This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.mft File: XDRKGsDL_EDHWgz8e-yWx8Nb0ns.mft (raw, json) Hash identifier: DB07+NsheWkoN7NgVxZikGqX9GyRWHXU/mcDT+dMiV0= Subject key identifier: 81:BE:75:96:12:1E:A3:65:84:83:D7:D2:A9:80:DF:76:C4:0A:38:A1 Authority key identifier: 5C:34:4A:1A:C0:CB:FC:40:C7:5A:0C:FC:7B:EC:96:C7:C3:5B:D2:7B Certificate issuer: /CN=5c344a1ac0cbfc40c75a0cfc7bec96c7c35bd27b Certificate serial: 019C4322CCE49B27C8ECF0EE78B99DA4286D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 16:01:19 +0000 Manifest this update: Mon 09 Feb 2026 16:01:19 +0000 Manifest next update: Tue 10 Feb 2026 16:01:19 +0000 Files and hashes: 1: XDRKGsDL_EDHWgz8e-yWx8Nb0ns.crl (hash: 8pSqzT0Gi5GqXzDMMbLi3Tb74TFQVhC/MyV9EWr3SdQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.mft rsync://rpki.ripe.net/repository/DEFAULT/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:cc:e4:9b:27:c8:ec:f0:ee:78:b9:9d:a4:28:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c344a1ac0cbfc40c75a0cfc7bec96c7c35bd27b Validity Not Before: Feb 9 16:01:19 2026 GMT Not After : Feb 10 16:01:19 2026 GMT Subject: CN=81be7596121ea3658483d7d2a980df76c40a38a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c6:03:aa:01:90:32:64:7e:dc:3a:b1:19:fc: 44:62:bd:87:4d:8c:4e:35:18:f2:86:b3:c1:49:4a: 53:11:93:53:72:ac:98:7f:bf:51:69:b7:ac:d5:80: f1:9c:d6:7d:49:e8:63:20:61:09:4a:2e:ce:b6:4d: bf:eb:12:22:ff:cf:95:3c:1d:06:35:39:1b:d6:1a: 63:9d:56:54:ed:06:33:9a:f7:b1:81:88:ce:e0:7a: 74:31:9b:1d:fa:c7:68:0e:13:a9:0e:c2:b9:a5:7f: ed:1c:be:26:18:68:d6:1e:73:69:d2:9f:35:d1:eb: 27:cc:39:38:98:e0:b8:db:9f:97:2f:7d:74:6d:a1: 19:db:f8:0c:28:22:d7:cf:5b:68:46:e4:78:a8:7d: 89:39:b0:3c:11:c7:18:21:07:55:ca:e0:79:27:66: 98:f9:c3:be:1b:d1:0b:26:83:c6:d8:d2:cf:03:a2: 5b:dc:04:2d:dd:44:c7:9d:ae:67:e7:2c:4b:c9:0a: 29:9a:40:38:06:0a:d2:17:40:d4:85:26:4c:c7:66: 99:d1:7d:a9:b8:62:16:98:50:f9:12:a1:88:e3:6b: f8:c8:16:49:94:6e:db:54:9c:30:c5:27:3c:fc:fb: 46:2a:27:fd:96:53:d0:a1:52:de:86:55:3e:07:75: df:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:BE:75:96:12:1E:A3:65:84:83:D7:D2:A9:80:DF:76:C4:0A:38:A1 X509v3 Authority Key Identifier: keyid:5C:34:4A:1A:C0:CB:FC:40:C7:5A:0C:FC:7B:EC:96:C7:C3:5B:D2:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:16:da:e9:7e:73:e7:62:8c:d1:f1:dc:d9:13:97:fb:2a:cd: 3d:9c:05:5e:a4:fc:e3:e0:22:e1:14:5b:4a:b6:95:0a:c5:ff: