This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/33796e-7d5f-475c-b569-d78bb6f5b8f5/1/XeHEMjIqoQWMPm_lf2N0qSlgacE.mft File: XeHEMjIqoQWMPm_lf2N0qSlgacE.mft (raw, json) Hash identifier: +q0efwxFgBppcfFdL4V7y+nHV6YEDo8KkgXB4N5JSPA= Subject key identifier: 38:09:CC:09:61:21:48:1D:63:20:C6:00:88:1F:2E:EE:81:F8:BE:D5 Authority key identifier: 5D:E1:C4:32:32:2A:A1:05:8C:3E:6F:E5:7F:63:74:A9:29:60:69:C1 Certificate issuer: /CN=5de1c432322aa1058c3e6fe57f6374a9296069c1 Certificate serial: 019C446BE48A269A379162706728A0BC7B57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeHEMjIqoQWMPm_lf2N0qSlgacE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/33796e-7d5f-475c-b569-d78bb6f5b8f5/1/XeHEMjIqoQWMPm_lf2N0qSlgacE.mft Manifest number: 0CF3 Signing time: Mon 09 Feb 2026 22:00:47 +0000 Manifest this update: Mon 09 Feb 2026 22:00:47 +0000 Manifest next update: Tue 10 Feb 2026 22:00:47 +0000 Files and hashes: 1: XeHEMjIqoQWMPm_lf2N0qSlgacE.crl (hash: 8VLNbbpgygzGcFWk2nbNk7JrhoI9VBzoPWm3knUmJ2Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/33796e-7d5f-475c-b569-d78bb6f5b8f5/1/XeHEMjIqoQWMPm_lf2N0qSlgacE.crl rsync://rpki.ripe.net/repository/DEFAULT/54/33796e-7d5f-475c-b569-d78bb6f5b8f5/1/XeHEMjIqoQWMPm_lf2N0qSlgacE.mft rsync://rpki.ripe.net/repository/DEFAULT/XeHEMjIqoQWMPm_lf2N0qSlgacE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:e4:8a:26:9a:37:91:62:70:67:28:a0:bc:7b:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5de1c432322aa1058c3e6fe57f6374a9296069c1 Validity Not Before: Feb 9 22:00:47 2026 GMT Not After : Feb 10 22:00:47 2026 GMT Subject: CN=3809cc096121481d6320c600881f2eee81f8bed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5f:e2:50:d1:97:52:8a:c6:94:36:c7:db:7e: f0:3b:68:d7:4c:93:41:ff:f9:81:d7:77:a1:f8:93: 86:6c:61:0f:e4:b1:64:c8:5e:98:0f:78:82:bd:bd: 20:cf:8b:5c:39:78:65:10:57:3d:5b:6f:c1:c6:22: 21:41:3f:f6:43:38:f1:3c:a6:b8:22:bd:17:e6:cb: 0b:03:e4:69:23:80:0c:50:78:a6:0d:3a:b7:cd:03: 03:c9:c5:87:74:d5:ab:9e:fc:2c:19:8f:58:d2:06: 10:f2:8e:a8:40:12:cd:3f:98:35:f8:92:ec:2d:b5: 48:4f:fa:17:1f:88:26:d9:98:7c:7f:3b:c8:14:d8: c7:7e:ea:0f:96:9e:3f:8d:e2:05:58:e2:1b:54:75: ed:84:32:e2:73:e1:28:00:8d:4f:24:9f:12:6a:da: 1f:cb:ab:31:d4:b0:8a:7d:fc:08:46:2a:61:90:90: 5b:2d:b5:5b:03:cc:45:15:6b:66:1c:2b:ab:9c:3f: 10:79:36:97:ff:ba:80:f0:7b:05:c2:f7:7d:1e:b2: 3a:1b:ca:c5:0d:43:e8:09:86:60:49:82:b9:20:75: fe:78:3d:78:b0:1c:5d:e6:66:44:96:68:3b:c2:1a: 42:3e:7b:0e:c8:ea:a7:f2:1a:50:99:46:91:48:48: 7a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:09:CC:09:61:21:48:1D:63:20:C6:00:88:1F:2E:EE:81:F8:BE:D5 X509v3 Authority Key Identifier: keyid:5D:E1:C4:32:32:2A:A1:05:8C:3E:6F:E5:7F:63:74:A9:29:60:69:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeHEMjIqoQWMPm_lf2N0qSlgacE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33796e-7d5f-475c-b569-d78bb6f5b8f5/1/XeHEMjIqoQWMPm_lf2N0qSlgacE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33796e-7d5f-475c-b569-d78bb6f5b8f5/1/XeHEMjIqoQWMPm_lf2N0qSlgacE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:ba:c8:44:a9:89:38:ae:09:37:90:10:c8:13:dd:34:a6:75: 0a:eb:0a:de:ba:9c:1c:46:85:a5:f7:f6:b4:84:b7:ce:3b:24: 61:c9:90:27:62:a5:af:ea:f2:66:71:e6:aa:91:6f:f5:07:26: da:cf:59:0b:02:79:7f:17:c4:dc:fb:b4:ed:78:d8:78:3d:95: f0:48:76:2d:6b:2c:a2:0f:26:8e:bb:20:a5:f6:11:6f:ef:22: 84:c0:a4:38:4b:e1:c9:ca:2d:a1:a0:71:9f:de:a6:a8:c4:0c: 51:a3:4d:db:3a:04:6c:f7:20:7c:46:f7:6e:2c:21:5f:6d:04: b9:f5:d0:4e:8e:e0:39:9f:f5:b4:7e:37:c6:0c:22:f0:da:ff: b3:44:4e:5b:50:f0:75:7f:56:cc:42:8f:bb:23:27:bc:7d:3d: f9:d2:9b:c3:15:e3:1c:af:7a:0a:ac:51:63:d3:63:c1:94:3a: 00:21:09:c0:dd:6a:4f:a6:96:e3:8a:d8:95:51:c8:a0:1f:ad: 94:f9:fe:ef:6d:55:78:2c:c3:a5:65:c7:be:fa:96:65:2f:40: 22:93:83:16:48:c5:13:6e:dc:58:e9:b4:ed:7c:68:57:20:e4: 97:22:4f:e6:07:85:86:a3:0b:68:7e:ac:18:52:4b:c3:f6:bd: b9:46:4c:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa+SKJpo3kWJwZyigvHtXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkZTFjNDMyMzIyYWExMDU4YzNlNmZlNTdmNjM3NGE5Mjk2 MDY5YzEwHhcNMjYwMjA5MjIwMDQ3WhcNMjYwMjEwMjIwMDQ3WjAzMTEwLwYDVQQD EygzODA5Y2MwOTYxMjE0ODFkNjMyMGM2MDA4ODFmMmVlZTgxZjhiZWQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1/iUNGXUorGlDbH237wO2jXTJNB //mB13eh+JOGbGEP5LFkyF6YD3iCvb0gz4tcOXhlEFc9W2/BxiIhQT/2QzjxPKa4 Ir0X5ssLA+RpI4AMUHimDTq3zQMDycWHdNWrnvwsGY9Y0gYQ8o6oQBLNP5g1+JLs LbVIT/oXH4gm2Zh8fzvIFNjHfuoPlp4/jeIFWOIbVHXthDLic+EoAI1PJJ8Satof y6sx1LCKffwIRiphkJBbLbVbA8xFFWtmHCurnD8QeTaX/7qA8HsFwvd9HrI6G8rF DUPoCYZgSYK5IHX+eD14sBxd5mZElmg7whpCPnsOyOqn8hpQmUaRSEh6PwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDgJzAlhIUgdYyDGAIgfLu6B+L7VMB8GA1UdIwQY MBaAFF3hxDIyKqEFjD5v5X9jdKkpYGnBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGVIRU1qSXFvUVdNUG1fbGYyTjBxU2xnYWNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8zMzc5NmUtN2Q1Zi00NzVjLWI1Njkt ZDc4YmI2ZjViOGY1LzEvWGVIRU1qSXFvUVdNUG1fbGYyTjBxU2xnYWNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC8zMzc5NmUtN2Q1Zi00NzVjLWI1NjktZDc4YmI2ZjViOGY1 LzEvWGVIRU1qSXFvUVdNUG1fbGYyTjBxU2xnYWNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVrrIRKmJ OK4JN5AQyBPdNKZ1CusK3rqcHEaFpff2tIS3zjskYcmQJ2Klr+ryZnHmqpFv9Qcm 2s9ZCwJ5fxfE3Pu07XjYeD2V8Eh2LWssog8mjrsgpfYRb+8ihMCkOEvhycotoaBx n96mqMQMUaNN2zoEbPcgfEb3biwhX20EufXQTo7gOZ/1tH43xgwi8Nr/s0ROW1Dw dX9WzEKPuyMnvH09+dKbwxXjHK96CqxRY9NjwZQ6ACEJwN1qT6aW44rYlVHIoB+t lPn+721VeCzDpWXHvvqWZS9AIpODFkjFE27cWOm07XxoVyDklyJP5geFhqMLaH6s GFJLw/a9uUZM2g== -----END CERTIFICATE-----Generated at Tue Feb 10 03:15:40 2026 by rpki-client