This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.mft File: XVTR8F5RVk-oGdtyu47dOYeza74.mft (raw, json) Hash identifier: 3CT46gfdx4XN+zi+elXSlyMzN+zb3K1YBFns4WuL2pM= Subject key identifier: 07:F8:B0:A3:7B:6C:C9:61:6D:D9:A9:9D:92:19:B0:81:87:5B:6D:86 Authority key identifier: 5D:54:D1:F0:5E:51:56:4F:A8:19:DB:72:BB:8E:DD:39:87:B3:6B:BE Certificate issuer: /CN=5d54d1f05e51564fa819db72bb8edd3987b36bbe Certificate serial: 019C43FD9108A0B1BDF2F385983FA564036A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVTR8F5RVk-oGdtyu47dOYeza74.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.mft Manifest number: 1790 Signing time: Mon 09 Feb 2026 20:00:17 +0000 Manifest this update: Mon 09 Feb 2026 20:00:17 +0000 Manifest next update: Tue 10 Feb 2026 20:00:17 +0000 Files and hashes: 1: XVTR8F5RVk-oGdtyu47dOYeza74.crl (hash: ayHs2b5DDcAY3bMKLP4J6JfK0EN0s2woCEV5X25RK/M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.mft rsync://rpki.ripe.net/repository/DEFAULT/XVTR8F5RVk-oGdtyu47dOYeza74.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:91:08:a0:b1:bd:f2:f3:85:98:3f:a5:64:03:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d54d1f05e51564fa819db72bb8edd3987b36bbe Validity Not Before: Feb 9 20:00:17 2026 GMT Not After : Feb 10 20:00:17 2026 GMT Subject: CN=07f8b0a37b6cc9616dd9a99d9219b081875b6d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:df:86:ab:1e:22:9c:30:9d:43:43:54:7a:f2: ea:19:90:23:83:3b:e2:22:7c:fe:e3:4d:d2:cf:6c: ff:54:a9:87:00:98:4c:18:cc:b6:c3:92:45:83:7a: 47:c2:78:85:0b:52:c4:0a:f4:eb:05:92:88:96:30: 44:57:76:f2:da:73:3c:bf:1e:75:b8:8e:eb:70:d9: 4f:05:77:73:f8:4c:c9:68:3a:6b:ad:b7:b8:79:6b: 7c:e1:72:35:3e:1f:50:a0:b2:06:e8:65:55:b7:76: 78:34:5b:87:1a:88:e0:fd:66:2e:66:e8:68:29:fa: bc:24:d8:c2:e5:30:f5:15:59:21:8d:01:fd:58:da: fd:39:f7:58:01:86:2f:36:79:d4:55:a9:83:75:c1: c4:a4:f1:09:89:82:31:a2:e1:e9:30:61:d1:78:c5: 71:4c:5a:13:ab:ff:80:38:cd:89:32:f3:14:4d:8b: 68:b1:99:92:d2:b3:2f:d7:23:8a:09:60:5a:68:6e: 4f:59:36:0a:49:e2:23:24:71:a3:57:3c:aa:a0:36: 78:a0:d1:25:de:94:a2:15:c1:f6:38:d6:28:e2:c5: b0:16:a7:f1:7f:7b:39:75:98:a2:dd:3f:6e:6e:2f: b7:dd:db:a4:9c:23:ee:53:c8:9f:3b:ec:e3:fb:01: 85:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F8:B0:A3:7B:6C:C9:61:6D:D9:A9:9D:92:19:B0:81:87:5B:6D:86 X509v3 Authority Key Identifier: keyid:5D:54:D1:F0:5E:51:56:4F:A8:19:DB:72:BB:8E:DD:39:87:B3:6B:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVTR8F5RVk-oGdtyu47dOYeza74.