This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft File: _XjxP_qS8HTr5VfSotKa0Noz5dg.mft (raw, json) Hash identifier: tIXOhWx6c6v/xW6bC1HBavi8ZaeQ+gRfHpXWSgLrmHI= Subject key identifier: 7A:20:D7:56:80:8C:8E:8F:9A:F1:6E:63:37:CA:9C:82:88:2B:A6:E5 Authority key identifier: FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8 Certificate issuer: /CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8 Certificate serial: 019C4322D1905A4E98D4665B0F63C93A1BD1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft Manifest number: 0D69 Signing time: Mon 09 Feb 2026 16:01:21 +0000 Manifest this update: Mon 09 Feb 2026 16:01:21 +0000 Manifest next update: Tue 10 Feb 2026 16:01:21 +0000 Files and hashes: 1: H7yvjO1PteMvFud2cVf980xvhOM.roa (hash: RhQsj0SDsU/JKqzjG9Bf/mkgnMQmL8vD/s9sreGOu30=) 2: _XjxP_qS8HTr5VfSotKa0Noz5dg.crl (hash: ca8tUvHqhd6n4P+2zwB4Dc8VSqGtIbLnGD8RNgg+PRY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:d1:90:5a:4e:98:d4:66:5b:0f:63:c9:3a:1b:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8 Validity Not Before: Feb 9 16:01:21 2026 GMT Not After : Feb 10 16:01:21 2026 GMT Subject: CN=7a20d756808c8e8f9af16e6337ca9c82882ba6e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6f:b9:12:27:b2:09:17:9d:e7:d0:d8:cf:95: 12:23:0e:01:2b:f5:b1:70:eb:8c:7d:00:7b:35:e5: f7:5f:32:f3:dd:35:80:b8:1d:ac:00:f4:25:e9:7e: 2f:52:5f:8f:f8:e9:88:3d:71:18:19:18:83:89:2e: f1:dd:32:77:6f:b2:1b:f6:00:d4:31:c7:98:43:5c: 10:11:29:fa:2f:1f:56:ae:11:17:3c:14:7e:26:40: 42:97:75:96:d5:cb:9c:66:0e:94:b4:15:84:1b:67: 49:c6:a8:82:1d:76:c6:cb:02:9d:55:79:26:94:63: db:d9:bc:d9:26:23:c5:cd:61:cb:61:33:c8:fd:57: 05:14:08:e0:a9:c4:9b:b9:65:19:e1:ad:3e:bb:c3: fe:ea:c9:33:67:3c:3c:b9:cb:10:84:8f:cf:5c:4e: 4f:16:62:90:a0:40:42:62:1c:ca:78:ba:eb:ca:9b: 43:13:8b:75:8f:09:36:bb:a7:68:2d:43:a7:23:7f: 83:ac:9f:ad:fc:21:bb:86:40:5f:e1:22:fd:53:9c: d6:77:79:0e:7c:b7:bc:ba:5c:d6:eb:73:bd:11:9a: 63:98:67:d4:51:6f:d8:4e:8f:c6:58:5a:4d:42:d8: fa:ba:6f:81:49:07:82:d9:99:1f:e3:93:3c:70:d2: 80:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:20:D7:56:80:8C:8E:8F:9A:F1:6E:63:37:CA:9C:82:88:2B:A6:E5 X509v3 Authority Key Identifier: keyid:FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:df:e7:30:31:95:6f:e5:4a:33:b2:78:9a:9d:88:81:2c:a7: 65:61:52:56:82:aa:60:0a:54:ef:cd:ca:01:91:2a:d6:33:64: 