This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft File: xndznw-VRrTwJXcsXCsXl4WSOFI.mft (raw, json) Hash identifier: 8CYTjJjWygELk7iCUVm75/sGMYPEBQy35Q51qYJPl3g= Subject key identifier: F4:02:8B:D0:09:11:DA:F0:F6:5D:58:80:E6:99:F9:37:D3:FC:42:39 Authority key identifier: C6:77:73:9F:0F:95:46:B4:F0:25:77:2C:5C:2B:17:97:85:92:38:52 Certificate issuer: /CN=c677739f0f9546b4f025772c5c2b179785923852 Certificate serial: 019C43C7147246265452D887C26913A57290 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft Manifest number: 1622 Signing time: Mon 09 Feb 2026 19:00:46 +0000 Manifest this update: Mon 09 Feb 2026 19:00:46 +0000 Manifest next update: Tue 10 Feb 2026 19:00:46 +0000 Files and hashes: 1: xndznw-VRrTwJXcsXCsXl4WSOFI.crl (hash: Z0QghHDzNEhib+itefYyDw1hAxTa98DKYOVjTqRmmtM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:14:72:46:26:54:52:d8:87:c2:69:13:a5:72:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c677739f0f9546b4f025772c5c2b179785923852 Validity Not Before: Feb 9 19:00:46 2026 GMT Not After : Feb 10 19:00:46 2026 GMT Subject: CN=f4028bd00911daf0f65d5880e699f937d3fc4239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:24:a9:c6:eb:bc:eb:45:5d:20:1d:a6:16:c3: 2d:5c:70:46:80:8e:45:92:ac:46:bb:33:50:db:6b: 1c:24:35:4b:46:a6:e9:7e:2e:70:4b:b1:37:46:aa: dd:1e:23:92:14:c6:b2:6d:57:d7:5c:86:b0:8b:13: 06:79:4c:c6:e3:2c:4b:f6:2b:f8:47:50:cb:21:7b: b6:a3:51:fc:1f:87:d4:80:bc:29:3b:a1:e9:d5:54: 5a:d8:c4:d6:28:5b:33:2f:6b:66:a4:e3:d8:2b:7a: b4:b2:29:44:83:20:88:eb:f6:03:6c:ba:38:aa:f7: 7d:d9:9d:9c:ce:40:9c:4c:d4:21:49:b5:ea:35:20: ae:13:9a:22:d3:89:78:18:89:8e:81:1b:eb:c6:5a: 44:ba:17:e6:99:4d:3b:a3:3a:d4:9e:54:11:23:bb: c7:e2:b7:74:6b:1a:fd:ef:d3:23:fc:d2:f5:11:10: 19:f5:f6:f2:7e:fc:93:1d:b2:e2:85:a3:96:d0:9d: 99:5b:ce:da:7e:c9:c5:f9:e0:9f:2d:00:20:f0:67: 1c:db:38:0e:1a:2b:47:20:1d:05:45:0f:9a:71:41: 01:5d:dd:64:a4:ac:55:87:d9:3b:e0:32:5d:52:38: 24:b9:b5:f1:f6:44:c8:8b:b7:b7:95:33:a8:da:c5: 7a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:02:8B:D0:09:11:DA:F0:F6:5D:58:80:E6:99:F9:37:D3:FC:42:39 X509v3 Authority Key Identifier: keyid:C6:77:73:9F:0F:95:46:B4:F0:25:77:2C:5C:2B:17:97:85:92:38:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:dc:ca:53:a0:86:13:85:be:8f:66:bf:36:c6:33:25:83:21: d2:59:fa:85:64:c6:5c:c8:bd:fe:3c:dd:cb:18:e1:ae:5d:ea: 