This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft File: 9XGHM6rUPvapm9jZUEog3YkCLo8.mft (raw, json) Hash identifier: YTYPUO2tZL0DTJ9PbaRzYfYrg4DvdCdjN1g8jnYoKpM= Subject key identifier: C3:8A:BD:88:B4:1D:66:99:66:0B:0E:56:7A:A8:A1:DE:27:93:74:0C Authority key identifier: F5:71:87:33:AA:D4:3E:F6:A9:9B:D8:D9:50:4A:20:DD:89:02:2E:8F Certificate issuer: /CN=f5718733aad43ef6a99bd8d9504a20dd89022e8f Certificate serial: 019C427D171F3480C80CA8FA182285447C5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XGHM6rUPvapm9jZUEog3YkCLo8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft Manifest number: 150F Signing time: Mon 09 Feb 2026 13:00:19 +0000 Manifest this update: Mon 09 Feb 2026 13:00:19 +0000 Manifest next update: Tue 10 Feb 2026 13:00:19 +0000 Files and hashes: 1: 9XGHM6rUPvapm9jZUEog3YkCLo8.crl (hash: rq94U9Sf8K5ti+/P1OatNQV69VgBPzJR6IjGQFJo/Og=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft rsync://rpki.ripe.net/repository/DEFAULT/9XGHM6rUPvapm9jZUEog3YkCLo8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:17:1f:34:80:c8:0c:a8:fa:18:22:85:44:7c:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5718733aad43ef6a99bd8d9504a20dd89022e8f Validity Not Before: Feb 9 13:00:19 2026 GMT Not After : Feb 10 13:00:19 2026 GMT Subject: CN=c38abd88b41d6699660b0e567aa8a1de2793740c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:26:47:b9:ef:f4:63:85:2e:03:72:75:6e:02: 2e:b0:e8:b9:cd:e2:ef:17:12:96:d4:43:36:f8:43: ea:8c:f8:4c:85:b8:f5:6e:92:80:34:cf:2e:1b:81: 99:4d:08:bb:bb:2b:d3:72:34:05:07:08:ad:a4:6d: 4b:49:e7:2d:fa:61:f1:60:16:cd:10:ae:06:6b:4e: ea:49:58:92:b9:08:f7:90:a6:20:af:5c:e0:4b:c9: 25:5d:58:2e:4d:c6:44:1f:6d:81:ac:d3:72:6c:1d: 22:d2:72:86:ca:63:16:5a:3a:1c:f1:f8:e4:79:2d: 8b:94:5d:2c:2f:86:4b:c6:05:79:ed:9a:c1:04:44: 34:ef:cc:b6:62:78:1f:93:30:fe:6f:17:50:c7:0e: 05:4e:53:9c:ab:8d:51:ba:22:98:53:66:aa:d3:97: 2c:9b:fa:eb:77:83:84:0f:ce:3a:35:fc:a0:ee:bd: 1b:ce:76:51:08:bc:f2:0b:47:94:c0:66:05:05:86: 80:a2:93:c6:75:9b:60:7b:b8:c7:4a:e1:9a:5c:f4: 26:23:ec:70:7f:95:2a:2b:e6:35:a5:0f:17:db:bb: ed:8c:a9:c9:9d:5d:0c:a1:b7:86:7f:1b:68:ff:63: 08:a3:59:fc:44:32:f8:ba:0f:c4:de:d1:2f:d7:f1: 94:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:8A:BD:88:B4:1D:66:99:66:0B:0E:56:7A:A8:A1:DE:27:93:74:0C X509v3 Authority Key Identifier: keyid:F5:71:87:33:AA:D4:3E:F6:A9:9B:D8:D9:50:4A:20:DD:89:02:2E:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XGHM6rUPvapm9jZUEog3YkCLo8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:37:62:5e:33:2f:cf:c3:43:66:7a:12:24:29:49:c2:e7:90: 