This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft File: CXa-2b-5b_oZgiBViqPVuMj5zT0.mft (raw, json) Hash identifier: GCvppWb9OKXYu1X/CdRxG/L19pLUPi6ZKDi59Oh7FOA= Subject key identifier: A3:1F:60:8D:D8:17:4D:E8:F6:3E:17:8E:F3:22:06:A0:FF:5C:6F:98 Authority key identifier: 09:76:BE:D9:BF:B9:6F:FA:19:82:20:55:8A:A3:D5:B8:C8:F9:CD:3D Certificate issuer: /CN=0976bed9bfb96ffa198220558aa3d5b8c8f9cd3d Certificate serial: 019C420F9CEB03F1C8347794C2BBFC0E74CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXa-2b-5b_oZgiBViqPVuMj5zT0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft Manifest number: 0277 Signing time: Mon 09 Feb 2026 11:00:45 +0000 Manifest this update: Mon 09 Feb 2026 11:00:45 +0000 Manifest next update: Tue 10 Feb 2026 11:00:45 +0000 Files and hashes: 1: 81erH1PyFfVJ8_cg3A4J-xcuYbw.roa (hash: NaAy63sjfoCM4Pl3nqIIgQyKV92LR17H8Jx3JG7KMKc=) 2: CXa-2b-5b_oZgiBViqPVuMj5zT0.crl (hash: Y0+wdZ4fpXeN04IYVCQJRoBvp0VA6Uy8Ke2j5DIYN/A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft rsync://rpki.ripe.net/repository/DEFAULT/CXa-2b-5b_oZgiBViqPVuMj5zT0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:9c:eb:03:f1:c8:34:77:94:c2:bb:fc:0e:74:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0976bed9bfb96ffa198220558aa3d5b8c8f9cd3d Validity Not Before: Feb 9 11:00:45 2026 GMT Not After : Feb 10 11:00:45 2026 GMT Subject: CN=a31f608dd8174de8f63e178ef32206a0ff5c6f98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9c:b8:c1:87:ae:47:ea:54:d7:00:13:e4:59: 51:34:59:d2:9b:5a:81:54:5f:71:80:94:d9:c2:23: a3:38:18:56:84:f2:ff:19:64:99:15:23:a5:26:2a: 70:d9:d3:aa:a1:16:4c:12:27:86:af:6a:3a:ad:c9: b6:46:c6:6d:ea:8d:c3:49:ab:7f:7d:2d:f5:fb:73: e8:1d:48:b8:1c:e3:45:28:b2:37:e6:16:90:25:90: c6:08:18:1d:40:80:a7:99:ad:ce:5a:f4:0e:b7:32: 82:b2:6e:5d:c8:45:ea:0a:71:0e:1d:dc:ba:80:e7: ea:e4:b5:52:09:6d:6d:9b:d9:e3:e3:92:02:18:1f: 8a:49:c3:0e:43:6a:29:85:6d:f4:6a:fe:97:7c:9d: 17:f8:83:81:47:50:81:c6:2d:dd:79:46:67:fe:75: c5:d1:b8:3c:97:06:4b:57:62:e7:4b:90:2b:ba:e7: a8:72:89:05:64:33:20:39:9b:05:89:0f:90:d5:35: 47:62:94:cb:1a:a2:fd:1e:df:e9:a3:e3:6e:52:04: ee:51:87:4b:eb:5d:5e:76:91:75:eb:49:d6:46:39: d2:28:66:81:da:68:79:80:36:58:5c:43:d8:21:3e: 7b:18:15:56:44:f8:f4:e7:1b:c7:8d:0f:d6:e7:8f: 58:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:1F:60:8D:D8:17:4D:E8:F6:3E:17:8E:F3:22:06:A0:FF:5C:6F:98 X509v3 Authority Key Identifier: