This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft File: XzHZebcQ7eIGiCOIGqYRrROvVFk.mft (raw, json) Hash identifier: Sd7fzy6Jw6tNn4sbElQHFepftZSAZdYu3ppAAifxNyE= Subject key identifier: E6:E4:EB:0A:3C:E5:E3:46:D9:3E:5C:17:D4:74:8D:6E:39:81:AD:17 Authority key identifier: 5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59 Certificate issuer: /CN=5f31d979b710ede2068823881aa611ad13af5459 Certificate serial: 019C42B41BA3EDB0366EA60CBC7186881E49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft Manifest number: 0DC5 Signing time: Mon 09 Feb 2026 14:00:25 +0000 Manifest this update: Mon 09 Feb 2026 14:00:25 +0000 Manifest next update: Tue 10 Feb 2026 14:00:25 +0000 Files and hashes: 1: XzHZebcQ7eIGiCOIGqYRrROvVFk.crl (hash: agGKkRW/vunum3m1krin5GbfvhxAjlsfUxen9sPKaO8=) 2: sNtqJVBgNOZKvOOoSizpNY6uXfc.roa (hash: qlkBknwlplBkW99VaChbeT/pRtq/ip6OEf221SQRDX4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:1b:a3:ed:b0:36:6e:a6:0c:bc:71:86:88:1e:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f31d979b710ede2068823881aa611ad13af5459 Validity Not Before: Feb 9 14:00:25 2026 GMT Not After : Feb 10 14:00:25 2026 GMT Subject: CN=e6e4eb0a3ce5e346d93e5c17d4748d6e3981ad17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e4:a2:b5:d7:4b:23:60:fb:5e:9e:ec:0f:c8: 44:ab:aa:48:6e:92:02:3b:ed:ae:fd:ab:f1:1a:a6: 6e:87:3c:df:12:10:4d:33:57:b1:e9:13:14:bc:04: cb:e7:2d:91:33:30:de:18:0f:b1:6b:7f:c9:a8:97: 74:39:7f:74:50:ce:b5:b8:61:8c:d4:d5:e0:93:3e: 77:c8:f7:8e:a6:13:ab:3b:c4:50:38:1f:99:de:74: f6:dc:f4:73:6b:97:2b:40:2e:3e:9f:b8:24:26:32: 5b:f7:96:de:d1:63:b8:2c:01:70:f9:b7:4a:e0:d8: 57:54:8f:5e:70:ab:0d:d3:95:19:f0:3f:4d:06:e6: 40:31:3e:b0:95:34:ea:0b:81:53:6c:50:35:8d:fe: cc:da:3a:93:fc:f2:f5:cb:ca:25:38:8c:84:f7:bf: 45:77:1e:c2:a6:f9:56:cb:1a:41:b5:b5:47:01:f4: 46:87:07:7d:22:3b:4b:41:76:65:4c:c1:47:00:e9: 83:f6:0f:96:1f:1d:67:86:28:10:8c:81:10:6b:c0: cb:47:e7:4f:09:e9:ff:38:17:ca:9b:88:6f:08:61: 3b:4f:91:8a:d9:37:90:85:86:e2:4a:b9:c1:02:5b: 67:d7:65:b2:6a:f0:7a:9d:0c:1c:7d:b5:e3:91:40: 35:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:E4:EB:0A:3C:E5:E3:46:D9:3E:5C:17:D4:74:8D:6E:39:81:AD:17 X509v3 Authority Key Identifier: keyid:5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:2a:7e:77:83:b8:cf:66:09:c7:54:52:11:69:c6:e2:51:f3: 5e:e0:20:b6:07:19:0f:9c:fb:62:b5:0a:79:95:24:35:3b:e5: 