This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft File: XBEKKwrrN_DJMqlr279-82whGXw.mft (raw, json) Hash identifier: B5JBXeKSE7WnvSkBVzeTIUbYjElipx3dp0+Umq2skOs= Subject key identifier: 2B:62:96:C6:0A:2E:A4:F6:B3:81:99:D7:EB:DC:4F:25:49:5D:3D:86 Authority key identifier: 5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C Certificate issuer: /CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c Certificate serial: 019C420FAA3EC2AF7E3DFDE8474F9ECDF445 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft Manifest number: 137C Signing time: Mon 09 Feb 2026 11:00:48 +0000 Manifest this update: Mon 09 Feb 2026 11:00:48 +0000 Manifest next update: Tue 10 Feb 2026 11:00:48 +0000 Files and hashes: 1: NrZRCuerFzj4EhFGKoh_NKbZNxM.roa (hash: 5QAUpIfqv2CVCHxJDOL189fybpsclOVK/PxPIJsB8Xs=) 2: XBEKKwrrN_DJMqlr279-82whGXw.crl (hash: 9CAL1MOLmDWYAAHunS3z7HK5ZR+yKzYoqmDVIq13nyw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:aa:3e:c2:af:7e:3d:fd:e8:47:4f:9e:cd:f4:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c Validity Not Before: Feb 9 11:00:48 2026 GMT Not After : Feb 10 11:00:48 2026 GMT Subject: CN=2b6296c60a2ea4f6b38199d7ebdc4f25495d3d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:e3:f6:e7:d8:51:74:e4:2e:a5:e8:8b:b1:15: 8d:3b:76:d3:8f:f1:8b:f5:59:06:2c:4f:87:5b:ee: 4c:d0:2d:7b:cf:22:53:70:d2:cd:da:79:8e:ff:2a: 68:1d:3b:53:2a:fb:22:f8:a4:0d:80:9f:8f:7d:94: ea:f4:97:fa:49:c7:66:a0:f5:07:00:9f:d5:86:3a: 6c:83:82:eb:8e:2f:43:06:86:26:d9:f0:79:29:3f: 92:a1:eb:65:0b:39:8e:29:a6:fc:3c:24:52:b2:09: 06:20:9c:7f:b1:d1:e0:58:a1:fb:a9:31:89:e8:75: 04:4e:79:ee:d0:98:0c:e0:3c:80:90:9c:e6:81:36: 1e:b0:96:54:05:6d:e5:d3:82:ce:72:51:94:e5:49: 0e:a1:b7:88:54:ec:74:1c:8f:21:54:b5:01:c2:8f: 69:2b:db:e7:5a:65:53:7f:82:df:9a:3b:bf:29:6d: c9:a1:33:bd:a2:49:ed:2b:26:82:fd:b8:2d:69:9b: 4d:48:49:4c:37:f2:96:61:df:b1:ba:1a:1a:85:91: 5c:d7:f6:d2:fd:61:24:3d:b0:00:ce:7c:26:db:6e: 81:d9:a7:28:e5:d2:da:2e:2d:53:90:75:02:b3:29: 73:c1:da:35:bb:ab:3d:b8:26:a3:e9:c4:86:25:c3: 9d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:62:96:C6:0A:2E:A4:F6:B3:81:99:D7:EB:DC:4F:25:49:5D:3D:86 X509v3 Authority Key Identifier: keyid:5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:45:23:c1:5e:6d:5c:79:ef:a8:c0:d2:58:88:99:c3:97:53: 3c:c1:85:73:b9:63:ac:a8:1b:10:69:5b:f2:10:ba:f2:a3:9a: 