This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.mft File: X1G82J639bOrCIBu9Rp8L265jvw.mft (raw, json) Hash identifier: F8OswOeUaiyoCrvRPgp7+6LIVclTdtiPRuMZ/5gCUIA= Subject key identifier: 06:82:2B:4F:1C:50:A7:F4:BF:40:C0:10:73:C8:58:22:F2:42:DA:04 Authority key identifier: 5F:51:BC:D8:9E:B7:F5:B3:AB:08:80:6E:F5:1A:7C:2F:6E:B9:8E:FC Certificate issuer: /CN=5f51bcd89eb7f5b3ab08806ef51a7c2f6eb98efc Certificate serial: 019C4321CEFB34BEED7D365891E1AE01FE14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X1G82J639bOrCIBu9Rp8L265jvw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.mft Manifest number: 1816 Signing time: Mon 09 Feb 2026 16:00:14 +0000 Manifest this update: Mon 09 Feb 2026 16:00:14 +0000 Manifest next update: Tue 10 Feb 2026 16:00:14 +0000 Files and hashes: 1: X1G82J639bOrCIBu9Rp8L265jvw.crl (hash: AJdZgqlpfkBLGcPULvgXGZga28HLavwac0AqpK9PaAU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.crl rsync://rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.mft rsync://rpki.ripe.net/repository/DEFAULT/X1G82J639bOrCIBu9Rp8L265jvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:ce:fb:34:be:ed:7d:36:58:91:e1:ae:01:fe:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f51bcd89eb7f5b3ab08806ef51a7c2f6eb98efc Validity Not Before: Feb 9 16:00:14 2026 GMT Not After : Feb 10 16:00:14 2026 GMT Subject: CN=06822b4f1c50a7f4bf40c01073c85822f242da04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:68:97:a8:62:3e:85:6e:3e:d4:97:6a:1c:b3: 8a:56:ae:90:d6:61:6c:5f:2b:af:ca:69:67:f1:b0: fc:7a:c5:4d:67:71:4a:f7:08:9a:58:85:37:f9:09: 97:c9:9d:7a:18:6d:9f:70:e0:ee:d1:05:83:03:e6: a1:11:b5:9d:6e:d2:84:82:6e:a7:1b:51:ab:9f:22: d0:5e:b6:c3:ad:e7:7f:6e:35:51:71:c7:f9:44:82: a2:ab:35:f8:ae:89:14:40:bf:67:50:ff:b7:db:66: 22:d8:2c:e9:d5:9c:36:51:71:66:0f:b8:5c:bb:c4: 72:cf:03:e6:99:1a:55:fa:3c:a2:47:7e:16:63:7b: 7a:17:a0:56:95:23:46:9b:3f:06:2e:b0:7f:99:2e: c6:e5:db:a8:c8:17:ba:c5:f4:d7:46:df:d6:d1:1c: d8:69:3b:62:af:86:23:8a:8d:ea:86:6d:58:45:e0: 7e:44:c2:b5:11:5a:06:b2:d5:56:04:9b:0c:ec:81: ea:df:cf:6b:5e:4c:f9:29:d0:d5:17:92:14:59:c5: 27:44:3d:f7:5b:c6:83:22:0f:6b:12:f4:04:42:29: c5:8e:22:1b:23:ca:d7:ae:bd:4b:15:51:2c:f3:b8: 02:54:e0:ed:42:9d:24:0a:8b:c1:26:75:9e:b2:22: 3c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:82:2B:4F:1C:50:A7:F4:BF:40:C0:10:73:C8:58:22:F2:42:DA:04 X509v3 Authority Key Identifier: keyid:5F:51:BC:D8:9E:B7:F5:B3:AB:08:80:6E:F5:1A:7C:2F:6E:B9:8E:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X1G82J639bOrCIBu9Rp8L265jvw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:14:f8:5f:dc:ec:fb:bb:1a:21:04:1d:59:f1:bd:fb:6c:98: 