This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft File: xRlGjFXmvnFcDagFzvta7IXTKSY.mft (raw, json) Hash identifier: 37RhqZvBxWcwQSMYU7IXdvJpQy4Qq3G9AmpVJUK9QPA= Subject key identifier: 4C:44:F1:54:74:9A:F0:7F:AC:04:D2:FE:30:A5:47:20:3A:89:3F:41 Authority key identifier: C5:19:46:8C:55:E6:BE:71:5C:0D:A8:05:CE:FB:5A:EC:85:D3:29:26 Certificate issuer: /CN=c519468c55e6be715c0da805cefb5aec85d32926 Certificate serial: 019C4322BEED0BC4567920AC7EFE84F118AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft Manifest number: 1109 Signing time: Mon 09 Feb 2026 16:01:16 +0000 Manifest this update: Mon 09 Feb 2026 16:01:16 +0000 Manifest next update: Tue 10 Feb 2026 16:01:16 +0000 Files and hashes: 1: xRlGjFXmvnFcDagFzvta7IXTKSY.crl (hash: wB5GTTyKBuJ6f0GPQ1NKT4uHGFFz7FLWfddUGdQjnVc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.crl rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:be:ed:0b:c4:56:79:20:ac:7e:fe:84:f1:18:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c519468c55e6be715c0da805cefb5aec85d32926 Validity Not Before: Feb 9 16:01:16 2026 GMT Not After : Feb 10 16:01:16 2026 GMT Subject: CN=4c44f154749af07fac04d2fe30a547203a893f41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e3:9d:c0:4d:70:de:45:7f:e1:59:85:95:b4: b4:49:69:6a:04:75:e8:9c:d9:27:ce:13:52:93:6d: 22:a7:51:5d:c4:b9:35:27:1c:03:e5:ba:d0:7f:e7: b3:f4:25:1e:33:70:d0:b4:77:81:f6:00:ca:4e:85: df:35:2b:df:6f:f6:47:12:b1:95:12:4c:a2:c3:5b: bb:a8:47:76:b9:ef:cb:5d:14:27:0c:45:d5:98:10: d4:2e:ec:99:01:56:a3:5f:ff:da:56:55:78:7b:35: e8:bf:04:4f:3f:54:3f:33:f6:ba:43:a3:a6:91:00: fd:af:d8:1b:3a:ec:dc:7d:da:82:40:9f:9e:51:eb: 2e:91:75:41:4a:f6:da:63:57:76:6b:f3:ba:a6:45: 0e:1a:b2:a6:30:26:88:7a:e4:88:61:51:d9:5b:2f: d4:cb:d8:b6:53:35:4b:e6:43:6b:9a:39:64:57:d8: 4c:6d:56:37:d7:ac:bc:94:07:97:7d:ac:24:9c:4b: b0:bf:6c:ce:c0:68:25:c5:e3:73:fe:22:03:49:40: ca:7f:96:60:f1:53:06:9b:58:38:63:1d:bf:e7:60: 6f:e0:a6:7c:63:b2:77:0b:e1:7d:45:7a:01:27:e0: f9:25:d5:0f:67:01:fa:66:12:e0:d0:01:02:a3:9f: 52:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:44:F1:54:74:9A:F0:7F:AC:04:D2:FE:30:A5:47:20:3A:89:3F:41 X509v3 Authority Key Identifier: keyid:C5:19:46:8C:55:E6:BE:71:5C:0D:A8:05:CE:FB:5A:EC:85:D3:29:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:aa:54:5f:32:f0:cc:2c:86:02:0b:df:ce:6b:42:92:9d:92: ee:f6:e9:1e:c3:9e:54:51:2c:36:e9:5e:15:e2:9c:06:8e:9c: d9:49:3e:57:40:4e:30:03:a1:33:e4:bc:23:97:48:10:c3:cc: 8c:8f:c8:85:dd:90:ef:41:0f:06:2c:03:4e:6f:0c:b0:88:fd: 18:1d:15:b7:4f:06:88:d8:b4:e9:e8:f5:ad:0f:5c:75:c3:6b: c9:61:89:06:6d:9c:6c:9c:86:6c:44:42:86:cd:62:5f:04:62: ea:1c:5f:73:71:29:31:c1:8d:0e:13:07:b6:94:bf:5e:d9:3c: e8:73:50:8c:df:b3:6a:c4:da:36:6e:90:36:a9:25:f0:df:ca: 1f:46:d9:16:a4:14:eb:c3:a7:c0:0f:b6:78:b0:20:c7:52:ca: 1e:86:3d:cf:9e:d2:11:5c:83:42:47:57:cf:28:8f:47:bc:4d: d2:55:17:d2:56:93:61:fd:84:d9:b7:a3:81:23:b4:82:d8:b0: b9:62:aa:29:18:df:0f:cd:3c:e7:18:5e:16:b8:24:e7:f3:fd: 7a:3e:5f:f2:b2:5f:1b:57:24:78:a2:39:a2:c4:47:5e:a1:fa: c6:2d:31:c6:58:f6:5c:b6:ae:ec:67:34:97:f3:24:f2:eb:d0: 63:f4:fc:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIr7tC8RWeSCsfv6E8RiuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1MTk0NjhjNTVlNmJlNzE1YzBkYTgwNWNlZmI1YWVjODVk MzI5MjYwHhcNMjYwMjA5MTYwMTE2WhcNMjYwMjEwMTYwMTE2WjAzMTEwLwYDVQQD Eyg0YzQ0ZjE1NDc0OWFmMDdmYWMwNGQyZmUzMGE1NDcyMDNhODkzZjQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+OdwE1w3kV/4VmFlbS0SWlqBHXo nNknzhNSk20ip1FdxLk1JxwD5brQf+ez9CUeM3DQtHeB9gDKToXfNSvfb/ZHErGV Ekyiw1u7qEd2ue/LXRQnDEXVmBDULuyZAVajX//aVlV4ezXovwRPP1Q/M/a6Q6Om kQD9r9gbOuzcfdqCQJ+eUesukXVBSvbaY1d2a/O6pkUOGrKmMCaIeuSIYVHZWy/U y9i2UzVL5kNrmjlkV9hMbVY316y8lAeXfawknEuwv2zOwGglxeNz/iIDSUDKf5Zg 8VMGm1g4Yx2/52Bv4KZ8Y7J3C+F9RXoBJ+D5JdUPZwH6ZhLg0AECo59SgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFExE8VR0mvB/rATS/jClRyA6iT9BMB8GA1UdIwQY MBaAFMUZRoxV5r5xXA2oBc77WuyF0ykmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFJsR2pGWG12bkZjRGFnRnp2dGE3SVhUS1NZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8yY2EyYzMtZTIwZi00OTRlLWIxY2Ut NmE3MWI4NDRhZDY2LzEveFJsR2pGWG12bkZjRGFnRnp2dGE3SVhUS1NZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS8yY2EyYzMtZTIwZi00OTRlLWIxY2UtNmE3MWI4NDRhZDY2 LzEveFJsR2pGWG12bkZjRGFnRnp2dGE3SVhUS1NZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALKpUXzLw zCyGAgvfzmtCkp2S7vbpHsOeVFEsNuleFeKcBo6c2Uk+V0BOMAOhM+S8I5dIEMPM jI/Ihd2Q70EPBiwDTm8MsIj9GB0Vt08GiNi06ej1rQ9cdcNryWGJBm2cbJyGbERC hs1iXwRi6hxfc3EpMcGNDhMHtpS/Xtk86HNQjN+zasTaNm6QNqkl8N/KH0bZFqQU 68OnwA+2eLAgx1LKHoY9z57SEVyDQkdXzyiPR7xN0lUX0laTYf2E2bejgSO0gtiw uWKqKRjfD8085xheFrgk5/P9ej5f8rJfG1ckeKI5osRHXqH6xi0xxlj2XLau7Gc0 l/Mk8uvQY/T81Q== -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:44 2026 by rpki-client