This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft File: xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft (raw, json) Hash identifier: 7x7qi9OCCgsBl/wA4IagMtSDTLOiBC5d5DE2V0n89nI= Subject key identifier: 3F:80:7F:26:87:A8:64:91:93:9D:FA:03:C5:17:07:2D:E2:5A:02:1D Authority key identifier: C6:CC:F9:CE:97:D1:23:2E:01:62:FC:CD:43:F6:0C:4E:79:83:1E:1A Certificate issuer: /CN=c6ccf9ce97d1232e0162fccd43f60c4e79831e1a Certificate serial: 019C40FD69BB639F011308A302EBAF3266EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft Manifest number: 0F6D Signing time: Mon 09 Feb 2026 06:01:15 +0000 Manifest this update: Mon 09 Feb 2026 06:01:15 +0000 Manifest next update: Tue 10 Feb 2026 06:01:15 +0000 Files and hashes: 1: xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl (hash: hZ4LqarscJt/lRoy5X4v48F5oU9uyXZsv6wetaECJNM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:69:bb:63:9f:01:13:08:a3:02:eb:af:32:66:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c6ccf9ce97d1232e0162fccd43f60c4e79831e1a Validity Not Before: Feb 9 06:01:15 2026 GMT Not After : Feb 10 06:01:15 2026 GMT Subject: CN=3f807f2687a86491939dfa03c517072de25a021d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8f:a3:4e:a5:7e:19:4a:f2:03:0e:bd:1b:a2: 8d:1f:ad:d6:8e:ff:22:30:20:81:97:16:5b:5c:b9: 4d:50:3a:ad:d6:5a:0a:0b:31:8e:fc:50:79:3c:f1: 15:3b:cc:83:17:d9:56:cb:90:03:47:57:8f:ba:2c: 61:66:76:70:96:0a:f7:1e:e4:2e:3c:fc:71:a6:cc: 26:10:c4:17:30:aa:87:bc:7a:1e:e6:9a:e7:e1:b5: 2a:4b:3f:91:dd:19:bf:bf:d3:66:1a:82:8e:9b:29: 36:de:01:72:f5:6c:22:7b:b9:3f:85:8d:2f:e0:69: 4c:b5:14:87:e0:92:c5:00:dc:44:82:68:e7:43:8a: 02:79:8c:c9:75:fc:c8:1b:21:ec:45:fc:85:cf:ba: ff:20:a9:84:25:60:14:fa:3e:4e:83:61:03:a6:b9: 3c:05:4d:f3:bb:a0:8e:9d:f9:69:31:ef:00:77:e3: aa:d0:af:48:63:88:f2:a1:07:3e:f1:4c:6d:6c:da: d6:f8:b6:d8:62:cb:16:8f:f3:6d:02:d6:29:a2:fb: 1c:62:f7:f3:37:7b:15:3e:07:72:7f:3f:b0:44:f5: 57:ab:79:59:4a:6c:aa:a3:68:59:65:a7:ff:d8:bc: 1d:4b:3c:dd:c8:66:5c:a7:7e:91:7c:06:67:4f:bd: 74:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:80:7F:26:87:A8:64:91:93:9D:FA:03:C5:17:07:2D:E2:5A:02:1D X509v3 Authority Key Identifier: keyid:C6:CC:F9:CE:97:D1:23:2E:01:62:FC:CD:43:F6:0C:4E:79:83:1E:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:43:4e:0b:88:55:90:c9:7a:e3:ed:bb:22:ae:07:95:2b:cc: 34:af:14:0b:f3:54:22:02:78:0b:e6:be:64:8f:e5:0d:8c:93: