This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft File: xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft (raw, json) Hash identifier: CnRMFmOK+UjcnCqMPuXiZXWnDr181wrcrWi8RaKMylw= Subject key identifier: A8:F8:55:48:27:1B:28:6E:C8:47:A1:EF:64:06:00:46:05:3D:D8:25 Authority key identifier: C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44 Certificate issuer: /CN=c4ff935057c3bdbadbdf49f343562c5e30016044 Certificate serial: 019C4246C0A11BDEC3D7CF9454D7DB402270 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft Manifest number: 1814 Signing time: Mon 09 Feb 2026 12:00:58 +0000 Manifest this update: Mon 09 Feb 2026 12:00:58 +0000 Manifest next update: Tue 10 Feb 2026 12:00:58 +0000 Files and hashes: 1: xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl (hash: FzleuZdAww3C14s1R6elmmQDbsyyCxtuEf2q/ILHu/E=) 2: z9U8nnktCizSYk1_4LI0Qkbtcns.roa (hash: POiizupDwGmr1N0Ok5nxERS6rP+EfVEg0CxJ8RCMqp0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:c0:a1:1b:de:c3:d7:cf:94:54:d7:db:40:22:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c4ff935057c3bdbadbdf49f343562c5e30016044 Validity Not Before: Feb 9 12:00:58 2026 GMT Not After : Feb 10 12:00:58 2026 GMT Subject: CN=a8f85548271b286ec847a1ef64060046053dd825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e5:90:d8:7d:26:11:15:8b:9b:eb:fe:1e:be: c8:4e:74:b7:10:0d:f8:c0:78:a6:e4:91:34:df:59: 55:e3:c4:28:cc:77:6e:37:e1:6c:8f:71:80:92:cc: d9:92:c2:43:82:ff:64:0e:95:34:29:77:db:b5:30: 10:c0:d8:2a:32:af:cd:58:a1:05:07:58:b8:a6:bc: 1e:6d:a9:b7:99:ba:45:c3:83:bb:b5:9b:06:5b:a7: fa:9b:2b:37:84:3f:af:d8:26:1d:38:21:12:b0:07: b0:f7:4e:2b:f0:c1:3c:13:32:91:0b:10:07:c5:c8: f4:b5:4a:e1:3f:47:cf:da:4e:13:ee:69:6c:f3:4a: 93:b6:0b:f7:9b:c7:6d:39:ea:0a:fd:b1:4c:95:59: 3e:a2:46:d9:ba:1e:91:72:52:2f:f6:e2:1e:5c:f7: d6:9f:fc:b0:ba:df:b7:95:5b:8e:0a:75:42:5b:02: e1:43:02:db:5c:a9:99:5a:a6:e8:6a:e8:07:05:13: d6:9c:a3:73:d6:5c:c5:2c:8c:6b:ad:69:ef:dc:f3: 48:71:88:7b:87:8f:6e:93:9b:74:4e:d4:5f:0e:3d: 6b:0e:b4:18:3c:fc:4e:1e:09:04:df:ba:fe:9e:6a: d4:36:07:2c:0b:b8:7e:64:90:89:49:12:54:af:f1: f5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F8:55:48:27:1B:28:6E:C8:47:A1:EF:64:06:00:46:05:3D:D8:25 X509v3 Authority Key Identifier: keyid:C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:7f:0d:3b:8a:b4:a6:21:93:fb:dc:97:36:f9:26:04:46:ba: 