This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft File: XEKIRvhNgYNh9rnApGOy5XQqFJs.mft (raw, json) Hash identifier: 9NtqQHh+DM5tlBUnfnHGjbr70JuYA808F7YDBdkCg84= Subject key identifier: D7:B3:C9:22:0D:36:33:A4:6C:D9:80:BB:27:B3:34:5A:F8:CF:43:32 Authority key identifier: 5C:42:88:46:F8:4D:81:83:61:F6:B9:C0:A4:63:B2:E5:74:2A:14:9B Certificate issuer: /CN=5c428846f84d818361f6b9c0a463b2e5742a149b Certificate serial: 019C42B44AD93ED2DB7F857811050B266D64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft Manifest number: 0165 Signing time: Mon 09 Feb 2026 14:00:37 +0000 Manifest this update: Mon 09 Feb 2026 14:00:37 +0000 Manifest next update: Tue 10 Feb 2026 14:00:37 +0000 Files and hashes: 1: CNU3mQEbY-u6S3PERfizHiI3tYk.roa (hash: /9Q8PFVvHk4oD7Nve3f5+udPkxTJLftVYP8vMjZBj5o=) 2: XEKIRvhNgYNh9rnApGOy5XQqFJs.crl (hash: XpNCSthmMOl6kJTYRlu6vSOAC9wZQavAdeBYk4QmAf4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.crl rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:4a:d9:3e:d2:db:7f:85:78:11:05:0b:26:6d:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c428846f84d818361f6b9c0a463b2e5742a149b Validity Not Before: Feb 9 14:00:37 2026 GMT Not After : Feb 10 14:00:37 2026 GMT Subject: CN=d7b3c9220d3633a46cd980bb27b3345af8cf4332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:a6:d5:36:c3:7a:7b:ff:c9:76:45:0e:7c:84: 1e:7e:9a:09:c6:d2:65:ce:d3:8b:0d:55:36:ff:7c: 9b:98:85:ec:38:94:91:f7:e1:6d:41:45:a9:00:d0: d7:03:64:2f:c9:11:8f:e9:11:b5:82:28:dc:58:c3: 2f:1f:4e:5f:5a:1a:35:10:1a:2b:ad:e7:4f:26:a4: 7f:e8:dc:e1:08:d7:ba:31:98:1b:1e:79:5e:2d:0b: b1:67:58:97:63:c8:5f:28:f1:6f:cd:c5:a0:f2:54: ae:72:2b:a7:ab:54:a3:26:ac:a8:56:28:7e:be:d0: 9f:0b:e2:78:91:16:83:3a:a4:77:d8:ff:df:80:17: bc:91:bc:8a:fa:c9:26:68:83:e8:83:a1:8c:ac:94: a7:57:3a:bb:a5:d2:fc:3f:8e:f2:46:2d:3f:c9:35: 78:78:10:77:5d:61:cc:97:1d:05:20:ff:b3:cb:b5: b1:72:0b:81:1e:c1:9d:8f:23:29:50:87:52:5a:41: 87:13:c6:de:d0:c2:73:96:11:b2:1b:33:d1:cd:04: fe:f4:70:fb:7b:6b:67:4c:6f:e6:86:c7:ac:d1:eb: f4:c0:2b:f5:cf:02:df:b8:fa:9f:5c:e5:1e:67:5a: 85:7a:43:a0:9d:39:5f:3f:41:b9:8a:9c:7d:81:17: 84:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B3:C9:22:0D:36:33:A4:6C:D9:80:BB:27:B3:34:5A:F8:CF:43:32 X509v3 Authority Key Identifier: keyid:5C:42:88:46:F8:4D:81:83:61:F6:B9:C0:A4:63:B2:E5:74:2A:14:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:c0:af:85:0a:84:91:25:c1:9f:98:85:ca:f1:1d:61:09:c5: 