This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft File: XtGkql_QUBs-ptafQzwvFkIRYIk.mft (raw, json) Hash identifier: 6HIHi8VN0I8ANGINCzBBWfLNugVu8SlH6cD3Qi6V8YA= Subject key identifier: BF:F2:40:29:E5:E4:E5:81:DA:3A:AF:D5:08:B3:C2:6E:CC:91:32:50 Authority key identifier: 5E:D1:A4:AA:5F:D0:50:1B:3E:A6:D6:9F:43:3C:2F:16:42:11:60:89 Certificate issuer: /CN=5ed1a4aa5fd0501b3ea6d69f433c2f1642116089 Certificate serial: 019C439048614CE65D7BB72D473651B6585D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 18:00:55 +0000 Manifest this update: Mon 09 Feb 2026 18:00:55 +0000 Manifest next update: Tue 10 Feb 2026 18:00:55 +0000 Files and hashes: 1: XtGkql_QUBs-ptafQzwvFkIRYIk.crl (hash: fzQa1sL7gubhyV2P8JVcNqTpCr6L24iC5lxQQcsPnhw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.crl rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:48:61:4c:e6:5d:7b:b7:2d:47:36:51:b6:58:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ed1a4aa5fd0501b3ea6d69f433c2f1642116089 Validity Not Before: Feb 9 18:00:55 2026 GMT Not After : Feb 10 18:00:55 2026 GMT Subject: CN=bff24029e5e4e581da3aafd508b3c26ecc913250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b2:c2:9d:ac:13:3b:95:9a:cc:0b:14:8c:35: 2d:70:a6:d3:0c:75:70:b9:49:e8:68:9d:cc:70:47: 42:3b:a9:d3:4f:e9:f0:76:b6:13:ee:90:ab:e2:f8: 44:87:1b:e5:63:e8:b4:5f:39:57:65:72:d9:6d:3f: cf:c1:a3:2d:ff:0c:ab:bf:22:5c:70:bc:77:a9:d1: b2:29:9f:87:c3:98:c3:70:a5:c3:c8:10:bb:31:ba: 72:83:93:60:bb:84:ea:fa:e6:29:3a:9b:8c:67:fa: 56:71:f1:7a:e6:9b:c9:a5:cb:88:10:40:2a:5a:55: 1f:d1:07:bd:66:f1:49:dc:64:24:9c:42:b7:87:81: fa:db:44:63:b1:bf:3d:50:84:ba:57:f2:24:f8:ac: ad:f5:46:36:74:9a:95:18:5f:d6:b9:45:62:62:a2: 3f:ea:c5:f0:8a:6b:2e:ec:73:90:57:bf:32:b6:3f: 61:00:a4:c6:6c:4b:30:9e:ce:e1:50:8f:93:06:7f: 52:72:8a:45:8c:75:c8:be:c8:65:62:c3:da:ad:04: f2:6d:c1:22:a4:14:c2:b9:8a:61:26:b3:3a:90:81: 4c:a8:6b:0f:72:d4:00:60:d5:dd:a6:98:64:22:2d: 18:eb:84:8e:d9:17:7b:a1:64:3b:86:d3:41:ad:6a: f7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F2:40:29:E5:E4:E5:81:DA:3A:AF:D5:08:B3:C2:6E:CC:91:32:50 X509v3 Authority Key Identifier: keyid:5E:D1:A4:AA:5F:D0:50:1B:3E:A6:D6:9F:43:3C:2F:16:42:11:60:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:10:ce:5b:e0:f0:9c:35:b2:0c:c9:ea:3f:68:e0:d7:aa:7f: 15:16:e4:db:76:27:1e:9e:df:0b:2a:19:8f:22:b1:4c:88:82: b5:2a:a7:3e:a0:d9:b4:26:b4:82:ac:c4:0d:13:f9:1b:cb:2a: 8e:13:2d:95:87:b7:02:fc:62:ca:f6:0c:ae:d3:13:f9:1e:f7: 5c:ac:3a:58:9f:7d:51:fb:8a:6a:99:49:0a:d1:74:14:ea:96: 79:4d:c1:59:f2:5d:f6:83:fe:a7:59:c0:50:d3:ff:d1:26:1c: 62:d6:2e:10:26:14:4d:f6:ed:22:4e:71:91:76:8d:a8:b9:92: 94:62:46:26:cf:aa:dd:50:90:60:26:35:bf:10:5e:2b:73:b7: 85:86:fa:c8:c3:b1:0e:d8:24:eb:8e:7c:7f:33:8d:44:5f:19: 3b:5e:d6:a3:09:d5:32:73:65:1e:6b:44:d9:40:ee:14:01:2d: 33:d6:ec:34:fb:79:32:52:9e:ec:48:09:ba:60:f1:58:de:98: d5:9f:ce:04:68:6f:a8:24:dc:fe:b5:cb:38:71:b9:ef:5d:38: 92:a2:01:c3:ba:e4:72:a2:79:98:73:8d:44:76:ab:79:05:9e: 14:db:62:23:13:cd:24:4c:ee:53:25:97:ad:84:07:b4:0e:16: 44:f8:2f:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkEhhTOZde7ctRzZRtlhdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZDFhNGFhNWZkMDUwMWIzZWE2ZDY5ZjQzM2MyZjE2NDIx MTYwODkwHhcNMjYwMjA5MTgwMDU1WhcNMjYwMjEwMTgwMDU1WjAzMTEwLwYDVQQD EyhiZmYyNDAyOWU1ZTRlNTgxZGEzYWFmZDUwOGIzYzI2ZWNjOTEzMjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbLCnawTO5WazAsUjDUtcKbTDHVw uUnoaJ3McEdCO6nTT+nwdrYT7pCr4vhEhxvlY+i0XzlXZXLZbT/PwaMt/wyrvyJc cLx3qdGyKZ+Hw5jDcKXDyBC7Mbpyg5Ngu4Tq+uYpOpuMZ/pWcfF65pvJpcuIEEAq WlUf0Qe9ZvFJ3GQknEK3h4H620Rjsb89UIS6V/Ik+Kyt9UY2dJqVGF/WuUViYqI/ 6sXwimsu7HOQV78ytj9hAKTGbEswns7hUI+TBn9ScopFjHXIvshlYsParQTybcEi pBTCuYphJrM6kIFMqGsPctQAYNXdpphkIi0Y64SO2Rd7oWQ7htNBrWr39QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/yQCnl5OWB2jqv1Qizwm7MkTJQMB8GA1UdIwQY MBaAFF7RpKpf0FAbPqbWn0M8LxZCEWCJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHRHa3FsX1FVQnMtcHRhZlF6d3ZGa0lSWUlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi85Yzc3MDMtOGQxNC00YmMwLTg4YTkt YjlhODZhYzNlOGJlLzEvWHRHa3FsX1FVQnMtcHRhZlF6d3ZGa0lSWUlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi85Yzc3MDMtOGQxNC00YmMwLTg4YTktYjlhODZhYzNlOGJl LzEvWHRHa3FsX1FVQnMtcHRhZlF6d3ZGa0lSWUlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASxDOW+Dw nDWyDMnqP2jg16p/FRbk23YnHp7fCyoZjyKxTIiCtSqnPqDZtCa0gqzEDRP5G8sq jhMtlYe3AvxiyvYMrtMT+R73XKw6WJ99UfuKaplJCtF0FOqWeU3BWfJd9oP+p1nA UNP/0SYcYtYuECYUTfbtIk5xkXaNqLmSlGJGJs+q3VCQYCY1vxBeK3O3hYb6yMOx Dtgk6458fzONRF8ZO17WownVMnNlHmtE2UDuFAEtM9bsNPt5MlKe7EgJumDxWN6Y 1Z/OBGhvqCTc/rXLOHG57104kqIBw7rkcqJ5mHONRHareQWeFNtiIxPNJEzuUyWX rYQHtA4WRPgvIQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:19 2026 by rpki-client