This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft File: FXaJHPKx2OxWwDvHqW3pWKDgADI.mft (raw, json) Hash identifier: 5gdQxtBBCkKNxrsnnJfosl/060mp+aXpqlHJU1UqDNU= Subject key identifier: 72:6B:1A:C5:4D:D3:B9:7F:07:16:F7:CA:61:E5:20:9F:56:F1:85:42 Authority key identifier: 15:76:89:1C:F2:B1:D8:EC:56:C0:3B:C7:A9:6D:E9:58:A0:E0:00:32 Certificate issuer: /CN=1576891cf2b1d8ec56c03bc7a96de958a0e00032 Certificate serial: 019C42EB9D7211CD17779285580D351712DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft Manifest number: 05B9 Signing time: Mon 09 Feb 2026 15:01:03 +0000 Manifest this update: Mon 09 Feb 2026 15:01:03 +0000 Manifest next update: Tue 10 Feb 2026 15:01:03 +0000 Files and hashes: 1: FXaJHPKx2OxWwDvHqW3pWKDgADI.crl (hash: hanKcuYUQFThs/PR++03C9Rz+L2R774HNhr7iimZfx8=) 2: IeSw-4bcio5RXnwbEa4KykMgwOY.roa (hash: OoWXczxt8RFsumILUeDSej8qKitlw3VHsPcYq7wi388=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:9d:72:11:cd:17:77:92:85:58:0d:35:17:12:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1576891cf2b1d8ec56c03bc7a96de958a0e00032 Validity Not Before: Feb 9 15:01:03 2026 GMT Not After : Feb 10 15:01:03 2026 GMT Subject: CN=726b1ac54dd3b97f0716f7ca61e5209f56f18542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:cf:8b:ed:d4:0e:eb:f2:3e:5a:e0:6c:38:fe: 5f:0c:ec:b1:86:da:fa:33:25:43:f5:09:84:ad:91: dd:1f:25:55:ab:f4:d4:cf:52:15:8a:5d:ca:b6:87: 37:8b:ab:f1:fc:42:be:99:eb:01:56:ef:40:e5:fc: 8f:8e:4f:98:21:b1:85:ed:d8:56:26:ad:35:35:a4: c5:e0:42:b0:4e:a4:e9:39:aa:57:42:2e:70:f2:32: c9:33:35:fd:dc:a2:17:c1:c2:fd:72:b6:22:fe:6a: 0e:fc:ad:b5:f8:7f:39:ea:f3:86:a0:a8:0d:7c:47: 19:20:44:a9:a6:9c:59:b4:34:f5:d9:12:55:c2:da: 35:39:a5:a2:02:be:51:4f:16:3f:0d:df:27:ec:c3: b2:e1:1a:96:af:6a:a2:0d:44:46:84:84:c4:f8:c4: 8b:3a:73:01:42:c8:c5:b3:20:a3:0f:24:28:25:30: c7:5a:1d:1a:c6:93:f2:e5:bc:fc:61:be:d6:08:de: 37:62:1b:40:db:b8:6f:3f:0a:a3:bf:ad:0c:0b:41: 41:30:3d:88:1d:b4:f1:41:90:b2:73:22:52:3b:30: 97:1f:a2:15:76:6e:4f:dc:6e:40:1a:af:15:e5:17: 19:fd:fd:4c:b7:3a:c1:93:09:ca:d2:6b:2d:84:aa: 72:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:6B:1A:C5:4D:D3:B9:7F:07:16:F7:CA:61:E5:20:9F:56:F1:85:42 X509v3 Authority Key Identifier: keyid:15:76:89:1C:F2:B1:D8:EC:56:C0:3B:C7:A9:6D:E9:58:A0:E0:00:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:87:3c:a2:00:2d:bd:95:16:7f:53:99:85:13:89:e4:74:09: 