This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft File: X8IN7HFLtUY7Fk4VpfihOYolUF0.mft (raw, json) Hash identifier: rTUdL+JNsdTY6rRnTZcK5n6P0GVnp0xVaMcvmQUc2tE= Subject key identifier: 99:D7:C8:02:30:C4:8E:CF:7C:70:4C:D8:0E:3C:A6:57:60:21:27:4A Authority key identifier: 5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D Certificate issuer: /CN=5fc20dec714bb5463b164e15a5f8a1398a25505d Certificate serial: 019C42EB64C9E8C8974A6164FE8B32461D98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft Manifest number: 0509 Signing time: Mon 09 Feb 2026 15:00:48 +0000 Manifest this update: Mon 09 Feb 2026 15:00:48 +0000 Manifest next update: Tue 10 Feb 2026 15:00:48 +0000 Files and hashes: 1: X8IN7HFLtUY7Fk4VpfihOYolUF0.crl (hash: zvO1OEf3CZkvEvnYbrDMmgDHwEwfzF5sLcRRaiqrMIw=) 2: uvNf-ODFo6lTEuGrLrORQ7H_M9Y.roa (hash: 5BzdF2coA2UrrcFqyEC8X7uFcWtTvQZa39Bk7bbs6js=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:64:c9:e8:c8:97:4a:61:64:fe:8b:32:46:1d:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5fc20dec714bb5463b164e15a5f8a1398a25505d Validity Not Before: Feb 9 15:00:48 2026 GMT Not After : Feb 10 15:00:48 2026 GMT Subject: CN=99d7c80230c48ecf7c704cd80e3ca6576021274a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:45:c3:e5:47:d7:06:62:d3:67:ab:05:7e:ab: 22:26:d8:71:6e:b2:bd:c2:46:3a:38:a6:aa:1d:b9: 17:3d:44:f4:cb:fb:d1:74:e2:7b:8f:c7:45:bd:72: 79:0e:4e:fd:ca:11:e5:83:83:b5:0d:9f:3b:22:78: 30:eb:3d:82:52:f1:f1:01:51:61:a8:b5:1f:04:28: d3:c8:1d:bb:06:cc:f3:5c:ea:9a:b2:04:ca:59:df: 1b:82:ca:bc:a5:4e:b3:bc:2f:7c:0c:e9:d3:b2:2c: 53:56:8a:3a:4f:3a:38:e2:d2:f9:9d:80:bd:3d:a4: 27:c0:30:48:ce:13:12:e4:f9:ce:c1:5b:1d:ed:81: 10:32:a9:7e:25:4e:05:62:ba:31:2a:27:2a:19:75: 9b:64:c7:e6:7f:e9:89:73:74:97:13:9d:8c:f4:b0: 88:94:bc:88:e4:a3:a2:dd:d1:8a:ae:cf:cd:6a:95: e1:69:f0:c9:3a:38:96:26:70:9f:85:16:70:50:91: 81:fa:21:4e:0e:7c:e0:a7:c3:61:05:f4:78:4c:c3: 8f:0b:b4:b6:3c:8c:eb:16:52:22:7c:58:bf:c9:d8: ab:6f:87:12:cf:f5:e7:ac:8b:35:a4:c3:a5:13:49: 42:90:ad:19:64:9b:35:67:d2:cc:6c:7c:cd:ef:92: c0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D7:C8:02:30:C4:8E:CF:7C:70:4C:D8:0E:3C:A6:57:60:21:27:4A X509v3 Authority Key Identifier: keyid:5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:be:45:a9:cd:de:b1:08:9a:d5:31:27:41:c1:66:2f:a4:7c: da:b6:9d:e8:ff:12:59:5d:9a:1c:bc:f4:2b:b3:bf:ff:0d:4d: