This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft File: xq11SrfApAHA_x08Ensn1T_cyYE.mft (raw, json) Hash identifier: yMPoibQIy5avSqfUf3kVvyVkVa4YLu4MV0JUpFN4DYU= Subject key identifier: FF:B8:0C:7C:F2:B6:D0:DD:1E:C1:C1:0A:C9:EF:D9:8A:AB:D8:BD:4E Authority key identifier: C6:AD:75:4A:B7:C0:A4:01:C0:FF:1D:3C:12:7B:27:D5:3F:DC:C9:81 Certificate issuer: /CN=c6ad754ab7c0a401c0ff1d3c127b27d53fdcc981 Certificate serial: 019C446C091D04CEB21FE133C0D1CF05C490 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xq11SrfApAHA_x08Ensn1T_cyYE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 22:00:56 +0000 Manifest this update: Mon 09 Feb 2026 22:00:56 +0000 Manifest next update: Tue 10 Feb 2026 22:00:56 +0000 Files and hashes: 1: xq11SrfApAHA_x08Ensn1T_cyYE.crl (hash: KUr7xgxRsE5sG0g6U4jJMZ8j08XpVvTG+K3T7giKNLQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft rsync://rpki.ripe.net/repository/DEFAULT/xq11SrfApAHA_x08Ensn1T_cyYE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6c:09:1d:04:ce:b2:1f:e1:33:c0:d1:cf:05:c4:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c6ad754ab7c0a401c0ff1d3c127b27d53fdcc981 Validity Not Before: Feb 9 22:00:56 2026 GMT Not After : Feb 10 22:00:56 2026 GMT Subject: CN=ffb80c7cf2b6d0dd1ec1c10ac9efd98aabd8bd4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:ad:21:37:6b:67:6d:31:e1:ab:bc:f6:77:c3: 7f:0b:33:43:94:f9:32:25:76:f2:ce:72:cd:34:e3: 9e:8c:b8:52:7a:6a:15:2b:5c:78:67:cc:f9:a4:dc: 2f:f0:78:3b:5d:c6:57:3e:ec:1b:b1:aa:64:31:f1: 44:b5:bc:d5:fb:51:dc:c3:cb:4c:01:3d:59:91:e4: 71:ec:d0:61:b3:68:26:18:5b:d4:14:69:30:bd:60: 94:e1:42:03:6b:22:c6:28:ae:8b:60:42:f6:7a:1f: 10:fa:9e:50:03:3c:fd:3d:2f:48:d2:02:fb:c0:1f: 31:44:45:ac:ef:88:31:f4:52:44:13:b9:9e:89:5a: 5c:d3:1f:78:62:dc:4d:3f:43:a7:8a:3e:99:ff:8a: af:a0:b4:28:51:9c:45:06:b7:b1:12:7e:70:37:d5: 48:21:4d:36:f4:d2:e2:1a:2b:78:cb:f9:a8:5b:7d: 33:85:aa:3a:62:cf:3e:1d:6a:8a:e8:64:8c:48:57: 39:c5:d6:ec:94:df:b8:45:16:0f:cb:d5:34:b4:72: 2d:5c:82:e7:b4:45:8f:ea:67:f1:d6:2a:04:0f:b7: 31:c2:db:00:5d:c9:4d:03:2f:23:9d:16:34:ca:1e: 5f:3a:21:a9:92:24:59:6a:f3:37:4d:22:39:66:5f: 97:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B8:0C:7C:F2:B6:D0:DD:1E:C1:C1:0A:C9:EF:D9:8A:AB:D8:BD:4E X509v3 Authority Key Identifier: keyid:C6:AD:75:4A:B7:C0:A4:01:C0:FF:1D:3C:12:7B:27:D5:3F:DC:C9:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xq11SrfApAHA_x08Ensn1T_cyYE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:de:78:17:8e:cb:9a:2f:fb:36:2d:75:1f:0d:97:30:54:33: 