This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft File: XasLCOUfgYIkYp-zohHYPVvjVEA.mft (raw, json) Hash identifier: tR/6x9g6DTI18XC+vLzWXge6IM5YiHXDjLb1XXNA6H0= Subject key identifier: 3C:B7:10:5F:6F:3E:C9:A2:4B:69:00:E7:C1:AF:23:37:6C:F1:8B:61 Authority key identifier: 5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40 Certificate issuer: /CN=5dab0b08e51f818224629fb3a211d83d5be35440 Certificate serial: 019C42EB61387829726069C719822E15BB47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft Manifest number: 161E Signing time: Mon 09 Feb 2026 15:00:47 +0000 Manifest this update: Mon 09 Feb 2026 15:00:47 +0000 Manifest next update: Tue 10 Feb 2026 15:00:47 +0000 Files and hashes: 1: HdxQx8q8ZBcZded3E8nmTrSkgmE.roa (hash: me4VXnxn0oOOrXZ4tjj+/iKQpTq2YIw30gSY0JjN42A=) 2: XasLCOUfgYIkYp-zohHYPVvjVEA.crl (hash: MFJkYqGynwbCXvFAQXnSXCzcDRVODo3In9kFW46O8tU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:61:38:78:29:72:60:69:c7:19:82:2e:15:bb:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dab0b08e51f818224629fb3a211d83d5be35440 Validity Not Before: Feb 9 15:00:47 2026 GMT Not After : Feb 10 15:00:47 2026 GMT Subject: CN=3cb7105f6f3ec9a24b6900e7c1af23376cf18b61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e1:7d:6a:68:72:08:4f:4d:a2:d1:fe:1a:41: af:27:1f:ba:c1:db:d8:07:c0:68:64:8a:5a:16:d1: 26:8b:eb:14:4a:71:e8:e8:d0:8d:44:ec:33:55:71: fa:7c:3b:9e:60:45:7d:cc:db:dd:d2:22:1c:08:a6: 47:96:78:b3:48:71:90:82:7b:df:f1:82:f2:56:ed: 42:19:06:7c:be:23:6f:b6:36:c2:db:3c:32:89:7c: ef:d4:f7:f0:80:c6:f8:52:bb:02:dc:c6:e2:9f:88: 26:c4:c6:74:4f:8a:87:4e:00:a6:a8:93:c8:10:bf: 16:1d:41:f6:15:ac:f2:d7:a5:b7:d8:fc:1c:ee:59: 2d:de:00:e7:b7:b8:5b:15:ab:ef:20:79:b6:4e:b6: c2:27:96:a3:8a:2f:83:ae:34:d1:e3:72:72:01:b2: 25:cd:c0:bc:fd:11:b1:d7:d9:9a:7a:cd:1b:ab:a7: d8:95:cb:e7:f6:95:31:74:ea:d4:f5:86:1c:6d:52: 94:e8:6e:b0:69:76:08:14:9d:03:80:b4:b7:67:b0: db:ce:bc:b3:bb:6c:4d:18:39:ff:cb:d8:19:b4:0b: 49:f6:cb:d2:f0:90:0c:24:e2:25:85:6b:b4:b4:73: c7:ed:ea:3e:6b:a7:23:f0:f6:09:1d:92:aa:75:d4: f3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:B7:10:5F:6F:3E:C9:A2:4B:69:00:E7:C1:AF:23:37:6C:F1:8B:61 X509v3 Authority Key Identifier: keyid:5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:77:ad:6b:99:64:5a:5e:f1:68:de:64:d9:15:1c:17:6a:2c: cf:46:4e:5c:e1:11:a1:4d:de:54:44:06:cd:71:9d:8d:3d:bd: 