aa:1e:6b:c5:a5:f2:42:59:78:27:97:81:72:c3:58:42:1c:1a: 02:dd:6f:3b:95:dc:04:71:99:32:af:11:7f:ad:e2:b5:c8:cd: f6:3c:70:01:30:85:42:67:cc:a9:be:c5:b5:b3:5d:09:23:f1: b4:db:b8:6c:d6:95:90:ce:3b:25:9c:e5:8b:c2:47:46:cc:8d: 3c:89:be:28:62:75:7d:67:68:4e:cd:e6:4c:87:48:4c:7a:fe: 09:24:75:c5:ed:cc:11:8c:ad:b8:9f:24:d4:71:1d:d2:bd:07: a9:48:23:69:4f:1a:66:8c:14:ff:36:40:3f:a8:92:29:dc:b1: 8b:4f:f3:f5:84:92:6b:7e:40:5a:de:14:b2:f8:3a:d0:b5:5f: 0e:17:48:ba:34:f2:b1:01:91:9e:15:91:cd:b6:82:18:27:83: a8:84:fc:50:22:7e:3b:45:ad:91:dc:7b:cb:55:3b:e5:41:b0: 2d:01:a5:58:a2:ec:ca:ae:00:d6:a2:e1:5c:ce:61:23:c2:20: 20:94:8a:10:df:bd:3d:6e:b3:b3:8f:97:07:84:83:5b:0b:db: 90:1b:22:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/Wm7Y58BEwijAuuvMmbuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2Y2NmOWNlOTdkMTIzMmUwMTYyZmNjZDQzZjYwYzRlNzk4 MzFlMWEwHhcNMjYwMjA5MDYwMTE1WhcNMjYwMjEwMDYwMTE1WjAzMTEwLwYDVQQD EygzZjgwN2YyNjg3YTg2NDkxOTM5ZGZhMDNjNTE3MDcyZGUyNWEwMjFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4+jTqV+GUryAw69G6KNH63Wjv8i MCCBlxZbXLlNUDqt1loKCzGO/FB5PPEVO8yDF9lWy5ADR1ePuixhZnZwlgr3HuQu PPxxpswmEMQXMKqHvHoe5prn4bUqSz+R3Rm/v9NmGoKOmyk23gFy9Wwie7k/hY0v 4GlMtRSH4JLFANxEgmjnQ4oCeYzJdfzIGyHsRfyFz7r/IKmEJWAU+j5Og2EDprk8 BU3zu6COnflpMe8Ad+Oq0K9IY4jyoQc+8UxtbNrW+LbYYssWj/NtAtYpovscYvfz N3sVPgdyfz+wRPVXq3lZSmyqo2hZZaf/2LwdSzzdyGZcp36RfAZnT710rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD+AfyaHqGSRk536A8UXBy3iWgIdMB8GA1UdIwQY MBaAFMbM+c6X0SMuAWL8zUP2DE55gx4aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHN6NXpwZlJJeTRCWXZ6TlFfWU1Ubm1ESGhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8xODZiZjItZmI4OC00NzI4LWJmNjct NWExZTVmYTczZTRkLzEveHN6NXpwZlJJeTRCWXZ6TlFfWU1Ubm1ESGhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi8xODZiZjItZmI4OC00NzI4LWJmNjctNWExZTVmYTczZTRk LzEveHN6NXpwZlJJeTRCWXZ6TlFfWU1Ubm1ESGhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgkNOC4hV kMl64+27Iq4HlSvMNK8UC/NUIgJ4C+a+ZI/lDYyTqh5rxaXyQll4J5eBcsNYQhwa At1vO5XcBHGZMq8Rf63itcjN9jxwATCFQmfMqb7FtbNdCSPxtNu4bNaVkM47JZzl i8JHRsyNPIm+KGJ1fWdoTs3mTIdITHr+CSR1xe3MEYytuJ8k1HEd0r0HqUgjaU8a ZowU/zZAP6iSKdyxi0/z9YSSa35AWt4Usvg60LVfDhdIujTysQGRnhWRzbaCGCeD qIT8UCJ+O0Wtkdx7y1U75UGwLQGlWKLsyq4A1qLhXM5hI8IgIJSKEN+9PW6zs4+X B4SDWwvbkBsiHQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:00 2026 by rpki-client