This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft File: XbWMRb7iUfx1daY-W0kN7GEU5so.mft (raw, json) Hash identifier: LPM36If/KpMTHlR0iv7FeBbT56dxH7XPXER0HBPCXeE= Subject key identifier: CC:E4:54:90:18:C8:A6:58:4C:41:03:77:F3:A6:85:3C:1B:0C:5F:D5 Authority key identifier: 5D:B5:8C:45:BE:E2:51:FC:75:75:A6:3E:5B:49:0D:EC:61:14:E6:CA Certificate issuer: /CN=5db58c45bee251fc7575a63e5b490dec6114e6ca Certificate serial: 019C41A196B17F74A38CD615DAE7144AE491 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft Manifest number: 15BB Signing time: Mon 09 Feb 2026 09:00:34 +0000 Manifest this update: Mon 09 Feb 2026 09:00:34 +0000 Manifest next update: Tue 10 Feb 2026 09:00:34 +0000 Files and hashes: 1: XbWMRb7iUfx1daY-W0kN7GEU5so.crl (hash: vLCbOnPBl6dsY+SWK+Cajz1beS+vmV9EP7XEkpIlcoM=) 2: vHsqeUq6iGnyRjByp03wnHq8Se0.roa (hash: VNscZtJ6p8ltvLlYgNm9TQqlID5TSbcVcko5K60GbLU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:96:b1:7f:74:a3:8c:d6:15:da:e7:14:4a:e4:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5db58c45bee251fc7575a63e5b490dec6114e6ca Validity Not Before: Feb 9 09:00:34 2026 GMT Not After : Feb 10 09:00:34 2026 GMT Subject: CN=cce4549018c8a6584c410377f3a6853c1b0c5fd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d2:2c:e3:43:79:9d:44:39:05:b0:65:15:d1: f6:6b:7c:43:89:84:e1:a4:99:7f:f1:0a:45:b1:e4: fb:b6:6d:07:67:5e:23:ce:db:2f:9d:07:57:a7:f0: 25:04:e0:c4:96:d0:61:48:db:05:ae:fb:db:f0:bf: 76:6a:b1:2f:49:8b:dd:98:9d:c6:17:0f:4e:a0:68: c9:bc:eb:d9:ed:83:19:49:eb:a8:b4:0a:6b:c5:2b: ae:1d:6f:53:bd:fe:e2:97:f0:18:62:97:1e:96:3c: 7c:e7:98:46:b3:bb:88:96:ef:9f:07:5a:ca:40:9a: 7d:aa:d2:f1:d2:2e:df:23:95:2e:51:bc:80:eb:27: 12:ed:11:2c:23:ab:78:cc:b5:83:4b:07:44:73:34: 13:08:b1:9b:a2:ba:e9:a6:01:ef:57:17:ea:4d:57: fa:5d:18:76:47:1f:73:5c:5c:8a:39:44:58:b7:3a: 31:ea:cd:85:4f:40:a3:44:4c:44:a5:f3:54:65:ec: 16:fc:5b:0c:68:49:9c:92:6a:c3:54:c9:b6:bb:75: 32:85:f4:e1:53:6f:19:1a:4e:33:c7:19:18:1f:35: da:95:84:e4:d3:89:59:b7:d5:2c:2c:6b:69:6c:94: c6:0d:40:42:37:c4:ba:c1:1a:56:0b:2c:29:d9:7e: ad:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E4:54:90:18:C8:A6:58:4C:41:03:77:F3:A6:85:3C:1B:0C:5F:D5 X509v3 Authority Key Identifier: keyid:5D:B5:8C:45:BE:E2:51:FC:75:75:A6:3E:5B:49:0D:EC:61:14:E6:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:17:98:b3:52:12:4f:3f:7f:b7:86:c5:a4:da:e1:68:4a:2f: 