6c:f5:7c:0c:0a:09:c8:7d:12:29:54:c2:0e:b4:4e:35:97:8c: 80:75:a7:84:f0:50:e8:23:03:86:3f:07:08:a7:3a:8e:f6:f6: 67:c6:e5:14:6c:5f:84:df:52:1f:d5:5e:b0:2f:2e:da:95:3d: e6:d6:14:a0:99:9e:13:e1:1f:31:64:2f:c5:4b:77:89:40:1a: f8:70:3a:19:a3:18:d1:bc:da:3d:2b:f2:92:5d:85:2e:44:e4: 19:2e:74:8a:2f:cd:11:4c:1c:90:08:9a:d8:65:bb:b6:07:c2: 45:08:9b:f3:3e:00:65:6d:b5:30:67:ca:8a:d2:40:b4:4c:2b: 4b:60:a8:64:ed:c0:26:19:1c:4b:c8:eb:78:17:dc:0a:fd:3e: 77:cf:66:84:45:d0:2c:9f:ba:9f:d2:86:e2:91:59:90:22:5c: 78:c2:71:7f:a3:56:64:0d:db:3c:d2:7b:67:0e:8e:6e:57:25: cd:a1:9c:5e:39:69:e4:17:18:f5:58:44:8f:82:c1:ec:33:aa: eb:45:b2:fc:85:72:9c:23:48:50:af:3c:ce:59:40:2d:71:a0: 7e:77:9a:bb:ea:16:a2:c2:fa:4a:90:e3:0a:fe:cd:bb:0c:4d: bf:1d:66:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEbAkdBM6yH+EzwNHPBcSQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2YWQ3NTRhYjdjMGE0MDFjMGZmMWQzYzEyN2IyN2Q1M2Zk Y2M5ODEwHhcNMjYwMjA5MjIwMDU2WhcNMjYwMjEwMjIwMDU2WjAzMTEwLwYDVQQD EyhmZmI4MGM3Y2YyYjZkMGRkMWVjMWMxMGFjOWVmZDk4YWFiZDhiZDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAja0hN2tnbTHhq7z2d8N/CzNDlPky JXbyznLNNOOejLhSemoVK1x4Z8z5pNwv8Hg7XcZXPuwbsapkMfFEtbzV+1Hcw8tM AT1ZkeRx7NBhs2gmGFvUFGkwvWCU4UIDayLGKK6LYEL2eh8Q+p5QAzz9PS9I0gL7 wB8xREWs74gx9FJEE7meiVpc0x94YtxNP0Onij6Z/4qvoLQoUZxFBrexEn5wN9VI IU029NLiGit4y/moW30zhao6Ys8+HWqK6GSMSFc5xdbslN+4RRYPy9U0tHItXILn tEWP6mfx1ioED7cxwtsAXclNAy8jnRY0yh5fOiGpkiRZavM3TSI5Zl+XCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP+4DHzyttDdHsHBCsnv2Yqr2L1OMB8GA1UdIwQY MBaAFMatdUq3wKQBwP8dPBJ7J9U/3MmBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHExMVNyZkFwQUhBX3gwOEVuc24xVF9jeVlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80YzMxMzMtY2I5OC00ZWFlLWFiY2Ut YmEzM2QzNjc1NWRmLzEveHExMVNyZkFwQUhBX3gwOEVuc24xVF9jeVlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi80YzMxMzMtY2I5OC00ZWFlLWFiY2UtYmEzM2QzNjc1NWRm LzEveHExMVNyZkFwQUhBX3gwOEVuc24xVF9jeVlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYt54F47L mi/7Ni11Hw2XMFQzbPV8DAoJyH0SKVTCDrRONZeMgHWnhPBQ6CMDhj8HCKc6jvb2 Z8blFGxfhN9SH9VesC8u2pU95tYUoJmeE+EfMWQvxUt3iUAa+HA6GaMY0bzaPSvy kl2FLkTkGS50ii/NEUwckAia2GW7tgfCRQib8z4AZW21MGfKitJAtEwrS2CoZO3A JhkcS8jreBfcCv0+d89mhEXQLJ+6n9KG4pFZkCJceMJxf6NWZA3bPNJ7Zw6Oblcl zaGcXjlp5BcY9VhEj4LB7DOq60Wy/IVynCNIUK88zllALXGgfneau+oWosL6SpDj Cv7NuwxNvx1m4A== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:23 2026 by rpki-client