13:c6:b1:18:29:b0:a5:f3:6e:ba:61:b1:a7:bb:9e:d7:87:0b: d5:67:1f:1f:64:51:02:34:75:df:55:04:f4:df:41:a4:57:da: 74:12:be:63:ab:94:54:18:24:aa:fc:e3:d5:c8:96:18:fb:c7: a1:0e:82:63:c7:b0:4a:96:d8:e9:1a:4d:68:ca:58:88:f5:ce: be:cf:ae:b0:39:72:11:7f:4a:e7:0b:ea:a9:b2:c6:78:5b:1e: 30:36:07:ff:f5:4c:38:48:88:7c:27:8c:16:bd:dc:a3:b8:6d: f9:97:6a:23:ea:db:9c:37:c7:86:e3:f8:7b:6b:2c:2c:c5:a1: d8:f7:af:ad:6a:5f:d9:32:db:44:aa:f1:7f:b7:ab:86:03:8d: 07:6a:46:0e:d0:b1:0b:6c:93:c9:81:56:c8:12:6d:d2:53:28: ff:83:05:d2:83:9a:05:1c:23:ee:d8:e5:f6:14:76:fb:e3:c5: e4:7c:bd:d7:df:1b:d8:e1:45:23:4a:37:ed:19:89:ef:ea:79: 09:32:76:32:af:a3:ea:84:52:f9:80:bb:4c:76:e0:ec:1d:14: 39:d9:9a:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDItGQWk6Y1GZbD2PJOhvRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkNzhmMTNmZmE5MmYwNzRlYmU1NTdkMmEyZDI5YWQwZGEz M2U1ZDgwHhcNMjYwMjA5MTYwMTIxWhcNMjYwMjEwMTYwMTIxWjAzMTEwLwYDVQQD Eyg3YTIwZDc1NjgwOGM4ZThmOWFmMTZlNjMzN2NhOWM4Mjg4MmJhNmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuW+5EieyCRed59DYz5USIw4BK/Wx cOuMfQB7NeX3XzLz3TWAuB2sAPQl6X4vUl+P+OmIPXEYGRiDiS7x3TJ3b7Ib9gDU MceYQ1wQESn6Lx9WrhEXPBR+JkBCl3WW1cucZg6UtBWEG2dJxqiCHXbGywKdVXkm lGPb2bzZJiPFzWHLYTPI/VcFFAjgqcSbuWUZ4a0+u8P+6skzZzw8ucsQhI/PXE5P FmKQoEBCYhzKeLrryptDE4t1jwk2u6doLUOnI3+DrJ+t/CG7hkBf4SL9U5zWd3kO fLe8ulzW63O9EZpjmGfUUW/YTo/GWFpNQtj6um+BSQeC2Zkf45M8cNKAtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHog11aAjI6PmvFuYzfKnIKIK6blMB8GA1UdIwQY MBaAFP148T/6kvB06+VX0qLSmtDaM+XYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1hqeFBfcVM4SFRyNVZmU290S2EwTm96NWRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi9lNDFjMzQtMDI1Mi00NzE4LTlmM2Qt ZmRmMDExOGNjMDE2LzEvX1hqeFBfcVM4SFRyNVZmU290S2EwTm96NWRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi9lNDFjMzQtMDI1Mi00NzE4LTlmM2QtZmRmMDExOGNjMDE2 LzEvX1hqeFBfcVM4SFRyNVZmU290S2EwTm96NWRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjd/nMDGV b+VKM7J4mp2IgSynZWFSVoKqYApU783KAZEq1jNkE8axGCmwpfNuumGxp7ue14cL 1WcfH2RRAjR131UE9N9BpFfadBK+Y6uUVBgkqvzj1ciWGPvHoQ6CY8ewSpbY6RpN aMpYiPXOvs+usDlyEX9K5wvqqbLGeFseMDYH//VMOEiIfCeMFr3co7ht+ZdqI+rb nDfHhuP4e2ssLMWh2PevrWpf2TLbRKrxf7erhgONB2pGDtCxC2yTyYFWyBJt0lMo /4MF0oOaBRwj7tjl9hR2++PF5Hy9198b2OFFI0o37RmJ7+p5CTJ2Mq+j6oRS+YC7 THbg7B0UOdmahA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:20 2026 by rpki-client