keyid:09:76:BE:D9:BF:B9:6F:FA:19:82:20:55:8A:A3:D5:B8:C8:F9:CD:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXa-2b-5b_oZgiBViqPVuMj5zT0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:0e:45:51:75:bf:27:2e:3c:70:83:ed:6c:26:f9:c9:0d:4f: 37:95:3b:61:ad:57:b9:cb:16:bc:ed:f9:2d:73:04:61:72:1e: 6f:10:fb:bf:41:80:89:93:a7:79:42:97:00:9c:8f:e8:40:d8: a9:60:0b:a1:ea:5d:27:1b:0d:16:a7:24:80:03:75:47:5f:fd: 2b:c7:3d:56:7e:bd:34:8c:3b:ab:d3:73:d9:d7:e7:ea:bd:f2: 50:b6:5d:e1:1e:1c:3f:e3:d0:1f:af:84:d7:da:72:3f:2c:d2: de:7d:b0:4e:21:b7:15:46:8a:de:fc:8a:33:a6:c4:73:01:e3: 04:1d:6b:d7:35:ad:09:6c:4e:60:2a:1d:84:64:68:04:5f:76: 57:c6:5d:ce:96:e1:11:10:e9:41:9a:32:ec:1d:02:e6:29:d0: 24:96:f8:f3:b1:31:61:78:90:e2:be:34:80:80:e3:c6:f2:e6: e9:a9:eb:ba:de:e3:e9:b4:ac:73:1a:93:2f:f2:ba:a0:ae:a7: 8f:be:8f:3c:e0:07:c2:29:04:2e:bf:da:bb:6a:f1:3c:f3:1b: d6:42:ce:83:57:1d:7f:c2:44:90:c7:b3:a7:95:92:46:ed:7e: d0:8f:29:3e:0d:91:ab:50:89:4d:fa:e0:49:f7:53:cf:93:e5: f2:9b:ed:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD5zrA/HINHeUwrv8DnTOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NzZiZWQ5YmZiOTZmZmExOTgyMjA1NThhYTNkNWI4Yzhm OWNkM2QwHhcNMjYwMjA5MTEwMDQ1WhcNMjYwMjEwMTEwMDQ1WjAzMTEwLwYDVQQD EyhhMzFmNjA4ZGQ4MTc0ZGU4ZjYzZTE3OGVmMzIyMDZhMGZmNWM2Zjk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZy4wYeuR+pU1wAT5FlRNFnSm1qB VF9xgJTZwiOjOBhWhPL/GWSZFSOlJipw2dOqoRZMEieGr2o6rcm2RsZt6o3DSat/ fS31+3PoHUi4HONFKLI35haQJZDGCBgdQICnma3OWvQOtzKCsm5dyEXqCnEOHdy6 gOfq5LVSCW1tm9nj45ICGB+KScMOQ2ophW30av6XfJ0X+IOBR1CBxi3deUZn/nXF 0bg8lwZLV2LnS5AruueocokFZDMgOZsFiQ+Q1TVHYpTLGqL9Ht/po+NuUgTuUYdL 611edpF160nWRjnSKGaB2mh5gDZYXEPYIT57GBVWRPj05xvHjQ/W549Y+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKMfYI3YF03o9j4XjvMiBqD/XG+YMB8GA1UdIwQY MBaAFAl2vtm/uW/6GYIgVYqj1bjI+c09MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1hhLTJiLTViX29aZ2lCVmlxUFZ1TWo1elQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9lY2MyY2YtZWNjMC00Y2JiLTk2MzUt MTY2YzZhM2QzZWNmLzEvQ1hhLTJiLTViX29aZ2lCVmlxUFZ1TWo1elQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9lY2MyY2YtZWNjMC00Y2JiLTk2MzUtMTY2YzZhM2QzZWNm LzEvQ1hhLTJiLTViX29aZ2lCVmlxUFZ1TWo1elQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUA5FUXW/ Jy48cIPtbCb5yQ1PN5U7Ya1XucsWvO35LXMEYXIebxD7v0GAiZOneUKXAJyP6EDY qWALoepdJxsNFqckgAN1R1/9K8c9Vn69NIw7q9Nz2dfn6r3yULZd4R4cP+PQH6+E 19pyPyzS3n2wTiG3FUaK3vyKM6bEcwHjBB1r1zWtCWxOYCodhGRoBF92V8Zdzpbh ERDpQZoy7B0C5inQJJb487ExYXiQ4r40gIDjxvLm6anrut7j6bSscxqTL/K6oK6n j76PPOAHwikELr/au2rxPPMb1kLOg1cdf8JEkMezp5WSRu1+0I8pPg2Rq1CJTfrg SfdTz5Pl8pvtYA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:16 2026 by rpki-client