This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft File: xJkOwgER9C-2LzmoHHOSqSGVW_I.mft (raw, json) Hash identifier: g5qwNUG21DuTDKDOa8CwH79/wkwrUhBj4e98hBrSlCc= Subject key identifier: BB:31:00:7F:80:3E:1E:86:7A:88:A1:DD:70:DD:74:C0:72:F9:94:C2 Authority key identifier: C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2 Certificate issuer: /CN=c4990ec20111f42fb62f39a81c7392a921955bf2 Certificate serial: 019C42466527E5064B7E341A85F45147F02F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft Manifest number: 0471 Signing time: Mon 09 Feb 2026 12:00:35 +0000 Manifest this update: Mon 09 Feb 2026 12:00:35 +0000 Manifest next update: Tue 10 Feb 2026 12:00:35 +0000 Files and hashes: 1: 6xrIMpIc9U5BKeSxntg8rfnLACs.roa (hash: TaCFDwqzBTyvLWbP4/zZeRLrQOfnD2vt/RoGozBvzEc=) 2: xJkOwgER9C-2LzmoHHOSqSGVW_I.crl (hash: 8OyuaSIartbp+LW3ZL4oEdd733yUMcuKkoIc71Y87mQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:65:27:e5:06:4b:7e:34:1a:85:f4:51:47:f0:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c4990ec20111f42fb62f39a81c7392a921955bf2 Validity Not Before: Feb 9 12:00:35 2026 GMT Not After : Feb 10 12:00:35 2026 GMT Subject: CN=bb31007f803e1e867a88a1dd70dd74c072f994c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f8:64:36:a7:4e:fa:16:7d:bb:75:d7:4c:28: b4:9b:7a:aa:b3:e6:9b:de:c0:c9:d5:36:9e:54:4b: d8:30:41:aa:88:04:4f:62:ef:d0:08:17:d6:5e:45: 9e:b8:da:ec:e4:e1:66:8e:8d:32:ab:f6:c9:00:f0: 27:dc:5a:e4:07:b6:a1:d7:11:1c:03:30:00:10:45: eb:96:89:52:fe:b8:8c:3c:eb:1c:f6:5f:25:6c:51: d1:8d:23:07:29:63:18:ee:94:73:02:db:ab:6e:40: f3:09:41:f2:5c:74:21:43:b0:00:85:30:ec:40:b3: 8a:7f:a7:d1:f4:99:d0:1d:e9:f7:65:2a:7b:4d:b0: c7:ab:29:ff:32:b1:90:3c:a1:d7:e7:83:02:6c:ac: 67:01:79:6a:9d:de:be:2d:9a:b8:d4:80:31:d1:8d: 66:77:84:e7:55:10:7d:d8:78:75:79:d6:4c:8f:a4: cf:b0:43:33:70:55:bd:3f:2f:c7:91:c2:7c:c7:ee: 65:83:ad:f1:12:22:d0:5c:c4:5a:8d:d6:77:55:82: 87:d4:3f:d0:73:64:61:4a:cf:ba:e1:46:a1:85:02: 1d:58:b9:61:56:9a:33:71:35:12:02:37:ac:5c:81: a8:fc:e2:02:a6:19:94:94:7f:7d:b7:14:47:ce:b6: 23:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:31:00:7F:80:3E:1E:86:7A:88:A1:DD:70:DD:74:C0:72:F9:94:C2 X509v3 Authority Key Identifier: keyid:C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:04:96:e7:63:12:a3:13:0b:b4:d2:16:40:0b:ac:cd:a8:fa: d2:63:af:92:0e:36:54:37:70:f8:41:cf:bd:0e:38:b7:d1:05: 82:2a:03:db:fa:1b:cd:a4:63:a2:f9:31:4e:05:2a:58:9d:1a: b4:3c:17:94:c3:68:7d:62:d7:03:3d:56:86:16:59:58:18:56: 0b:95:32:23:f8:18:43:ac:ca:6e:c4:24:13:cd:a8:86:c7:1d: f5:31:7f:a0:5f:6d:d2:f4:ed:e5:c6:47:4d:4b:de:16:b2:1e: 83:0c:d1:a9:7d:78:01:f7:62:79:46:73:d1:6e:37:de:ab:a0: 93:74:f4:4c:39:56:dc:e0:f6:03:ef:4b:8f:4a:6e:bb:ea:b2: 44:35:54:1d:01:8c:6b:6d:78:34:ab:c0:39:50:eb:75:15:73: b8:6d:8f:7a:b4:d2:8d:bd:85:f4:e3:00:94:e2:05:af:3d:41: d7:9f:25:ea:ea:55:3a:4d:48:ef:e3:e3:36:94:1c:b3:26:7f: 7d:9e:9d:67:fa:79:ee:0f:e3:3d:2c:00:98:8f:bd:da:cf:b3: a2:cd:7f:06:b4:57:7e:c6:91:79:72:02:c8:59:cb:15:72:25: 72:45:8f:eb:3a:6d:32:0d:00:4b:01:5a:31:23:22:87:e8:8f: 36:e1:b5:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRmUn5QZLfjQahfRRR/AvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0OTkwZWMyMDExMWY0MmZiNjJmMzlhODFjNzM5MmE5MjE5 NTViZjIwHhcNMjYwMjA5MTIwMDM1WhcNMjYwMjEwMTIwMDM1WjAzMTEwLwYDVQQD EyhiYjMxMDA3ZjgwM2UxZTg2N2E4OGExZGQ3MGRkNzRjMDcyZjk5NGMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfhkNqdO+hZ9u3XXTCi0m3qqs+ab 3sDJ1TaeVEvYMEGqiARPYu/QCBfWXkWeuNrs5OFmjo0yq/bJAPAn3FrkB7ah1xEc AzAAEEXrlolS/riMPOsc9l8lbFHRjSMHKWMY7pRzAturbkDzCUHyXHQhQ7AAhTDs QLOKf6fR9JnQHen3ZSp7TbDHqyn/MrGQPKHX54MCbKxnAXlqnd6+LZq41IAx0Y1m d4TnVRB92Hh1edZMj6TPsEMzcFW9Py/HkcJ8x+5lg63xEiLQXMRajdZ3VYKH1D/Q c2RhSs+64UahhQIdWLlhVpozcTUSAjesXIGo/OICphmUlH99txRHzrYjJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLsxAH+APh6Geoih3XDddMBy+ZTCMB8GA1UdIwQY MBaAFMSZDsIBEfQvti85qBxzkqkhlVvyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS85YzdjZTQtMmNkNC00ODU0LTg4NDAt YjBmZTkyMjFlZmI3LzEveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS85YzdjZTQtMmNkNC00ODU0LTg4NDAtYjBmZTkyMjFlZmI3 LzEveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASQSW52MS oxMLtNIWQAuszaj60mOvkg42VDdw+EHPvQ44t9EFgioD2/obzaRjovkxTgUqWJ0a tDwXlMNofWLXAz1WhhZZWBhWC5UyI/gYQ6zKbsQkE82ohscd9TF/oF9t0vTt5cZH TUveFrIegwzRqX14AfdieUZz0W433qugk3T0TDlW3OD2A+9Lj0puu+qyRDVUHQGM a214NKvAOVDrdRVzuG2PerTSjb2F9OMAlOIFrz1B158l6upVOk1I7+PjNpQcsyZ/ fZ6dZ/p57g/jPSwAmI+92s+zos1/BrRXfsaReXICyFnLFXIlckWP6zptMg0ASwFa MSMih+iPNuG12g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:08 2026 by rpki-client