This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft File: XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft (raw, json) Hash identifier: jIqXd2B5JaAIpinsAb9NOoTp9ciXp0XpkpgzHDMV7dY= Subject key identifier: 90:77:F3:27:E1:0D:0A:69:E0:E1:00:E5:F2:5C:97:50:57:90:8A:41 Authority key identifier: 5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03 Certificate issuer: /CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03 Certificate serial: 019C427D98668143C6E5E09B701E6B76E5CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft Manifest number: 0F8D Signing time: Mon 09 Feb 2026 13:00:53 +0000 Manifest this update: Mon 09 Feb 2026 13:00:53 +0000 Manifest next update: Tue 10 Feb 2026 13:00:53 +0000 Files and hashes: 1: OUhIXcYKuJwX-1gGqSyC-ytysk8.roa (hash: SNKMZI12Bd30LXMDKulFyeiCL2F4p+Ej66EZURTKN18=) 2: XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl (hash: a5lfrR+PtfQ++ykHWcEbplrbhN8VDEaxUZixDb3+pi0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:98:66:81:43:c6:e5:e0:9b:70:1e:6b:76:e5:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03 Validity Not Before: Feb 9 13:00:53 2026 GMT Not After : Feb 10 13:00:53 2026 GMT Subject: CN=9077f327e10d0a69e0e100e5f25c975057908a41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:f5:48:3d:23:db:23:02:4b:95:28:ee:4f:b2: 35:e2:9c:cc:1c:ba:fd:00:2a:bf:f6:05:74:22:e1: 6e:d6:98:5e:77:24:22:e9:ea:99:ea:65:1b:3e:9e: 1f:7c:8e:e7:fc:03:42:0e:28:d8:14:a5:e5:08:5e: 9d:97:5e:26:b3:94:7e:90:82:d0:b2:25:30:8c:7a: ab:cf:46:4d:15:93:1a:35:5c:b2:c8:bd:b0:9e:55: 92:28:64:c7:96:9f:94:cb:04:9a:ce:f6:52:3f:ce: 50:e7:37:71:66:e1:04:6a:2b:46:0f:a8:1d:85:cc: 2c:f2:3c:c1:92:6f:d9:98:a5:dc:e7:45:00:ed:15: 88:7a:25:fb:ad:e0:d4:4e:03:3a:53:e7:73:7e:b6: ef:89:26:c7:1c:7c:6a:bb:df:a5:68:de:93:3d:51: 30:ae:df:21:5c:47:2e:3e:9f:41:89:ad:df:69:3e: 40:56:f8:60:8c:01:c7:1c:95:1f:ce:09:9c:b2:6e: 75:86:91:46:d1:13:e7:fd:12:3e:9f:38:4b:ee:f0: 8a:34:bf:91:dc:be:2a:24:01:e8:c6:c5:96:0b:67: e6:25:99:4a:8b:61:b2:82:7e:a8:75:97:19:cf:4f: b4:37:73:8d:ec:23:a3:8f:0b:b9:6e:b1:43:92:20: fa:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:77:F3:27:E1:0D:0A:69:E0:E1:00:E5:F2:5C:97:50:57:90:8A:41 X509v3 Authority Key Identifier: keyid:5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:9d:69:c0:b6:e5:8c:2e:da:bd:7b:97:fa:ff:24:c3:e1:cb: bb:1c:f3:5a:dd:7c:3b:71:bf:9f:26:5d:33:d2:8e:3a:0f:30: 0c:0a:9a:8d:fc:48:91:27:31:65:d7:be:c2:95:69:86:02:7c: 92:1a:bc:d9:29:b0:c3:94:11:15:77:7b:44:c6:46:26:1a:0d: c7:d3:86:2b:68:7a:f3:0a:88:ba:be:e6:d4:56:75:e5:36:13: 6c:a7:87:3d:41:2d:ea:f4:f9:aa:e8:3c:d3:0d:80:24:7d:d9: fb:31:ba:1e:f2:30:7a:f7:c2:04:7d:71:c3:2a:be:48:b8:32: 9d:89:e5:ab:44:da:20:92:0a:52:e9:c7:46:02:e8:8e:93:a0: 19:3b:dc:cf:62:13:53:97:5d:bc:48:81:76:57:fe:0c:fa:66: f2:5b:a8:9a:6d:1d:a9:61:11:0d:3b:0a:8e:7f:cb:14:b0:d7: 14:9c:cb:3d:41:31:fd:fd:ad:94:7d:5d:11:b9:c7:21:34:ef: d9:0b:4d:b6:7b:ec:51:0a:8e:19:8f:52:db:a2:2f:94:78:66: 02:9a:9b:4d:be:ee:ab:24:24:08:98:04:e4:1f:77:b4:d9:7f: be:6b:af:c2:9f:f4:1b:c0:f8:73:ee:ae:4c:50:b2:8a:91:e6: 4d:dc:e0:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfZhmgUPG5eCbcB5rduXLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjZDM3OWNlZGNkYzIwZjA4NzVjNGIwOGI5NGI0MTE2MWIz ZThjMDMwHhcNMjYwMjA5MTMwMDUzWhcNMjYwMjEwMTMwMDUzWjAzMTEwLwYDVQQD Eyg5MDc3ZjMyN2UxMGQwYTY5ZTBlMTAwZTVmMjVjOTc1MDU3OTA4YTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/VIPSPbIwJLlSjuT7I14pzMHLr9 ACq/9gV0IuFu1phedyQi6eqZ6mUbPp4ffI7n/ANCDijYFKXlCF6dl14ms5R+kILQ siUwjHqrz0ZNFZMaNVyyyL2wnlWSKGTHlp+UywSazvZSP85Q5zdxZuEEaitGD6gd hcws8jzBkm/ZmKXc50UA7RWIeiX7reDUTgM6U+dzfrbviSbHHHxqu9+laN6TPVEw rt8hXEcuPp9Bia3faT5AVvhgjAHHHJUfzgmcsm51hpFG0RPn/RI+nzhL7vCKNL+R 3L4qJAHoxsWWC2fmJZlKi2Gygn6odZcZz0+0N3ON7COjjwu5brFDkiD6OwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJB38yfhDQpp4OEA5fJcl1BXkIpBMB8GA1UdIwQY MBaAFFzTec7c3CDwh1xLCLlLQRYbPowDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9mM2NjYTQtZjZiZi00NzM0LWFiYmQt MDk2NDQ2NGMxNzUxLzEvWE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9mM2NjYTQtZjZiZi00NzM0LWFiYmQtMDk2NDQ2NGMxNzUx LzEvWE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUJ1pwLbl jC7avXuX+v8kw+HLuxzzWt18O3G/nyZdM9KOOg8wDAqajfxIkScxZde+wpVphgJ8 khq82Smww5QRFXd7RMZGJhoNx9OGK2h68wqIur7m1FZ15TYTbKeHPUEt6vT5qug8 0w2AJH3Z+zG6HvIwevfCBH1xwyq+SLgynYnlq0TaIJIKUunHRgLojpOgGTvcz2IT U5ddvEiBdlf+DPpm8luomm0dqWERDTsKjn/LFLDXFJzLPUEx/f2tlH1dEbnHITTv 2QtNtnvsUQqOGY9S26IvlHhmApqbTb7uqyQkCJgE5B93tNl/vmuvwp/0G8D4c+6u TFCyipHmTdzgrA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:35 2026 by rpki-client