This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/8d5433-6c2d-44f5-b6e0-fd6c470295d4/1/XYxMrtvxY99oiGrDtz8OTLQX4V4.mft File: XYxMrtvxY99oiGrDtz8OTLQX4V4.mft (raw, json) Hash identifier: 2lAnSrVSQRHUYY+b3PqzRZZj0EX4ZdzTQ99f+nrfMKE= Subject key identifier: BD:2F:09:F7:DF:19:BA:93:CC:09:66:3D:01:9B:D6:C2:25:47:E4:98 Authority key identifier: 5D:8C:4C:AE:DB:F1:63:DF:68:88:6A:C3:B7:3F:0E:4C:B4:17:E1:5E Certificate issuer: /CN=5d8c4caedbf163df68886ac3b73f0e4cb417e15e Certificate serial: 019C43227EA46F824BE4D27BAD99D79C0C2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYxMrtvxY99oiGrDtz8OTLQX4V4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/8d5433-6c2d-44f5-b6e0-fd6c470295d4/1/XYxMrtvxY99oiGrDtz8OTLQX4V4.mft Manifest number: 0E4D Signing time: Mon 09 Feb 2026 16:00:59 +0000 Manifest this update: Mon 09 Feb 2026 16:00:59 +0000 Manifest next update: Tue 10 Feb 2026 16:00:59 +0000 Files and hashes: 1: XYxMrtvxY99oiGrDtz8OTLQX4V4.crl (hash: WnoJmCQRnNReq+PCY/eVHxLo1VbDju1GPSvy3Xc1PnM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/8d5433-6c2d-44f5-b6e0-fd6c470295d4/1/XYxMrtvxY99oiGrDtz8OTLQX4V4.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/8d5433-6c2d-44f5-b6e0-fd6c470295d4/1/XYxMrtvxY99oiGrDtz8OTLQX4V4.mft rsync://rpki.ripe.net/repository/DEFAULT/XYxMrtvxY99oiGrDtz8OTLQX4V4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:7e:a4:6f:82:4b:e4:d2:7b:ad:99:d7:9c:0c:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d8c4caedbf163df68886ac3b73f0e4cb417e15e Validity Not Before: Feb 9 16:00:59 2026 GMT Not After : Feb 10 16:00:59 2026 GMT Subject: CN=bd2f09f7df19ba93cc09663d019bd6c22547e498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5c:5e:1b:fb:4d:c1:1e:f5:b1:09:f2:15:94: f0:5c:6c:1d:e8:e1:f9:63:6c:1b:b6:d8:04:a8:ce: c9:cd:64:71:53:a6:0f:e7:ba:5a:9b:3f:69:28:e8: 27:de:c5:b7:8c:b9:45:55:ee:93:59:d0:45:10:5f: 20:a8:5e:c4:cf:4e:8b:d1:3d:ac:6e:d0:30:24:f0: 57:0c:42:5e:6f:2e:d4:9a:9d:d1:5c:46:fc:ac:cf: ef:83:72:b8:6d:58:37:b0:56:79:c5:c5:8e:f0:b0: ed:66:63:f9:bd:15:9d:b0:c7:2e:16:7d:6d:1d:1b: 7f:9e:b5:c9:50:f0:f9:15:b1:14:9a:5b:df:30:14: 36:dc:65:29:55:38:56:58:18:e3:67:39:f3:07:68: fd:97:23:9b:91:b0:37:50:91:cf:03:9a:04:5a:4f: 66:26:25:25:b6:9c:bf:bf:e2:e8:a8:58:e4:b9:39: 55:c5:df:b2:04:25:32:a6:59:89:a2:a0:e4:43:58: fd:b1:d3:e5:cf:7a:e7:d2:27:38:b2:d1:0b:21:fc: 26:a2:d6:3f:12:7a:1f:e9:53:56:20:b0:4d:dc:7b: 35:c4:fc:c4:0a:da:f6:ca:20:23:f6:5e:dd:5b:e3: 6e:d1:cb:e3:42:78:f6:b3:f0:89:76:09:2c:12:a3: a3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:2F:09:F7:DF:19:BA:93:CC:09:66:3D:01:9B:D6:C2:25:47:E4:98 X509v3 Authority Key Identifier: