This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.mft File: xxovfXzIw2N0bpa8P8yLBflgb-o.mft (raw, json) Hash identifier: UVwHOhdsJE7am4T1yUuj+0jOWaeV0vaW8C5XSEGNOo0= Subject key identifier: CF:7C:8F:5B:A2:BE:F0:69:DD:6B:FE:14:76:09:64:F6:50:28:2B:F0 Authority key identifier: C7:1A:2F:7D:7C:C8:C3:63:74:6E:96:BC:3F:CC:8B:05:F9:60:6F:EA Certificate issuer: /CN=c71a2f7d7cc8c363746e96bc3fcc8b05f9606fea Certificate serial: 019C427DD043912BDA4EB2CE67C8B6E12AFD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxovfXzIw2N0bpa8P8yLBflgb-o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 13:01:07 +0000 Manifest this update: Mon 09 Feb 2026 13:01:07 +0000 Manifest next update: Tue 10 Feb 2026 13:01:07 +0000 Files and hashes: 1: xxovfXzIw2N0bpa8P8yLBflgb-o.crl (hash: U7Mca6agvWc2ADSAF2TRkcQW+JJzHJnRQx+bxNsXakY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.crl rsync://rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.mft rsync://rpki.ripe.net/repository/DEFAULT/xxovfXzIw2N0bpa8P8yLBflgb-o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:d0:43:91:2b:da:4e:b2:ce:67:c8:b6:e1:2a:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c71a2f7d7cc8c363746e96bc3fcc8b05f9606fea Validity Not Before: Feb 9 13:01:07 2026 GMT Not After : Feb 10 13:01:07 2026 GMT Subject: CN=cf7c8f5ba2bef069dd6bfe14760964f650282bf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d8:3d:e1:54:a5:a7:73:b8:01:fa:1a:55:f6: 7b:21:f7:b2:0e:c8:da:69:d4:0c:0d:77:8e:4c:cf: da:e0:4f:4d:8c:89:65:c6:af:72:3d:c9:71:ee:58: 98:83:18:70:28:4c:a9:9d:28:8d:69:43:a4:91:18: 91:da:1a:24:c0:95:6f:3e:18:07:5f:cd:ce:f5:0e: 8a:d9:3d:b1:16:9d:50:d2:c9:a0:4d:b4:38:ab:95: 59:22:8d:f6:55:98:08:3c:46:27:bf:18:21:b2:2c: a6:2b:5e:44:43:9d:eb:c7:2a:fb:be:2b:72:f0:36: 36:27:3e:29:70:ad:69:01:07:7d:1a:f2:b8:92:e9: b8:4c:be:6f:1d:c2:c0:45:4c:ce:be:f4:c1:aa:16: 09:b2:e8:ba:e4:78:08:b1:65:49:2c:9a:dc:ce:f3: 37:c5:02:77:97:4b:db:79:85:e8:04:55:74:37:10: 06:03:98:10:95:03:61:02:38:20:18:e8:27:99:4a: 52:97:8c:44:6a:77:c4:a4:15:3b:2d:b9:8a:70:fc: b5:1f:d5:51:75:02:36:1a:e4:d2:29:ec:11:4c:32: bf:84:19:04:4c:be:4d:de:d9:12:15:af:e9:57:6d: 37:86:da:96:de:dd:c6:96:c1:30:65:c1:12:b8:1e: 4a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7C:8F:5B:A2:BE:F0:69:DD:6B:FE:14:76:09:64:F6:50:28:2B:F0 X509v3 Authority Key Identifier: keyid:C7:1A:2F:7D:7C:C8:C3:63:74:6E:96:BC:3F:CC:8B:05:F9:60:6F:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxovfXzIw2N0bpa8P8yLBflgb-o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:9d:51:dc:99:ce:2b:f1:ff:ef:56:25:b5:a7:1e:92:94:b5: c6:5f:3c:44:0d:c0:57:84:41:0e:3c:41:29:4d:98:16:d2:d7: 59:1b:ce:57:39:ec:bb:24:3d:08:30:ac:bf:e0:75:14:2b:4d: ca:f3:cd:22:5a:42:b7:4e:09:50:03:35:8b:9c:55:c4:fc:9d: 48:04:22:a9:a3:b8:be:a5:f6:59:b5:e3:b5:f2:af:4b:1b:54: 35:e3:17:3e:4f:c5:71:5b:07:84:a1:d7:77:45:35:cf:fc:9f: e6:24:77:0a:66:e4:59:67:4a:58:ad:94:db:97:ce:a1:4b:75: 4a:64:24:20:73:6e:58:57:00:af:e3:d7:26:ff:41:c6:0a:b7: a3:8b:7b:76:b4:d1:73:a2:67:ac:ee:35:f8:60:50:7b:8e:05: 39:c0:1a:70:b5:a8:0a:c9:7a:1b:01:af:5c:1e:be:33:5c:18: 84:e6:65:cc:2d:71:32:a2:56:f4:32:c1:4b:a2:8a:30:50:a4: c5:20:4d:65:1f:86:96:f0:95:14:38:69:a4:67:84:4e:86:87: 1b:12:77:94:5e:c4:d7:d7:86:81:2f:92:21:1f:3b:27:80:c8: c7:8b:d1:a3:75:3c:6f:b6:c0:96:75:53:14:94:93:1f:21:a9: d0:ae:8c:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfdBDkSvaTrLOZ8i24Sr9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3MWEyZjdkN2NjOGMzNjM3NDZlOTZiYzNmY2M4YjA1Zjk2 MDZmZWEwHhcNMjYwMjA5MTMwMTA3WhcNMjYwMjEwMTMwMTA3WjAzMTEwLwYDVQQD EyhjZjdjOGY1YmEyYmVmMDY5ZGQ2YmZlMTQ3NjA5NjRmNjUwMjgyYmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudg94VSlp3O4AfoaVfZ7IfeyDsja adQMDXeOTM/a4E9NjIllxq9yPclx7liYgxhwKEypnSiNaUOkkRiR2hokwJVvPhgH X83O9Q6K2T2xFp1Q0smgTbQ4q5VZIo32VZgIPEYnvxghsiymK15EQ53rxyr7vity 8DY2Jz4pcK1pAQd9GvK4kum4TL5vHcLARUzOvvTBqhYJsui65HgIsWVJLJrczvM3 xQJ3l0vbeYXoBFV0NxAGA5gQlQNhAjggGOgnmUpSl4xEanfEpBU7LbmKcPy1H9VR dQI2GuTSKewRTDK/hBkETL5N3tkSFa/pV203htqW3t3GlsEwZcESuB5KwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM98j1uivvBp3Wv+FHYJZPZQKCvwMB8GA1UdIwQY MBaAFMcaL318yMNjdG6WvD/MiwX5YG/qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHhvdmZYekl3Mk4wYnBhOFA4eUxCZmxnYi1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8wZGM5MjUtYTMzYi00ZDNhLWFkZDMt ZDZkMTQwZTRjZTZkLzEveHhvdmZYekl3Mk4wYnBhOFA4eUxCZmxnYi1vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC8wZGM5MjUtYTMzYi00ZDNhLWFkZDMtZDZkMTQwZTRjZTZk LzEveHhvdmZYekl3Mk4wYnBhOFA4eUxCZmxnYi1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADZ1R3JnO K/H/71YltacekpS1xl88RA3AV4RBDjxBKU2YFtLXWRvOVznsuyQ9CDCsv+B1FCtN yvPNIlpCt04JUAM1i5xVxPydSAQiqaO4vqX2WbXjtfKvSxtUNeMXPk/FcVsHhKHX d0U1z/yf5iR3CmbkWWdKWK2U25fOoUt1SmQkIHNuWFcAr+PXJv9Bxgq3o4t7drTR c6JnrO41+GBQe44FOcAacLWoCsl6GwGvXB6+M1wYhOZlzC1xMqJW9DLBS6KKMFCk xSBNZR+GlvCVFDhppGeEToaHGxJ3lF7E19eGgS+SIR87J4DIx4vRo3U8b7bAlnVT FJSTHyGp0K6MHg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:01:57 2026 by rpki-client