This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft File: XlgQVXywZwvJwJM-An6b2CqxVt8.mft (raw, json) Hash identifier: RPxLVGDUzy0NGHaRNqZ8yq3fL6i4gMTWZoWEH2maSZk= Subject key identifier: 53:DD:8B:AC:00:75:60:27:38:2E:EB:3A:59:48:94:6A:B6:D5:52:64 Authority key identifier: 5E:58:10:55:7C:B0:67:0B:C9:C0:93:3E:02:7E:9B:D8:2A:B1:56:DF Certificate issuer: /CN=5e5810557cb0670bc9c0933e027e9bd82ab156df Certificate serial: 019C41D84BE37904774C5F69B7C360BE8552 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft Manifest number: 17A1 Signing time: Mon 09 Feb 2026 10:00:20 +0000 Manifest this update: Mon 09 Feb 2026 10:00:20 +0000 Manifest next update: Tue 10 Feb 2026 10:00:20 +0000 Files and hashes: 1: XlgQVXywZwvJwJM-An6b2CqxVt8.crl (hash: MsTS0C13g+cczQmyxDjz9o9+LZtrvXbnuYMbdHpDRAY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:4b:e3:79:04:77:4c:5f:69:b7:c3:60:be:85:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e5810557cb0670bc9c0933e027e9bd82ab156df Validity Not Before: Feb 9 10:00:20 2026 GMT Not After : Feb 10 10:00:20 2026 GMT Subject: CN=53dd8bac00756027382eeb3a5948946ab6d55264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ef:4f:17:d1:24:8b:25:e9:99:97:dc:71:eb: cd:99:e6:91:12:5b:f9:49:a3:30:3a:95:22:5d:0a: 3a:04:26:14:7e:d2:f2:c6:ea:24:d3:e1:c5:a3:ff: 1c:3c:41:a7:00:20:6a:ee:fc:9d:87:28:5d:d1:70: de:76:61:b0:de:21:83:66:89:e9:36:7c:39:c0:19: ea:28:9c:68:5e:cf:fa:ed:af:4b:2d:57:ae:5f:19: f3:a9:9b:0d:5e:09:b9:a7:c0:80:b1:ae:c7:44:98: a7:12:28:7b:e6:09:e8:53:67:83:02:9d:28:a7:58: bb:36:6b:78:d0:c2:cc:9e:8a:71:dd:21:93:92:41: d8:00:97:eb:49:83:92:ba:f3:2d:5a:f4:b7:31:a4: 3b:54:56:a2:c8:47:36:3f:6d:f4:91:e4:c4:90:18: da:a5:ab:11:37:da:c1:41:90:cc:c5:f7:5e:ff:93: 26:53:21:34:db:2a:56:17:13:51:8e:82:a0:44:c9: 53:c5:d8:a8:c4:a7:41:1e:f4:0d:dc:8f:38:5c:55: 3f:25:35:27:1c:17:81:e2:69:17:a2:cd:7a:62:22: 1a:88:84:fc:2e:17:47:8b:80:e6:ac:00:2f:45:88: 11:ae:af:96:92:a9:89:45:17:9f:8b:a5:a9:3b:20: 5a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DD:8B:AC:00:75:60:27:38:2E:EB:3A:59:48:94:6A:B6:D5:52:64 X509v3 Authority Key Identifier: keyid:5E:58:10:55:7C:B0:67:0B:C9:C0:93:3E:02:7E:9B:D8:2A:B1:56:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:d9:0a:5d:c7:eb:02:6f:0e:53:17:7d:61:53:1d:c0:f1:b0: 99:c1:8a:8e:19:be:09:05:1e:1f:95:ab:bb:23:b4:88:ab:c5: 