44:31:90:18:e1:6a:49:1b:03:8d:95:af:3b:c6:dd:11:07:a1: 98:79:82:cb:e3:43:cc:3d:02:bd:c7:19:c0:2c:9a:e7:80:a8: d0:75:5b:26:e7:5d:6e:a9:99:9a:b2:8b:0a:c1:22:4a:c0:b9: 68:9f:30:22:c2:90:b1:ac:83:aa:78:d0:34:cd:a6:47:4f:89: f2:a3:6a:3f:64:76:a3:c4:74:11:99:8d:0b:bc:bd:f2:da:09: 1b:9f:61:d7:23:42:52:49:75:b9:fe:30:0f:55:ea:ce:86:73: 4f:78:74:db:f3:b8:d8:0e:43:f6:35:41:1a:b9:b8:41:af:6c: ec:a4:a8:eb:24:2c:74:43:e4:1d:d8:8e:d4:11:8a:d6:f6:36: ac:4b:b8:ee:3d:f5:bf:5d:18:3f:04:c0:21:5f:c3:b2:15:ec: 1d:38:62:9d:a3:41:c3:d7:8d:f2:38:0b:5a:12:f4:4c:61:50: 44:d8:0a:97:4f:fc:79:f5:f3:67:e4:fe:af:8d:35:b1:30:fd: a0:2f:01:7f:e4:c8:98:d4:7e:17:15:98:dd:fc:65:2e:c3:d6: 51:52:50:0a:0a:ee:be:4c:b4:4f:6b:22:27:31:1d:c4:4d:05: 32:86:c9:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfRcfNIDIDKj6GCKFRHxeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1NzE4NzMzYWFkNDNlZjZhOTliZDhkOTUwNGEyMGRkODkw MjJlOGYwHhcNMjYwMjA5MTMwMDE5WhcNMjYwMjEwMTMwMDE5WjAzMTEwLwYDVQQD EyhjMzhhYmQ4OGI0MWQ2Njk5NjYwYjBlNTY3YWE4YTFkZTI3OTM3NDBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4yZHue/0Y4UuA3J1bgIusOi5zeLv FxKW1EM2+EPqjPhMhbj1bpKANM8uG4GZTQi7uyvTcjQFBwitpG1LSect+mHxYBbN EK4Ga07qSViSuQj3kKYgr1zgS8klXVguTcZEH22BrNNybB0i0nKGymMWWjoc8fjk eS2LlF0sL4ZLxgV57ZrBBEQ078y2YngfkzD+bxdQxw4FTlOcq41RuiKYU2aq05cs m/rrd4OED846Nfyg7r0bznZRCLzyC0eUwGYFBYaAopPGdZtge7jHSuGaXPQmI+xw f5UqK+Y1pQ8X27vtjKnJnV0MobeGfxto/2MIo1n8RDL4ug/E3tEv1/GUaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMOKvYi0HWaZZgsOVnqood4nk3QMMB8GA1UdIwQY MBaAFPVxhzOq1D72qZvY2VBKIN2JAi6PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOVhHSE02clVQdmFwbTlqWlVFb2czWWtDTG84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8yMzMzN2MtMzc1OC00MGI2LWE5Yzgt ZDcyNWZhNjczMmI2LzEvOVhHSE02clVQdmFwbTlqWlVFb2czWWtDTG84Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8yMzMzN2MtMzc1OC00MGI2LWE5YzgtZDcyNWZhNjczMmI2 LzEvOVhHSE02clVQdmFwbTlqWlVFb2czWWtDTG84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAijdiXjMv z8NDZnoSJClJwueQRDGQGOFqSRsDjZWvO8bdEQehmHmCy+NDzD0CvccZwCya54Co 0HVbJuddbqmZmrKLCsEiSsC5aJ8wIsKQsayDqnjQNM2mR0+J8qNqP2R2o8R0EZmN C7y98toJG59h1yNCUkl1uf4wD1XqzoZzT3h02/O42A5D9jVBGrm4Qa9s7KSo6yQs dEPkHdiO1BGK1vY2rEu47j31v10YPwTAIV/DshXsHThinaNBw9eN8jgLWhL0TGFQ RNgKl0/8efXzZ+T+r401sTD9oC8Bf+TImNR+FxWY3fxlLsPWUVJQCgruvky0T2si JzEdxE0FMobJgA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:10 2026 by rpki-client