keyid:5D:8C:4C:AE:DB:F1:63:DF:68:88:6A:C3:B7:3F:0E:4C:B4:17:E1:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYxMrtvxY99oiGrDtz8OTLQX4V4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/8d5433-6c2d-44f5-b6e0-fd6c470295d4/1/XYxMrtvxY99oiGrDtz8OTLQX4V4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/8d5433-6c2d-44f5-b6e0-fd6c470295d4/1/XYxMrtvxY99oiGrDtz8OTLQX4V4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:89:be:45:77:db:d4:73:a7:f8:4e:ee:21:e1:3d:78:47:15: ae:d4:8e:ad:95:26:fe:21:cc:ea:92:64:27:c1:6a:8d:18:8f: a0:36:ff:87:66:11:0f:7b:16:09:56:be:c0:85:86:fc:64:81: f2:c5:a1:a1:c2:d4:bc:16:dd:e7:5c:71:c6:50:c9:4d:b8:c4: e6:18:1e:4a:04:09:0c:d6:9f:69:e5:e0:5f:eb:3e:65:b6:e7: 11:c8:97:4e:49:b6:79:6e:29:98:6f:bd:f5:ca:21:a9:fc:ce: 4e:57:19:2a:e1:b9:30:f6:30:89:b6:63:05:94:50:90:d9:74: ec:46:a8:34:c1:a3:bb:ee:61:fb:06:3c:14:86:21:b5:be:9c: 09:71:43:79:3b:a7:9a:3f:f1:71:43:58:57:2f:8e:43:01:e7: 0b:78:a6:c7:2b:b6:58:d0:25:72:5d:86:f6:40:fe:ad:9f:45: 0b:45:10:29:14:04:46:a3:4b:07:28:34:10:4e:ab:32:41:75: f3:b0:15:04:bc:4f:18:a5:c3:93:93:bd:e6:0e:c3:de:82:7b: 3e:48:8c:11:5a:d9:76:b5:2a:47:08:6f:a7:2d:3e:b3:88:09: bd:a2:99:5e:7c:85:84:5a:c3:f2:b9:b5:1c:14:fb:b4:36:36: c7:e3:21:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIn6kb4JL5NJ7rZnXnAwvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkOGM0Y2FlZGJmMTYzZGY2ODg4NmFjM2I3M2YwZTRjYjQx N2UxNWUwHhcNMjYwMjA5MTYwMDU5WhcNMjYwMjEwMTYwMDU5WjAzMTEwLwYDVQQD EyhiZDJmMDlmN2RmMTliYTkzY2MwOTY2M2QwMTliZDZjMjI1NDdlNDk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplxeG/tNwR71sQnyFZTwXGwd6OH5 Y2wbttgEqM7JzWRxU6YP57pamz9pKOgn3sW3jLlFVe6TWdBFEF8gqF7Ez06L0T2s btAwJPBXDEJeby7Ump3RXEb8rM/vg3K4bVg3sFZ5xcWO8LDtZmP5vRWdsMcuFn1t HRt/nrXJUPD5FbEUmlvfMBQ23GUpVThWWBjjZznzB2j9lyObkbA3UJHPA5oEWk9m JiUltpy/v+LoqFjkuTlVxd+yBCUyplmJoqDkQ1j9sdPlz3rn0ic4stELIfwmotY/ Enof6VNWILBN3Hs1xPzECtr2yiAj9l7dW+Nu0cvjQnj2s/CJdgksEqOjBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL0vCfffGbqTzAlmPQGb1sIlR+SYMB8GA1UdIwQY MBaAFF2MTK7b8WPfaIhqw7c/Dky0F+FeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFl4TXJ0dnhZOTlvaUdyRHR6OE9UTFFYNFY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi84ZDU0MzMtNmMyZC00NGY1LWI2ZTAt ZmQ2YzQ3MDI5NWQ0LzEvWFl4TXJ0dnhZOTlvaUdyRHR6OE9UTFFYNFY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi84ZDU0MzMtNmMyZC00NGY1LWI2ZTAtZmQ2YzQ3MDI5NWQ0 LzEvWFl4TXJ0dnhZOTlvaUdyRHR6OE9UTFFYNFY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI4m+RXfb 1HOn+E7uIeE9eEcVrtSOrZUm/iHM6pJkJ8FqjRiPoDb/h2YRD3sWCVa+wIWG/GSB 8sWhocLUvBbd51xxxlDJTbjE5hgeSgQJDNafaeXgX+s+ZbbnEciXTkm2eW4pmG+9 9cohqfzOTlcZKuG5MPYwibZjBZRQkNl07EaoNMGju+5h+wY8FIYhtb6cCXFDeTun mj/xcUNYVy+OQwHnC3imxyu2WNAlcl2G9kD+rZ9FC0UQKRQERqNLByg0EE6rMkF1 87AVBLxPGKXDk5O95g7D3oJ7PkiMEVrZdrUqRwhvpy0+s4gJvaKZXnyFhFrD8rm1 HBT7tDY2x+Mhxw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:26 2026 by rpki-client