This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/38cbeb-c0af-4c37-b569-df1c57c2a751/1/XwNIeIMukX__nNPIbA-h5WX4IdM.mft File: XwNIeIMukX__nNPIbA-h5WX4IdM.mft (raw, json) Hash identifier: ZGDFiFXBidzy28WW57aAMQWp37N4cXm06/JjUOjW+Tw= Subject key identifier: 0C:6F:35:5C:58:49:4C:82:D0:F5:9C:C6:3B:12:F1:05:43:22:E4:FE Authority key identifier: 5F:03:48:78:83:2E:91:7F:FF:9C:D3:C8:6C:0F:A1:E5:65:F8:21:D3 Certificate issuer: /CN=5f034878832e917fff9cd3c86c0fa1e565f821d3 Certificate serial: 019C446BDE568D3C824FDEFF990B80C99139 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwNIeIMukX__nNPIbA-h5WX4IdM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/38cbeb-c0af-4c37-b569-df1c57c2a751/1/XwNIeIMukX__nNPIbA-h5WX4IdM.mft Manifest number: 135E Signing time: Mon 09 Feb 2026 22:00:45 +0000 Manifest this update: Mon 09 Feb 2026 22:00:45 +0000 Manifest next update: Tue 10 Feb 2026 22:00:45 +0000 Files and hashes: 1: XwNIeIMukX__nNPIbA-h5WX4IdM.crl (hash: Xt6+dpFxKbOC3ULO5Wwv5X47PdC+d7YsvY8y6QeChug=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/38cbeb-c0af-4c37-b569-df1c57c2a751/1/XwNIeIMukX__nNPIbA-h5WX4IdM.crl rsync://rpki.ripe.net/repository/DEFAULT/60/38cbeb-c0af-4c37-b569-df1c57c2a751/1/XwNIeIMukX__nNPIbA-h5WX4IdM.mft rsync://rpki.ripe.net/repository/DEFAULT/XwNIeIMukX__nNPIbA-h5WX4IdM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:de:56:8d:3c:82:4f:de:ff:99:0b:80:c9:91:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f034878832e917fff9cd3c86c0fa1e565f821d3 Validity Not Before: Feb 9 22:00:45 2026 GMT Not After : Feb 10 22:00:45 2026 GMT Subject: CN=0c6f355c58494c82d0f59cc63b12f1054322e4fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d1:13:7d:07:50:4e:44:95:46:88:49:6e:83: da:db:67:1f:ef:2e:67:fb:0e:7e:ee:7b:b5:6d:76: ce:0f:a6:f3:f1:c0:71:74:6b:42:3a:40:f6:e8:aa: 51:9d:80:b5:a8:06:e6:d8:64:13:64:73:cb:65:80: 5a:52:61:3a:eb:94:0b:4c:2b:82:ad:c1:07:2d:e5: bf:1a:9f:52:09:5c:1d:ec:0a:79:3a:92:18:44:9f: 36:73:7a:6f:64:d7:f5:56:bb:d6:2c:2b:18:37:57: b7:23:a5:ad:26:fc:fc:e0:45:fa:95:04:78:14:ba: 08:0e:81:72:84:e4:68:d4:09:9c:5b:0a:91:f7:88: c4:71:71:0b:3f:bc:b8:39:0f:b6:fa:41:22:13:9d: eb:fb:51:59:df:f8:f5:88:43:f7:10:44:ea:c8:8e: 43:a6:0e:43:56:29:30:71:19:65:e6:58:22:bf:c1: a5:8c:39:7e:35:90:cf:bf:98:b2:1c:dc:a6:e5:c9: 30:64:51:bc:e0:61:9b:b7:87:02:70:f7:66:7b:36: b7:d9:e1:2e:3b:79:50:8d:94:db:27:41:fe:3a:6e: 41:94:ed:e4:dd:2e:76:fc:f7:3d:5d:2b:99:78:03: 2d:7e:20:33:59:b1:3b:a6:f5:92:38:17:38:bf:1f: 72:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:6F:35:5C:58:49:4C:82:D0:F5:9C:C6:3B:12:F1:05:43:22:E4:FE X509v3 Authority Key Identifier: