This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft File: xIzPWOSy4trdSoSDPAZ87iuXRek.mft (raw, json) Hash identifier: rRd3a+g1hYzSlN+O7iiu3mHt/rbUrJqxdvZ3Wt5MqbA= Subject key identifier: B0:70:C2:24:9B:17:FB:E6:23:A3:C5:27:DA:F9:3A:B0:D9:B1:24:2E Authority key identifier: C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9 Certificate issuer: /CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9 Certificate serial: 019C427DB322244EF081AE58E228285F41AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft Manifest number: 0A3F Signing time: Mon 09 Feb 2026 13:00:59 +0000 Manifest this update: Mon 09 Feb 2026 13:00:59 +0000 Manifest next update: Tue 10 Feb 2026 13:00:59 +0000 Files and hashes: 1: xIzPWOSy4trdSoSDPAZ87iuXRek.crl (hash: uZLXg9X6tAN1J5Key7CyFPZavJEN2+yb4AVQQNEI+e8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:b3:22:24:4e:f0:81:ae:58:e2:28:28:5f:41:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9 Validity Not Before: Feb 9 13:00:59 2026 GMT Not After : Feb 10 13:00:59 2026 GMT Subject: CN=b070c2249b17fbe623a3c527daf93ab0d9b1242e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:24:06:04:f1:1a:6e:9d:bb:ed:85:11:d8:77: b2:73:45:1e:de:54:c7:3c:92:1a:9d:9d:d1:a3:31: 5d:31:b6:fe:de:8b:18:49:a9:19:82:37:45:20:37: e9:fd:2c:0e:c1:73:e4:ad:86:84:43:60:11:5a:f5: 2f:ff:87:25:13:86:16:d4:20:00:7e:b3:b1:23:d1: 3a:01:34:6a:d5:73:08:fa:2f:17:8f:ae:7e:66:60: 30:dc:b0:37:d3:32:a2:9c:56:77:e7:04:db:9b:37: b2:55:cc:e6:e6:26:86:aa:5a:aa:71:09:e3:8f:4f: ba:ea:36:bc:5c:3d:6a:c0:be:05:88:1d:ce:f4:92: 3a:72:6c:ff:67:67:14:97:e5:c8:ff:1e:6f:14:b6: 57:da:7b:1b:db:51:72:98:36:a0:f7:56:82:50:64: eb:01:5f:b3:69:ac:71:61:a0:3d:28:ec:cc:3f:1d: 39:31:01:75:1e:34:14:da:f7:9b:ae:4d:60:51:3d: ac:17:80:3d:b4:86:1a:29:3d:e3:6b:9a:75:55:f1: f4:82:06:a7:c8:4e:de:58:d1:c9:5b:16:f2:d8:42: f3:6a:b9:83:ff:dc:c9:3e:be:84:0d:9a:9d:c6:32: ae:f6:0c:b3:28:06:5e:e9:1b:63:64:ab:74:c2:e3: ae:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:70:C2:24:9B:17:FB:E6:23:A3:C5:27:DA:F9:3A:B0:D9:B1:24:2E X509v3 Authority Key Identifier: keyid:C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:56:90:c5:77:ca:fa:3b:93:24:d5:e8:66:56:7a:f6:73:e4: 8b:8e:e3:48:5e:18:86:ce:43:8a:03:27:f0:ed:a4:70:10:9e: 9c:55:47:cf:cf:96:87:29:75:3f:b5:1d:d5:5a:6a:29:83:a2: 1c:f8:fa:b5:52:bd:c7:38:99:77:26:0d:84:ce:4c:ff:6c:60: 98:c2:b5:70:85:bf:5d:22:15:cd:c8:4f:db:7c:99:23:79:13: 76:3f:b8:7e:6c:88:96:a4:e2:02:e4:39:3e:9f:59:61:49:fe: 68:a4:9c:fa:d9:21:45:53:0e:0e:33:31:3f:d3:28:50:97:52: 71:02:a2:78:35:96:6a:02:10:8a:d5:0a:da:ed:cf:6a:33:f9: ce:eb:9b:bf:62:3e:0e:07:2b:84:5f:3e:85:9c:ee:dd:db:9b: 61:a7:d3:ec:7b:e2:16:d6:20:4c:1b:64:b3:99:4c:07:03:e0: c5:b0:e9:6b:a2:b0:29:32:1d:55:a0:82:ae:5e:a9:be:8a:6d: 09:89:0b:a8:b3:c6:cc:6d:67:ac:bb:aa:3e:0f:56:7a:70:cc: 1d:07:f2:be:dc:f6:30:61:a0:08:ea:fe:c8:c8:a9:8b:35:45: ab:e8:f5:6e:5f:e7:94:74:3f:9a:4c:77:b5:fb:03:e7:95:43: 7a:f8:45:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfbMiJE7wga5Y4igoX0GvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0OGNjZjU4ZTRiMmUyZGFkZDRhODQ4MzNjMDY3Y2VlMmI5 NzQ1ZTkwHhcNMjYwMjA5MTMwMDU5WhcNMjYwMjEwMTMwMDU5WjAzMTEwLwYDVQQD EyhiMDcwYzIyNDliMTdmYmU2MjNhM2M1MjdkYWY5M2FiMGQ5YjEyNDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlSQGBPEabp277YUR2Heyc0Ue3lTH PJIanZ3RozFdMbb+3osYSakZgjdFIDfp/SwOwXPkrYaEQ2ARWvUv/4clE4YW1CAA frOxI9E6ATRq1XMI+i8Xj65+ZmAw3LA30zKinFZ35wTbmzeyVczm5iaGqlqqcQnj j0+66ja8XD1qwL4FiB3O9JI6cmz/Z2cUl+XI/x5vFLZX2nsb21FymDag91aCUGTr AV+zaaxxYaA9KOzMPx05MQF1HjQU2vebrk1gUT2sF4A9tIYaKT3ja5p1VfH0ggan yE7eWNHJWxby2ELzarmD/9zJPr6EDZqdxjKu9gyzKAZe6RtjZKt0wuOuBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLBwwiSbF/vmI6PFJ9r5OrDZsSQuMB8GA1UdIwQY MBaAFMSMz1jksuLa3UqEgzwGfO4rl0XpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEl6UFdPU3k0dHJkU29TRFBBWjg3aXVYUmVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9jYmUwMDUtMjY4OS00Mzc5LTlhN2Ut YTUwZTMyZGUwODIzLzEveEl6UFdPU3k0dHJkU29TRFBBWjg3aXVYUmVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9jYmUwMDUtMjY4OS00Mzc5LTlhN2UtYTUwZTMyZGUwODIz LzEveEl6UFdPU3k0dHJkU29TRFBBWjg3aXVYUmVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdVaQxXfK +juTJNXoZlZ69nPki47jSF4Yhs5DigMn8O2kcBCenFVHz8+Whyl1P7Ud1VpqKYOi HPj6tVK9xziZdyYNhM5M/2xgmMK1cIW/XSIVzchP23yZI3kTdj+4fmyIlqTiAuQ5 Pp9ZYUn+aKSc+tkhRVMODjMxP9MoUJdScQKieDWWagIQitUK2u3PajP5zuubv2I+ DgcrhF8+hZzu3dubYafT7HviFtYgTBtks5lMBwPgxbDpa6KwKTIdVaCCrl6pvopt CYkLqLPGzG1nrLuqPg9WenDMHQfyvtz2MGGgCOr+yMipizVFq+j1bl/nlHQ/mkx3 tfsD55VDevhF9A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:07 2026 by rpki-client