This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft File: xb-nGlET_tgkZHdsFDcVFMkhjvU.mft (raw, json) Hash identifier: cdHWZj8QUlsSMlCCWc+pi6nJvEfaHiTuOgQwNQMX6A4= Subject key identifier: 45:28:B8:98:E8:A6:D7:62:76:04:15:A0:F9:A2:74:ED:38:3A:CF:0B Authority key identifier: C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5 Certificate issuer: /CN=c5bfa71a5113fed82464776c14371514c9218ef5 Certificate serial: 019C389E580866E5912A7DF9182DBBC6BD4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft Manifest number: 0C43 Signing time: Sat 07 Feb 2026 15:00:27 +0000 Manifest this update: Sat 07 Feb 2026 15:00:27 +0000 Manifest next update: Sun 08 Feb 2026 15:00:27 +0000 Files and hashes: 1: jBvSHulkiAFNZq-1Sz_1NBwC4gw.roa (hash: kIr3tsaXSv0n1HwqnJcooiylPmXgSiBfGD9CqML14GU=) 2: xb-nGlET_tgkZHdsFDcVFMkhjvU.crl (hash: tEbjUaBYzxujFF5nj2Ew+wfLPhaiOhG3uSXLKFSRSJI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 15:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:38:9e:58:08:66:e5:91:2a:7d:f9:18:2d:bb:c6:bd:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5bfa71a5113fed82464776c14371514c9218ef5 Validity Not Before: Feb 7 15:00:27 2026 GMT Not After : Feb 8 15:00:27 2026 GMT Subject: CN=4528b898e8a6d762760415a0f9a274ed383acf0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ed:eb:4c:43:11:d8:a7:4f:e1:c9:66:49:6c: 5c:fd:3e:5a:f2:60:74:5f:ec:1d:fd:0b:9a:00:f5: 06:76:31:7a:35:78:86:cf:e6:99:11:0a:09:12:e3: 92:7a:92:90:69:69:8e:9d:0b:c6:52:c4:d0:07:0a: 93:ec:85:e0:1a:16:df:e1:58:01:d6:61:61:b1:bb: 87:24:21:de:7a:eb:1a:32:8b:19:5e:33:f0:15:d8: f0:0f:27:9e:89:9e:79:a5:15:94:26:c1:d6:5f:2b: 30:f1:05:12:dd:94:54:15:a5:33:a0:97:ee:4f:db: eb:97:f1:ae:b4:10:72:2e:1c:f0:85:35:05:50:dd: 25:c1:12:59:9f:4f:6f:78:4b:40:91:95:ba:65:69: 0b:a9:26:53:82:63:f0:62:c4:8f:4d:6b:ff:1d:e5: bb:b0:56:41:64:d0:71:7d:03:99:72:4c:47:f4:1c: b5:66:a2:7d:ac:a0:d0:1b:83:72:9a:b8:7c:f3:56: dd:27:d6:07:73:2f:dc:60:2f:c6:a4:c8:5f:9f:a8: 67:6f:b3:e8:9a:7d:68:ce:89:83:98:15:ad:25:3d: 84:e2:13:1d:80:e0:a6:23:03:71:47:30:02:7d:4f: d8:2a:78:ed:6f:97:48:e3:d4:e3:b9:e2:01:eb:17: f5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:28:B8:98:E8:A6:D7:62:76:04:15:A0:F9:A2:74:ED:38:3A:CF:0B X509v3 Authority Key Identifier: keyid:C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:64:a1:53:25:8f:96:34:b9:6e:52:a1:69:eb:e8:e0:3a:ed: 