6d:e6:92:56:88:70:0b:7b:6a:91:9e:1d:f2:53:d5:3d:10:c6: 39:27:4c:3a:8e:d4:4f:2d:62:b6:88:c0:7e:d4:ba:8f:c9:ab: f6:15:84:11:1c:9a:72:e1:c5:0b:6c:1b:83:5a:04:49:90:3f: 97:fb:3b:4c:71:23:52:1a:b3:45:16:9e:19:f1:4b:3f:9c:6e: 98:b3:d5:34:94:83:2d:82:eb:0c:7d:26:a2:d0:cb:b0:98:74: 93:2c:a7:e1:2a:47:4d:a9:8c:2e:7e:56:6b:c6:79:dd:e2:3d: 50:7f:d8:ec:19:ad:b0:9f:f1:e7:5b:41:f8:fe:36:6a:ad:be: 35:10:65:09:a5:74:de:c9:22:75:f7:46:ea:8b:bd:02:a3:df: 1b:d0:d6:93:be:36:55:68:ba:c5:d1:c2:c4:cf:c9:d1:40:02: 98:44:1f:9f:b8:ba:f4:7b:54:ac:3f:46:cb:e2:bd:d8:4f:d3: 62:c7:7b:22:a3:04:9c:8e:98:da:df:3b:76:b4:96:b3:30:08: 80:63:94:0a:0f:a8:3f:38:4c:e1:18:03:5d:3f:f6:f6:11:9c: 46:37:f9:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtBuj7bA2bqYMvHGGiB5JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmMzFkOTc5YjcxMGVkZTIwNjg4MjM4ODFhYTYxMWFkMTNh ZjU0NTkwHhcNMjYwMjA5MTQwMDI1WhcNMjYwMjEwMTQwMDI1WjAzMTEwLwYDVQQD EyhlNmU0ZWIwYTNjZTVlMzQ2ZDkzZTVjMTdkNDc0OGQ2ZTM5ODFhZDE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsuSitddLI2D7Xp7sD8hEq6pIbpIC O+2u/avxGqZuhzzfEhBNM1ex6RMUvATL5y2RMzDeGA+xa3/JqJd0OX90UM61uGGM 1NXgkz53yPeOphOrO8RQOB+Z3nT23PRza5crQC4+n7gkJjJb95be0WO4LAFw+bdK 4NhXVI9ecKsN05UZ8D9NBuZAMT6wlTTqC4FTbFA1jf7M2jqT/PL1y8olOIyE979F dx7CpvlWyxpBtbVHAfRGhwd9IjtLQXZlTMFHAOmD9g+WHx1nhigQjIEQa8DLR+dP Cen/OBfKm4hvCGE7T5GK2TeQhYbiSrnBAltn12WyavB6nQwcfbXjkUA1XwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFObk6wo85eNG2T5cF9R0jW45ga0XMB8GA1UdIwQY MBaAFF8x2Xm3EO3iBogjiBqmEa0Tr1RZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHpIWmViY1E3ZUlHaUNPSUdxWVJyUk92VkZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi83ZGUyOGQtMzc0OS00ZDAyLWJlOWMt NDFjNjY0NThkZDczLzEvWHpIWmViY1E3ZUlHaUNPSUdxWVJyUk92VkZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi83ZGUyOGQtMzc0OS00ZDAyLWJlOWMtNDFjNjY0NThkZDcz LzEvWHpIWmViY1E3ZUlHaUNPSUdxWVJyUk92VkZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASCp+d4O4 z2YJx1RSEWnG4lHzXuAgtgcZD5z7YrUKeZUkNTvlbeaSVohwC3tqkZ4d8lPVPRDG OSdMOo7UTy1itojAftS6j8mr9hWEERyacuHFC2wbg1oESZA/l/s7THEjUhqzRRae GfFLP5xumLPVNJSDLYLrDH0motDLsJh0kyyn4SpHTamMLn5Wa8Z53eI9UH/Y7Bmt sJ/x51tB+P42aq2+NRBlCaV03skidfdG6ou9AqPfG9DWk742VWi6xdHCxM/J0UAC mEQfn7i69HtUrD9Gy+K92E/TYsd7IqMEnI6Y2t87drSWszAIgGOUCg+oPzhM4RgD XT/29hGcRjf5FQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:32 2026 by rpki-client