keyid:5F:03:48:78:83:2E:91:7F:FF:9C:D3:C8:6C:0F:A1:E5:65:F8:21:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwNIeIMukX__nNPIbA-h5WX4IdM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/38cbeb-c0af-4c37-b569-df1c57c2a751/1/XwNIeIMukX__nNPIbA-h5WX4IdM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/38cbeb-c0af-4c37-b569-df1c57c2a751/1/XwNIeIMukX__nNPIbA-h5WX4IdM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:d1:b6:f8:78:a7:3c:ff:d2:fb:44:fd:84:e1:92:8f:93:b8: 62:5d:93:81:5d:88:87:97:b0:cc:5d:d8:1f:b4:b7:ee:7b:18: 66:41:84:15:d2:66:28:37:a4:e7:51:9c:09:88:de:08:70:0c: ce:6d:57:1b:ff:18:b7:92:73:16:67:b5:e6:21:45:8a:bd:e0: 8c:99:2b:54:33:34:3a:7e:45:24:98:07:bb:aa:43:47:05:80: ff:19:8c:76:18:37:68:2a:fa:fa:e7:6d:72:b7:3e:c7:09:4b: dc:d4:3b:b6:67:17:72:f7:80:37:8b:46:d8:0e:a7:8a:ff:1c: 97:5e:5a:2c:28:d8:95:33:3d:bc:41:9f:d4:e0:09:69:65:78: dc:f3:55:97:40:f1:0d:fd:1a:77:8c:73:0d:1f:9f:0d:e2:c1: 44:4a:79:82:e4:5f:b0:6b:1d:3c:0f:6e:8e:22:73:06:99:e1: 34:cf:5e:9f:90:8e:61:3a:f8:5d:fc:65:00:6d:c8:51:28:56: 70:23:aa:7f:fe:13:9b:c5:0c:a2:36:b5:4a:cf:80:cb:74:1a: 59:d1:0c:17:ff:48:e8:c7:c5:a4:e5:1e:14:38:68:e3:1e:83: 0f:89:dd:95:24:36:6d:61:c1:db:ab:8b:e1:bf:77:22:26:33: a6:ca:02:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa95WjTyCT97/mQuAyZE5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmMDM0ODc4ODMyZTkxN2ZmZjljZDNjODZjMGZhMWU1NjVm ODIxZDMwHhcNMjYwMjA5MjIwMDQ1WhcNMjYwMjEwMjIwMDQ1WjAzMTEwLwYDVQQD EygwYzZmMzU1YzU4NDk0YzgyZDBmNTljYzYzYjEyZjEwNTQzMjJlNGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAydETfQdQTkSVRohJboPa22cf7y5n +w5+7nu1bXbOD6bz8cBxdGtCOkD26KpRnYC1qAbm2GQTZHPLZYBaUmE665QLTCuC rcEHLeW/Gp9SCVwd7Ap5OpIYRJ82c3pvZNf1VrvWLCsYN1e3I6WtJvz84EX6lQR4 FLoIDoFyhORo1AmcWwqR94jEcXELP7y4OQ+2+kEiE53r+1FZ3/j1iEP3EETqyI5D pg5DVikwcRll5lgiv8GljDl+NZDPv5iyHNym5ckwZFG84GGbt4cCcPdmeza32eEu O3lQjZTbJ0H+Om5BlO3k3S52/Pc9XSuZeAMtfiAzWbE7pvWSOBc4vx9yqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAxvNVxYSUyC0PWcxjsS8QVDIuT+MB8GA1UdIwQY MBaAFF8DSHiDLpF//5zTyGwPoeVl+CHTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHdOSWVJTXVrWF9fbk5QSWJBLWg1V1g0SWRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8zOGNiZWItYzBhZi00YzM3LWI1Njkt ZGYxYzU3YzJhNzUxLzEvWHdOSWVJTXVrWF9fbk5QSWJBLWg1V1g0SWRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC8zOGNiZWItYzBhZi00YzM3LWI1NjktZGYxYzU3YzJhNzUx LzEvWHdOSWVJTXVrWF9fbk5QSWJBLWg1V1g0SWRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjtG2+Hin PP/S+0T9hOGSj5O4Yl2TgV2Ih5ewzF3YH7S37nsYZkGEFdJmKDek51GcCYjeCHAM zm1XG/8Yt5JzFme15iFFir3gjJkrVDM0On5FJJgHu6pDRwWA/xmMdhg3aCr6+udt crc+xwlL3NQ7tmcXcveAN4tG2A6niv8cl15aLCjYlTM9vEGf1OAJaWV43PNVl0Dx Df0ad4xzDR+fDeLBREp5guRfsGsdPA9ujiJzBpnhNM9en5COYTr4XfxlAG3IUShW cCOqf/4Tm8UMoja1Ss+Ay3QaWdEMF/9I6MfFpOUeFDho4x6DD4ndlSQ2bWHB26uL 4b93IiYzpsoCAQ== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:04 2026 by rpki-client