This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft File: X2c9L2Ia4xQHABdIu95jisvYYFA.mft (raw, json) Hash identifier: tAlgrStC7vUzwOsxN5HrdnT3gXdv0GxpwEtgYL+WcZ4= Subject key identifier: 82:4A:E5:DC:7E:31:8B:44:97:24:2E:77:10:2B:CC:83:2A:22:2A:17 Authority key identifier: 5F:67:3D:2F:62:1A:E3:14:07:00:17:48:BB:DE:63:8A:CB:D8:60:50 Certificate issuer: /CN=5f673d2f621ae31407001748bbde638acbd86050 Certificate serial: 019C446B8D4577CA963327E3EC184032679D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X2c9L2Ia4xQHABdIu95jisvYYFA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft Manifest number: 0886 Signing time: Mon 09 Feb 2026 22:00:25 +0000 Manifest this update: Mon 09 Feb 2026 22:00:25 +0000 Manifest next update: Tue 10 Feb 2026 22:00:25 +0000 Files and hashes: 1: EFQb-DdMIUfYk8otFJG8FPsYqSg.roa (hash: xz8HTmmrpuajVW7QayylP4C5tRbZcnyfwKq4BdsJEEg=) 2: X2c9L2Ia4xQHABdIu95jisvYYFA.crl (hash: 5RgQ36CkfCAn0tsh1OmJ9bBiLV8QzJHp9PFerJUVY7c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft rsync://rpki.ripe.net/repository/DEFAULT/X2c9L2Ia4xQHABdIu95jisvYYFA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:8d:45:77:ca:96:33:27:e3:ec:18:40:32:67:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f673d2f621ae31407001748bbde638acbd86050 Validity Not Before: Feb 9 22:00:25 2026 GMT Not After : Feb 10 22:00:25 2026 GMT Subject: CN=824ae5dc7e318b4497242e77102bcc832a222a17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:e5:43:c4:5e:c8:56:e9:8e:f6:79:60:85:74: 85:b8:88:9a:b5:68:70:9e:c9:62:43:8d:71:5f:5b: 36:7c:f6:fc:f3:9d:43:ff:cc:58:ed:fc:9c:19:5c: 7d:10:70:bc:b5:b1:e8:84:6a:d1:09:82:65:7c:0a: 87:bb:68:8c:ce:4a:8d:64:ce:a1:ac:64:59:78:c2: b6:ec:7c:5d:b0:78:67:df:2a:84:96:51:b0:e7:46: a8:05:0c:e9:40:95:b1:28:24:2d:e5:d9:52:03:f6: 96:b7:14:5c:ce:a5:0a:a0:65:82:35:01:ca:b2:f4: f3:ad:f8:73:70:5b:0b:35:f4:ca:67:fe:20:fd:00: da:9a:4e:1a:7b:a9:0a:c9:0c:6e:3d:49:00:24:6c: 3e:b1:28:1e:79:02:45:17:0d:af:80:cd:4a:33:c0: 5a:38:cc:40:0b:0e:a2:41:a4:69:c4:40:32:70:51: e6:75:6d:0f:fe:f7:5f:47:aa:94:4e:b9:1c:ea:77: f8:d4:2c:ce:d0:b8:3c:9a:a6:5c:5c:37:8f:7d:84: 5a:41:59:be:94:cf:f1:bf:f3:88:ce:f2:5d:d5:02: 0d:b1:4c:3b:30:8f:24:0e:6e:8f:49:71:67:d7:e3: 5f:b7:d3:f9:90:67:c7:8a:9e:e3:de:10:ed:4d:19: 3a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:4A:E5:DC:7E:31:8B:44:97:24:2E:77:10:2B:CC:83:2A:22:2A:17 X509v3 Authority Key Identifier: keyid:5F:67:3D:2F:62:1A:E3:14:07:00:17:48:BB:DE:63:8A:CB:D8:60:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X2c9L2Ia4xQHABdIu95jisvYYFA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:81:b8:24:ae:18:c8:c6:12:c0:df:64:10:7b:c8:94:a3:6c: 