This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft File: Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft (raw, json) Hash identifier: thqMzS1Ox/wnc1KReotH2vsYJaOYVi4ye2lOoXl9fwE= Subject key identifier: 3F:7B:FF:A1:CC:0F:1E:7C:C9:38:9B:7D:DF:3E:B6:15:A7:84:34:61 Authority key identifier: 5E:3E:4F:A8:C9:97:1A:EF:12:34:5F:C0:E3:7D:16:B3:45:9B:78:3B Certificate issuer: /CN=5e3e4fa8c9971aef12345fc0e37d16b3459b783b Certificate serial: 019C41A1AA6789AD0196B08AD90892393B35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft Manifest number: 0E65 Signing time: Mon 09 Feb 2026 09:00:39 +0000 Manifest this update: Mon 09 Feb 2026 09:00:39 +0000 Manifest next update: Tue 10 Feb 2026 09:00:39 +0000 Files and hashes: 1: Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl (hash: Ps1Fsp1jYrMm9vRmMx3SoMDKRBQTzI+AZwe8STBef/M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:aa:67:89:ad:01:96:b0:8a:d9:08:92:39:3b:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e3e4fa8c9971aef12345fc0e37d16b3459b783b Validity Not Before: Feb 9 09:00:39 2026 GMT Not After : Feb 10 09:00:39 2026 GMT Subject: CN=3f7bffa1cc0f1e7cc9389b7ddf3eb615a7843461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1c:86:87:b3:0e:fc:97:c2:6f:27:a5:ee:7d: ac:94:00:6d:49:61:b7:6a:69:34:57:40:20:1f:a0: f3:75:f9:a5:eb:79:67:93:3e:77:02:f3:b4:5d:36: 28:b6:79:4c:18:40:49:c7:ed:12:a6:ef:19:2f:5d: 8d:56:d3:4f:b4:92:67:8d:e3:80:de:58:63:06:33: 56:30:03:54:98:37:e4:6d:9c:5a:f9:73:ad:88:74: 6c:14:2f:2c:63:f3:09:68:3c:f1:a6:67:ee:36:9a: 11:bd:fc:94:c1:ca:11:52:0b:7b:74:60:0a:dd:4b: 2a:e1:5a:ff:65:b2:a7:d3:ab:10:e0:13:9c:24:b3: 5a:9d:b7:d0:c5:43:d6:46:70:28:72:23:1d:ac:22: 11:70:51:58:ba:a4:c3:88:e3:50:30:94:02:24:ba: 36:51:ea:bd:ce:da:86:cd:9a:5e:f8:81:2e:a6:c4: 77:56:e4:b7:35:4e:da:28:e6:96:d7:2d:70:70:53: 2f:48:1e:1e:28:86:09:51:dc:8d:56:98:d8:87:e9: ad:54:b0:26:a4:db:24:98:a1:e5:1a:e6:82:34:b4: e9:67:b2:3b:5b:f3:14:45:3c:41:a3:8e:90:83:cc: 61:08:c3:42:5c:e0:c7:85:b6:04:37:fd:49:6a:09: ac:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:7B:FF:A1:CC:0F:1E:7C:C9:38:9B:7D:DF:3E:B6:15:A7:84:34:61 X509v3 Authority Key Identifier: keyid:5E:3E:4F:A8:C9:97:1A:EF:12:34:5F:C0:E3:7D:16:B3:45:9B:78:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:c1:d7:89:53:aa:fc:32:36:14:4e:6d:b8:dd:ec:d3:8d:e2: 8a:12:17:a7:60:ad:d9:9c:63:92:47:c3:7a:9d:f8:c1:2c:29: 