73:41:53:d4:bf:28:51:b9:e2:9c:20:21:14:7b:39:b6:7b:e8: ef:e4:9c:c5:a1:9c:f0:1e:2d:2c:5d:8c:0c:65:92:44:c8:3a: 5f:2f:40:c3:3b:6f:66:3d:90:fc:6d:db:41:66:9f:ee:ac:1a: 03:ac:aa:0a:cf:4d:7d:34:5d:7d:e3:7b:84:1a:34:b7:d0:9f: e0:5d:d4:f3:24:d6:62:7f:87:cf:e2:2d:0d:a2:39:e1:5d:b4: 3b:6b:9d:b3:23:7c:08:37:21:3a:33:69:1f:5c:12:c0:38:cf: 4e:82:81:f3:8b:3a:cb:b1:d2:c2:3b:52:37:8c:04:5c:51:0b: 4d:64:7b:b6:e2:ea:9e:c9:bf:72:72:08:5a:64:8b:30:a4:c3: cd:57:62:99:a8:08:83:90:8e:3f:44:47:93:a5:f5:68:a2:ca: c3:49:a8:96:9d:e6:9f:85:ec:c4:ee:49:32:96:29:f0:52:07: c0:8b:29:4a:8f:98:c5:ff:e8:c6:7d:f9:dc:3e:96:9e:45:d7: 71:57:aa:7e:d0:80:89:58:b2:83:cb:e3:9a:86:69:b0:2e:f1: 64:84:03:07:82:f3:8c:43:b1:85:91:b7:0e:cd:b9:47:76:7b: 46:44:33:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZw4nlgIZuWRKn35GC27xr1MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1YmZhNzFhNTExM2ZlZDgyNDY0Nzc2YzE0MzcxNTE0Yzky MThlZjUwHhcNMjYwMjA3MTUwMDI3WhcNMjYwMjA4MTUwMDI3WjAzMTEwLwYDVQQD Eyg0NTI4Yjg5OGU4YTZkNzYyNzYwNDE1YTBmOWEyNzRlZDM4M2FjZjBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2e3rTEMR2KdP4clmSWxc/T5a8mB0 X+wd/QuaAPUGdjF6NXiGz+aZEQoJEuOSepKQaWmOnQvGUsTQBwqT7IXgGhbf4VgB 1mFhsbuHJCHeeusaMosZXjPwFdjwDyeeiZ55pRWUJsHWXysw8QUS3ZRUFaUzoJfu T9vrl/GutBByLhzwhTUFUN0lwRJZn09veEtAkZW6ZWkLqSZTgmPwYsSPTWv/HeW7 sFZBZNBxfQOZckxH9By1ZqJ9rKDQG4Nymrh881bdJ9YHcy/cYC/GpMhfn6hnb7Po mn1ozomDmBWtJT2E4hMdgOCmIwNxRzACfU/YKnjtb5dI49TjueIB6xf1QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEUouJjoptdidgQVoPmidO04Os8LMB8GA1UdIwQY MBaAFMW/pxpRE/7YJGR3bBQ3FRTJIY71MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGItbkdsRVRfdGdrWkhkc0ZEY1ZGTWtoanZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC82N2M4ZmItMDI1Ny00ZDYwLWEwZGYt NmZjZTAzMzI1YjNmLzEveGItbkdsRVRfdGdrWkhkc0ZEY1ZGTWtoanZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC82N2M4ZmItMDI1Ny00ZDYwLWEwZGYtNmZjZTAzMzI1YjNm LzEveGItbkdsRVRfdGdrWkhkc0ZEY1ZGTWtoanZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkGShUyWP ljS5blKhaevo4Drtc0FT1L8oUbninCAhFHs5tnvo7+ScxaGc8B4tLF2MDGWSRMg6 Xy9AwztvZj2Q/G3bQWaf7qwaA6yqCs9NfTRdfeN7hBo0t9Cf4F3U8yTWYn+Hz+It DaI54V20O2udsyN8CDchOjNpH1wSwDjPToKB84s6y7HSwjtSN4wEXFELTWR7tuLq nsm/cnIIWmSLMKTDzVdimagIg5COP0RHk6X1aKLKw0molp3mn4XsxO5JMpYp8FIH wIspSo+Yxf/oxn353D6WnkXXcVeqftCAiViyg8vjmoZpsC7xZIQDB4LzjEOxhZG3 Ds25R3Z7RkQzwg== -----END CERTIFICATE-----Generated at Sat Feb 7 20:51:55 2026 by rpki-client