f1:7f:0b:38:5a:e4:fa:68:66:da:09:55:03:96:a6:0a:ac:a0: 67:dd:d0:e9:4d:11:34:94:2a:76:49:41:75:e5:99:23:fb:aa: 3e:95:58:07:53:0d:bc:55:c1:a3:9d:2d:53:5a:48:a6:3b:31: ca:01:bb:1a:b1:0e:f5:b3:a6:08:1d:81:d2:4c:7b:f4:99:b3: 8f:20:e2:8b:04:51:59:d3:0e:f3:68:a8:95:72:6a:10:95:3a: ee:8c:22:50:dc:4d:fd:5b:ce:b9:48:8a:27:1c:c1:6d:31:9e: 34:da:a1:d4:81:bf:e8:84:c0:c1:36:8a:0a:55:6b:ef:39:1f: 9d:13:7d:f1:0a:21:70:f2:60:ac:32:37:24:dc:a7:ee:da:dc: 28:14:15:99:44:79:e8:97:3d:4f:07:cf:42:fd:e6:05:1d:f7: b9:ed:d3:b6:cb:9d:7e:25:1b:f8:d2:ff:f2:92:8a:8a:46:04: 5b:d3:35:a5:52:59:0b:a8:cd:10:ea:ca:e6:f1:82:bf:94:b8: 4e:31:52:42:32:41:3a:a8:30:a5:b2:cd:da:96:d3:87:79:e8: 36:8d:71:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIszkmyfI7PDueLmdpChtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjMzQ0YTFhYzBjYmZjNDBjNzVhMGNmYzdiZWM5NmM3YzM1 YmQyN2IwHhcNMjYwMjA5MTYwMTE5WhcNMjYwMjEwMTYwMTE5WjAzMTEwLwYDVQQD Eyg4MWJlNzU5NjEyMWVhMzY1ODQ4M2Q3ZDJhOTgwZGY3NmM0MGEzOGExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMYDqgGQMmR+3DqxGfxEYr2HTYxO NRjyhrPBSUpTEZNTcqyYf79Rabes1YDxnNZ9SehjIGEJSi7Otk2/6xIi/8+VPB0G NTkb1hpjnVZU7QYzmvexgYjO4Hp0MZsd+sdoDhOpDsK5pX/tHL4mGGjWHnNp0p81 0esnzDk4mOC425+XL310baEZ2/gMKCLXz1toRuR4qH2JObA8EccYIQdVyuB5J2aY +cO+G9ELJoPG2NLPA6Jb3AQt3UTHna5n5yxLyQopmkA4BgrSF0DUhSZMx2aZ0X2p uGIWmFD5EqGI42v4yBZJlG7bVJwwxSc8/PtGKif9llPQoVLehlU+B3Xf4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIG+dZYSHqNlhIPX0qmA33bECjihMB8GA1UdIwQY MBaAFFw0ShrAy/xAx1oM/HvslsfDW9J7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWERSS0dzRExfRURIV2d6OGUteVd4OE5iMG5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zMjlhYjgtYjFkOS00ZjlmLWE5Yzgt Y2QxODUxMGVkY2RmLzEvWERSS0dzRExfRURIV2d6OGUteVd4OE5iMG5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zMjlhYjgtYjFkOS00ZjlmLWE5YzgtY2QxODUxMGVkY2Rm LzEvWERSS0dzRExfRURIV2d6OGUteVd4OE5iMG5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfhba6X5z 52KM0fHc2ROX+yrNPZwFXqT84+Ai4RRbSraVCsX/8X8LOFrk+mhm2glVA5amCqyg Z93Q6U0RNJQqdklBdeWZI/uqPpVYB1MNvFXBo50tU1pIpjsxygG7GrEO9bOmCB2B 0kx79JmzjyDiiwRRWdMO82iolXJqEJU67owiUNxN/VvOuUiKJxzBbTGeNNqh1IG/ 6ITAwTaKClVr7zkfnRN98QohcPJgrDI3JNyn7trcKBQVmUR56Jc9TwfPQv3mBR33 ue3TtsudfiUb+NL/8pKKikYEW9M1pVJZC6jNEOrK5vGCv5S4TjFSQjJBOqgwpbLN 2pbTh3noNo1xfA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:33 2026 by rpki-client