This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft File: xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft (raw, json) Hash identifier: bGyK9am42prnbJBYM+pmZd2E4Ig3yqWwNkIPBroZwnw= Subject key identifier: 0D:0B:65:6C:E7:3D:5B:1A:7D:74:14:6C:9B:CB:E2:08:07:AD:76:F7 Authority key identifier: C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F Certificate issuer: /CN=c596785476efbae77f961d23057057fa036fb27f Certificate serial: 019C420F89EA872BC0846C1673ED2A152BBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft Manifest number: 16BB Signing time: Mon 09 Feb 2026 11:00:40 +0000 Manifest this update: Mon 09 Feb 2026 11:00:40 +0000 Manifest next update: Tue 10 Feb 2026 11:00:40 +0000 Files and hashes: 1: xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl (hash: cwb3EeRlvttfuAL8D24lnEvos7yOk1L9bOCjCpXmbZ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:89:ea:87:2b:c0:84:6c:16:73:ed:2a:15:2b:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c596785476efbae77f961d23057057fa036fb27f Validity Not Before: Feb 9 11:00:40 2026 GMT Not After : Feb 10 11:00:40 2026 GMT Subject: CN=0d0b656ce73d5b1a7d74146c9bcbe20807ad76f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e7:d8:21:43:3e:33:ec:99:12:08:92:cc:f3: 43:53:f0:7f:cd:34:eb:dc:f9:7b:86:c1:6c:84:45: ab:04:d0:f1:ac:25:a6:ba:ce:57:6e:0c:1d:bf:ed: 23:9f:8c:b1:5f:64:65:74:d1:46:76:97:26:5a:85: d4:d9:40:d8:94:f8:d3:11:c1:29:7a:77:6b:c2:fc: 3b:48:47:f4:44:70:22:6d:5c:1e:8f:70:1b:48:d1: 8f:42:d6:f2:e0:85:3d:fa:85:77:6f:a6:b2:14:88: 1e:f9:04:3f:f9:34:e8:00:2b:9a:f8:a2:97:a1:e9: b1:56:f0:91:d4:b3:3e:50:bf:8a:98:50:1b:e1:5b: 40:f3:61:a5:e2:29:16:7f:7a:ce:96:dc:7b:42:37: 9c:a4:5b:bb:4e:00:bf:dc:ef:bc:22:28:d4:d4:4a: c5:b7:c8:45:42:e0:e9:96:02:3c:84:52:6b:32:6f: 20:30:20:87:d8:59:fa:04:da:05:de:7e:2f:46:ac: 78:71:dd:8f:ea:f5:cf:a7:b9:71:1b:9c:ea:88:82: 42:13:d3:68:97:55:03:79:f7:10:b7:d1:75:23:e4: 41:65:5c:06:1a:b1:89:b1:d2:8c:8a:d3:2e:79:d9: 99:a4:2c:81:93:cf:4e:ff:dc:35:65:47:b4:87:9c: 0d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:0B:65:6C:E7:3D:5B:1A:7D:74:14:6C:9B:CB:E2:08:07:AD:76:F7 X509v3 Authority Key Identifier: keyid:C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:10:90:2b:bb:f9:95:57:a1:f1:98:09:1c:40:d9:f1:d0:91: 08:9c:ff:7c:d9:23:c0:10:4b:a1:1d:68:a0:1a:14:aa:e2:96: 17:c6:c6:b0:59:6f:b4:07:08:b6:c3:53:fa:3b:52:3c:33:27: 6c:1d:30:79:1a:44:46:e7:5a:74:91:39:72:8f:a2:12:fe:9a: 47:48:ca:d7:f3:b3:4a:00:f2:f2:53:ca:fc:5f:58:77:a4:f7: ec:8d:b7:c1:5d:3e:1f:6f:57:97:48:ab:a5:29:be:a2:7d:88: 4e:39:bf:06:8a:00:64:76:a1:16:9a:dd:bb:0f:dd:90:9a:6b: 95:83:5d:06:81:26:76:c3:7e:83:0a:90:a2:42:e9:7f:6c:ac: 23:74:70:56:fe:a1:5c:42:d9:c6:20:a5:44:92:4c:f9:52:08: 7a:e8:43:76:a0:e9:34:4a:0b:79:80:26:6c:52:6e:4e:89:b6: d9:e7:68:62:1b:2a:22:55:48:0b:2d:ed:5b:93:2f:5b:80:7e: b7:5b:a6:02:0c:54:ef:4e:8e:84:a9:a0:6a:c6:72:12:79:73: 6c:b1:fa:38:7f:e1:14:dc:af:b9:fd:02:36:df:08:6a:60:d6: 87:47:82:64:e3:41:a7:72:44:ca:a4:07:44:16:23:20:f6:e2: e4:6d:95:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD4nqhyvAhGwWc+0qFSu/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1OTY3ODU0NzZlZmJhZTc3Zjk2MWQyMzA1NzA1N2ZhMDM2 ZmIyN2YwHhcNMjYwMjA5MTEwMDQwWhcNMjYwMjEwMTEwMDQwWjAzMTEwLwYDVQQD EygwZDBiNjU2Y2U3M2Q1YjFhN2Q3NDE0NmM5YmNiZTIwODA3YWQ3NmY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+fYIUM+M+yZEgiSzPNDU/B/zTTr 3Pl7hsFshEWrBNDxrCWmus5Xbgwdv+0jn4yxX2RldNFGdpcmWoXU2UDYlPjTEcEp endrwvw7SEf0RHAibVwej3AbSNGPQtby4IU9+oV3b6ayFIge+QQ/+TToACua+KKX oemxVvCR1LM+UL+KmFAb4VtA82Gl4ikWf3rOltx7QjecpFu7TgC/3O+8IijU1ErF t8hFQuDplgI8hFJrMm8gMCCH2Fn6BNoF3n4vRqx4cd2P6vXPp7lxG5zqiIJCE9No l1UDefcQt9F1I+RBZVwGGrGJsdKMitMuedmZpCyBk89O/9w1ZUe0h5wNIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA0LZWznPVsafXQUbJvL4ggHrXb3MB8GA1UdIwQY MBaAFMWWeFR277rnf5YdIwVwV/oDb7J/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFpaNFZIYnZ1dWRfbGgwakJYQlgtZ052c244LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS80YWU5OWQtZjU1Mi00NzZjLTgxNzct ZWJmNWYwNDMzNzcyLzEveFpaNFZIYnZ1dWRfbGgwakJYQlgtZ052c244Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS80YWU5OWQtZjU1Mi00NzZjLTgxNzctZWJmNWYwNDMzNzcy LzEveFpaNFZIYnZ1dWRfbGgwakJYQlgtZ052c244LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsxCQK7v5 lVeh8ZgJHEDZ8dCRCJz/fNkjwBBLoR1ooBoUquKWF8bGsFlvtAcItsNT+jtSPDMn bB0weRpERudadJE5co+iEv6aR0jK1/OzSgDy8lPK/F9Yd6T37I23wV0+H29Xl0ir pSm+on2ITjm/BooAZHahFprduw/dkJprlYNdBoEmdsN+gwqQokLpf2ysI3RwVv6h XELZxiClRJJM+VIIeuhDdqDpNEoLeYAmbFJuTom22edoYhsqIlVICy3tW5MvW4B+ t1umAgxU706OhKmgasZyEnlzbLH6OH/hFNyvuf0CNt8IamDWh0eCZONBp3JEyqQH RBYjIPbi5G2VZA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:27 2026 by rpki-client