This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft File: xbqElpIUKuxW19DdyN1N20HPg8E.mft (raw, json) Hash identifier: MBq6k11TcR8V7Nx2b8vg3DvOi9jNzeDOjQiVoznpwaU= Subject key identifier: 10:81:9A:BE:C6:1F:6C:D9:BF:58:1D:BB:7F:83:D3:E0:B3:FC:98:75 Authority key identifier: C5:BA:84:96:92:14:2A:EC:56:D7:D0:DD:C8:DD:4D:DB:41:CF:83:C1 Certificate issuer: /CN=c5ba849692142aec56d7d0ddc8dd4ddb41cf83c1 Certificate serial: 019C41A1A5A0019DC96ECA69337484108FCE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xbqElpIUKuxW19DdyN1N20HPg8E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft Manifest number: 110F Signing time: Mon 09 Feb 2026 09:00:38 +0000 Manifest this update: Mon 09 Feb 2026 09:00:38 +0000 Manifest next update: Tue 10 Feb 2026 09:00:38 +0000 Files and hashes: 1: xbqElpIUKuxW19DdyN1N20HPg8E.crl (hash: 2V9L7g1IRGgEGc5kA8RpTwosuTcaFviiPUZIhU0lay0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft rsync://rpki.ripe.net/repository/DEFAULT/xbqElpIUKuxW19DdyN1N20HPg8E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:a5:a0:01:9d:c9:6e:ca:69:33:74:84:10:8f:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5ba849692142aec56d7d0ddc8dd4ddb41cf83c1 Validity Not Before: Feb 9 09:00:38 2026 GMT Not After : Feb 10 09:00:38 2026 GMT Subject: CN=10819abec61f6cd9bf581dbb7f83d3e0b3fc9875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ea:a3:dd:43:8f:fd:b2:8a:75:ca:d3:4e:25: f1:3c:35:7f:65:f1:1a:fe:b4:e1:96:48:71:dd:b2: db:c6:e8:fd:09:13:8b:87:66:74:49:c2:1e:df:a7: f0:87:4d:62:e7:5b:de:7a:61:18:b9:0f:26:58:bd: f4:e7:a9:51:d6:b2:51:ce:e1:8c:c5:73:12:cc:d0: 58:f8:d3:44:36:db:3b:94:23:d5:9e:4c:8d:47:ba: ba:0c:d5:a5:cd:f9:e5:fc:9b:66:a4:e1:de:ae:0f: 7b:2e:61:41:0b:1f:7e:7f:ea:eb:bd:7b:9a:b8:c5: f0:e9:3f:00:b3:a0:52:78:ac:1f:fe:12:da:ec:56: cf:07:27:a7:90:77:ab:65:43:39:81:ac:78:a1:73: d3:6e:da:37:2c:21:e4:14:70:c8:bb:8c:5f:18:b8: ab:c9:b1:25:f2:9c:21:30:8a:d0:9c:6d:77:b6:d2: 16:b8:b9:3f:d5:bd:99:eb:46:cf:1f:05:df:33:62: 51:90:fe:95:82:0a:1c:09:fa:c7:49:c9:1d:06:e5: 36:99:0c:2d:3c:07:0c:05:99:bc:a1:31:6e:71:28: a9:0b:c8:e8:33:8d:d6:e9:71:87:70:1f:d1:58:9e: 6c:70:c8:a0:f8:de:3b:01:b9:9d:62:42:fb:c1:4e: 05:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:81:9A:BE:C6:1F:6C:D9:BF:58:1D:BB:7F:83:D3:E0:B3:FC:98:75 X509v3 Authority Key Identifier: keyid:C5:BA:84:96:92:14:2A:EC:56:D7:D0:DD:C8:DD:4D:DB:41:CF:83:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xbqElpIUKuxW19DdyN1N20HPg8E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:19:5b:3b:87:03:d6:0c:5c:a6:61:aa:6f:1d:01:45:d8:5d: