This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft File: xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft (raw, json) Hash identifier: 6izhv4E+OPmd4C+xmNMHRPzMke3T7zrhMdqGnQuJZvU= Subject key identifier: F3:9E:B2:FC:C3:18:B7:29:3D:EE:3A:32:FE:9E:E3:26:FB:D2:7C:0A Authority key identifier: C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B Certificate issuer: /CN=c6c00c553a54da05b93635a654cada03c6d9df2b Certificate serial: 019C427D2AC280D188DC9323B1E1C999115C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft Manifest number: 08E1 Signing time: Mon 09 Feb 2026 13:00:25 +0000 Manifest this update: Mon 09 Feb 2026 13:00:25 +0000 Manifest next update: Tue 10 Feb 2026 13:00:25 +0000 Files and hashes: 1: xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl (hash: IxgQkoQvnW4CzrJugs7vGhzmSJzJy5aQ6B0vbJQU5ks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:2a:c2:80:d1:88:dc:93:23:b1:e1:c9:99:11:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c6c00c553a54da05b93635a654cada03c6d9df2b Validity Not Before: Feb 9 13:00:25 2026 GMT Not After : Feb 10 13:00:25 2026 GMT Subject: CN=f39eb2fcc318b7293dee3a32fe9ee326fbd27c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:94:52:04:5b:e3:a6:28:dc:98:91:74:16:49: 3a:3d:2d:81:ea:02:42:db:12:f6:f4:0f:b7:38:63: 5b:38:1e:79:bd:fe:25:58:55:70:2a:31:81:6e:73: bb:61:b7:82:17:76:e3:ef:46:0e:9d:27:87:f2:c3: a2:59:1d:8a:95:30:aa:db:49:2f:cf:41:89:e3:6b: 75:b9:91:47:a8:56:91:0c:1b:f8:75:72:2a:48:a3: 32:44:3e:f2:9e:1f:aa:55:66:dc:87:73:35:d2:c9: c3:f5:f1:de:c9:a9:0b:c4:bf:d9:ac:a8:84:43:84: 68:2c:2f:35:25:a9:15:3a:0e:34:af:5b:14:3c:04: 55:9e:68:c2:5e:b9:92:60:47:f1:80:f5:d0:41:8d: 75:09:3d:71:1a:1a:57:6b:b3:96:fb:47:e9:9f:d3: 28:0c:ec:77:bf:23:dd:a8:08:68:7d:dc:89:4f:1f: a9:63:88:3b:c2:e5:a7:61:b3:a4:75:cf:a7:b2:8e: 86:57:83:d4:7a:4d:ef:8a:eb:8f:51:8f:bb:ea:b1: 57:d0:72:b1:35:60:27:10:70:1c:84:79:94:3c:c1: 8c:02:17:1c:8f:29:9f:16:ec:19:97:28:e9:01:7e: 73:2f:7c:a9:0a:05:91:0d:a4:99:44:d2:4c:1d:a3: c1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:9E:B2:FC:C3:18:B7:29:3D:EE:3A:32:FE:9E:E3:26:FB:D2:7C:0A X509v3 Authority Key Identifier: keyid:C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:7a:5e:d5:66:8c:0f:7d:44:25:cf:6f:3b:2d:a0:fe:59:03: 13:42:a0:fd:25:98:5b:15:ee:6b:34:87:dc:e0:2d:cf:bf:6d: 17:80:1c:cc:c0:1a:a6:12:b8:9c:02:70:f1:de:5a:03:b9:e5: a1:86:2d:47:c9:b3:9d:d1:e2:6c:62:f1:a8:3d:f6:7a:20:68: be:7c:ec:da:b9:31:74:a2:e2:b7:b9:ae:4e:97:36:08:7f:c8: c9:b9:9c:6f:5b:2f:4f:bc:54:a6:bf:06:5d:ec:23:9c:df:34: cc:8a:a7:d5:28:84:24:30:c9:b1:54:f9:fb:0c:8e:2d:87:f7: 61:a4:42:9c:a2:3a:59:96:98:52:eb:f5:81:09:ce:47:c8:a8: 1b:a3:13:3a:c2:a1:45:2c:39:bd:2e:ee:39:54:d7:a7:94:43: e2:e6:e3:79:a6:e5:00:48:3f:81:4d:46:d9:ea:1c:62:ac:11: 60:b4:ba:9f:65:73:03:88:2c:16:44:16:ae:c7:91:42:21:62: 0f:00:20:f9:69:04:75:20:91:89:d9:0d:b3:58:7d:e5:56:d3: 1a:dd:4d:30:82:71:f6:a1:53:b0:8d:9e:c6:f7:10:0b:c5:a9: c9:d5:db:bb:6a:96:bc:ed:54:02:ac:3a:6d:99:df:57:e6:0a: 52:68:5c:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfSrCgNGI3JMjseHJmRFcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2YzAwYzU1M2E1NGRhMDViOTM2MzVhNjU0Y2FkYTAzYzZk OWRmMmIwHhcNMjYwMjA5MTMwMDI1WhcNMjYwMjEwMTMwMDI1WjAzMTEwLwYDVQQD EyhmMzllYjJmY2MzMThiNzI5M2RlZTNhMzJmZTllZTMyNmZiZDI3YzBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZRSBFvjpijcmJF0Fkk6PS2B6gJC 2xL29A+3OGNbOB55vf4lWFVwKjGBbnO7YbeCF3bj70YOnSeH8sOiWR2KlTCq20kv z0GJ42t1uZFHqFaRDBv4dXIqSKMyRD7ynh+qVWbch3M10snD9fHeyakLxL/ZrKiE Q4RoLC81JakVOg40r1sUPARVnmjCXrmSYEfxgPXQQY11CT1xGhpXa7OW+0fpn9Mo DOx3vyPdqAhofdyJTx+pY4g7wuWnYbOkdc+nso6GV4PUek3viuuPUY+76rFX0HKx NWAnEHAchHmUPMGMAhccjymfFuwZlyjpAX5zL3ypCgWRDaSZRNJMHaPBgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPOesvzDGLcpPe46Mv6e4yb70nwKMB8GA1UdIwQY MBaAFMbADFU6VNoFuTY1plTK2gPG2d8rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHNBTVZUcFUyZ1c1TmpXbVZNcmFBOGJaM3lzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82ZmRhMWQtYjk2Yi00Y2Y5LWJiNjgt M2ZiZGQ5ZGJiZDkyLzEveHNBTVZUcFUyZ1c1TmpXbVZNcmFBOGJaM3lzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS82ZmRhMWQtYjk2Yi00Y2Y5LWJiNjgtM2ZiZGQ5ZGJiZDky LzEveHNBTVZUcFUyZ1c1TmpXbVZNcmFBOGJaM3lzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnXpe1WaM D31EJc9vOy2g/lkDE0Kg/SWYWxXuazSH3OAtz79tF4AczMAaphK4nAJw8d5aA7nl oYYtR8mzndHibGLxqD32eiBovnzs2rkxdKLit7muTpc2CH/Iybmcb1svT7xUpr8G XewjnN80zIqn1SiEJDDJsVT5+wyOLYf3YaRCnKI6WZaYUuv1gQnOR8ioG6MTOsKh RSw5vS7uOVTXp5RD4ubjeablAEg/gU1G2eocYqwRYLS6n2VzA4gsFkQWrseRQiFi DwAg+WkEdSCRidkNs1h95VbTGt1NMIJx9qFTsI2exvcQC8WpydXbu2qWvO1UAqw6 bZnfV+YKUmhcrg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:53:41 2026 by rpki-client