90:5a:a5:f9:78:8f:bc:15:bb:d9:58:31:04:cc:ab:f1:95:95: 8d:fe:de:86:f5:8b:6b:58:95:fe:10:c9:ee:c0:24:60:c4:ec: 73:73:26:0a:e7:a2:36:cd:e8:9d:df:14:9f:c3:7b:3d:b6:72: c0:69:ca:50:b7:c9:c1:49:f1:30:0c:b9:3e:f4:57:0e:64:f5: 53:b5:ed:33:09:65:bf:78:8f:0f:89:81:07:8e:92:33:02:2d: 48:90:a0:16:f6:62:e3:ff:d7:6f:ef:24:1a:54:a1:e5:e0:70: 54:f1:d7:b2:31:6f:6d:8e:0a:98:87:33:de:e9:93:31:27:78: 13:c7:5d:3f:1b:fa:2f:c4:1c:1b:9a:17:62:5f:ba:fa:30:37: 12:04:3d:26:36:7e:a3:2b:72:c1:20:0f:6f:0e:83:9b:17:c4: 56:72:93:1d:ad:97:c6:78:88:26:2d:4d:39:5c:0e:9e:9c:54: da:e3:07:3c:47:4a:f0:98:29:ac:70:09:5b:da:f8:f4:3e:36: 92:e4:c7:b4:b7:89:2f:03:89:1e:67:77:e7:4f:dc:a1:40:cf: 73:f0:35:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD6o+wq9+Pf3oR0+ezfRFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjMTEwYTJiMGFlYjM3ZjBjOTMyYTk2YmRiYmY3ZWYzNmMy MTE5N2MwHhcNMjYwMjA5MTEwMDQ4WhcNMjYwMjEwMTEwMDQ4WjAzMTEwLwYDVQQD EygyYjYyOTZjNjBhMmVhNGY2YjM4MTk5ZDdlYmRjNGYyNTQ5NWQzZDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkeP259hRdOQupeiLsRWNO3bTj/GL 9VkGLE+HW+5M0C17zyJTcNLN2nmO/ypoHTtTKvsi+KQNgJ+PfZTq9Jf6ScdmoPUH AJ/Vhjpsg4Lrji9DBoYm2fB5KT+SoetlCzmOKab8PCRSsgkGIJx/sdHgWKH7qTGJ 6HUETnnu0JgM4DyAkJzmgTYesJZUBW3l04LOclGU5UkOobeIVOx0HI8hVLUBwo9p K9vnWmVTf4Lfmju/KW3JoTO9okntKyaC/bgtaZtNSElMN/KWYd+xuhoahZFc1/bS /WEkPbAAznwm226B2aco5dLaLi1TkHUCsylzwdo1u6s9uCaj6cSGJcOdvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCtilsYKLqT2s4GZ1+vcTyVJXT2GMB8GA1UdIwQY MBaAFFwRCisK6zfwyTKpa9u/fvNsIRl8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEJFS0t3cnJOX0RKTXFscjI3OS04MndoR1h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9lNGM0MzUtZTZjZC00ZGEwLTllMzIt YTQ0MjI0ZmFjM2ZmLzEvWEJFS0t3cnJOX0RKTXFscjI3OS04MndoR1h3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS9lNGM0MzUtZTZjZC00ZGEwLTllMzItYTQ0MjI0ZmFjM2Zm LzEvWEJFS0t3cnJOX0RKTXFscjI3OS04MndoR1h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQUUjwV5t XHnvqMDSWIiZw5dTPMGFc7ljrKgbEGlb8hC68qOakFql+XiPvBW72VgxBMyr8ZWV jf7ehvWLa1iV/hDJ7sAkYMTsc3MmCueiNs3ond8Un8N7PbZywGnKULfJwUnxMAy5 PvRXDmT1U7XtMwllv3iPD4mBB46SMwItSJCgFvZi4//Xb+8kGlSh5eBwVPHXsjFv bY4KmIcz3umTMSd4E8ddPxv6L8QcG5oXYl+6+jA3EgQ9JjZ+oytywSAPbw6DmxfE VnKTHa2XxniIJi1NOVwOnpxU2uMHPEdK8JgprHAJW9r49D42kuTHtLeJLwOJHmd3 50/coUDPc/A1Rg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:02 2026 by rpki-client