This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft File: tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft (raw, json) Hash identifier: 1kF5ylB4WfJa+7Q3CEEPA1kMUeVZmLKDRnVTIx9f7Ik= Subject key identifier: 88:58:F9:48:47:B7:15:27:AF:4C:3D:AE:43:3B:38:F0:83:AA:A1:CE Authority key identifier: B5:7C:8A:C0:55:C5:74:D8:CF:13:52:2B:96:4B:92:31:4D:21:1E:AE Certificate issuer: /CN=b57c8ac055c574d8cf13522b964b92314d211eae Certificate serial: 019C420FC975F491BE511B8D0FEE4B71B5AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft Manifest number: 155C Signing time: Mon 09 Feb 2026 11:00:56 +0000 Manifest this update: Mon 09 Feb 2026 11:00:56 +0000 Manifest next update: Tue 10 Feb 2026 11:00:56 +0000 Files and hashes: 1: tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl (hash: LyMOze0KY63WZU9gQwv8Hc/rpzgt45Yc55DWhyqwulM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:c9:75:f4:91:be:51:1b:8d:0f:ee:4b:71:b5:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b57c8ac055c574d8cf13522b964b92314d211eae Validity Not Before: Feb 9 11:00:56 2026 GMT Not After : Feb 10 11:00:56 2026 GMT Subject: CN=8858f94847b71527af4c3dae433b38f083aaa1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0b:b5:9c:52:eb:ab:f9:39:a5:a4:bc:cf:a2: 07:da:87:73:d3:b2:73:db:97:6b:6e:b8:0a:f7:32: 32:d5:ed:f7:52:41:e2:c5:cd:01:5a:f5:0e:41:7c: 57:15:2a:02:1a:2f:74:09:f0:d0:b8:0c:3f:74:8d: 2a:e4:c4:92:4d:5d:6c:8f:6f:de:77:f4:ae:f3:ec: d2:7a:7e:f7:be:1d:cf:db:72:3c:58:de:e4:00:04: 93:ca:56:68:9a:cf:f1:15:19:c3:9f:18:66:00:ca: fa:b2:5e:2a:39:f9:68:fd:82:df:24:17:b1:05:ff: 6a:b4:54:2d:a4:36:38:e8:8f:ae:e1:bd:b4:51:13: c3:83:e9:c5:07:34:96:8d:6c:b9:8e:68:e1:d4:14: df:c2:d7:98:a9:ec:61:db:aa:ad:68:c0:10:d0:04: a6:71:f3:8d:84:22:f7:77:cb:a0:c0:67:0e:06:dc: 60:e7:c2:2f:ce:11:e9:f1:35:b0:4f:3c:ec:88:19: 70:34:0d:ac:b0:9d:48:66:98:0f:32:8b:68:89:c2: 9c:69:30:0c:2b:88:94:e6:72:90:95:b0:a9:58:01: 7f:52:b6:e3:13:34:25:74:ab:cf:57:a5:e2:dc:30: cd:71:a6:e4:6d:0f:aa:86:3b:6f:5c:f1:12:fa:a4: 96:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:58:F9:48:47:B7:15:27:AF:4C:3D:AE:43:3B:38:F0:83:AA:A1:CE X509v3 Authority Key Identifier: keyid:B5:7C:8A:C0:55:C5:74:D8:CF:13:52:2B:96:4B:92:31:4D:21:1E:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:73:4f:6a:c4:8c:64:57:91:d9:9c:8c:bf:fe:21:a1:6b:fd: 56:a8:3c:ab:42:45:fe:2a:2e:3f:3e:c9:68:b6:ba:5f:87:83: af:a3:5e:17:bd:2c:32:90:c2:b7:6f:64:df:c7:24:94:2d:8f: 20:fa:35:c0:ae:78:88:a7:9e:3e:54:f8:18:7a:c6:c8:86:fc: 3a:ea:b6:1f:84:0d:cb:4e:8e:45:ac:4c:1a:fa:a7:5b:74:06: 25:56:0d:7b:5b:96:f1:6d:3b:79:b0:4d:50:1b:db:2e:39:8d: cc:18:f4:f2:88:60:6c:d1:3d:ee:2a:06:70:5e:fd:04:3a:1d: 9a:39:8e:92:9a:6a:f0:38:3e:ee:27:58:c9:64:9f:23:89:46: 16:f2:36:e0:6c:c0:57:88:f5:ea:76:6a:86:cc:82:b4:c9:aa: 92:53:6a:eb:00:d8:20:28:37:bb:87:ff:d1:b4:49:c0:c0:34: a0:f5:3f:31:01:62:9b:54:4d:cd:1f:4f:15:ca:4e:f1:b6:49: 74:30:da:20:32:fc:05:66:7d:28:80:3f:bd:ec:b6:8c:ac:18: 4d:c2:bd:c7:45:e4:a5:19:e8:e0:23:8f:15:34:31:9d:25:2e: a8:d3:8d:0b:28:d4:48:2c:1c:f1:76:e0:0d:72:53:17:4c:ef: 25:81:ce:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD8l19JG+URuND+5LcbWuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1N2M4YWMwNTVjNTc0ZDhjZjEzNTIyYjk2NGI5MjMxNGQy MTFlYWUwHhcNMjYwMjA5MTEwMDU2WhcNMjYwMjEwMTEwMDU2WjAzMTEwLwYDVQQD Eyg4ODU4Zjk0ODQ3YjcxNTI3YWY0YzNkYWU0MzNiMzhmMDgzYWFhMWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQu1nFLrq/k5paS8z6IH2odz07Jz 25drbrgK9zIy1e33UkHixc0BWvUOQXxXFSoCGi90CfDQuAw/dI0q5MSSTV1sj2/e d/Su8+zSen73vh3P23I8WN7kAASTylZoms/xFRnDnxhmAMr6sl4qOflo/YLfJBex Bf9qtFQtpDY46I+u4b20URPDg+nFBzSWjWy5jmjh1BTfwteYqexh26qtaMAQ0ASm cfONhCL3d8ugwGcOBtxg58IvzhHp8TWwTzzsiBlwNA2ssJ1IZpgPMotoicKcaTAM K4iU5nKQlbCpWAF/UrbjEzQldKvPV6Xi3DDNcabkbQ+qhjtvXPES+qSW3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIhY+UhHtxUnr0w9rkM7OPCDqqHOMB8GA1UdIwQY MBaAFLV8isBVxXTYzxNSK5ZLkjFNIR6uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFh5S3dGWEZkTmpQRTFJcmxrdVNNVTBoSHE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8yODlmNDAtYTIzMy00YzYzLWI5M2Ut OGU0YzdjN2I2NTA0LzEvdFh5S3dGWEZkTmpQRTFJcmxrdVNNVTBoSHE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8yODlmNDAtYTIzMy00YzYzLWI5M2UtOGU0YzdjN2I2NTA0 LzEvdFh5S3dGWEZkTmpQRTFJcmxrdVNNVTBoSHE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKHNPasSM ZFeR2ZyMv/4hoWv9Vqg8q0JF/iouPz7JaLa6X4eDr6NeF70sMpDCt29k38cklC2P IPo1wK54iKeePlT4GHrGyIb8Ouq2H4QNy06ORaxMGvqnW3QGJVYNe1uW8W07ebBN UBvbLjmNzBj08ohgbNE97ioGcF79BDodmjmOkppq8Dg+7idYyWSfI4lGFvI24GzA V4j16nZqhsyCtMmqklNq6wDYICg3u4f/0bRJwMA0oPU/MQFim1RNzR9PFcpO8bZJ dDDaIDL8BWZ9KIA/vey2jKwYTcK9x0XkpRno4COPFTQxnSUuqNONCyjUSCwc8Xbg DXJTF0zvJYHO+Q== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:08 2026 by rpki-client