This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft File: vxtInm2bjH2Dyh5yelmE2-V3r7w.mft (raw, json) Hash identifier: llfLWV6/jP03dZSueTpI7eie0UFwn2Jq5lafIV3AGTk= Subject key identifier: 72:78:7C:64:DC:C3:6C:A6:B3:F9:5F:BB:B5:15:48:68:03:08:F0:CB Authority key identifier: BF:1B:48:9E:6D:9B:8C:7D:83:CA:1E:72:7A:59:84:DB:E5:77:AF:BC Certificate issuer: /CN=bf1b489e6d9b8c7d83ca1e727a5984dbe577afbc Certificate serial: 019C457F364EEE9411D2741A8FB53B8CEC3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft Manifest number: 011B Signing time: Tue 10 Feb 2026 03:01:30 +0000 Manifest this update: Tue 10 Feb 2026 03:01:30 +0000 Manifest next update: Wed 11 Feb 2026 03:01:30 +0000 Files and hashes: 1: HQm537DA2Rt_gLXH5dIBcaR4gcY.roa (hash: A6esoRRzZBkkNQYtZos5wiiS1Mq3h7ghGv25Qr0rnQ0=) 2: vxtInm2bjH2Dyh5yelmE2-V3r7w.crl (hash: H7IQoRKf4O6iqORSXT1THI7tg3mp4JO2mWTzmF8aEd8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.crl rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 03:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:7f:36:4e:ee:94:11:d2:74:1a:8f:b5:3b:8c:ec:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf1b489e6d9b8c7d83ca1e727a5984dbe577afbc Validity Not Before: Feb 10 03:01:30 2026 GMT Not After : Feb 11 03:01:30 2026 GMT Subject: CN=72787c64dcc36ca6b3f95fbbb51548680308f0cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ba:a5:ad:c0:d8:cf:b0:cb:a0:42:34:ef:01: ae:a5:eb:d5:34:cd:da:e2:81:2a:7e:46:53:7c:e7: b4:e9:cb:be:5f:7b:9a:32:8e:ca:77:cb:c7:89:40: 2b:dd:8a:07:50:ec:9c:dc:dc:84:6c:2f:40:64:ed: 23:eb:67:e8:79:a7:5f:a2:04:ab:1b:e2:ef:57:0c: 68:47:08:8e:2e:be:2e:38:00:15:09:db:23:c0:e4: 52:6f:23:72:28:bc:66:b9:1c:2a:8c:39:97:c7:be: ce:c6:3b:61:15:06:9d:66:a3:18:c1:74:32:a4:c1: a5:6c:21:39:d1:48:3b:10:68:f8:fe:85:fe:34:2e: 20:2d:70:5c:58:f6:06:b8:60:18:a8:73:11:05:01: e6:9f:f8:60:4c:b0:f5:a0:2e:87:5f:26:1d:ab:2a: 2e:4f:67:14:72:43:6d:af:f1:e4:a8:61:0a:ad:a7: 32:be:e1:cc:97:88:7b:2c:c5:0e:95:b3:07:8a:01: 83:44:a7:b4:cf:aa:3b:b1:be:2c:9f:59:b3:36:54: a7:83:be:f5:ce:8c:32:99:ad:d9:ec:d4:43:f2:95: 7f:2e:d3:b7:7c:9e:f7:6b:1f:52:94:4b:28:c6:17: 1b:92:94:9d:29:f3:ac:56:69:45:ce:de:8b:85:c2: 60:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:78:7C:64:DC:C3:6C:A6:B3:F9:5F:BB:B5:15:48:68:03:08:F0:CB X509v3 Authority Key Identifier: keyid:BF:1B:48:9E:6D:9B:8C:7D:83:CA:1E:72:7A:59:84:DB:E5:77:AF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:02:22:a4:be:ed:2f:62:68:ad:4b:6e:5c:82:02:fd:5a:ce: f9:b1:9e:ff:2e:ba:dc:ae:40:95:4a:03:a6:54:90:a0:3d:3a: 20:0d:80:a7:0b:38:15:aa:c7:f6:ef:08:7a:55:c6:cb:c6:71: 60:22:b6:9b:35:d1:36:11:51:fe:de:75:8c:85:48:0b:49:7c: 8b:1c:94:77:a6:05:ce:ce:a4:1b:6b:45:ba:5a:ae:87:25:d1: 1c:94:f4:83:3a:88:c5:23:67:d3:d6:b0:a2:75:2a:d8:30:2c: 10:e7:89:58:b4:52:95:d3:e4:66:fa:95:0f:13:5c:d5:a6:ba: be:bc:b6:41:8a:73:50:32:54:d8:b9:8a:64:15:d8:a5:68:f5: 2c:35:b5:7a:a3:26:07:b3:50:8f:32:60:71:ab:a3:85:92:52: 18:d8:df:c1:1b:ab:2a:60:4d:dc:7f:47:f7:3e:a6:df:44:f5: 51:0b:9c:cc:1b:ff:f6:0c:9a:d8:4a:79:9e:48:8b:1e:8e:34: 8f:c4:27:b6:58:f2:d9:09:48:ca:2c:d4:86:69:f6:f0:da:60: 28:ac:54:91:8a:1d:77:2c:a2:ad:01:32:e8:72:31:86:bd:d4: 3b:df:5e:41:1a:5c:5a:26:4b:6b:f0:2e:36:14:77:5f:95:ef: 3a:5c:25:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFfzZO7pQR0nQaj7U7jOw6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmMWI0ODllNmQ5YjhjN2Q4M2NhMWU3MjdhNTk4NGRiZTU3 N2FmYmMwHhcNMjYwMjEwMDMwMTMwWhcNMjYwMjExMDMwMTMwWjAzMTEwLwYDVQQD Eyg3Mjc4N2M2NGRjYzM2Y2E2YjNmOTVmYmJiNTE1NDg2ODAzMDhmMGNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7qlrcDYz7DLoEI07wGupevVNM3a 4oEqfkZTfOe06cu+X3uaMo7Kd8vHiUAr3YoHUOyc3NyEbC9AZO0j62foeadfogSr G+LvVwxoRwiOLr4uOAAVCdsjwORSbyNyKLxmuRwqjDmXx77OxjthFQadZqMYwXQy pMGlbCE50Ug7EGj4/oX+NC4gLXBcWPYGuGAYqHMRBQHmn/hgTLD1oC6HXyYdqyou T2cUckNtr/HkqGEKracyvuHMl4h7LMUOlbMHigGDRKe0z6o7sb4sn1mzNlSng771 zowyma3Z7NRD8pV/LtO3fJ73ax9SlEsoxhcbkpSdKfOsVmlFzt6LhcJg+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHJ4fGTcw2yms/lfu7UVSGgDCPDLMB8GA1UdIwQY MBaAFL8bSJ5tm4x9g8oecnpZhNvld6+8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNDQxY2EtZTc3Yy00MjExLTg3MTIt MTgyY2Q0YWFjNDM2LzEvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9iNDQxY2EtZTc3Yy00MjExLTg3MTItMTgyY2Q0YWFjNDM2 LzEvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjAIipL7t L2JorUtuXIIC/VrO+bGe/y663K5AlUoDplSQoD06IA2Apws4FarH9u8IelXGy8Zx YCK2mzXRNhFR/t51jIVIC0l8ixyUd6YFzs6kG2tFulquhyXRHJT0gzqIxSNn09aw onUq2DAsEOeJWLRSldPkZvqVDxNc1aa6vry2QYpzUDJU2LmKZBXYpWj1LDW1eqMm B7NQjzJgcaujhZJSGNjfwRurKmBN3H9H9z6m30T1UQuczBv/9gya2Ep5nkiLHo40 j8Qntljy2QlIyizUhmn28NpgKKxUkYoddyyirQEy6HIxhr3UO99eQRpcWiZLa/Au NhR3X5XvOlwlMw== -----END CERTIFICATE-----Generated at Tue Feb 10 14:15:18 2026 by rpki-client