52:1b:bc:4d:99:ba:9a:f6:20:c0:7f:6b:73:02:7a:4d:e2:ef: 68:51:5f:66:42:9c:40:fc:9c:7e:4c:5e:6a:9a:1d:49:9a:0f: f1:88:1b:d4:16:b0:71:fb:8c:e9:43:08:bb:7d:76:ca:9e:fe: a7:43:c7:c2:7f:ba:49:31:dd:b5:0f:ef:06:6e:d9:30:cb:28: ed:98:de:ac:9f:5e:e1:6b:12:1c:39:43:41:fb:1a:e5:38:c7: 4f:73:34:83:a6:8d:07:32:4f:0a:7d:31:7a:1e:a4:71:da:b7: 78:6d:ec:c9:6a:b2:2c:93:a7:98:6e:46:f0:68:fe:46:a9:b2: 00:59:c9:c2:3c:f5:dd:3c:91:54:d5:8f:23:53:57:7d:68:1a: 27:69:b3:26:21:d1:38:e0:0b:5c:80:b7:dc:b2:7f:e1:20:71: d3:82:00:df:93:b1:fe:49:83:99:99:87:9c:0b:6e:b1:3f:a0: 3f:39:f2:49:40:51:eb:40:fc:3f:a2:62:a2:a7:4b:bb:75:b0: de:50:c7:a8:2e:8a:a5:ae:95:26:51:d9:c4:62:bc:65:d3:cd: 11:bb:bd:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoapnia0BlrCK2QiSOTs1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlM2U0ZmE4Yzk5NzFhZWYxMjM0NWZjMGUzN2QxNmIzNDU5 Yjc4M2IwHhcNMjYwMjA5MDkwMDM5WhcNMjYwMjEwMDkwMDM5WjAzMTEwLwYDVQQD EygzZjdiZmZhMWNjMGYxZTdjYzkzODliN2RkZjNlYjYxNWE3ODQzNDYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRyGh7MO/JfCbyel7n2slABtSWG3 amk0V0AgH6Dzdfml63lnkz53AvO0XTYotnlMGEBJx+0Spu8ZL12NVtNPtJJnjeOA 3lhjBjNWMANUmDfkbZxa+XOtiHRsFC8sY/MJaDzxpmfuNpoRvfyUwcoRUgt7dGAK 3Usq4Vr/ZbKn06sQ4BOcJLNanbfQxUPWRnAociMdrCIRcFFYuqTDiONQMJQCJLo2 Ueq9ztqGzZpe+IEupsR3VuS3NU7aKOaW1y1wcFMvSB4eKIYJUdyNVpjYh+mtVLAm pNskmKHlGuaCNLTpZ7I7W/MURTxBo46Qg8xhCMNCXODHhbYEN/1JagmsfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD97/6HMDx58yTibfd8+thWnhDRhMB8GA1UdIwQY MBaAFF4+T6jJlxrvEjRfwON9FrNFm3g7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGo1UHFNbVhHdThTTkZfQTQzMFdzMFdiZURzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9lYjU0NTQtNzI5My00MzdmLWFjMGIt M2EzYjAyOTZiYjgyLzEvWGo1UHFNbVhHdThTTkZfQTQzMFdzMFdiZURzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi9lYjU0NTQtNzI5My00MzdmLWFjMGItM2EzYjAyOTZiYjgy LzEvWGo1UHFNbVhHdThTTkZfQTQzMFdzMFdiZURzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE8HXiVOq /DI2FE5tuN3s043iihIXp2Ct2ZxjkkfDep34wSwpUhu8TZm6mvYgwH9rcwJ6TeLv aFFfZkKcQPycfkxeapodSZoP8Ygb1BawcfuM6UMIu312yp7+p0PHwn+6STHdtQ/v Bm7ZMMso7ZjerJ9e4WsSHDlDQfsa5TjHT3M0g6aNBzJPCn0xeh6kcdq3eG3syWqy LJOnmG5G8Gj+RqmyAFnJwjz13TyRVNWPI1NXfWgaJ2mzJiHROOALXIC33LJ/4SBx 04IA35Ox/kmDmZmHnAtusT+gPznySUBR60D8P6JioqdLu3Ww3lDHqC6Kpa6VJlHZ xGK8ZdPNEbu9MQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:54 2026 by rpki-client