This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft File: XHbv8miEvwBiB9cis7AaRNK1YZk.mft (raw, json) Hash identifier: Xl4Z/B6BqCSGT10baKCfq4z13UIjbBYAqiQMfx5txZs= Subject key identifier: ED:ED:2C:88:16:35:62:87:73:F1:47:04:FA:FD:B3:A6:C7:22:A8:90 Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99 Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199 Certificate serial: 019C42EB3C2808D55CD6AA657D14C9128137 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft Manifest number: 1047 Signing time: Mon 09 Feb 2026 15:00:38 +0000 Manifest this update: Mon 09 Feb 2026 15:00:38 +0000 Manifest next update: Tue 10 Feb 2026 15:00:38 +0000 Files and hashes: 1: XHbv8miEvwBiB9cis7AaRNK1YZk.crl (hash: DMstEhqvEYCGGikCGed2j1+UScMBWgAGeL4Bp8wbuqQ=) 2: _YZBO3azDWzDB7ElIM22F0xnwLk.roa (hash: 4qcIMPGCjL8+gfTaAVV6FW+AJO4ktZWbZTXBgVeKur0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:3c:28:08:d5:5c:d6:aa:65:7d:14:c9:12:81:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199 Validity Not Before: Feb 9 15:00:38 2026 GMT Not After : Feb 10 15:00:38 2026 GMT Subject: CN=eded2c881635628773f14704fafdb3a6c722a890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ce:18:38:ae:4e:72:70:9f:e3:2c:a8:1e:2c: 2a:52:f4:1f:b5:41:2d:23:28:3d:0c:90:af:31:b4: 00:62:d0:e0:ae:bd:c5:93:6f:2d:ec:5e:f3:71:8d: e5:fe:ac:05:6f:04:95:e7:a9:54:4e:9d:33:98:0a: f8:de:e8:5f:59:43:b3:2a:4d:ae:02:52:55:02:48: 81:25:31:b7:d6:ad:0a:96:f3:66:42:e7:c1:25:16: 9a:b9:48:6b:4a:a3:b7:ac:3c:da:f0:e5:d4:9c:14: 3a:47:91:29:9e:2f:1f:b7:7f:df:a1:93:9c:34:2e: 16:1d:64:98:76:99:3e:8a:53:3c:b3:15:b0:fe:b7: 34:a3:5b:a7:ca:c3:16:30:bf:8a:9d:0a:2e:da:be: 82:a2:aa:69:37:ad:a7:66:25:a2:1a:6e:6b:4b:5a: 3e:3d:d3:fa:f7:c2:fc:39:79:03:ee:6c:e9:75:20: 9b:b2:ab:3b:5f:88:ad:46:34:63:77:f5:c2:a9:81: 4a:98:e9:46:9e:48:57:10:29:c5:63:fd:86:9b:8c: 51:73:b0:e3:a7:31:0b:55:0b:6c:c4:0e:e1:34:09: b0:4d:16:d5:1a:f7:ef:b0:ba:44:14:3a:16:5d:60: 3e:a8:dd:7c:09:52:22:23:7f:4c:c8:6f:db:86:8f: 3e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:ED:2C:88:16:35:62:87:73:F1:47:04:FA:FD:B3:A6:C7:22:A8:90 X509v3 Authority Key Identifier: keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:48:85:c1:68:11:36:8d:1d:39:39:7e:4f:e3:25:b2:91:f7: a7:7a:fa:dc:58:14:d6:d7:57:7c:bd:47:b2:3e:04:4e:17:65: 2d:0f:f7:e4:5e:08:f9:a4:c4:be:8f:98:74:f1:ce:65:40:e9: 