This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft File: XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft (raw, json) Hash identifier: h8nr7MUpFIFweHjKnP7/C+v7YGI+q0OR4Cj5MrvivX0= Subject key identifier: 4B:03:E4:C2:96:C9:99:6F:EA:04:0A:2D:20:BB:2C:B1:F2:7B:51:E1 Authority key identifier: 5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94 Certificate issuer: /CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94 Certificate serial: 019C41D870FE77750E9B510E41CFCBA99883 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft Manifest number: 0A20 Signing time: Mon 09 Feb 2026 10:00:29 +0000 Manifest this update: Mon 09 Feb 2026 10:00:29 +0000 Manifest next update: Tue 10 Feb 2026 10:00:29 +0000 Files and hashes: 1: 3LpmzTys_0t26Z_NyTjqsfRDEuU.roa (hash: 22GdpmbhuppIRtDMcKbTPGerqLb1bcYGTYOsCbxzp6k=) 2: XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl (hash: FxaB+RKt0tQYrkEEqb3vWqnTSDM8nYCZuCdQp4iwoYA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:70:fe:77:75:0e:9b:51:0e:41:cf:cb:a9:98:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94 Validity Not Before: Feb 9 10:00:29 2026 GMT Not After : Feb 10 10:00:29 2026 GMT Subject: CN=4b03e4c296c9996fea040a2d20bb2cb1f27b51e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4d:9c:71:9c:30:ba:d1:a0:27:8b:10:78:7b: e9:89:91:a1:a1:9d:cc:b2:85:ae:1f:ab:49:76:6a: 51:c2:39:fe:cd:a4:19:47:9e:b6:d7:5d:51:17:8e: 1f:16:91:1e:14:d1:db:0f:1b:06:3f:cf:4a:91:e1: f4:38:c4:ce:db:06:4b:df:85:25:72:6d:13:db:18: e4:43:64:0c:10:e9:df:8a:2f:db:5a:fc:fc:fe:1b: 57:e8:70:61:00:fa:10:a2:3c:c3:0e:3e:9b:de:ef: d2:08:9d:9b:7b:1b:f8:25:32:e6:88:bc:fc:30:dc: f9:df:73:68:c9:9b:81:f5:dd:d1:37:5f:9d:d3:11: f2:c3:01:99:ac:d3:c9:3d:d6:07:4a:31:34:4d:d3: 93:b6:d8:2b:58:f5:05:22:a2:c3:8f:1c:b0:71:c4: 6b:4f:b6:42:bd:cf:1f:81:b1:07:60:83:d6:8f:d2: bf:24:e6:02:1b:e2:86:fc:86:b3:ce:f8:c7:0f:ca: 36:c3:23:a6:c4:c4:9d:5a:2c:6e:2d:91:bf:d2:3a: 73:4d:29:46:98:52:a6:71:7d:13:44:83:d1:67:eb: 79:0d:33:48:30:11:cd:c2:33:1f:8c:ff:dd:a8:03: f7:92:e2:f6:ea:63:cd:56:c9:5a:29:2b:0c:a2:05: 50:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:03:E4:C2:96:C9:99:6F:EA:04:0A:2D:20:BB:2C:B1:F2:7B:51:E1 X509v3 Authority Key Identifier: keyid:5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:d9:f9:66:ec:d8:b5:b0:4b:5b:0c:d0:6f:e3:43:da:70:31: e2:bd:33:4c:97:9c:c1:c1:9f:70:38:1b:ca:66:d2:c3:11:a8: 