69:fc:40:4b:09:eb:fd:ff:44:b1:2a:5d:f5:e1:03:4e:1c:5c: 83:5b:a7:f2:12:b3:95:c6:a5:ce:6d:93:76:30:c9:16:d5:97: 7f:6c:12:1d:38:ee:40:7d:47:be:2c:c0:03:91:49:e1:44:9e: 65:b3:f8:a3:28:33:73:98:33:89:ff:75:1c:79:37:99:94:ea: ab:6b:a9:c8:9e:5b:58:3c:ed:39:05:58:0e:9c:c6:88:1d:53: 8a:96:4b:82:5d:ca:32:4e:9c:42:ec:6e:42:23:8c:4b:bf:f1: d0:ce:de:d8:64:51:44:ba:9f:3d:3e:2f:70:4a:a2:e6:9b:72: 57:6c:e2:fe:f3:e1:a1:43:ec:32:14:08:c0:da:e7:2c:8a:38: 49:da:a9:43:dd:12:d4:06:f4:af:88:24:54:b7:32:f1:b4:1b: 11:a3:a5:2b:5c:d4:36:06:47:78:d1:75:27:80:4d:d1:cb:21: 54:ab:a4:a4:2d:25:ef:16:88:83:2c:01:8f:8d:7b:4d:25:45: c7:e8:0d:7f:92:4d:5f:94:12:70:20:00:0a:b6:9c:f1:95:17: d6:8a:7b:d1:c2:83:d8:61:83:e5:7d:88:5f:e5:ca:a6:12:af: d2:07:e9:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtErZPtLbf4V4EQULJm1kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNDI4ODQ2Zjg0ZDgxODM2MWY2YjljMGE0NjNiMmU1NzQy YTE0OWIwHhcNMjYwMjA5MTQwMDM3WhcNMjYwMjEwMTQwMDM3WjAzMTEwLwYDVQQD EyhkN2IzYzkyMjBkMzYzM2E0NmNkOTgwYmIyN2IzMzQ1YWY4Y2Y0MzMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9qbVNsN6e//JdkUOfIQefpoJxtJl ztOLDVU2/3ybmIXsOJSR9+FtQUWpANDXA2QvyRGP6RG1gijcWMMvH05fWho1EBor redPJqR/6NzhCNe6MZgbHnleLQuxZ1iXY8hfKPFvzcWg8lSuciunq1SjJqyoVih+ vtCfC+J4kRaDOqR32P/fgBe8kbyK+skmaIPog6GMrJSnVzq7pdL8P47yRi0/yTV4 eBB3XWHMlx0FIP+zy7WxcguBHsGdjyMpUIdSWkGHE8be0MJzlhGyGzPRzQT+9HD7 e2tnTG/mhses0ev0wCv1zwLfuPqfXOUeZ1qFekOgnTlfP0G5ipx9gReE/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNezySINNjOkbNmAuyezNFr4z0MyMB8GA1UdIwQY MBaAFFxCiEb4TYGDYfa5wKRjsuV0KhSbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEVLSVJ2aE5nWU5oOXJuQXBHT3k1WFFxRkpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My84OWE4NzItZDA0ZC00MjE3LThmYzQt YzkwZGI4MjM1ZjM5LzEvWEVLSVJ2aE5nWU5oOXJuQXBHT3k1WFFxRkpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My84OWE4NzItZDA0ZC00MjE3LThmYzQtYzkwZGI4MjM1ZjM5 LzEvWEVLSVJ2aE5nWU5oOXJuQXBHT3k1WFFxRkpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL8CvhQqE kSXBn5iFyvEdYQnFafxASwnr/f9EsSpd9eEDThxcg1un8hKzlcalzm2TdjDJFtWX f2wSHTjuQH1HvizAA5FJ4USeZbP4oygzc5gzif91HHk3mZTqq2upyJ5bWDztOQVY DpzGiB1TipZLgl3KMk6cQuxuQiOMS7/x0M7e2GRRRLqfPT4vcEqi5ptyV2zi/vPh oUPsMhQIwNrnLIo4SdqpQ90S1Ab0r4gkVLcy8bQbEaOlK1zUNgZHeNF1J4BN0csh VKukpC0l7xaIgywBj417TSVFx+gNf5JNX5QScCAACrac8ZUX1op70cKD2GGD5X2I X+XKphKv0gfpVg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:45 2026 by rpki-client