8f:57:02:bf:99:42:8c:44:4d:8a:7f:2c:42:43:24:92:e9:19: 40:29:31:b9:11:16:bb:48:91:e3:e0:53:38:a4:bf:11:8f:f4: 0a:16:89:f1:69:e2:b7:59:30:fe:1a:c4:2a:73:4b:3c:d3:71: 6d:6b:84:f1:28:c2:8c:bf:d8:0c:f8:25:50:5d:bd:d6:db:af: f7:a7:04:b0:57:6d:56:fb:61:5e:6d:6b:52:db:2d:8f:02:1e: 0e:4e:77:f3:15:f9:35:26:62:ab:7b:e0:c7:da:7f:21:b4:e3: 7a:a8:8f:0d:d4:f7:c9:5d:ba:49:8c:c7:3c:d7:21:6f:3f:a6: d5:28:08:20:e1:0e:b8:47:26:cc:b6:3a:9b:61:ad:78:31:6f: d7:64:5d:46:00:a0:b1:0a:9f:ec:0a:9d:42:c1:b9:49:a2:fd: b8:ff:c1:c2:79:27:be:bb:96:0f:e0:3e:f6:3f:b8:af:69:4a: d2:e0:7b:e8:1b:4e:e5:aa:ec:76:7e:ac:11:db:39:90:d4:ae: d8:81:b6:de:2f:01:67:e9:95:1b:4f:ce:41:a6:dc:aa:69:7d: 6e:f3:0c:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC62E4eClyYGnHGYIuFbtHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkYWIwYjA4ZTUxZjgxODIyNDYyOWZiM2EyMTFkODNkNWJl MzU0NDAwHhcNMjYwMjA5MTUwMDQ3WhcNMjYwMjEwMTUwMDQ3WjAzMTEwLwYDVQQD EygzY2I3MTA1ZjZmM2VjOWEyNGI2OTAwZTdjMWFmMjMzNzZjZjE4YjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+F9amhyCE9NotH+GkGvJx+6wdvY B8BoZIpaFtEmi+sUSnHo6NCNROwzVXH6fDueYEV9zNvd0iIcCKZHlnizSHGQgnvf 8YLyVu1CGQZ8viNvtjbC2zwyiXzv1PfwgMb4UrsC3Mbin4gmxMZ0T4qHTgCmqJPI EL8WHUH2Fazy16W32Pwc7lkt3gDnt7hbFavvIHm2TrbCJ5ajii+DrjTR43JyAbIl zcC8/RGx19maes0bq6fYlcvn9pUxdOrU9YYcbVKU6G6waXYIFJ0DgLS3Z7Dbzryz u2xNGDn/y9gZtAtJ9svS8JAMJOIlhWu0tHPH7eo+a6cj8PYJHZKqddTzlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDy3EF9vPsmiS2kA58GvIzds8YthMB8GA1UdIwQY MBaAFF2rCwjlH4GCJGKfs6IR2D1b41RAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGFzTENPVWZnWUlrWXAtem9oSFlQVnZqVkVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9lNjIwODktYjk4YS00ZmRkLTljNGUt NjI3ODkxODJhMGYzLzEvWGFzTENPVWZnWUlrWXAtem9oSFlQVnZqVkVBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9lNjIwODktYjk4YS00ZmRkLTljNGUtNjI3ODkxODJhMGYz LzEvWGFzTENPVWZnWUlrWXAtem9oSFlQVnZqVkVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADHeta5lk Wl7xaN5k2RUcF2osz0ZOXOERoU3eVEQGzXGdjT29j1cCv5lCjERNin8sQkMkkukZ QCkxuREWu0iR4+BTOKS/EY/0ChaJ8Wnit1kw/hrEKnNLPNNxbWuE8SjCjL/YDPgl UF291tuv96cEsFdtVvthXm1rUtstjwIeDk538xX5NSZiq3vgx9p/IbTjeqiPDdT3 yV26SYzHPNchbz+m1SgIIOEOuEcmzLY6m2GteDFv12RdRgCgsQqf7AqdQsG5SaL9 uP/BwnknvruWD+A+9j+4r2lK0uB76BtO5arsdn6sEds5kNSu2IG23i8BZ+mVG0/O Qabcqml9bvMMIQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:18 2026 by rpki-client