This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json) Hash identifier: H0in/o9rzsQ1iXwfLKHLCQmrs0hCubfqiuRQ1LC0oVw= Subject key identifier: 34:2E:71:17:56:D7:7E:67:7E:8E:DD:1F:A4:B1:B8:02:90:B2:65:30 Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9 Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9 Certificate serial: 019C5D873C647121817F65947327E7374437 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft Manifest number: 0FCE Signing time: Sat 14 Feb 2026 19:01:09 +0000 Manifest this update: Sat 14 Feb 2026 19:01:09 +0000 Manifest next update: Sun 15 Feb 2026 19:01:09 +0000 Files and hashes: 1: 2Nc5AsSnBWzCuxjbHnI5SDdmCKE.roa (hash: IY9E1+Z/A+D4/xzAfwUZ6RBDyrzbb4T4cIqPhChpPt8=) 2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: 441P6csbWm6I4JbOklzSdXabMv7u6zijJ5Fxinj/3xs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Feb 2026 18:45:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:5d:87:3c:64:71:21:81:7f:65:94:73:27:e7:37:44:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9 Validity Not Before: Feb 14 19:01:09 2026 GMT Not After : Feb 15 19:01:09 2026 GMT Subject: CN=342e711756d77e677e8edd1fa4b1b80290b26530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:48:c1:30:8c:f9:39:2a:f4:94:eb:5a:d1:7c: 36:a9:4d:08:db:ef:2c:8f:a0:92:b6:f0:9e:3f:79: a8:28:40:af:5a:df:9f:b2:da:c4:48:95:07:8f:df: 4d:17:9e:9f:4e:c7:47:26:ac:83:b0:e8:31:db:27: d3:77:22:5b:d8:a5:0f:87:5e:a8:56:35:e2:3b:30: f7:8d:a8:1b:bc:c8:2b:9e:b9:38:36:50:3e:50:82: b3:19:b1:5c:06:7d:a5:53:d2:73:12:d1:43:5c:4a: 6f:30:b4:2e:dc:2b:3d:40:69:60:40:0e:80:62:cb: e8:9e:84:f9:87:4f:91:5f:7d:63:69:bd:bd:23:be: 8e:1c:dc:c6:1d:01:d5:fd:9f:d0:2e:47:bf:29:5c: de:7b:cf:69:97:28:21:89:48:42:a1:4b:a7:3e:ed: 7a:7d:78:db:5f:4b:72:fc:8d:4b:76:95:86:2d:52: 55:83:cf:a3:49:0f:2a:cc:5d:9c:82:2d:42:18:97: 44:b4:76:4c:da:b3:c0:45:cc:35:f9:c6:ae:4d:d6: a2:ca:47:34:45:cf:85:16:01:6f:30:f3:a1:d5:e2: 81:1b:55:77:ba:5a:64:6e:ab:5a:55:8a:1c:9f:cf: e7:4d:b2:35:73:9e:36:f8:98:d0:12:0e:15:6d:d4: 1f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:2E:71:17:56:D7:7E:67:7E:8E:DD:1F:A4:B1:B8:02:90:B2:65:30 X509v3 Authority Key Identifier: keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:43:22:75:e7:c0:fd:eb:8c:b3:b3:ce:b7:f6:80:b2:f9:ef: f3:1d:4f:c2:6e:e1:fe:30:56:b2:89:eb:61:b6:66:e4:71:af: 40:11:d7:5e:ee:d9:b2:1f:da:7a:6c:e1:89:73:4b:46:1a:d5: 02:45:b0:10:92:ef:57:b5:25:ca:68:09:72:56:6b:53:12:f0: 34:80:96:d3:f8:ee:f9:b2:dc:0d:bb:dd:e1:37:e6:eb:bb:78: e8:ef:4a:37:af:b3:ba:10:4b:33:ff:58:53:dc:a8:d6:89:c1: 06:e1:65:9a:fe:fb:10:30:27:9d:8e:e8:9d:52:7f:52:2f:38: 5e:8f:7e:83:56:df:37:b3:c2:be:8b:80:38:56:b0:2a:25:5b: c3:65:34:01:7a:49:dd:b7:89:1d:b0:85:a4:61:30:c2:56:97: e7:c7:6f:a7:7f:57:23:9e:8f:27:c0:df:74:2b:bf:97:fd:4b: 85:0f:fa:01:e8:13:40:89:6c:5c:d3:ba:01:f2:60:c3:70:43: cd:f6:ca:79:78:ce:10:22:2d:a7:31:d8:68:a6:b7:7e:db:1a: 95:fd:60:2c:83:63:23:16:ee:80:23:a0:4d:92:8e:9b:76:71: 1b:fe:4b:5a:33:04:63:ef:27:26:0c:da:d6:c5:68:24:dd:8a: 8b:9e:92:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxdhzxkcSGBf2WUcyfnN0Q3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjYjNhMjE0NWY5YjRkNDY2MDU4MmFkYzZiNzM1NDk2OWUw ODljYTkwHhcNMjYwMjE0MTkwMTA5WhcNMjYwMjE1MTkwMTA5WjAzMTEwLwYDVQQD EygzNDJlNzExNzU2ZDc3ZTY3N2U4ZWRkMWZhNGIxYjgwMjkwYjI2NTMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUjBMIz5OSr0lOta0Xw2qU0I2+8s j6CStvCeP3moKECvWt+fstrESJUHj99NF56fTsdHJqyDsOgx2yfTdyJb2KUPh16o VjXiOzD3jagbvMgrnrk4NlA+UIKzGbFcBn2lU9JzEtFDXEpvMLQu3Cs9QGlgQA6A YsvonoT5h0+RX31jab29I76OHNzGHQHV/Z/QLke/KVzee89plyghiUhCoUunPu16 fXjbX0ty/I1LdpWGLVJVg8+jSQ8qzF2cgi1CGJdEtHZM2rPARcw1+cauTdaiykc0 Rc+FFgFvMPOh1eKBG1V3ulpkbqtaVYocn8/nTbI1c542+JjQEg4VbdQffQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDQucRdW135nfo7dH6SxuAKQsmUwMB8GA1UdIwQY MBaAFFyzohRfm01GYFgq3GtzVJaeCJypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9kMDY2MWMtY2ViYi00ZTIyLWIxOTct MTM5ODAwYThjNzVmLzEvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9kMDY2MWMtY2ViYi00ZTIyLWIxOTctMTM5ODAwYThjNzVm LzEvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAEMidefA /euMs7POt/aAsvnv8x1Pwm7h/jBWsonrYbZm5HGvQBHXXu7Zsh/aemzhiXNLRhrV AkWwEJLvV7UlymgJclZrUxLwNICW0/ju+bLcDbvd4Tfm67t46O9KN6+zuhBLM/9Y U9yo1onBBuFlmv77EDAnnY7onVJ/Ui84Xo9+g1bfN7PCvouAOFawKiVbw2U0AXpJ 3beJHbCFpGEwwlaX58dvp39XI56PJ8DfdCu/l/1LhQ/6AegTQIlsXNO6AfJgw3BD zfbKeXjOECItpzHYaKa3ftsalf1gLINjIxbugCOgTZKOm3ZxG/5LWjMEY+8nJgza 1sVoJN2Ki56SRg== -----END CERTIFICATE-----Generated at Sat Feb 14 23:40:12 2026 by rpki-client