This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.mft File: xAqOocjcM7gpD-vTTkU4vZWXROg.mft (raw, json) Hash identifier: nJa+FNOP+b23q985njX5qI0Ew2tbpsdDDWeCverC/pQ= Subject key identifier: 84:B8:23:43:32:62:84:3F:86:B4:E8:26:12:8A:C9:2A:0C:43:FA:3A Authority key identifier: C4:0A:8E:A1:C8:DC:33:B8:29:0F:EB:D3:4E:45:38:BD:95:97:44:E8 Certificate issuer: /CN=c40a8ea1c8dc33b8290febd34e4538bd959744e8 Certificate serial: 019C41A1E452B4058895BDC05136F6BB7DF3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xAqOocjcM7gpD-vTTkU4vZWXROg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.mft Manifest number: 179F Signing time: Mon 09 Feb 2026 09:00:54 +0000 Manifest this update: Mon 09 Feb 2026 09:00:54 +0000 Manifest next update: Tue 10 Feb 2026 09:00:54 +0000 Files and hashes: 1: xAqOocjcM7gpD-vTTkU4vZWXROg.crl (hash: egJaVsPSlTh9nXH7ED5/BUeERI0Ko6ID6DMgDJ7qKOw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.mft rsync://rpki.ripe.net/repository/DEFAULT/xAqOocjcM7gpD-vTTkU4vZWXROg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:e4:52:b4:05:88:95:bd:c0:51:36:f6:bb:7d:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c40a8ea1c8dc33b8290febd34e4538bd959744e8 Validity Not Before: Feb 9 09:00:54 2026 GMT Not After : Feb 10 09:00:54 2026 GMT Subject: CN=84b823433262843f86b4e826128ac92a0c43fa3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:78:89:a5:9d:4b:42:1f:30:48:19:c7:7b:55: d6:d3:dc:c8:ad:13:87:09:4d:6a:a5:1a:17:8f:2b: 29:dc:d9:43:c5:c1:3c:6f:07:82:d8:95:16:b0:25: 20:40:33:74:e4:e9:fc:74:1d:90:fa:3c:bd:15:78: 99:89:bf:e4:7a:b0:a0:18:db:62:65:b9:50:81:14: 46:b9:3a:91:4a:34:09:0b:30:c2:14:dc:3f:85:ae: b5:45:f8:b8:46:08:a1:3c:72:bc:3d:47:62:41:c6: 41:76:ec:48:35:cf:ba:04:b3:af:f9:70:d6:5e:23: 23:61:b8:22:53:ee:f8:c4:fb:80:04:92:9b:6d:ec: bb:78:a5:fa:b6:67:5a:ea:06:78:ea:90:d7:39:97: 88:2d:4f:d6:c9:8b:a1:75:af:57:a7:78:eb:8b:e4: 0f:8d:7e:8f:76:c9:cf:c5:aa:c7:b2:e6:2d:c9:18: e4:92:65:7f:92:81:d5:63:20:7d:90:d0:fc:9f:ed: 68:ab:c2:a9:a3:cb:ad:34:eb:51:05:e5:ab:f4:e4: 12:fd:35:4c:a1:11:81:65:5b:9e:31:92:17:e5:9e: d1:fd:f4:2e:17:31:4c:76:28:a5:0c:ea:56:63:3d: d9:98:a1:59:cf:9e:42:19:05:3c:6b:7d:4c:68:76: 1b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B8:23:43:32:62:84:3F:86:B4:E8:26:12:8A:C9:2A:0C:43:FA:3A X509v3 Authority Key Identifier: keyid:C4:0A:8E:A1:C8:DC:33:B8:29:0F:EB:D3:4E:45:38:BD:95:97:44:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xAqOocjcM7gpD-vTTkU4vZWXROg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:26:b9:e7:f1:41:95:55:b2:49:08:5a:87:33:30:b5:eb:f9: 