This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c06a23-0163-47a5-8608-30c0a111cd55/1/Xqh5CgjI4NhFiNlNGlG8qavnWB0.mft File: Xqh5CgjI4NhFiNlNGlG8qavnWB0.mft (raw, json) Hash identifier: 1w7p7/bzdeujhAFpdXDJ0zKw0d8UsOBXJvg+B8SWJF8= Subject key identifier: 52:B5:05:64:B0:BA:14:F5:37:1D:E5:B9:C5:9F:8C:C8:F4:03:F2:04 Authority key identifier: 5E:A8:79:0A:08:C8:E0:D8:45:88:D9:4D:1A:51:BC:A9:AB:E7:58:1D Certificate issuer: /CN=5ea8790a08c8e0d84588d94d1a51bca9abe7581d Certificate serial: 019C41D8A7451CCC42AF41128D7824839B08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xqh5CgjI4NhFiNlNGlG8qavnWB0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c06a23-0163-47a5-8608-30c0a111cd55/1/Xqh5CgjI4NhFiNlNGlG8qavnWB0.mft Manifest number: 161E Signing time: Mon 09 Feb 2026 10:00:43 +0000 Manifest this update: Mon 09 Feb 2026 10:00:43 +0000 Manifest next update: Tue 10 Feb 2026 10:00:43 +0000 Files and hashes: 1: Xqh5CgjI4NhFiNlNGlG8qavnWB0.crl (hash: BFymU8IzfmXJ083NJDxUoR73+X5zPw4b/CNU+ZwD/+4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/c06a23-0163-47a5-8608-30c0a111cd55/1/Xqh5CgjI4NhFiNlNGlG8qavnWB0.crl rsync://rpki.ripe.net/repository/DEFAULT/67/c06a23-0163-47a5-8608-30c0a111cd55/1/Xqh5CgjI4NhFiNlNGlG8qavnWB0.mft rsync://rpki.ripe.net/repository/DEFAULT/Xqh5CgjI4NhFiNlNGlG8qavnWB0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:a7:45:1c:cc:42:af:41:12:8d:78:24:83:9b:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ea8790a08c8e0d84588d94d1a51bca9abe7581d Validity Not Before: Feb 9 10:00:43 2026 GMT Not After : Feb 10 10:00:43 2026 GMT Subject: CN=52b50564b0ba14f5371de5b9c59f8cc8f403f204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b3:9a:ce:a1:81:7b:be:1c:7f:0c:b4:d2:db: cc:36:07:19:b3:2c:d2:52:db:05:29:9a:77:1b:76: 11:00:1f:0b:88:43:71:bb:35:0e:a2:e9:0e:6a:0f: bd:74:64:41:99:bb:a0:40:de:ae:ea:9a:a0:b5:d1: ac:a8:1c:35:d5:63:96:f1:39:cc:b0:31:91:5d:84: ea:12:18:f4:73:bc:a9:02:2d:1a:1f:9b:b9:40:58: 87:81:36:ad:a4:64:b7:aa:ae:5f:2f:a0:d9:d1:d9: 2a:19:5b:e3:10:ba:bc:57:c7:05:e5:fc:78:53:94: 5e:c2:a6:86:eb:36:97:d6:5d:7d:1d:20:26:2a:e7: ca:fa:98:e8:4f:60:67:e0:e5:44:93:43:7a:2e:08: c7:53:70:1b:e5:3e:a2:0b:38:cb:f6:f5:24:81:00: d7:78:df:7f:05:07:15:3d:90:1a:96:da:d3:fe:66: c5:a9:3a:1a:bc:fb:cf:b7:a9:82:ca:0c:f6:98:7e: 57:66:eb:1a:e5:6a:de:2c:13:0e:b6:10:e0:a0:24: c5:6f:00:ac:7a:09:dc:c6:28:12:f1:ca:3b:19:f9: 23:0e:d2:68:c9:15:67:70:1e:ee:3c:bc:a4:8e:bf: e9:b2:1d:a4:f5:cd:c1:e4:0a:49:88:91:54:7c:eb: c5:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:B5:05:64:B0:BA:14:F5:37:1D:E5:B9:C5:9F:8C:C8:F4:03:F2:04 X509v3 Authority Key Identifier: keyid:5E:A8:79:0A:08:C8:E0:D8:45:88:D9:4D:1A:51:BC:A9:AB:E7:58:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xqh5CgjI4NhFiNlNGlG8qavnWB0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c06a23-0163-47a5-8608-30c0a111cd55/1/Xqh5CgjI4NhFiNlNGlG8qavnWB0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c06a23-0163-47a5-8608-30c0a111cd55/1/Xqh5CgjI4NhFiNlNGlG8qavnWB0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:4c:6d:85:8e:68:a7:66:12:21:ff:b3:81:0d:5b:4d:da:19: 0d:ca:b2:4d:04:2a:6b:d5:0b:16:36:27:b2:53:4a:34:72:38: c6:2a:33:74:35:1d:c1:15:02:29:60:cf:2b:ef:cd:a9:60:02: b9:d4:1f:66:59:39:4d:a0:b5:b0:64:73:72:fe:b3:3c:93:d2: 65:1f:e1:19:6b:a4:5a:63:61:84:43:c5:f8:52:8b:63:ce:a3: b1:27:58:c2:cc:44:b6:b9:f0:6a:fc:c8:4c:72:1a:cf:ca:3c: 01:27:a7:6e:fa:78:7c:60:54:05:1b:0c:90:e3:18:25:06:25: 15:be:df:95:36:7f:ce:17:98:6e:c4:67:63:44:f0:ef:41:99: 68:4a:f0:59:47:91:28:dc:67:86:88:93:83:57:df:8c:37:2f: 5a:9e:8c:bd:26:bd:c4:75:0d:8b:93:33:99:a3:bb:20:19:74: 4a:a9:03:e3:82:e4:d8:f9:82:13:71:06:15:ba:72:09:60:a5: 2c:5a:e0:be:4d:e1:e9:43:2c:da:bd:75:d3:58:26:c1:9b:90: ab:24:ce:c3:b1:32:21:13:e6:d2:05:ab:ed:5e:2d:48:1e:99: a8:13:9b:bf:3a:6b:d5:c2:1c:81:36:6f:3e:cd:d0:ad:85:18: 9b:c6:a5:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2KdFHMxCr0ESjXgkg5sIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlYTg3OTBhMDhjOGUwZDg0NTg4ZDk0ZDFhNTFiY2E5YWJl NzU4MWQwHhcNMjYwMjA5MTAwMDQzWhcNMjYwMjEwMTAwMDQzWjAzMTEwLwYDVQQD Eyg1MmI1MDU2NGIwYmExNGY1MzcxZGU1YjljNTlmOGNjOGY0MDNmMjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrOazqGBe74cfwy00tvMNgcZsyzS UtsFKZp3G3YRAB8LiENxuzUOoukOag+9dGRBmbugQN6u6pqgtdGsqBw11WOW8TnM sDGRXYTqEhj0c7ypAi0aH5u5QFiHgTatpGS3qq5fL6DZ0dkqGVvjELq8V8cF5fx4 U5RewqaG6zaX1l19HSAmKufK+pjoT2Bn4OVEk0N6LgjHU3Ab5T6iCzjL9vUkgQDX eN9/BQcVPZAaltrT/mbFqToavPvPt6mCygz2mH5XZusa5WreLBMOthDgoCTFbwCs egncxigS8co7GfkjDtJoyRVncB7uPLykjr/psh2k9c3B5ApJiJFUfOvFeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFK1BWSwuhT1Nx3lucWfjMj0A/IEMB8GA1UdIwQY MBaAFF6oeQoIyODYRYjZTRpRvKmr51gdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHFoNUNnakk0TmhGaU5sTkdsRzhxYXZuV0IwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9jMDZhMjMtMDE2My00N2E1LTg2MDgt MzBjMGExMTFjZDU1LzEvWHFoNUNnakk0TmhGaU5sTkdsRzhxYXZuV0IwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9jMDZhMjMtMDE2My00N2E1LTg2MDgtMzBjMGExMTFjZDU1 LzEvWHFoNUNnakk0TmhGaU5sTkdsRzhxYXZuV0IwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUExthY5o p2YSIf+zgQ1bTdoZDcqyTQQqa9ULFjYnslNKNHI4xiozdDUdwRUCKWDPK+/NqWAC udQfZlk5TaC1sGRzcv6zPJPSZR/hGWukWmNhhEPF+FKLY86jsSdYwsxEtrnwavzI THIaz8o8ASenbvp4fGBUBRsMkOMYJQYlFb7flTZ/zheYbsRnY0Tw70GZaErwWUeR KNxnhoiTg1ffjDcvWp6MvSa9xHUNi5MzmaO7IBl0SqkD44Lk2PmCE3EGFbpyCWCl LFrgvk3h6UMs2r1101gmwZuQqyTOw7EyIRPm0gWr7V4tSB6ZqBObvzpr1cIcgTZv Ps3QrYUYm8alxA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:28 2026 by rpki-client