This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/XZrYiZ1byFSe7dPlny0NYhNczxQ.mft File: XZrYiZ1byFSe7dPlny0NYhNczxQ.mft (raw, json) Hash identifier: TXEjRIkLxDdzNWKCQRcnjM7Syt80xOFKi6uaOpiCm5c= Subject key identifier: FE:E1:5C:4F:14:98:B9:0B:40:A6:B6:FE:C8:28:5F:4E:A1:8B:3F:50 Authority key identifier: 5D:9A:D8:89:9D:5B:C8:54:9E:ED:D3:E5:9F:2D:0D:62:13:5C:CF:14 Certificate issuer: /CN=5d9ad8899d5bc8549eedd3e59f2d0d62135ccf14 Certificate serial: 019C41A14FA968B8EFDF2C070151505B1916 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZrYiZ1byFSe7dPlny0NYhNczxQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/XZrYiZ1byFSe7dPlny0NYhNczxQ.mft Manifest number: 0380 Signing time: Mon 09 Feb 2026 09:00:16 +0000 Manifest this update: Mon 09 Feb 2026 09:00:16 +0000 Manifest next update: Tue 10 Feb 2026 09:00:16 +0000 Files and hashes: 1: SMN2TicHTITFE7SoU6JvilZobIM.roa (hash: Jgb+gxe0VdXUottoUDRHcVAZQNKtB28hNd2imzpc8AQ=) 2: XZrYiZ1byFSe7dPlny0NYhNczxQ.crl (hash: PqrXt6Pj6qf2LenpMn3e/0og2fK/YLwpWq9kABs1syw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/XZrYiZ1byFSe7dPlny0NYhNczxQ.crl rsync://rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/XZrYiZ1byFSe7dPlny0NYhNczxQ.mft rsync://rpki.ripe.net/repository/DEFAULT/XZrYiZ1byFSe7dPlny0NYhNczxQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:4f:a9:68:b8:ef:df:2c:07:01:51:50:5b:19:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d9ad8899d5bc8549eedd3e59f2d0d62135ccf14 Validity Not Before: Feb 9 09:00:16 2026 GMT Not After : Feb 10 09:00:16 2026 GMT Subject: CN=fee15c4f1498b90b40a6b6fec8285f4ea18b3f50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:43:a0:c4:24:fa:d8:1d:dc:7a:82:b6:75:fa: fc:b7:3b:c8:ce:d3:dc:ed:8a:ff:93:39:a0:1a:7c: 54:99:c7:77:71:4a:58:fd:1c:be:ec:53:2e:e2:a3: c1:51:8d:63:fb:ff:34:b5:40:fc:e4:54:7c:97:89: 0d:e2:b9:6e:1b:8a:e1:16:3b:bb:38:8b:2d:fa:c3: 74:0a:26:45:23:de:ce:38:81:c9:d0:03:2a:df:36: 92:40:4b:68:43:ef:7e:2e:8e:35:f7:21:2c:1b:ad: e4:da:a8:84:1a:c8:59:07:73:1c:df:6a:77:aa:8e: db:23:3d:0d:38:c5:9e:03:87:94:8d:35:01:a7:42: bb:35:0f:96:54:53:e5:09:55:04:41:c3:c2:8a:cc: a1:71:39:51:45:70:94:4f:58:5e:26:75:e2:43:67: 2f:22:61:50:f6:4b:ad:32:5f:02:a1:83:31:0d:25: 83:ff:25:f9:64:fe:4a:79:13:ef:fb:5f:1f:05:4c: e5:36:ed:16:f2:56:33:13:84:5f:eb:a9:ac:3f:9c: 64:62:0d:b4:31:f9:dd:7a:ea:4b:33:84:7b:61:79: 0b:f0:ed:62:42:74:d9:1d:6a:ce:72:52:b4:5a:5a: f7:c4:4c:c7:4d:92:0b:8d:7d:a1:6e:ea:79:9a:e7: 9f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E1:5C:4F:14:98:B9:0B:40:A6:B6:FE:C8:28:5F:4E:A1:8B:3F:50 X509v3 Authority Key Identifier: keyid:5D:9A:D8:89:9D:5B:C8:54:9E:ED:D3:E5:9F:2D:0D:62:13:5C:CF:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZrYiZ1byFSe7dPlny0NYhNczxQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/XZrYiZ1byFSe7dPlny0NYhNczxQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/XZrYiZ1byFSe7dPlny0NYhNczxQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:45:11:28:1d:5a:1c:04:ec:c5:bc:12:90:6e:16:4b:d7:c1: bf:1f:dd:83:5c:b8:59:db:56:97:1d:75:81:db:e4:e2:e7:a1: f2:3b:38:4c:b3:23:c2:24:6e:52:f4:29:63:a7:48:ec:52:df: ff:b0:86:ab:00:59:43:f4:08:08:73:4d:59:1b:e7:a3:df:1d: 7f:b1:7a:a3:56:da:62:26:9e:69:bb:e4:0a:96:1f:25:ee:9d: fb:49:73:ae:0e:57:da:d1:ed:8d:44:7e:52:44:86:88:88:05: de:45:8a:9f:6f:e8:47:f9:ed:96:7b:48:c3:77:e4:18:7b:47: 6d:ea:1c:1e:19:02:54:ec:44:c2:fe:11:3c:5c:fc:31:09:b7: 02:a7:a1:bd:a3:e5:ce:27:73:c0:d2:05:94:cc:43:b0:a2:fb: dd:df:e0:1e:b5:c3:b6:80:76:8f:e7:74:b1:a8:14:47:a9:75: 3c:bd:09:91:84:43:2f:be:45:59:8d:ef:45:13:65:09:d5:75: 08:87:73:da:8b:25:8c:f6:9f:0d:3d:34:b0:00:e9:ae:e0:7f: 1b:af:e7:12:63:38:bc:bb:09:e8:dd:ba:f8:91:ef:e2:9f:88: 75:ad:12:08:46:d8:6c:4e:f8:e5:30:bf:ba:14:2d:b0:7e:4b: d7:5a:26:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoU+paLjv3ywHAVFQWxkWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkOWFkODg5OWQ1YmM4NTQ5ZWVkZDNlNTlmMmQwZDYyMTM1 Y2NmMTQwHhcNMjYwMjA5MDkwMDE2WhcNMjYwMjEwMDkwMDE2WjAzMTEwLwYDVQQD EyhmZWUxNWM0ZjE0OThiOTBiNDBhNmI2ZmVjODI4NWY0ZWExOGIzZjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0UOgxCT62B3ceoK2dfr8tzvIztPc 7Yr/kzmgGnxUmcd3cUpY/Ry+7FMu4qPBUY1j+/80tUD85FR8l4kN4rluG4rhFju7 OIst+sN0CiZFI97OOIHJ0AMq3zaSQEtoQ+9+Lo419yEsG63k2qiEGshZB3Mc32p3 qo7bIz0NOMWeA4eUjTUBp0K7NQ+WVFPlCVUEQcPCisyhcTlRRXCUT1heJnXiQ2cv ImFQ9kutMl8CoYMxDSWD/yX5ZP5KeRPv+18fBUzlNu0W8lYzE4Rf66msP5xkYg20 MfndeupLM4R7YXkL8O1iQnTZHWrOclK0Wlr3xEzHTZILjX2hbup5muefvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP7hXE8UmLkLQKa2/sgoX06hiz9QMB8GA1UdIwQY MBaAFF2a2ImdW8hUnu3T5Z8tDWITXM8UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFpyWWlaMWJ5RlNlN2RQbG55ME5ZaE5jenhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9iY2Q3OTItODk1Ni00NWZlLTg1MzQt MDkzMWZkM2U1YmVlLzEvWFpyWWlaMWJ5RlNlN2RQbG55ME5ZaE5jenhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZS9iY2Q3OTItODk1Ni00NWZlLTg1MzQtMDkzMWZkM2U1YmVl LzEvWFpyWWlaMWJ5RlNlN2RQbG55ME5ZaE5jenhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArkURKB1a HATsxbwSkG4WS9fBvx/dg1y4WdtWlx11gdvk4ueh8js4TLMjwiRuUvQpY6dI7FLf /7CGqwBZQ/QICHNNWRvno98df7F6o1baYiaeabvkCpYfJe6d+0lzrg5X2tHtjUR+ UkSGiIgF3kWKn2/oR/ntlntIw3fkGHtHbeocHhkCVOxEwv4RPFz8MQm3AqehvaPl zidzwNIFlMxDsKL73d/gHrXDtoB2j+d0sagUR6l1PL0JkYRDL75FWY3vRRNlCdV1 CIdz2osljPafDT00sADpruB/G6/nEmM4vLsJ6N26+JHv4p+Ida0SCEbYbE745TC/ uhQtsH5L11omZg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:36 2026 by rpki-client