76:d2:f5:cc:ea:50:bf:51:e6:f6:c8:c4:68:ba:ec:43:b4:f2: 97:af:56:79:d4:56:06:0b:28:70:97:89:74:58:b6:e9:a9:e2: b9:0b:93:32:d4:63:1d:97:68:63:c0:76:57:61:8c:5b:26:f9: f1:2a:47:fa:bb:a6:28:59:f1:23:99:9f:70:63:3f:58:fc:e5: ac:fe:03:fa:a1:9c:8c:4a:0f:63:bc:92:c6:3d:a9:dc:ca:be: d2:ad:70:e3:c1:97:40:ed:cc:ae:b7:61:36:cd:33:db:26:ca: 99:ff:e6:b2:ea:c0:2b:71:ed:9a:0a:77:c7:54:52:32:74:de: 32:38:fa:48:91:a3:ea:84:b3:49:74:e1:39:47:39:df:fa:c3: 1e:54:5a:f3:a2:04:16:a7:09:34:4a:fc:2d:38:cf:29:01:30: ed:8f:75:0b:7a:d4:3d:27:31:bf:02:c4:7c:5d:4a:96:20:d7: 14:e0:71:cb:25:0b:5c:f5:4e:dd:c9:78:70:36:13:05:ac:63: aa:eb:1b:3b:5f:ef:e1:f6:c8:6c:14:55:ff:2b:f2:ec:e5:ed: ff:18:1e:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2HD+d3UOm1EOQc/LqZiDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmMmExMzNlYzJmZTYwNjdiNTY0OTZlODE5ZDViZmI0ZTQ0 NzFmOTQwHhcNMjYwMjA5MTAwMDI5WhcNMjYwMjEwMTAwMDI5WjAzMTEwLwYDVQQD Eyg0YjAzZTRjMjk2Yzk5OTZmZWEwNDBhMmQyMGJiMmNiMWYyN2I1MWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx02ccZwwutGgJ4sQeHvpiZGhoZ3M soWuH6tJdmpRwjn+zaQZR562111RF44fFpEeFNHbDxsGP89KkeH0OMTO2wZL34Ul cm0T2xjkQ2QMEOnfii/bWvz8/htX6HBhAPoQojzDDj6b3u/SCJ2bexv4JTLmiLz8 MNz533NoyZuB9d3RN1+d0xHywwGZrNPJPdYHSjE0TdOTttgrWPUFIqLDjxywccRr T7ZCvc8fgbEHYIPWj9K/JOYCG+KG/IazzvjHD8o2wyOmxMSdWixuLZG/0jpzTSlG mFKmcX0TRIPRZ+t5DTNIMBHNwjMfjP/dqAP3kuL26mPNVslaKSsMogVQ0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEsD5MKWyZlv6gQKLSC7LLHye1HhMB8GA1UdIwQY MBaAFF8qEz7C/mBntWSW6BnVv7TkRx+UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHlvVFBzTC1ZR2UxWkpib0dkV190T1JISDVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8xNjFkMmYtZWM4Ny00NzE4LTkzNjQt ZmEyYzE1MzcxNzI2LzEvWHlvVFBzTC1ZR2UxWkpib0dkV190T1JISDVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni8xNjFkMmYtZWM4Ny00NzE4LTkzNjQtZmEyYzE1MzcxNzI2 LzEvWHlvVFBzTC1ZR2UxWkpib0dkV190T1JISDVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS9n5ZuzY tbBLWwzQb+ND2nAx4r0zTJecwcGfcDgbymbSwxGodtL1zOpQv1Hm9sjEaLrsQ7Ty l69WedRWBgsocJeJdFi26aniuQuTMtRjHZdoY8B2V2GMWyb58SpH+rumKFnxI5mf cGM/WPzlrP4D+qGcjEoPY7ySxj2p3Mq+0q1w48GXQO3MrrdhNs0z2ybKmf/msurA K3Htmgp3x1RSMnTeMjj6SJGj6oSzSXThOUc53/rDHlRa86IEFqcJNEr8LTjPKQEw 7Y91C3rUPScxvwLEfF1KliDXFOBxyyULXPVO3cl4cDYTBaxjqusbO1/v4fbIbBRV /yvy7OXt/xgeLA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:22 2026 by rpki-client