82:ff:ac:9b:d8:b3:c9:4e:ad:00: 50:2d:6c:e9:b2:3f:d0:60:16:ac:06:17:e8:17:0e:fe:0d:e0: d8:38:95:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIpPYvWSak/VFfd3gCN9cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZDY3NzJiOTAyMTJlNTc3MjQ5ZjczNTZjMjE4ZWQxMDY4 YjY3NzYwHhcNMjYwMjA5MTYwMTA1WhcNMjYwMjEwMTYwMTA1WjAzMTEwLwYDVQQD Eyg2NmQ0NDUzMTYyNmI5NjhjNDE1ZjE2ZmRlMWQ1N2ZiYjk4ZDlkNjJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyj5qck8XkFQ2mRQwqdzliVxb9K0U TUEqrOsRwYNV3XseYa0o2vcz3uZVSD/1xt+UlHEaFwEupEp2ASTqc2RigHztSpUq 0QFwv0roLwHZu/lMzJ+0eBBOOFOQVU3nXm7HEASDveUCJ4UAO28CugaTw6t0Pdy9 GwJ4u22TAinyMs1mzqWw/BisT3tutUFt5g+/xip0WVArN4dR6wUhNh6E3DaKrvo8 VWmsbHIJX412xhp+ax9fYaG4j7Cbsbp+tqNxqXCKquGYwrqr3/okkKbBvgBUz3lS YVKZO4vn3FtUxM7IMG1Fezd4t1Zz7isGqimGFi96shttMSdAfQkow3rH1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGbURTFia5aMQV8W/eHVf7uY2dYuMB8GA1UdIwQY MBaAFF7WdyuQIS5Xckn3NWwhjtEGi2d2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9mNWVlNzYtZWVhZS00MzZjLTg4NDMt ODYyMTA2ODUzODYwLzEvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy9mNWVlNzYtZWVhZS00MzZjLTg4NDMtODYyMTA2ODUzODYw LzEvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2Hx/nm0G RLNHb5m7ZY8TKwh3eEs9fbQWFlPFuMMJX14vrLbnKzb6X+GlnofFvv6A6XnvUmVV v7flhTpyzNVIxoi1ivAtfqnIVtmlja1eGLUe6xjAT5iKyWN2fsBIbDtbcIjxtsZp XrGH7PTOXnUX+I5mhNYQKmTcriMh9/DZqNSbkY9V6FLhjVCcXxCqgH34XN6FueRf Zau88HRwJpbVfUqK3c+MrXdIP7IA24mbdDkEaZkU1bnn0mwcso2yFyBf1I/h3C9a H6l1ZfNS7fPcAF54Ffsr1bs7GKzibB5IOfGC/6yb2LPJTq0AUC1s6bI/0GAWrAYX 6BcO/g3g2DiVMw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:21 2026 by rpki-client