This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft File: XFe2FhFxnsfI4AErGv9-gfx2ib0.mft (raw, json) Hash identifier: ZCLrH8gCU+6pbEdYqiqDI0KG6az4HdyhJP81aCRHeZI= Subject key identifier: DD:BC:33:2A:BF:52:6B:18:4F:D8:AA:0A:A3:57:7F:1F:0E:26:85:C5 Authority key identifier: 5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD Certificate issuer: /CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd Certificate serial: 019C42B3F7908AFCD18714526C8CDFB39C17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft Manifest number: 120B Signing time: Mon 09 Feb 2026 14:00:16 +0000 Manifest this update: Mon 09 Feb 2026 14:00:16 +0000 Manifest next update: Tue 10 Feb 2026 14:00:16 +0000 Files and hashes: 1: XFe2FhFxnsfI4AErGv9-gfx2ib0.crl (hash: r9KSlk2Ms8mLzVRyQHrBQ57nc2Qi74bk0UzaB/hoHoo=) 2: gyaoxZQ9pcA6k1D-cPBeZilXomE.roa (hash: EbmIg7/Lcotp9RQcNaPrOgD1blVN8hxve+ufr918Fkc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b3:f7:90:8a:fc:d1:87:14:52:6c:8c:df:b3:9c:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd Validity Not Before: Feb 9 14:00:16 2026 GMT Not After : Feb 10 14:00:16 2026 GMT Subject: CN=ddbc332abf526b184fd8aa0aa3577f1f0e2685c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:38:dc:5c:de:96:e8:90:80:4e:ab:3b:b5:0d: f0:b8:37:c9:40:6f:67:07:90:07:87:91:0e:8b:3d: e3:6a:f0:4d:b4:f2:b1:79:38:b0:00:eb:c9:66:52: 01:b7:c2:58:e8:36:ff:fb:7a:3e:e8:b0:38:39:80: 48:c7:2b:a0:e8:2a:32:10:40:b2:27:e2:3a:33:dc: 77:40:29:4b:7f:d7:3e:a7:e9:2e:c3:33:1b:a5:aa: 50:c5:d7:1c:43:2e:ab:74:6b:61:6d:64:4d:ae:94: 3b:c8:75:d7:b3:0a:e6:e9:cb:1b:5e:87:50:e0:b1: cd:3a:8f:62:16:7e:7e:c9:18:37:b3:b9:be:32:0a: 09:67:72:63:6d:c2:bc:01:cf:09:38:c9:94:08:f6: 18:56:46:23:71:48:86:3c:b4:e2:90:9a:ab:45:39: 3a:b1:c6:a4:ab:22:1b:8b:bd:d7:d2:5f:3e:9a:4b: 28:15:77:ae:37:aa:52:2e:ff:89:75:c2:64:1e:f7: 70:26:81:11:6b:8c:78:46:01:b4:17:e3:46:f0:3b: 2b:39:2d:23:45:a7:9a:6e:1f:58:6f:54:1d:6e:11: 3a:4b:b2:fe:a8:53:d4:78:af:ec:3e:d2:74:f5:0a: 48:9a:15:4f:a8:39:f2:61:dd:68:c5:22:26:f5:71: a6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BC:33:2A:BF:52:6B:18:4F:D8:AA:0A:A3:57:7F:1F:0E:26:85:C5 X509v3 Authority Key Identifier: keyid:5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:da:1e:ff:47:f9:8b:8a:b1:a9:2a:a3:98:a6:31:01:ea:ed: 08:20:d0:0c:6e:4f:f6:b2:16:99:12:08:6e:3f:43:51:ed:4c: cf:97:65:55:61:ca:66:b0:bd:c0:f4:f6:84:3e:9d:81:3f:12: 8a:aa:e7:e6:84:74:4f:65:28:21:e2:98:e1:e9:99:2c:e2:2e: 52:bc:54:19:00:96:de:52:72:ef:50:72:e2:4f:3b:92:20:a4: 92:ac:4a:7d:6c:4e:9a:a6:61:c6:92:85:3c:4e:0e:8b:10:01: e2:6b:65:04:56:87:c9:43:cb:54:a3:03:44:67:8a:bd:52:c1: 86:22:9a:a9:21:48:56:64:d5:c0:a0:1e:be:ea:06:60:49:96: 07:55:27:35:18:35:df:29:7e:c9:42:9b:ac:28:1b:11:31:d0: 22:9d:14:85:32:8d:76:24:d3:9a:34:2a:b1:97:6b:71:58:b9: 20:75:a1:d9:6a:04:e4:c8:f5:ca:7e:77:c7:79:ba:9a:7c:c8: 7b:41:c6:8a:37:9d:4d:5c:43:6e:a5:e0:c6:46:57:0e:ad:db: 7c:74:44:44:3a:ce:16:32:0c:80:9d:d1:9f:76:ff:c7:12:6f: 4e:28:ac:bf:68:8a:6d:46:31:cd:77:8a:a4:71:bd:72:3d:8e: a1:73:f0:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCs/eQivzRhxRSbIzfs5wXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNTdiNjE2MTE3MTllYzdjOGUwMDEyYjFhZmY3ZTgxZmM3 Njg5YmQwHhcNMjYwMjA5MTQwMDE2WhcNMjYwMjEwMTQwMDE2WjAzMTEwLwYDVQQD EyhkZGJjMzMyYWJmNTI2YjE4NGZkOGFhMGFhMzU3N2YxZjBlMjY4NWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jjcXN6W6JCATqs7tQ3wuDfJQG9n B5AHh5EOiz3javBNtPKxeTiwAOvJZlIBt8JY6Db/+3o+6LA4OYBIxyug6CoyEECy J+I6M9x3QClLf9c+p+kuwzMbpapQxdccQy6rdGthbWRNrpQ7yHXXswrm6csbXodQ 4LHNOo9iFn5+yRg3s7m+MgoJZ3JjbcK8Ac8JOMmUCPYYVkYjcUiGPLTikJqrRTk6 scakqyIbi73X0l8+mksoFXeuN6pSLv+JdcJkHvdwJoERa4x4RgG0F+NG8DsrOS0j Raeabh9Yb1QdbhE6S7L+qFPUeK/sPtJ09QpImhVPqDnyYd1oxSIm9XGmlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN28Myq/UmsYT9iqCqNXfx8OJoXFMB8GA1UdIwQY MBaAFFxXthYRcZ7HyOABKxr/foH8dom9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9iN2ZlNzUtMzBlZS00YTZmLWI1Mjgt ZmEzMDcxYzQzNWYxLzEvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9iN2ZlNzUtMzBlZS00YTZmLWI1MjgtZmEzMDcxYzQzNWYx LzEvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANtoe/0f5 i4qxqSqjmKYxAertCCDQDG5P9rIWmRIIbj9DUe1Mz5dlVWHKZrC9wPT2hD6dgT8S iqrn5oR0T2UoIeKY4emZLOIuUrxUGQCW3lJy71By4k87kiCkkqxKfWxOmqZhxpKF PE4OixAB4mtlBFaHyUPLVKMDRGeKvVLBhiKaqSFIVmTVwKAevuoGYEmWB1UnNRg1 3yl+yUKbrCgbETHQIp0UhTKNdiTTmjQqsZdrcVi5IHWh2WoE5Mj1yn53x3m6mnzI e0HGijedTVxDbqXgxkZXDq3bfHRERDrOFjIMgJ3Rn3b/xxJvTiisv2iKbUYxzXeK pHG9cj2OoXPw7g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:40 2026 by rpki-client