66:55:2e:c7:fd:1c:88:9c:a3:14:51:6a:bd:b8:82:2f:4c:ee: 1c:d3:c2:46:cc:7f:3c:7a:8a:e3:5e:3c:a2:d5:e1:61:db:d7: 1b:9d:15:59:28:5a:a6:32:72:bb:8f:1d:bb:51:c8:8e:e0:4c: 45:0d:62:de:af:49:cf:c4:ab:78:d4:9f:aa:27:49:d7:48:a0: 5f:cb:19:30:88:db:f5:f9:1e:06:69:0a:b5:b8:70:94:60:93: 5a:3a:c1:cf:f1:81:d2:d3:5e:37:11:b5:99:2f:a4:34:27:ea: 52:e6:e8:12:fd:c3:7a:0b:5c:40:21:a8:ce:53:64:47:66:8d: a2:83:d7:29:5a:dd:21:73:58:71:9a:6f:f5:95:d8:94:2c:cc: 58:7f:85:f2:d1:4a:63:cc:5b:5d:69:a8:a8:75:51:d7:fb:42: 39:e6:56:d6:a3:95:08:d6:be:ce:f4:3e:83:f9:a3:66:58:95: c1:78:bb:68:de:04:b5:d6:e8:d9:e6:e0:44:04:12:8a:b8:39: 71:cc:7f:32:79:5a:6c:e0:f2:b5:fd:9e:9a:fc:1d:8a:16:a4: fe:16:e3:19:de:0d:01:a2:ff:1d:83:6d:61:d4:3d:b0:5a:ad: d8:e6:b8:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC651yEc0Xd5KFWA01FxLaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1NzY4OTFjZjJiMWQ4ZWM1NmMwM2JjN2E5NmRlOTU4YTBl MDAwMzIwHhcNMjYwMjA5MTUwMTAzWhcNMjYwMjEwMTUwMTAzWjAzMTEwLwYDVQQD Eyg3MjZiMWFjNTRkZDNiOTdmMDcxNmY3Y2E2MWU1MjA5ZjU2ZjE4NTQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8+L7dQO6/I+WuBsOP5fDOyxhtr6 MyVD9QmErZHdHyVVq/TUz1IVil3Ktoc3i6vx/EK+mesBVu9A5fyPjk+YIbGF7dhW Jq01NaTF4EKwTqTpOapXQi5w8jLJMzX93KIXwcL9crYi/moO/K21+H856vOGoKgN fEcZIESpppxZtDT12RJVwto1OaWiAr5RTxY/Dd8n7MOy4RqWr2qiDURGhITE+MSL OnMBQsjFsyCjDyQoJTDHWh0axpPy5bz8Yb7WCN43YhtA27hvPwqjv60MC0FBMD2I HbTxQZCycyJSOzCXH6IVdm5P3G5AGq8V5RcZ/f1MtzrBkwnK0msthKpyxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHJrGsVN07l/Bxb3ymHlIJ9W8YVCMB8GA1UdIwQY MBaAFBV2iRzysdjsVsA7x6lt6Vig4AAyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlhhSkhQS3gyT3hXd0R2SHFXM3BXS0RnQURJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS8xYmY1ZmEtZjY5Yi00MTdjLWJjMGIt NWQ1YmI3ZmU1NzFhLzEvRlhhSkhQS3gyT3hXd0R2SHFXM3BXS0RnQURJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS8xYmY1ZmEtZjY5Yi00MTdjLWJjMGItNWQ1YmI3ZmU1NzFh LzEvRlhhSkhQS3gyT3hXd0R2SHFXM3BXS0RnQURJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAIc8ogAt vZUWf1OZhROJ5HQJZlUux/0ciJyjFFFqvbiCL0zuHNPCRsx/PHqK4148otXhYdvX G50VWShapjJyu48du1HIjuBMRQ1i3q9Jz8SreNSfqidJ10igX8sZMIjb9fkeBmkK tbhwlGCTWjrBz/GB0tNeNxG1mS+kNCfqUuboEv3DegtcQCGozlNkR2aNooPXKVrd IXNYcZpv9ZXYlCzMWH+F8tFKY8xbXWmoqHVR1/tCOeZW1qOVCNa+zvQ+g/mjZliV wXi7aN4Etdbo2ebgRAQSirg5ccx/MnlabODytf2emvwdihak/hbjGd4NAaL/HYNt YdQ9sFqt2Oa4DQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:00 2026 by rpki-client