85:2d:aa:4f:f3:51:76:b8:20:b2:aa:cc:89:d5:13:18:2d:0d: ed:ec:99:43:e3:d0:b4:47:bf:bf:5a:e7:2e:93:e4:db:ce:e3: ea:96:b6:9c:60:8d:2a:4a:12:91:56:3c:9a:7c:24:7b:50:cf: 53:89:e1:c9:65:76:b6:c1:68:95:38:30:1c:a1:0a:27:ab:37: b7:fd:3b:ed:9e:8c:06:43:05:54:21:97:11:c1:1f:44:e5:d1: 4f:5a:bc:5a:50:e5:b1:ab:94:84:b2:91:e4:18:dd:4d:6f:62: f8:5c:10:ba:0f:a8:65:25:e4:b6:47:de:d8:91:ea:8a:47:24: 88:4f:7b:42:a6:5a:21:ea:9e:cd:c7:06:bb:1d:2a:3b:23:39: 96:c1:2b:87:83:d0:59:0d:4d:00:35:de:11:0f:e7:12:ce:53: 7d:b2:f8:78:38:ae:37:53:2d:91:08:32:16:d6:c0:6e:ff:ec: 72:59:10:c2:7b:ec:32:8c:5e:eb:7e:67:b3:f7:1b:1c:19:68: 95:c4:f3:d0:47:16:a6:7b:3f:a8:70:3f:67:e5:10:2b:01:c1: 5f:26:80:50:26:d3:10:73:cc:eb:a8:c6:af:a4:94:b3:b5:99: 16:99:d2:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoeRStAWIlb3AUTb2u33zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0MGE4ZWExYzhkYzMzYjgyOTBmZWJkMzRlNDUzOGJkOTU5 NzQ0ZTgwHhcNMjYwMjA5MDkwMDU0WhcNMjYwMjEwMDkwMDU0WjAzMTEwLwYDVQQD Eyg4NGI4MjM0MzMyNjI4NDNmODZiNGU4MjYxMjhhYzkyYTBjNDNmYTNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHiJpZ1LQh8wSBnHe1XW09zIrROH CU1qpRoXjysp3NlDxcE8bweC2JUWsCUgQDN05On8dB2Q+jy9FXiZib/kerCgGNti ZblQgRRGuTqRSjQJCzDCFNw/ha61Rfi4RgihPHK8PUdiQcZBduxINc+6BLOv+XDW XiMjYbgiU+74xPuABJKbbey7eKX6tmda6gZ46pDXOZeILU/WyYuhda9Xp3jri+QP jX6PdsnPxarHsuYtyRjkkmV/koHVYyB9kND8n+1oq8Kpo8utNOtRBeWr9OQS/TVM oRGBZVueMZIX5Z7R/fQuFzFMdiilDOpWYz3ZmKFZz55CGQU8a31MaHYb1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIS4I0MyYoQ/hrToJhKKySoMQ/o6MB8GA1UdIwQY MBaAFMQKjqHI3DO4KQ/r005FOL2Vl0ToMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEFxT29jamNNN2dwRC12VFRrVTR2WldYUk9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9lOThiZjctYzVjOC00NTYxLTk3ZTgt ZTEzMTYwYWMzZTIzLzEveEFxT29jamNNN2dwRC12VFRrVTR2WldYUk9nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi9lOThiZjctYzVjOC00NTYxLTk3ZTgtZTEzMTYwYWMzZTIz LzEveEFxT29jamNNN2dwRC12VFRrVTR2WldYUk9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASSa55/FB lVWySQhahzMwtev5hS2qT/NRdrggsqrMidUTGC0N7eyZQ+PQtEe/v1rnLpPk287j 6pa2nGCNKkoSkVY8mnwke1DPU4nhyWV2tsFolTgwHKEKJ6s3t/077Z6MBkMFVCGX EcEfROXRT1q8WlDlsauUhLKR5BjdTW9i+FwQug+oZSXktkfe2JHqikckiE97QqZa IeqezccGux0qOyM5lsErh4PQWQ1NADXeEQ/nEs5TfbL4eDiuN1MtkQgyFtbAbv/s clkQwnvsMoxe635ns/cbHBlolcTz0EcWpns/qHA/Z+UQKwHBXyaAUCbTEHPM66jG r6SUs7WZFpnSRQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:58 2026 by rpki-client