9c:9e:65:02:dd:43:46:bd:55:f9:11:37:7d:eb:6a:b9:0e:06: bd:5c:8a:cd:8b:da:05:32:ee:e1:16:26:f9:6c:14:8e:04:c2: d1:a4:1c:94:d3:9c:44:8c:65:a5:2c:f0:c9:c5:b0:87:ac:c1: 12:9f:6d:28:29:c5:61:0b:95:b1:ff:6d:88:c2:4c:57:29:27: dd:f2:df:eb:ce:11:f4:e7:22:23:27:7b:44:68:7c:ca:03:80: 22:ce:48:10:cb:e4:e5:41:d2:35:b7:f6:7b:9d:e5:a5:a8:92: db:a7:cf:11:f7:8d:11:6c:04:85:9e:8e:1e:9d:d5:91:fe:6e: 1a:8d:d3:1d:e8:4a:7c:0b:dc:2c:8d:e6:ee:22:10:ce:ec:e1: 4b:9c:43:41:cc:89:f0:b5:1d:5a:58:37:c4:b4:22:d0:de:fb: 10:61:81:ba:5e:a2:d3:36:78:c2:b5:ac:0b:0e:4a:b3:72:d4: 76:e1:e5:d4:36:1d:bf:4e:71:4a:dd:1f:df:1e:d5:4e:7f:2e: ba:b0:01:33:8b:bc:27:82:f7:16:6f:0a:43:fe:4a:6b:11:71: 67:44:89:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxxRyRiZUUtiHwmkTpXKQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2Nzc3MzlmMGY5NTQ2YjRmMDI1NzcyYzVjMmIxNzk3ODU5 MjM4NTIwHhcNMjYwMjA5MTkwMDQ2WhcNMjYwMjEwMTkwMDQ2WjAzMTEwLwYDVQQD EyhmNDAyOGJkMDA5MTFkYWYwZjY1ZDU4ODBlNjk5ZjkzN2QzZmM0MjM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSSpxuu860VdIB2mFsMtXHBGgI5F kqxGuzNQ22scJDVLRqbpfi5wS7E3RqrdHiOSFMaybVfXXIawixMGeUzG4yxL9iv4 R1DLIXu2o1H8H4fUgLwpO6Hp1VRa2MTWKFszL2tmpOPYK3q0silEgyCI6/YDbLo4 qvd92Z2czkCcTNQhSbXqNSCuE5oi04l4GImOgRvrxlpEuhfmmU07ozrUnlQRI7vH 4rd0axr979Mj/NL1ERAZ9fbyfvyTHbLihaOW0J2ZW87afsnF+eCfLQAg8Gcc2zgO GitHIB0FRQ+acUEBXd1kpKxVh9k74DJdUjgkubXx9kTIi7e3lTOo2sV6oQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPQCi9AJEdrw9l1YgOaZ+TfT/EI5MB8GA1UdIwQY MBaAFMZ3c58PlUa08CV3LFwrF5eFkjhSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG5kem53LVZSclR3Slhjc1hDc1hsNFdTT0ZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS9kNjAyOTEtZDg0MC00OTAxLWE4NWQt YzY4NWZhOTE2YjA3LzEveG5kem53LVZSclR3Slhjc1hDc1hsNFdTT0ZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS9kNjAyOTEtZDg0MC00OTAxLWE4NWQtYzY4NWZhOTE2YjA3 LzEveG5kem53LVZSclR3Slhjc1hDc1hsNFdTT0ZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoNzKU6CG E4W+j2a/NsYzJYMh0ln6hWTGXMi9/jzdyxjhrl3qnJ5lAt1DRr1V+RE3fetquQ4G vVyKzYvaBTLu4RYm+WwUjgTC0aQclNOcRIxlpSzwycWwh6zBEp9tKCnFYQuVsf9t iMJMVykn3fLf684R9OciIyd7RGh8ygOAIs5IEMvk5UHSNbf2e53lpaiS26fPEfeN EWwEhZ6OHp3Vkf5uGo3THehKfAvcLI3m7iIQzuzhS5xDQcyJ8LUdWlg3xLQi0N77 EGGBul6i0zZ4wrWsCw5Ks3LUduHl1DYdv05xSt0f3x7VTn8uurABM4u8J4L3Fm8K Q/5KaxFxZ0SJAw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:44 2026 by rpki-client