9c:cf:6a:f1:91:10:5a:31:cf:86:90:f6:b6:54:80:2a:6b:dd: 17:71:0e:fb:9e:d2:c3:92:81:ab:72:d7:01:bd:73:b0:02:87: 3f:7c:af:32:4f:58:e2:fc:e0:8d:b2:30:ae:11:46:b2:15:97: c8:03:4d:fa:00:80:c7:08:7d:99:08:b3:bb:12:83:b3:99:e1: 87:81:a1:0f:de:04:81:6c:70:05:ba:c7:e7:97:b4:7f:ec:3e: 51:ec:4f:a2:11:e2:0e:df:88:ba:be:57:48:58:ee:be:73:18: 21:d1:72:a1:0e:cb:f4:aa:0d:cc:75:7d:01:6f:47:99:a6:7e: 93:e5:cc:1b:9b:5d:1a:4e:09:72:1f:d7:3a:17:fc:b4:a9:aa: af:b0:2d:0c:6f:af:f8:c2:2b:e9:04:9c:1f:c1:18:7c:f1:4f: d5:3e:5e:84:be:06:fe:78:7d:44:71:03:04:c1:2f:66:5e:8d: 29:7d:f1:84:63:c2:42:f5:80:f2:8e:ec:1d:1a:55:ad:33:72: 7d:cd:8b:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6zwoCNVc1qplfRTJEoE3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNzZlZmYyNjg4NGJmMDA2MjA3ZDcyMmIzYjAxYTQ0ZDJi NTYxOTkwHhcNMjYwMjA5MTUwMDM4WhcNMjYwMjEwMTUwMDM4WjAzMTEwLwYDVQQD EyhlZGVkMmM4ODE2MzU2Mjg3NzNmMTQ3MDRmYWZkYjNhNmM3MjJhODkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAos4YOK5OcnCf4yyoHiwqUvQftUEt Iyg9DJCvMbQAYtDgrr3Fk28t7F7zcY3l/qwFbwSV56lUTp0zmAr43uhfWUOzKk2u AlJVAkiBJTG31q0KlvNmQufBJRaauUhrSqO3rDza8OXUnBQ6R5Epni8ft3/foZOc NC4WHWSYdpk+ilM8sxWw/rc0o1unysMWML+KnQou2r6CoqppN62nZiWiGm5rS1o+ PdP698L8OXkD7mzpdSCbsqs7X4itRjRjd/XCqYFKmOlGnkhXECnFY/2Gm4xRc7Dj pzELVQtsxA7hNAmwTRbVGvfvsLpEFDoWXWA+qN18CVIiI39MyG/bho8+zQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO3tLIgWNWKHc/FHBPr9s6bHIqiQMB8GA1UdIwQY MBaAFFx27/JohL8AYgfXIrOwGkTStWGZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEhidjhtaUV2d0JpQjljaXM3QWFSTksxWVprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny84NjIyMzItNThkNy00YzFkLWIxOTgt NjYwNDExYjlkMTY3LzEvWEhidjhtaUV2d0JpQjljaXM3QWFSTksxWVprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny84NjIyMzItNThkNy00YzFkLWIxOTgtNjYwNDExYjlkMTY3 LzEvWEhidjhtaUV2d0JpQjljaXM3QWFSTksxWVprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPkiFwWgR No0dOTl+T+MlspH3p3r63FgU1tdXfL1Hsj4EThdlLQ/35F4I+aTEvo+YdPHOZUDp nM9q8ZEQWjHPhpD2tlSAKmvdF3EO+57Sw5KBq3LXAb1zsAKHP3yvMk9Y4vzgjbIw rhFGshWXyANN+gCAxwh9mQizuxKDs5nhh4GhD94EgWxwBbrH55e0f+w+UexPohHi Dt+Iur5XSFjuvnMYIdFyoQ7L9KoNzHV9AW9HmaZ+k+XMG5tdGk4Jch/XOhf8tKmq r7AtDG+v+MIr6QScH8EYfPFP1T5ehL4G/nh9RHEDBMEvZl6NKX3xhGPCQvWA8o7s HRpVrTNyfc2LZA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:57 2026 by rpki-client