34:ab:38:0d:20:da:35:48:ba:c2:20:1a:6a:79:ec:82:5b:f7: 50:89:3c:35:e0:df:d0:25:93:58:94:c3:e0:1c:63:81:f3:f7: f1:39:e2:c5:6b:c1:75:f0:6f:2d:84:78:ce:11:17:f3:59:06: 83:a8:73:13:b4:f1:7a:ac:ae:40:dc:bd:78:45:3f:48:03:47: ac:08:8e:3b:4d:53:86:ea:b3:d4:7d:8b:06:93:88:9a:61:3f: 81:02:b2:d5:3d:a7:64:27:d0:2d:8a:f1:c9:f2:69:9f:98:85: 69:f1:b3:de:6a:e2:b2:78:33:29:1a:cf:7a:9c:f0:ea:12:50: a7:9d:8d:22:e1:d1:c9:42:96:1e:65:6c:b2:e2:78:cd:d6:f7: bc:52:d5:0c:62:18:15:40:2b:8f:76:6a:c7:44:c8:97:df:08: 09:15:2a:60:53:f2:6f:7b:41:53:33:1f:6f:16:be:4a:98:fa: ca:df:78:4d:8c:ba:b7:d5:71:f3:53:cd:16:60:3e:ba:95:b4: 3d:22:6f:b7:48:e3:11:2b:1a:f3:9e:b7:9a:5a:cf:f7:0e:2e: 11:a6:5f:43:e0:c2:ec:6c:51:fd:e2:09:ae:1c:e2:52:00:6f: 1b:fc:35:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa41Fd8qWMyfj7BhAMmedMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmNjczZDJmNjIxYWUzMTQwNzAwMTc0OGJiZGU2MzhhY2Jk ODYwNTAwHhcNMjYwMjA5MjIwMDI1WhcNMjYwMjEwMjIwMDI1WjAzMTEwLwYDVQQD Eyg4MjRhZTVkYzdlMzE4YjQ0OTcyNDJlNzcxMDJiY2M4MzJhMjIyYTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOVDxF7IVumO9nlghXSFuIiatWhw nsliQ41xX1s2fPb8851D/8xY7fycGVx9EHC8tbHohGrRCYJlfAqHu2iMzkqNZM6h rGRZeMK27HxdsHhn3yqEllGw50aoBQzpQJWxKCQt5dlSA/aWtxRczqUKoGWCNQHK svTzrfhzcFsLNfTKZ/4g/QDamk4ae6kKyQxuPUkAJGw+sSgeeQJFFw2vgM1KM8Ba OMxACw6iQaRpxEAycFHmdW0P/vdfR6qUTrkc6nf41CzO0Lg8mqZcXDePfYRaQVm+ lM/xv/OIzvJd1QINsUw7MI8kDm6PSXFn1+Nft9P5kGfHip7j3hDtTRk6swIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIJK5dx+MYtElyQudxArzIMqIioXMB8GA1UdIwQY MBaAFF9nPS9iGuMUBwAXSLveY4rL2GBQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDJjOUwySWE0eFFIQUJkSXU5NWppc3ZZWUZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC82NTI3ODAtM2VhMS00MTVlLTgzOWUt ODQ0NzI5MTM3ZWU1LzEvWDJjOUwySWE0eFFIQUJkSXU5NWppc3ZZWUZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC82NTI3ODAtM2VhMS00MTVlLTgzOWUtODQ0NzI5MTM3ZWU1 LzEvWDJjOUwySWE0eFFIQUJkSXU5NWppc3ZZWUZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgYG4JK4Y yMYSwN9kEHvIlKNsNKs4DSDaNUi6wiAaannsglv3UIk8NeDf0CWTWJTD4BxjgfP3 8TnixWvBdfBvLYR4zhEX81kGg6hzE7TxeqyuQNy9eEU/SANHrAiOO01Thuqz1H2L BpOImmE/gQKy1T2nZCfQLYrxyfJpn5iFafGz3mrisngzKRrPepzw6hJQp52NIuHR yUKWHmVssuJ4zdb3vFLVDGIYFUArj3Zqx0TIl98ICRUqYFPyb3tBUzMfbxa+Spj6 yt94TYy6t9Vx81PNFmA+upW0PSJvt0jjESsa8563mlrP9w4uEaZfQ+DC7GxR/eIJ rhziUgBvG/w1Iw== -----END CERTIFICATE-----Generated at Tue Feb 10 03:15:50 2026 by rpki-client