This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft File: XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft (raw, json) Hash identifier: ErUcHAB+8DCA9RAEVGuEXpVMYrA5nBu050MsOvKtadI= Subject key identifier: 95:04:FB:06:22:C6:9D:71:8F:65:B4:21:60:8C:E8:C7:5A:6B:34:75 Authority key identifier: 5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95 Certificate issuer: /CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495 Certificate serial: 019C4390562701FB95A42177634BC4CABA1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft Manifest number: 0822 Signing time: Mon 09 Feb 2026 18:00:58 +0000 Manifest this update: Mon 09 Feb 2026 18:00:58 +0000 Manifest next update: Tue 10 Feb 2026 18:00:58 +0000 Files and hashes: 1: XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl (hash: UIIH5NBHB8gedUsXllzgrf0/rH3kp8rVejKA+6X5+Ak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:56:27:01:fb:95:a4:21:77:63:4b:c4:ca:ba:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495 Validity Not Before: Feb 9 18:00:58 2026 GMT Not After : Feb 10 18:00:58 2026 GMT Subject: CN=9504fb0622c69d718f65b421608ce8c75a6b3475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2b:d5:ab:94:b8:c7:21:16:5c:31:cf:5c:72: 16:b4:a6:de:b3:85:d2:59:fc:83:46:60:26:9c:a6: e3:da:17:86:14:cd:f0:22:56:07:94:ff:1e:32:a5: 5c:da:50:01:40:03:71:74:ff:0d:ea:80:d9:84:bb: f5:5e:e0:27:eb:7a:a5:8c:01:15:a3:59:3e:65:98: 51:4d:b8:3d:eb:24:19:34:af:86:50:de:ec:86:6b: f9:2b:e0:b1:d4:1d:6c:27:e8:16:b1:2d:73:2f:51: a9:46:5b:75:f1:b5:bf:2a:15:53:da:02:91:45:0f: 33:c9:c6:fd:4c:2a:4d:3a:2f:e8:f2:73:09:91:88: f5:57:64:6b:5c:98:a5:83:0c:9b:84:d4:e1:99:d6: a7:4f:6a:e7:56:b6:83:9a:28:61:3d:f6:c1:48:58: 63:cf:d7:27:bf:b3:20:1d:79:57:9c:62:93:d8:46: b1:c5:76:5a:cd:56:cc:c5:2c:6b:87:a7:cb:81:36: d1:23:09:24:e1:df:e9:a3:ed:5c:9b:be:09:50:0d: 48:2d:b9:a9:08:24:6c:71:47:6d:b8:bf:f6:02:0d: cc:e4:d9:92:e1:28:1a:2b:e2:96:c6:8f:37:d6:70: f4:a6:87:93:8b:61:af:5c:79:ef:ed:a9:de:a2:0d: 6c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:04:FB:06:22:C6:9D:71:8F:65:B4:21:60:8C:E8:C7:5A:6B:34:75 X509v3 Authority Key Identifier: keyid:5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:f6:75:89:48:51:36:26:92:91:38:aa:fb:86:e5:c5:b6:4d: e5:b7:d5:23:58:c9:53:20:49:cd:21:ac:4a:15:27:54:e2:bb: 87:27:0a:b3:89:d4:53:9e:e1:4d:3e:cf:e9:70:96:5a:2b:79: 7d:4e:83:f6:ed:bc:47:15:fa:2f:c4:cb:47:37:c3:91:95:f3: 70:09:9b:02:37:eb:8d:62:a4:84:45:4e:85:e7:8d:a3:34:bc: 12:2d:7b:a9:b7:11:de:f0:6d:53:d0:f8:d1:1d:fa:b9:41:81: d6:4b:58:35:f0:49:5f:4f:23:e5:38:57:85:80:7a:df:6e:fe: c3:b1:80:9e:c5:73:88:12:07:dd:79:6a:36:5d:92:de:e3:13: e4:4a:b3:d3:bb:e3:8a:8a:a1:29:07:65:9c:72:59:df:b8:c4: cf:88:53:60:d5:6b:0d:38:6a:4b:50:18:03:fb:b0:b4:04:4e: e7:35:b2:f9:f4:0f:46:a9:4b:ad:b8:dc:bc:30:53:a7:95:c3: ee:47:92:f5:b4:5b:09:0a:9d:91:d1:42:a0:2e:7b:c0:9a:c8: 8c:00:38:00:d7:4f:1a:f4:8f:2c:3c:e8:58:c7:c4:24:81:b2: 81:77:55:32:44:33:49:be:71:8b:62:5c:ca:7c:fe:36:08:17: 26:ba:db:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkFYnAfuVpCF3Y0vEyrocMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkMjE5NjhlOTFjMmY0N2YxYjA3YzFmMzVmZTdkMjYzYzU2 ZDA0OTUwHhcNMjYwMjA5MTgwMDU4WhcNMjYwMjEwMTgwMDU4WjAzMTEwLwYDVQQD Eyg5NTA0ZmIwNjIyYzY5ZDcxOGY2NWI0MjE2MDhjZThjNzVhNmIzNDc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtivVq5S4xyEWXDHPXHIWtKbes4XS WfyDRmAmnKbj2heGFM3wIlYHlP8eMqVc2lABQANxdP8N6oDZhLv1XuAn63qljAEV o1k+ZZhRTbg96yQZNK+GUN7shmv5K+Cx1B1sJ+gWsS1zL1GpRlt18bW/KhVT2gKR RQ8zycb9TCpNOi/o8nMJkYj1V2RrXJilgwybhNThmdanT2rnVraDmihhPfbBSFhj z9cnv7MgHXlXnGKT2EaxxXZazVbMxSxrh6fLgTbRIwkk4d/po+1cm74JUA1ILbmp CCRscUdtuL/2Ag3M5NmS4SgaK+KWxo831nD0poeTi2GvXHnv7aneog1sdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJUE+wYixp1xj2W0IWCM6MdaazR1MB8GA1UdIwQY MBaAFF0hlo6RwvR/GwfB81/n0mPFbQSVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFNHV2pwSEM5SDhiQjhIelgtZlNZOFZ0QkpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS84ZjAxNWQtYTdlNC00OGQ4LTg3MDUt MWVjMzc0NjVkM2FmLzEvWFNHV2pwSEM5SDhiQjhIelgtZlNZOFZ0QkpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS84ZjAxNWQtYTdlNC00OGQ4LTg3MDUtMWVjMzc0NjVkM2Fm LzEvWFNHV2pwSEM5SDhiQjhIelgtZlNZOFZ0QkpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYfZ1iUhR NiaSkTiq+4blxbZN5bfVI1jJUyBJzSGsShUnVOK7hycKs4nUU57hTT7P6XCWWit5 fU6D9u28RxX6L8TLRzfDkZXzcAmbAjfrjWKkhEVOheeNozS8Ei17qbcR3vBtU9D4 0R36uUGB1ktYNfBJX08j5ThXhYB6327+w7GAnsVziBIH3XlqNl2S3uMT5Eqz07vj ioqhKQdlnHJZ37jEz4hTYNVrDThqS1AYA/uwtARO5zWy+fQPRqlLrbjcvDBTp5XD 7keS9bRbCQqdkdFCoC57wJrIjAA4ANdPGvSPLDzoWMfEJIGygXdVMkQzSb5xi2Jc ynz+NggXJrrbbQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:43 2026 by rpki-client