82:8f:ba:ee:ef:04:cb:b6:9a:60:71:25:84:5a:6c:2a:d8:6f: 10:d5:e4:04:b6:8e:91:aa:c3:64:07:f2:4d:f3:42:4c:e4:92: 38:2b:d6:81:0b:bf:8c:67:c4:80:2e:c1:f3:78:5f:fc:40:f4: 94:29:c2:89:02:09:3e:99:0b:11:e1:42:a9:9a:d5:bf:a5:fe: 5f:34:32:16:22:3a:e8:62:a4:bd:e2:8a:9f:e1:ed:24:86:1c: 1e:46:c7:73:de:4f:b5:16:66:64:1b:96:48:c2:34:7c:fd:fa: 62:74:82:e6:b5:d6:40:3a:da:6a:a0:7d:b1:89:ef:e9:3e:a3: 25:b9:6c:a9:d3:b2:c6:3c:e5:07:a9:1c:b8:ae:4a:f5:b8:45: 9d:97:96:42:d4:bd:14:c9:23:73:05:d6:a7:8e:22:6c:64:18: ed:9d:7a:a4:f9:86:96:e2:7b:32:2f:1e:77:0f:18:f9:aa:fc: f4:e1:5a:24:8b:88:d4:30:91:d8:1b:42:b1:31:f3:95:89:c7: 97:cf:16:ef:33:ad:ff:71:dc:33:74:57:8d:17:84:f0:f5:10: 2d:5a:de:95:79:17:a5:0a:11:72:c2:32:16:13:25:2e:48:77: 41:05:c5:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoZaxf3SjjNYV2ucUSuSRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkYjU4YzQ1YmVlMjUxZmM3NTc1YTYzZTViNDkwZGVjNjEx NGU2Y2EwHhcNMjYwMjA5MDkwMDM0WhcNMjYwMjEwMDkwMDM0WjAzMTEwLwYDVQQD EyhjY2U0NTQ5MDE4YzhhNjU4NGM0MTAzNzdmM2E2ODUzYzFiMGM1ZmQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9Is40N5nUQ5BbBlFdH2a3xDiYTh pJl/8QpFseT7tm0HZ14jztsvnQdXp/AlBODEltBhSNsFrvvb8L92arEvSYvdmJ3G Fw9OoGjJvOvZ7YMZSeuotAprxSuuHW9Tvf7il/AYYpceljx855hGs7uIlu+fB1rK QJp9qtLx0i7fI5UuUbyA6ycS7REsI6t4zLWDSwdEczQTCLGborrppgHvVxfqTVf6 XRh2Rx9zXFyKOURYtzox6s2FT0CjRExEpfNUZewW/FsMaEmckmrDVMm2u3UyhfTh U28ZGk4zxxkYHzXalYTk04lZt9UsLGtpbJTGDUBCN8S6wRpWCywp2X6tnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMzkVJAYyKZYTEEDd/OmhTwbDF/VMB8GA1UdIwQY MBaAFF21jEW+4lH8dXWmPltJDexhFObKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGJXTVJiN2lVZngxZGFZLVcwa043R0VVNXNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9hZGY5M2QtOThkYS00MWNjLThhNmQt OWMyYWQ0NzVhMjMxLzEvWGJXTVJiN2lVZngxZGFZLVcwa043R0VVNXNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9hZGY5M2QtOThkYS00MWNjLThhNmQtOWMyYWQ0NzVhMjMx LzEvWGJXTVJiN2lVZngxZGFZLVcwa043R0VVNXNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHReYs1IS Tz9/t4bFpNrhaEovgo+67u8Ey7aaYHElhFpsKthvENXkBLaOkarDZAfyTfNCTOSS OCvWgQu/jGfEgC7B83hf/ED0lCnCiQIJPpkLEeFCqZrVv6X+XzQyFiI66GKkveKK n+HtJIYcHkbHc95PtRZmZBuWSMI0fP36YnSC5rXWQDraaqB9sYnv6T6jJblsqdOy xjzlB6kcuK5K9bhFnZeWQtS9FMkjcwXWp44ibGQY7Z16pPmGluJ7Mi8edw8Y+ar8 9OFaJIuI1DCR2BtCsTHzlYnHl88W7zOt/3HcM3RXjReE8PUQLVrelXkXpQoRcsIy FhMlLkh3QQXFCg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:23 2026 by rpki-client