This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft File: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft (raw, json) Hash identifier: 8o6C2HAHLl48+xcp2hywwrtGMziS6x0bzP97YVSsfP0= Subject key identifier: E5:0E:AE:3B:0E:9C:EB:AC:BF:1F:02:AD:48:C8:34:79:6D:39:B4:7F Authority key identifier: 5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4 Certificate issuer: /CN=5e42c35612f45af41103520af2761cdaa51e3aa4 Certificate serial: 019C4359306AB426AE6E7F4ABB28A8946ABE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft Manifest number: 170F Signing time: Mon 09 Feb 2026 17:00:44 +0000 Manifest this update: Mon 09 Feb 2026 17:00:44 +0000 Manifest next update: Tue 10 Feb 2026 17:00:44 +0000 Files and hashes: 1: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl (hash: U9ilIRKZEobWYltvWSHkew/qW93CrVIVheW9WANQ+Gc=) 2: kk41E9wK0dMNp3UzVD82jZ-Xu_A.roa (hash: uelRjQS+f/j8WooWIB3/Gzm3JA/8BAj3iz0X2FN7kXs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:30:6a:b4:26:ae:6e:7f:4a:bb:28:a8:94:6a:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e42c35612f45af41103520af2761cdaa51e3aa4 Validity Not Before: Feb 9 17:00:44 2026 GMT Not After : Feb 10 17:00:44 2026 GMT Subject: CN=e50eae3b0e9cebacbf1f02ad48c834796d39b47f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8f:a2:96:f1:63:04:6f:c7:d3:c1:90:7d:1d: 41:4d:f8:58:a1:e0:2e:5b:ba:4d:5d:9c:73:5f:a6: fc:b0:b2:0c:c2:ad:77:05:e0:aa:c7:ad:ac:4d:fc: 0c:58:0b:9f:4f:05:d3:90:2a:8b:0a:af:4d:3b:8d: cc:d2:92:d0:54:ef:d1:70:21:48:c6:af:53:50:42: 2f:56:9d:51:cd:f5:c2:fd:88:44:cc:30:ab:aa:c8: f7:c1:4c:6d:05:51:ba:4c:17:44:33:3a:a3:c6:28: af:c6:eb:3e:bc:53:1b:ad:5f:77:63:73:f1:e9:1f: cc:e3:9f:de:71:cd:29:e1:ca:39:32:62:81:8f:26: 19:8d:3e:f4:6f:37:38:3c:3e:ed:e2:f5:32:b3:ae: 70:40:6d:51:a8:ea:72:90:5a:92:23:5d:ff:e2:49: 0d:7a:e6:01:96:e8:fe:dd:87:86:8f:43:03:4f:da: 47:4c:37:83:d2:d5:2d:1e:7d:8a:5d:f9:1e:bf:b3: ac:41:ab:6f:4d:31:4f:a6:e1:10:93:6e:fd:2b:56: 32:2e:46:53:17:38:cd:07:99:40:5d:25:32:8f:f5: da:28:0e:d5:92:e9:53:7d:bf:59:49:90:8f:d3:7c: 4c:4e:b9:79:41:ab:6e:27:67:9c:64:4b:c3:e3:ce: d7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:0E:AE:3B:0E:9C:EB:AC:BF:1F:02:AD:48:C8:34:79:6D:39:B4:7F X509v3 Authority Key Identifier: keyid:5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:ff:1f:d4:b3:82:30:94:b4:52:ae:96:dd:02:3b:ce:22:81: 00:c7:75:11:0c:68:05:c7:88:93:98:06:20:77:99:8c:19:a0: 