This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.mft File: XqhfHdTQNGSA8AmHSo9WcOMQhcI.mft (raw, json) Hash identifier: kwYUoW/AvxrDCNiJ+aQ39dU8ImZwLMeSuvt3/phKlz8= Subject key identifier: FE:84:04:12:50:BD:BE:29:65:74:C6:F8:89:19:B7:37:F4:3D:4B:AC Authority key identifier: 5E:A8:5F:1D:D4:D0:34:64:80:F0:09:87:4A:8F:56:70:E3:10:85:C2 Certificate issuer: /CN=5ea85f1dd4d0346480f009874a8f5670e31085c2 Certificate serial: 019C427D3239577B5B3967C003E4BDCF79B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqhfHdTQNGSA8AmHSo9WcOMQhcI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 13:00:26 +0000 Manifest this update: Mon 09 Feb 2026 13:00:26 +0000 Manifest next update: Tue 10 Feb 2026 13:00:26 +0000 Files and hashes: 1: XqhfHdTQNGSA8AmHSo9WcOMQhcI.crl (hash: 9Q8r7w70C0qHUSCCydq6466njFUH+rj4W0jVyvEEcTs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.mft rsync://rpki.ripe.net/repository/DEFAULT/XqhfHdTQNGSA8AmHSo9WcOMQhcI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:32:39:57:7b:5b:39:67:c0:03:e4:bd:cf:79:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ea85f1dd4d0346480f009874a8f5670e31085c2 Validity Not Before: Feb 9 13:00:26 2026 GMT Not After : Feb 10 13:00:26 2026 GMT Subject: CN=fe84041250bdbe296574c6f88919b737f43d4bac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:58:51:77:ed:13:23:20:c4:e2:9d:5f:2b:25: f1:89:12:b3:c5:f0:ca:b8:8f:e1:e0:7f:0b:cf:c1: 84:d7:1e:42:65:fc:45:a7:d5:ce:00:b6:2b:43:e3: f8:bf:68:8f:47:cf:41:77:ba:2e:9d:44:e6:e2:80: 42:bd:30:cf:83:b0:08:4c:9f:0b:1b:ce:04:23:8f: a5:a1:ed:e0:8b:79:38:c5:7b:4e:91:43:b7:ae:85: 71:ea:b2:c2:e3:22:16:2d:e2:c8:09:ca:65:07:f7: 29:a3:a5:33:90:15:b2:82:ce:6b:e3:5b:aa:ea:d8: 12:81:38:e7:22:38:38:f0:8c:bf:ee:9c:7f:29:5f: 99:06:d2:80:b5:f4:a8:50:48:7c:3c:20:4b:d9:10: a4:93:36:51:f3:88:da:cb:85:97:da:9a:50:c3:73: 56:04:bf:6b:c2:5d:f8:10:5e:a1:c1:97:c8:c9:0c: 47:e4:10:77:80:b0:67:0e:1d:a4:17:4f:4e:38:9c: b1:3d:a8:b4:09:fc:64:b6:88:a9:83:df:b5:d2:25: ad:a8:e6:b2:11:bf:1c:94:b5:f7:26:6d:f2:86:2f: 9e:3d:03:46:01:8d:7a:fe:03:b4:07:d5:0d:06:8b: d2:69:54:f2:41:c5:b9:f4:6e:b0:2c:ad:d8:32:70: aa:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:84:04:12:50:BD:BE:29:65:74:C6:F8:89:19:B7:37:F4:3D:4B:AC X509v3 Authority Key Identifier: keyid:5E:A8:5F:1D:D4:D0:34:64:80:F0:09:87:4A:8F:56:70:E3:10:85:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqhfHdTQNGSA8AmHSo9WcOMQhcI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:51:69:ed:3f:09:fb:71:49:81:97:35:2b:d2:62:66:1a:75: 