79:db:a3:fe:f6:b0:81:bb:16:8f:65:cb:c3:59:9e:28:7f:eb: ba:df:1c:67:01:88:2c:00:b9:7b:93:9e:e0:42:f4:50:77:c9: ea:aa:4f:1c:1a:76:f7:26:5f:79:0c:b7:c3:1d:7e:77:e9:b1: 03:2f:bb:6b:d5:39:fd:42:94:82:66:5c:be:c3:97:bd:e3:c0: d7:ec:4b:0e:24:98:28:07:bb:2a:41:ee:97:30:6e:b0:6a:88: 15:88:55:4e:50:57:4c:20:bc:be:e1:66:10:61:f9:2b:19:7e: 56:86:c0:d2:9d:ae:c7:c5:34:91:80:27:9c:26:b8:ef:d6:21: 32:1c:3f:0b:1e:1a:a3:52:b7:97:86:05:b0:5b:e2:7a:00:1f: 1e:51:ad:31:bc:78:85:b5:6d:ce:64:1d:e6:1e:2e:28:b9:19: c9:9c:65:af:9f:05:17:00:ba:f6:75:0f:57:df:6c:60:bc:b5: c1:4a:df:e9:cf:f1:02:16:ae:f6:13:eb:87:7b:4d:a9:ae:a2: 66:18:92:6a:c6:69:02:91:00:95:2c:3a:20:24:fc:e8:f4:24: fe:46:29:03:f3:b3:0c:0c:a1:72:6e:9e:75:11:69:dc:76:8b: 0e:22:c5:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRsChG97D18+UVNfbQCJwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0ZmY5MzUwNTdjM2JkYmFkYmRmNDlmMzQzNTYyYzVlMzAw MTYwNDQwHhcNMjYwMjA5MTIwMDU4WhcNMjYwMjEwMTIwMDU4WjAzMTEwLwYDVQQD EyhhOGY4NTU0ODI3MWIyODZlYzg0N2ExZWY2NDA2MDA0NjA1M2RkODI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+WQ2H0mERWLm+v+Hr7ITnS3EA34 wHim5JE031lV48QozHduN+Fsj3GAkszZksJDgv9kDpU0KXfbtTAQwNgqMq/NWKEF B1i4prwebam3mbpFw4O7tZsGW6f6mys3hD+v2CYdOCESsAew904r8ME8EzKRCxAH xcj0tUrhP0fP2k4T7mls80qTtgv3m8dtOeoK/bFMlVk+okbZuh6RclIv9uIeXPfW n/ywut+3lVuOCnVCWwLhQwLbXKmZWqboaugHBRPWnKNz1lzFLIxrrWnv3PNIcYh7 h49uk5t0TtRfDj1rDrQYPPxOHgkE37r+nmrUNgcsC7h+ZJCJSRJUr/H1zwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKj4VUgnGyhuyEeh72QGAEYFPdglMB8GA1UdIwQY MBaAFMT/k1BXw726299J80NWLF4wAWBEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFAtVFVGZkR2YnJiMzBuelExWXNYakFCWUVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8yYjA1OWEtMzI1ZC00Mzg1LTgxMWYt MTdlMWEyNTY5NTY4LzEveFAtVFVGZkR2YnJiMzBuelExWXNYakFCWUVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC8yYjA1OWEtMzI1ZC00Mzg1LTgxMWYtMTdlMWEyNTY5NTY4 LzEveFAtVFVGZkR2YnJiMzBuelExWXNYakFCWUVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE38NO4q0 piGT+9yXNvkmBEa6eduj/vawgbsWj2XLw1meKH/rut8cZwGILAC5e5Oe4EL0UHfJ 6qpPHBp29yZfeQy3wx1+d+mxAy+7a9U5/UKUgmZcvsOXvePA1+xLDiSYKAe7KkHu lzBusGqIFYhVTlBXTCC8vuFmEGH5Kxl+VobA0p2ux8U0kYAnnCa479YhMhw/Cx4a o1K3l4YFsFviegAfHlGtMbx4hbVtzmQd5h4uKLkZyZxlr58FFwC69nUPV99sYLy1 wUrf6c/xAhau9hPrh3tNqa6iZhiSasZpApEAlSw6ICT86PQk/kYpA/OzDAyhcm6e dRFp3HaLDiLFcg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:04 2026 by rpki-client