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:13:3a:97:68:e9:0d:3d:6e:34:59:05:17:28:f5:df:91:e9: b2:ee:d3:ae:e0:2f:7a:d0:af:3b:53:77:2a:d5:21:3b:64:2b: 14:29:65:79:f7:22:ae:60:a6:3a:6c:c5:37:c7:d1:a4:c3:b6: 0d:74:2f:db:51:64:2b:76:1a:7c:5d:79:c9:93:0e:f9:8f:35: df:c9:3c:de:16:3e:77:b0:b3:80:fc:d5:7e:87:79:e4:ef:b1: a5:8b:0e:2f:49:f2:32:24:be:a9:09:71:89:05:5a:98:81:20: 91:7c:59:ca:1f:25:db:57:d2:75:0c:cd:72:ce:03:b8:20:1b: 70:46:61:cf:62:28:17:fa:2a:d9:3e:e7:63:0f:14:9d:11:ae: 6e:0d:7f:79:0c:f0:bf:17:32:69:f7:c5:f6:ed:9c:35:c7:64: d1:19:c7:e2:d9:10:0b:32:29:1d:01:25:6d:26:c8:07:f8:a4: ee:35:ad:c9:90:38:15:d5:33:02:1a:82:28:bc:f1:d4:84:e1: 7d:5e:aa:6a:05:2e:6a:db:06:86:3a:34:77:d8:ec:97:94:9a: df:c4:6c:c5:eb:01:d4:c2:74:54:95:e4:3a:47:8d:44:a2:85: 3c:8f:2d:e1:9e:f0:82:6f:02:24:30:35:ff:c0:5d:82:04:53: 25:f4:14:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/ZEIoLG98vOFmD+lZANqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkNTRkMWYwNWU1MTU2NGZhODE5ZGI3MmJiOGVkZDM5ODdi MzZiYmUwHhcNMjYwMjA5MjAwMDE3WhcNMjYwMjEwMjAwMDE3WjAzMTEwLwYDVQQD EygwN2Y4YjBhMzdiNmNjOTYxNmRkOWE5OWQ5MjE5YjA4MTg3NWI2ZDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9+Gqx4inDCdQ0NUevLqGZAjgzvi Inz+403Sz2z/VKmHAJhMGMy2w5JFg3pHwniFC1LECvTrBZKIljBEV3by2nM8vx51 uI7rcNlPBXdz+EzJaDprrbe4eWt84XI1Ph9QoLIG6GVVt3Z4NFuHGojg/WYuZuho Kfq8JNjC5TD1FVkhjQH9WNr9OfdYAYYvNnnUVamDdcHEpPEJiYIxouHpMGHReMVx TFoTq/+AOM2JMvMUTYtosZmS0rMv1yOKCWBaaG5PWTYKSeIjJHGjVzyqoDZ4oNEl 3pSiFcH2ONYo4sWwFqfxf3s5dZii3T9ubi+33duknCPuU8ifO+zj+wGFbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAf4sKN7bMlhbdmpnZIZsIGHW22GMB8GA1UdIwQY MBaAFF1U0fBeUVZPqBnbcruO3TmHs2u+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFZUUjhGNVJWay1vR2R0eXU0N2RPWWV6YTc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9iMjU0NWEtNmFlOS00MjdmLTgzYWUt Y2UzZjg1MTVhNjliLzEvWFZUUjhGNVJWay1vR2R0eXU0N2RPWWV6YTc0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9iMjU0NWEtNmFlOS00MjdmLTgzYWUtY2UzZjg1MTVhNjli LzEvWFZUUjhGNVJWay1vR2R0eXU0N2RPWWV6YTc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVxM6l2jp DT1uNFkFFyj135Hpsu7TruAvetCvO1N3KtUhO2QrFCllefcirmCmOmzFN8fRpMO2 DXQv21FkK3YafF15yZMO+Y8138k83hY+d7CzgPzVfod55O+xpYsOL0nyMiS+qQlx iQVamIEgkXxZyh8l21fSdQzNcs4DuCAbcEZhz2IoF/oq2T7nYw8UnRGubg1/eQzw vxcyaffF9u2cNcdk0RnH4tkQCzIpHQElbSbIB/ik7jWtyZA4FdUzAhqCKLzx1ITh fV6qagUuatsGhjo0d9jsl5Sa38RsxesB1MJ0VJXkOkeNRKKFPI8t4Z7wgm8CJDA1 /8BdggRTJfQUSg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:31 2026 by rpki-client