This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft File: xTG2PRGmzC0c5p4TEch6waanBzM.mft (raw, json) Hash identifier: RjMSeXJdIBtRQLRf7gygDhYTMKmIGQt3q1c8mBIcack= Subject key identifier: 03:CC:AF:FA:4A:66:FD:E9:3C:F8:B6:61:DB:AA:56:8C:7A:CC:CE:2B Authority key identifier: C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33 Certificate issuer: /CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733 Certificate serial: 019C44D9E580E160EDD7585BBE5C2DA8CEE4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft Manifest number: 1096 Signing time: Tue 10 Feb 2026 00:00:56 +0000 Manifest this update: Tue 10 Feb 2026 00:00:56 +0000 Manifest next update: Wed 11 Feb 2026 00:00:56 +0000 Files and hashes: 1: WGUKVj-vf2RKGeE0tMRbU2IE_NQ.roa (hash: tHeLPtV3EhtYhN1tkXzaqoA9I1M0f8QKiOJp3r6uMxQ=) 2: xTG2PRGmzC0c5p4TEch6waanBzM.crl (hash: UYpP5JrqDJ/9rsdpKRWMpu5lMc4+tZDZhCEMNALFE8o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:e5:80:e1:60:ed:d7:58:5b:be:5c:2d:a8:ce:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733 Validity Not Before: Feb 10 00:00:56 2026 GMT Not After : Feb 11 00:00:56 2026 GMT Subject: CN=03ccaffa4a66fde93cf8b661dbaa568c7accce2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7c:28:5d:94:b4:6a:41:3f:19:07:60:75:86: bd:34:d5:94:4a:20:27:d6:85:8a:85:3a:7a:1f:9b: 26:f6:f4:8c:b6:3d:ea:9c:20:38:07:93:da:6f:bf: 31:4e:7f:35:8f:15:f3:32:28:93:f0:4c:01:6c:f6: 84:b4:ee:20:9e:45:ef:6d:b9:96:c5:36:ed:27:19: e9:2e:55:2e:a8:a6:d4:8f:ef:90:49:f7:5a:27:d5: 12:48:3c:79:e1:32:e8:68:06:8b:fc:41:0c:aa:4f: c2:6c:9e:d4:2a:77:95:17:48:19:1d:b9:d1:0a:eb: d4:9f:4a:5f:6a:9b:78:85:af:fc:2a:f4:a1:bf:3a: 7c:8e:76:13:3f:5e:76:d7:07:5f:dd:72:95:70:cf: 35:e4:49:a5:e0:0b:42:d8:be:54:0d:5a:51:88:b9: 02:3b:cf:72:43:ce:0c:e0:52:5c:1f:27:e6:5d:d4: 9a:d5:b0:b3:3e:95:36:7b:e3:df:7a:ff:6a:fe:e5: c8:97:ee:19:66:5a:71:c2:c7:c8:56:ef:64:8c:e1: ee:e9:bd:f0:f7:7d:1b:66:d0:49:c7:93:2c:2f:17: ee:b3:4b:c1:da:0e:c8:70:dc:2c:41:b4:26:ff:80: 34:b6:20:e9:49:ad:1f:f5:e2:c9:e7:19:7d:5e:71: 39:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CC:AF:FA:4A:66:FD:E9:3C:F8:B6:61:DB:AA:56:8C:7A:CC:CE:2B X509v3 Authority Key Identifier: keyid:C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:34:c9:e6:20:42:a9:4a:66:4c:3f:9d:b1:72:30:e3:47:4c: 4c:e8:51:30:02:d6:04:91:9d:0e:8f:5f:bc:ba:ca:01:1d:30: 78:ec:f2:57:23:b2:e1:9a:71:69:29:eb:41:21:63:dc:55:5b: 0d:f4:74:2e:9f:46:b1:df:5f:1c:4e:7a:1d:c1:af:02:e6:61: 7e:e3:e1:18:1a:d4:ce:c1:cd:61:5a:93:c0:87:a6:e8:ee:60: 7a:78:c1:53:4b:60:10:0a:86:7a:0a:0f:2b:f8:15:f2:b3:02: 58:26:2e:f6:e5:a8:60:1e:08:93:26:34:06:12:81:f7:7a:ba: 98:96:7f:8c:d1:a3:1f:ba:34:68:63:72:e8:e7:7b:f7:e5:28: c9:4c:6d:1e:0a:17:26:e9:0f:d0:ab:32:9b:8d:36:fa:52:7d: de:59:d6:b4:24:40:0b:06:d7:b4:77:6b:6e:08:8a:7f:0e:ec: 70:25:f0:bb:e9:8f:7e:d2:a9:e6:02:88:b9:56:42:13:7b:15: 5f:63:92:6c:19:69:6b:0d:74:35:70:8b:d1:f3:12:e9:a8:ad: 43:94:6a:fa:5f:fc:52:6d:ed:87:a7:5c:30:79:8d:ce:82:aa: cd:61:a1:79:f6:5a:e4:d0:48:a6:fb:21:8a:24:fa:8f:79:b8: 27:b9:6a:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2eWA4WDt11hbvlwtqM7kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1MzFiNjNkMTFhNmNjMmQxY2U2OWUxMzExYzg3YWMxYTZh NzA3MzMwHhcNMjYwMjEwMDAwMDU2WhcNMjYwMjExMDAwMDU2WjAzMTEwLwYDVQQD EygwM2NjYWZmYTRhNjZmZGU5M2NmOGI2NjFkYmFhNTY4YzdhY2NjZTJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnnwoXZS0akE/GQdgdYa9NNWUSiAn 1oWKhTp6H5sm9vSMtj3qnCA4B5Pab78xTn81jxXzMiiT8EwBbPaEtO4gnkXvbbmW xTbtJxnpLlUuqKbUj++QSfdaJ9USSDx54TLoaAaL/EEMqk/CbJ7UKneVF0gZHbnR CuvUn0pfapt4ha/8KvShvzp8jnYTP1521wdf3XKVcM815Eml4AtC2L5UDVpRiLkC O89yQ84M4FJcHyfmXdSa1bCzPpU2e+Pfev9q/uXIl+4ZZlpxwsfIVu9kjOHu6b3w 930bZtBJx5MsLxfus0vB2g7IcNwsQbQm/4A0tiDpSa0f9eLJ5xl9XnE5qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAPMr/pKZv3pPPi2YduqVox6zM4rMB8GA1UdIwQY MBaAFMUxtj0RpswtHOaeExHIesGmpwczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84Njg5OGUtZTZlNi00Yjg4LTg4MTEt ZGI4Y2FiY2VlMjFlLzEveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC84Njg5OGUtZTZlNi00Yjg4LTg4MTEtZGI4Y2FiY2VlMjFl LzEveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnTTJ5iBC qUpmTD+dsXIw40dMTOhRMALWBJGdDo9fvLrKAR0weOzyVyOy4ZpxaSnrQSFj3FVb DfR0Lp9Gsd9fHE56HcGvAuZhfuPhGBrUzsHNYVqTwIem6O5genjBU0tgEAqGegoP K/gV8rMCWCYu9uWoYB4IkyY0BhKB93q6mJZ/jNGjH7o0aGNy6Od79+UoyUxtHgoX JukP0Ksym402+lJ93lnWtCRACwbXtHdrbgiKfw7scCXwu+mPftKp5gKIuVZCE3sV X2OSbBlpaw10NXCL0fMS6aitQ5Rq+l/8Um3th6dcMHmNzoKqzWGhefZa5NBIpvsh iiT6j3m4J7lqKA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:46 2026 by rpki-client