fa:ca:1b:21:40:42:b1:f2:fe:49:93:b6:90:33:fe:ef:c0:43: 5c:de:11:e7:e3:c7:ed:82:0a:13:86:6e:78:1e:53:db:35:8f: e5:48:56:c0:af:05:ee:60:13:05:05:3d:10:20:f6:08:db:4e: 66:c6:0f:eb:2b:ea:eb:df:4a:dd:de:81:0a:6e:39:69:ab:27: 53:40:8f:be:61:be:8f:b7:4d:7e:8a:d5:d3:a8:e1:14:94:12: 7f:a6:3b:8c:5f:aa:01:23:50:1b:bb:a8:3c:5b:34:9a:ff:24: 27:89:79:40:70:37:6a:02:fd:78:ec:29:36:9e:a5:38:0a:69: 0a:83:34:3a:97:88:91:83:85:cd:b0:be:17:64:f5:62:55:bb: ea:3a:e0:09:e4:8b:22:e0:41:55:f9:53:61:b3:c9:6f:21:b3: a2:b7:52:c8:8b:20:e5:dd:00:76:d7:e0:2f:ac:d9:c2:d7:4e: ca:c6:4a:ae:3b:17:d6:ab:94:5f:c5:cf:86:a3:fe:f4:b2:fe: aa:61:69:57:12:1d:ac:73:87:bb:d0:82:3d:84:fa:14:bd:9f: 30:8b:fc:f8:bb:b6:bc:fa:5c:42:50:54:19:62:53:ec:be:20: a6:31:e4:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoaWgAZ3JbsppM3SEEI/OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1YmE4NDk2OTIxNDJhZWM1NmQ3ZDBkZGM4ZGQ0ZGRiNDFj ZjgzYzEwHhcNMjYwMjA5MDkwMDM4WhcNMjYwMjEwMDkwMDM4WjAzMTEwLwYDVQQD EygxMDgxOWFiZWM2MWY2Y2Q5YmY1ODFkYmI3ZjgzZDNlMGIzZmM5ODc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOqj3UOP/bKKdcrTTiXxPDV/ZfEa /rThlkhx3bLbxuj9CROLh2Z0ScIe36fwh01i51veemEYuQ8mWL3056lR1rJRzuGM xXMSzNBY+NNENts7lCPVnkyNR7q6DNWlzfnl/JtmpOHerg97LmFBCx9+f+rrvXua uMXw6T8As6BSeKwf/hLa7FbPByenkHerZUM5gax4oXPTbto3LCHkFHDIu4xfGLir ybEl8pwhMIrQnG13ttIWuLk/1b2Z60bPHwXfM2JRkP6VggocCfrHSckdBuU2mQwt PAcMBZm8oTFucSipC8joM43W6XGHcB/RWJ5scMig+N47AbmdYkL7wU4FMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBCBmr7GH2zZv1gdu3+D0+Cz/Jh1MB8GA1UdIwQY MBaAFMW6hJaSFCrsVtfQ3cjdTdtBz4PBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGJxRWxwSVVLdXhXMTlEZHlOMU4yMEhQZzhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8wNjY4NGMtOTk1NS00MjRiLWFjZTgt MjM3OTdhZWFiYjBmLzEveGJxRWxwSVVLdXhXMTlEZHlOMU4yMEhQZzhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS8wNjY4NGMtOTk1NS00MjRiLWFjZTgtMjM3OTdhZWFiYjBm LzEveGJxRWxwSVVLdXhXMTlEZHlOMU4yMEhQZzhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAehlbO4cD 1gxcpmGqbx0BRdhd+sobIUBCsfL+SZO2kDP+78BDXN4R5+PH7YIKE4ZueB5T2zWP 5UhWwK8F7mATBQU9ECD2CNtOZsYP6yvq699K3d6BCm45aasnU0CPvmG+j7dNforV 06jhFJQSf6Y7jF+qASNQG7uoPFs0mv8kJ4l5QHA3agL9eOwpNp6lOAppCoM0OpeI kYOFzbC+F2T1YlW76jrgCeSLIuBBVflTYbPJbyGzordSyIsg5d0AdtfgL6zZwtdO ysZKrjsX1quUX8XPhqP+9LL+qmFpVxIdrHOHu9CCPYT6FL2fMIv8+Lu2vPpcQlBU GWJT7L4gpjHkPA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:35 2026 by rpki-client