This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft File: XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft (raw, json) Hash identifier: VkDbFO9x5eqv1gzr48HJJaIz+aFtpSQV08p/+6dJJuQ= Subject key identifier: BA:53:14:20:9E:43:EF:D2:8B:FD:08:6D:D1:90:34:EF:FD:84:50:C7 Authority key identifier: 5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6 Certificate issuer: /CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6 Certificate serial: 019C427E09EC228B3A1BF9BF8C79B1B066F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft Manifest number: 0640 Signing time: Mon 09 Feb 2026 13:01:22 +0000 Manifest this update: Mon 09 Feb 2026 13:01:22 +0000 Manifest next update: Tue 10 Feb 2026 13:01:22 +0000 Files and hashes: 1: IrwpzwNbD7ixeqg3vbCTik-T_Lc.roa (hash: HyILMqlsRAkiSlovY1KbO4nirms1nXEWPqExv/4Zspw=) 2: XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl (hash: R2UefrmN5p4eE6LvXcil/4ScqvM/09sxwVL4M5n5ibI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:09:ec:22:8b:3a:1b:f9:bf:8c:79:b1:b0:66:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6 Validity Not Before: Feb 9 13:01:22 2026 GMT Not After : Feb 10 13:01:22 2026 GMT Subject: CN=ba5314209e43efd28bfd086dd19034effd8450c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2f:94:4e:04:8f:f0:62:78:d3:45:fa:a5:31: 3c:0f:16:69:62:41:8c:42:e9:8f:3d:90:21:92:18: 78:5c:0a:39:d5:ab:20:c9:c0:e4:dd:e9:97:b2:bd: e1:d5:72:c7:3e:9d:f8:99:21:97:da:c9:aa:96:bf: 83:bd:40:7a:29:43:94:e0:a4:1b:8b:6c:2f:08:ad: ac:7d:8c:6a:9a:33:37:4c:16:6b:82:ec:97:55:c6: 85:41:0d:b7:30:f9:85:8b:b9:2b:81:34:4b:d4:ac: 53:08:e8:ff:2e:e1:19:cc:94:4d:be:c0:aa:27:07: 0d:6c:42:10:52:d6:13:f3:27:c7:5d:20:fa:86:97: 71:33:d1:a2:2e:b9:77:85:eb:64:c0:30:1a:fd:d2: 14:44:9c:fa:49:45:c4:fb:5d:11:28:df:3e:c2:f5: 6a:a4:8f:29:91:44:9d:43:52:25:4d:21:67:12:96: 66:e6:06:57:c6:26:c9:c2:f7:39:b5:70:fd:83:a6: b6:c3:52:fb:8b:61:cd:8b:b9:09:95:1d:6d:c6:0f: cd:c3:7c:c2:30:ad:3a:c6:7c:02:96:9d:b7:8c:93: 3a:26:a3:fc:e8:50:a3:3c:fb:11:5c:71:ee:6e:8c: 13:d4:c5:88:29:78:a0:c0:54:11:79:5d:49:0a:fc: 45:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:53:14:20:9E:43:EF:D2:8B:FD:08:6D:D1:90:34:EF:FD:84:50:C7 X509v3 Authority Key Identifier: keyid:5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:2f:0a:7a:a9:e1:9c:65:b7:53:71:4b:e8:f1:38:0c:c9:d0: 44:94:9c:21:93:ef:7e:1e:47:52:7b:36:2d:8e:18:67:8b:19: 04:3d:57:53:e5:3d:98:af:43:85:ee:31:e7:b4:63:14:eb:e1: 52:9b:5b:60:5a:c4:5c:60:32:e0:25:ac:ba:b4:66:9f:aa:64: 21:3b:37:20:65:02:b2:b2:fd:53:1f:10:13:26:73:41:05:5b: 1d:34:fd:89:02:31:e0:79:44:e3:67:64:25:bf:6d:b5:37:4e: 10:cd:bf:bc:1a:35:fb:1b:68:c8:8a:8c:05:66:9f:28:88:bf: 32:c6:ac:60:4e:d3:d9:56:ae:25:8d:a9:42:28:f3:33:6d:8d: 74:3a:49:b0:68:27:8d:bc:c2:99:11:0e:13:9f:ac:a2:9d:ae: 73:3d:de:e6:4d:c9:51:99:47:cb:46:31:50:d2:94:27:a6:08: eb:99:f0:7a:10:6e:a7:3b:39:8e:b1:f8:17:d3:15:89:de:d5: 3f:71:dc:c2:b0:fb:b6:49:84:3a:18:ee:2f:13:ec:d4:6a:5c: 13:df:20:f1:50:d5:39:5d:89:84:7a:82:55:1b:2b:a7:2e:32: b8:8f:2a:4b:7b:b4:1c:03:c6:fb:b2:cc:be:52:a0:20:db:16: b9:6d:e5:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfgnsIos6G/m/jHmxsGb3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNjhhMjc5NzY5ZDE5M2RmM2Y5NzgxZDJiYTRjMWQ5Mjc3 YjRmZDYwHhcNMjYwMjA5MTMwMTIyWhcNMjYwMjEwMTMwMTIyWjAzMTEwLwYDVQQD EyhiYTUzMTQyMDllNDNlZmQyOGJmZDA4NmRkMTkwMzRlZmZkODQ1MGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqy+UTgSP8GJ400X6pTE8DxZpYkGM QumPPZAhkhh4XAo51asgycDk3emXsr3h1XLHPp34mSGX2smqlr+DvUB6KUOU4KQb i2wvCK2sfYxqmjM3TBZrguyXVcaFQQ23MPmFi7krgTRL1KxTCOj/LuEZzJRNvsCq JwcNbEIQUtYT8yfHXSD6hpdxM9GiLrl3hetkwDAa/dIURJz6SUXE+10RKN8+wvVq pI8pkUSdQ1IlTSFnEpZm5gZXxibJwvc5tXD9g6a2w1L7i2HNi7kJlR1txg/Nw3zC MK06xnwClp23jJM6JqP86FCjPPsRXHHubowT1MWIKXigwFQReV1JCvxFsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLpTFCCeQ+/Si/0IbdGQNO/9hFDHMB8GA1UdIwQY MBaAFFxoonl2nRk98/l4HSukwdkne0/WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mNWM5NmEtYjcwZi00MTllLTgyNmYt MTUzOThiYTViMGU3LzEvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9mNWM5NmEtYjcwZi00MTllLTgyNmYtMTUzOThiYTViMGU3 LzEvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATS8Keqnh nGW3U3FL6PE4DMnQRJScIZPvfh5HUns2LY4YZ4sZBD1XU+U9mK9Dhe4x57RjFOvh UptbYFrEXGAy4CWsurRmn6pkITs3IGUCsrL9Ux8QEyZzQQVbHTT9iQIx4HlE42dk Jb9ttTdOEM2/vBo1+xtoyIqMBWafKIi/MsasYE7T2VauJY2pQijzM22NdDpJsGgn jbzCmREOE5+sop2ucz3e5k3JUZlHy0YxUNKUJ6YI65nwehBupzs5jrH4F9MVid7V P3HcwrD7tkmEOhjuLxPs1GpcE98g8VDVOV2JhHqCVRsrpy4yuI8qS3u0HAPG+7LM vlKgINsWuW3lyQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:28 2026 by rpki-client