1c:01:0c:28:22:e0:aa:cb:2b:59:4f:14:c5:1f:f5:ee:21:d5: 52:77:9e:35:1d:d6:8e:49:26:0e:85:6d:15:2f:b6:88:d3:f7: 1b:2c:29:63:1a:96:5e:4c:88:6e:96:2f:90:2c:80:32:d3:f0: 45:73:d8:03:36:14:a3:c8:94:a4:42:ab:67:db:fe:06:c7:13: b5:2f:13:53:7f:33:47:f4:ed:41:f6:8b:d0:d4:06:ca:2a:63: a1:a6:7f:64:84:36:b0:fb:02:71:32:f1:5d:86:0a:8d:56:38: dd:92:ef:f9:e9:b0:b7:55:2c:53:68:54:b6:e7:34:a5:84:53: 6d:91:5c:48:ed:4b:e5:ec:2e:e8:93:be:64:c4:1b:09:b9:d1: bd:ad:39:9f:09:2b:d3:b4:bf:22:26:67:05:92:49:ee:2d:e9: df:2a:b5:ee:2b:27:db:2f:1d:08:0d:fd:52:2c:6e:b3:a8:c8: 8b:6e:1e:c5:db:17:37:70:e1:87:b7:e2:9e:bc:18:7e:7a:a1: d0:32:ff:44:ea:70:dc:aa:88:cf:bd:72:2d:8c:73:e1:35:3d: 3a:85:63:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2EvjeQR3TF9pt8NgvoVSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlNTgxMDU1N2NiMDY3MGJjOWMwOTMzZTAyN2U5YmQ4MmFi MTU2ZGYwHhcNMjYwMjA5MTAwMDIwWhcNMjYwMjEwMTAwMDIwWjAzMTEwLwYDVQQD Eyg1M2RkOGJhYzAwNzU2MDI3MzgyZWViM2E1OTQ4OTQ2YWI2ZDU1MjY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtu9PF9EkiyXpmZfccevNmeaRElv5 SaMwOpUiXQo6BCYUftLyxuok0+HFo/8cPEGnACBq7vydhyhd0XDedmGw3iGDZonp Nnw5wBnqKJxoXs/67a9LLVeuXxnzqZsNXgm5p8CAsa7HRJinEih75gnoU2eDAp0o p1i7Nmt40MLMnopx3SGTkkHYAJfrSYOSuvMtWvS3MaQ7VFaiyEc2P230keTEkBja pasRN9rBQZDMxfde/5MmUyE02ypWFxNRjoKgRMlTxdioxKdBHvQN3I84XFU/JTUn HBeB4mkXos16YiIaiIT8LhdHi4DmrAAvRYgRrq+WkqmJRRefi6WpOyBanQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFPdi6wAdWAnOC7rOllIlGq21VJkMB8GA1UdIwQY MBaAFF5YEFV8sGcLycCTPgJ+m9gqsVbfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGxnUVZYeXdad3ZKd0pNLUFuNmIyQ3F4VnQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS85N2M0MTQtM2FmYS00OWVlLWFiNzAt YTQ0MDdhNWQzMjFhLzEvWGxnUVZYeXdad3ZKd0pNLUFuNmIyQ3F4VnQ4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS85N2M0MTQtM2FmYS00OWVlLWFiNzAtYTQ0MDdhNWQzMjFh LzEvWGxnUVZYeXdad3ZKd0pNLUFuNmIyQ3F4VnQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAStkKXcfr Am8OUxd9YVMdwPGwmcGKjhm+CQUeH5WruyO0iKvFHAEMKCLgqssrWU8UxR/17iHV UneeNR3WjkkmDoVtFS+2iNP3GywpYxqWXkyIbpYvkCyAMtPwRXPYAzYUo8iUpEKr Z9v+BscTtS8TU38zR/TtQfaL0NQGyipjoaZ/ZIQ2sPsCcTLxXYYKjVY43ZLv+emw t1UsU2hUtuc0pYRTbZFcSO1L5ewu6JO+ZMQbCbnRva05nwkr07S/IiZnBZJJ7i3p 3yq17isn2y8dCA39Uixus6jIi24exdsXN3Dhh7finrwYfnqh0DL/ROpw3KqIz71y LYxz4TU9OoVjxg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:56 2026 by rpki-client