e1:ff:90:5d:42:12:cf:6a:f0:57:14:46:06:e1:14:2d:09:e0: da:13:d1:4f:00:95:ef:65:33:09:ae:7c:fa:ce:e4:aa:f7:46: 4e:5d:87:ea:a0:0e:54:b1:09:1b:62:0a:2e:46:78:6f:87:bc: c3:03:b7:fe:d9:c0:d7:f9:a8:7e:80:09:0f:c7:c5:fb:e2:9d: 15:94:d7:93:9b:b4:ba:55:74:cd:c4:13:d2:f7:44:71:86:6a: 1b:85:39:7d:42:69:67:13:db:39:82:b8:06:5e:2a:88:92:e1: 72:3a:b6:97:5c:a4:ca:64:1d:e7:1e:7b:13:93:65:22:57:c4: a5:d2:39:d7:d6:9a:74:d7:f6:39:39:d4:11:63:b4:cd:1e:60: ed:dc:f3:e0:56:50:ae:9e:f3:df:d7:05:41:0e:98:68:e1:15: aa:48:7e:f5:c1:e7:20:a5:ab:3e:a3:66:d5:35:14:0f:da:54: bd:33:2b:82:05:f1:6d:ae:62:26:1e:5c:b0:c3:db:a2:b4:8e: e2:2c:cb:a2:8d:01:35:b1:1f:26:0d:47:63:53:de:5f:0f:58: a3:e9:5f:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC62TJ6MiXSmFk/osyRh2YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmYzIwZGVjNzE0YmI1NDYzYjE2NGUxNWE1ZjhhMTM5OGEy NTUwNWQwHhcNMjYwMjA5MTUwMDQ4WhcNMjYwMjEwMTUwMDQ4WjAzMTEwLwYDVQQD Eyg5OWQ3YzgwMjMwYzQ4ZWNmN2M3MDRjZDgwZTNjYTY1NzYwMjEyNzRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz0XD5UfXBmLTZ6sFfqsiJthxbrK9 wkY6OKaqHbkXPUT0y/vRdOJ7j8dFvXJ5Dk79yhHlg4O1DZ87Ingw6z2CUvHxAVFh qLUfBCjTyB27BszzXOqasgTKWd8bgsq8pU6zvC98DOnTsixTVoo6Tzo44tL5nYC9 PaQnwDBIzhMS5PnOwVsd7YEQMql+JU4FYroxKicqGXWbZMfmf+mJc3SXE52M9LCI lLyI5KOi3dGKrs/NapXhafDJOjiWJnCfhRZwUJGB+iFODnzgp8NhBfR4TMOPC7S2 PIzrFlIifFi/ydirb4cSz/XnrIs1pMOlE0lCkK0ZZJs1Z9LMbHzN75LA0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJnXyAIwxI7PfHBM2A48pldgISdKMB8GA1UdIwQY MBaAFF/CDexxS7VGOxZOFaX4oTmKJVBdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDhJTjdIRkx0VVk3Rms0VnBmaWhPWW9sVUYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS82Nzk3YTUtNTQxMC00YzBkLWI5Yjct ZDk5YjlmNDhkMGRjLzEvWDhJTjdIRkx0VVk3Rms0VnBmaWhPWW9sVUYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS82Nzk3YTUtNTQxMC00YzBkLWI5YjctZDk5YjlmNDhkMGRj LzEvWDhJTjdIRkx0VVk3Rms0VnBmaWhPWW9sVUYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGr5Fqc3e sQia1TEnQcFmL6R82rad6P8SWV2aHLz0K7O//w1N4f+QXUISz2rwVxRGBuEULQng 2hPRTwCV72UzCa58+s7kqvdGTl2H6qAOVLEJG2IKLkZ4b4e8wwO3/tnA1/mofoAJ D8fF++KdFZTXk5u0ulV0zcQT0vdEcYZqG4U5fUJpZxPbOYK4Bl4qiJLhcjq2l1yk ymQd5x57E5NlIlfEpdI519aadNf2OTnUEWO0zR5g7dzz4FZQrp7z39cFQQ6YaOEV qkh+9cHnIKWrPqNm1TUUD9pUvTMrggXxba5iJh5csMPborSO4izLoo0BNbEfJg1H Y1PeXw9Yo+lfyg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:55 2026 by rpki-client