25:ac:49:a0:5c:7e:ca:ed:36:c7:81:61:be:3f:3a:65:07:16: 1b:75:ff:f9:67:6a:9b:9c:54:af:4a:4d:af:81:2c:1f:e5:d4: ca:ee:48:1b:a9:c1:ca:68:58:d9:01:9e:75:32:ba:16:7e:dd: bc:e0:ab:36:bf:69:1b:e5:10:3a:ac:45:41:8d:a8:b2:ef:a3: bb:5c:08:2d:e7:9f:5b:d1:6a:7f:ee:b9:f6:4e:8f:91:5f:47: a0:14:a1:2d:08:6c:80:c6:f5:ac:ab:4d:5b:c9:1d:1c:72:50: c1:06:73:88:2e:5f:94:87:8d:0a:b8:ab:bb:a9:e0:bc:7a:1b: 4e:88:de:2e:43:3a:89:de:60:46:4a:90:87:fe:b8:8b:fc:16: 3f:24:c9:22:31:eb:40:ff:41:e9:b7:42:52:a2:90:6b:07:61: fa:fe:59:02:4b:11:22:9e:a0:e2:fe:7b:c9:d4:4a:5c:a1:32: a8:a0:73:2b:22:64:a4:64:f9:0c:ca:bd:92:7c:28:26:89:de: 8e:7b:8d:64:e0:f5:e7:6b:06:62:5d:0e:ac:29:03:13:5c:b2: af:0e:b3:af:90:db:78:21:46:bc:44:a3:8d:41:3b:79:75:13: d7:26:a4:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIc77NL7tfTZYkeGuAf4UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmNTFiY2Q4OWViN2Y1YjNhYjA4ODA2ZWY1MWE3YzJmNmVi OThlZmMwHhcNMjYwMjA5MTYwMDE0WhcNMjYwMjEwMTYwMDE0WjAzMTEwLwYDVQQD EygwNjgyMmI0ZjFjNTBhN2Y0YmY0MGMwMTA3M2M4NTgyMmYyNDJkYTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlmiXqGI+hW4+1JdqHLOKVq6Q1mFs Xyuvymln8bD8esVNZ3FK9wiaWIU3+QmXyZ16GG2fcODu0QWDA+ahEbWdbtKEgm6n G1GrnyLQXrbDred/bjVRccf5RIKiqzX4rokUQL9nUP+322Yi2Czp1Zw2UXFmD7hc u8RyzwPmmRpV+jyiR34WY3t6F6BWlSNGmz8GLrB/mS7G5duoyBe6xfTXRt/W0RzY aTtir4Yjio3qhm1YReB+RMK1EVoGstVWBJsM7IHq389rXkz5KdDVF5IUWcUnRD33 W8aDIg9rEvQEQinFjiIbI8rXrr1LFVEs87gCVODtQp0kCovBJnWesiI8AQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAaCK08cUKf0v0DAEHPIWCLyQtoEMB8GA1UdIwQY MBaAFF9RvNiet/WzqwiAbvUafC9uuY78MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDFHODJKNjM5Yk9yQ0lCdTlScDhMMjY1anZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi80MWY2ZjUtY2VmMC00YTU3LThlNDct MGE4NTk4NjIwOGE5LzEvWDFHODJKNjM5Yk9yQ0lCdTlScDhMMjY1anZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi80MWY2ZjUtY2VmMC00YTU3LThlNDctMGE4NTk4NjIwOGE5 LzEvWDFHODJKNjM5Yk9yQ0lCdTlScDhMMjY1anZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfhT4X9zs +7saIQQdWfG9+2yYJaxJoFx+yu02x4Fhvj86ZQcWG3X/+Wdqm5xUr0pNr4EsH+XU yu5IG6nBymhY2QGedTK6Fn7dvOCrNr9pG+UQOqxFQY2osu+ju1wILeefW9Fqf+65 9k6PkV9HoBShLQhsgMb1rKtNW8kdHHJQwQZziC5flIeNCriru6ngvHobTojeLkM6 id5gRkqQh/64i/wWPyTJIjHrQP9B6bdCUqKQawdh+v5ZAksRIp6g4v57ydRKXKEy qKBzKyJkpGT5DMq9knwoJonejnuNZOD152sGYl0OrCkDE1yyrw6zr5DbeCFGvESj jUE7eXUT1yakbA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:39 2026 by rpki-client