67:76:12:c1:b2:ff:b7:04:e6:3e:d9:1c:06:a9:25:aa:74:d3: b3:96:d6:d0:14:bb:e9:7a:83:5c:f5:36:9f:83:db:e9:70:57: b9:38:5d:39:46:15:60:c8:e6:ff:f0:01:c0:a5:f8:46:63:de: 4a:69:11:f1:a8:d7:96:62:9b:36:33:83:16:1b:92:22:48:cc: cf:a7:9e:ec:e3:65:26:e7:87:52:04:32:30:ac:2a:85:71:32: 4a:7f:af:fc:71:8b:91:c6:85:91:41:bf:32:20:a3:23:be:18: 53:e3:a1:6e:de:ce:1a:a3:97:7a:c9:dc:0c:1b:a6:2a:81:87: 4a:e0:19:59:9f:96:cf:a2:d1:48:cc:51:39:91:c1:c1:4a:e5: a6:42:04:16:51:7c:e0:51:ec:9a:b0:23:c4:5f:d4:37:7f:33: 61:72:ec:6d:61:6e:8e:63:eb:f1:0a:22:1d:9b:d3:4d:c8:58: b8:da:9f:56:b7:70:78:be:71:d8:94:af:58:e7:f5:56:26:d5: ff:bc:83:ef:94:96:9e:09:c9:7c:da:5e:0c:4c:38:67:94:d3: eb:bc:fc:ff:a7:8a:d3:e6:3d:e0:72:a4:30:8f:ac:04:58:1c: 43:09:73:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfTI5V3tbOWfAA+S9z3m3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlYTg1ZjFkZDRkMDM0NjQ4MGYwMDk4NzRhOGY1NjcwZTMx MDg1YzIwHhcNMjYwMjA5MTMwMDI2WhcNMjYwMjEwMTMwMDI2WjAzMTEwLwYDVQQD EyhmZTg0MDQxMjUwYmRiZTI5NjU3NGM2Zjg4OTE5YjczN2Y0M2Q0YmFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1hRd+0TIyDE4p1fKyXxiRKzxfDK uI/h4H8Lz8GE1x5CZfxFp9XOALYrQ+P4v2iPR89Bd7ounUTm4oBCvTDPg7AITJ8L G84EI4+loe3gi3k4xXtOkUO3roVx6rLC4yIWLeLICcplB/cpo6UzkBWygs5r41uq 6tgSgTjnIjg48Iy/7px/KV+ZBtKAtfSoUEh8PCBL2RCkkzZR84jay4WX2ppQw3NW BL9rwl34EF6hwZfIyQxH5BB3gLBnDh2kF09OOJyxPai0Cfxktoipg9+10iWtqOay Eb8clLX3Jm3yhi+ePQNGAY16/gO0B9UNBovSaVTyQcW59G6wLK3YMnCqRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP6EBBJQvb4pZXTG+IkZtzf0PUusMB8GA1UdIwQY MBaAFF6oXx3U0DRkgPAJh0qPVnDjEIXCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHFoZkhkVFFOR1NBOEFtSFNvOVdjT01RaGNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy9lZjc4MDgtMTIyYi00Yjg5LTkzNTgt NTkwYzVmMWIwMWIzLzEvWHFoZkhkVFFOR1NBOEFtSFNvOVdjT01RaGNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy9lZjc4MDgtMTIyYi00Yjg5LTkzNTgtNTkwYzVmMWIwMWIz LzEvWHFoZkhkVFFOR1NBOEFtSFNvOVdjT01RaGNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWFFp7T8J +3FJgZc1K9JiZhp1Z3YSwbL/twTmPtkcBqklqnTTs5bW0BS76XqDXPU2n4Pb6XBX uThdOUYVYMjm//ABwKX4RmPeSmkR8ajXlmKbNjODFhuSIkjMz6ee7ONlJueHUgQy MKwqhXEySn+v/HGLkcaFkUG/MiCjI74YU+Ohbt7OGqOXesncDBumKoGHSuAZWZ+W z6LRSMxROZHBwUrlpkIEFlF84FHsmrAjxF/UN38zYXLsbWFujmPr8QoiHZvTTchY uNqfVrdweL5x2JSvWOf1VibV/7yD75SWngnJfNpeDEw4Z5TT67z8/6eK0+Y94HKk MI+sBFgcQwlzoQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:36 2026 by rpki-client