6e:64:59:8b:44:64:77:e2:de:a2:31:01:43:4a:6a:09:af:2a: 76:fc:34:f9:24:a7:63:84:b2:99:7d:f1:10:ed:0f:76:23:db: 17:6e:90:05:0c:0d:2a:75:cc:62:db:ae:fa:c5:ec:b3:e6:69: f5:b9:b9:d8:39:12:ed:bc:7f:fd:a3:82:5f:6b:ea:95:5f:b2: 19:db:dc:ac:09:86:dd:2f:32:dc:60:73:e7:72:8a:86:6b:7e: 83:1c:99:4a:de:32:ab:53:c9:dd:4d:0f:37:41:1c:e9:6e:2e: 5f:4a:28:1a:c0:07:2d:a4:78:4f:27:cd:eb:f5:c1:e2:f7:9f: d1:58:e6:05:6a:37:1a:96:e9:a3:10:a5:0f:5f:fc:b8:a7:04: 4a:3e:cc:65:14:35:bf:0f:46:6f:c2:96:da:73:60:70:0a:54: 38:54:55:88:91:6c:c1:91:a1:0e:bb:c7:21:89:88:b9:fa:3c: 78:f9:02:2d:a9:97:7b:1b:08:e9:81:ed:e2:07:77:9c:5f:45: 47:64:48:9b:1f:14:52:ad:ef:c3:7e:50:57:61:00:0e:89:92: 1f:c6:b0:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWTBqtCaubn9KuyiolGq+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlNDJjMzU2MTJmNDVhZjQxMTAzNTIwYWYyNzYxY2RhYTUx ZTNhYTQwHhcNMjYwMjA5MTcwMDQ0WhcNMjYwMjEwMTcwMDQ0WjAzMTEwLwYDVQQD EyhlNTBlYWUzYjBlOWNlYmFjYmYxZjAyYWQ0OGM4MzQ3OTZkMzliNDdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4+ilvFjBG/H08GQfR1BTfhYoeAu W7pNXZxzX6b8sLIMwq13BeCqx62sTfwMWAufTwXTkCqLCq9NO43M0pLQVO/RcCFI xq9TUEIvVp1RzfXC/YhEzDCrqsj3wUxtBVG6TBdEMzqjxiivxus+vFMbrV93Y3Px 6R/M45/ecc0p4co5MmKBjyYZjT70bzc4PD7t4vUys65wQG1RqOpykFqSI13/4kkN euYBluj+3YeGj0MDT9pHTDeD0tUtHn2KXfkev7OsQatvTTFPpuEQk279K1YyLkZT FzjNB5lAXSUyj/XaKA7VkulTfb9ZSZCP03xMTrl5QatuJ2ecZEvD487XtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOUOrjsOnOusvx8CrUjINHltObR/MB8GA1UdIwQY MBaAFF5Cw1YS9Fr0EQNSCvJ2HNqlHjqkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGtMRFZoTDBXdlFSQTFJSzhuWWMycVVlT3FRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC82NzQ0OTYtOTdiZC00ZWIwLWE4ODYt ODIxMTk5NzhkNmJiLzEvWGtMRFZoTDBXdlFSQTFJSzhuWWMycVVlT3FRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC82NzQ0OTYtOTdiZC00ZWIwLWE4ODYtODIxMTk5NzhkNmJi LzEvWGtMRFZoTDBXdlFSQTFJSzhuWWMycVVlT3FRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqv8f1LOC MJS0Uq6W3QI7ziKBAMd1EQxoBceIk5gGIHeZjBmgbmRZi0Rkd+LeojEBQ0pqCa8q dvw0+SSnY4SymX3xEO0PdiPbF26QBQwNKnXMYtuu+sXss+Zp9bm52DkS7bx//aOC X2vqlV+yGdvcrAmG3S8y3GBz53KKhmt+gxyZSt4yq1PJ3U0PN0Ec6W4uX0ooGsAH LaR4TyfN6/XB4vef0VjmBWo3GpbpoxClD1/8uKcESj7MZRQ1vw9Gb8KW2nNgcApU OFRViJFswZGhDrvHIYmIufo8ePkCLamXexsI6YHt4gd3nF9FR2RImx8UUq3vw35Q V2EADomSH8awlQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:38:41 2026 by rpki-client