This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft File: xHC41L-HFAS8pTx3gVME7y6k4co.mft (raw, json) Hash identifier: bWtd2ngt+fSs6G9+HG4rLskprnO37q1uUZh9TnA6KR4= Subject key identifier: 22:15:D0:89:BA:6F:5A:74:4A:02:85:26:0D:21:A0:2D:28:8E:6F:AE Authority key identifier: C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA Certificate issuer: /CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca Certificate serial: 019C24AAE9C62EA797F8DAB6794B105C926E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft Manifest number: 01E6 Signing time: Tue 03 Feb 2026 18:01:46 +0000 Manifest this update: Tue 03 Feb 2026 18:01:46 +0000 Manifest next update: Wed 04 Feb 2026 18:01:46 +0000 Files and hashes: 1: DnR3n06izuqiF0c6QLmB63bhByA.roa (hash: wXx/mCp3Tb5hj1tTLAH162/y2WEyBpkE4oI2Qluv1II=) 2: xHC41L-HFAS8pTx3gVME7y6k4co.crl (hash: XxYsSWbwhkWP+/eTZvUBDMY42UhTZhES8rvcxjFSsEY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 04 Feb 2026 15:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:24:aa:e9:c6:2e:a7:97:f8:da:b6:79:4b:10:5c:92:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca Validity Not Before: Feb 3 18:01:46 2026 GMT Not After : Feb 4 18:01:46 2026 GMT Subject: CN=2215d089ba6f5a744a0285260d21a02d288e6fae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:74:76:74:8c:ca:bb:a9:3a:e2:7f:ec:b1:9d: 01:01:e5:99:c5:f8:2e:12:c3:6b:03:26:b2:cf:0a: 3c:ec:dd:45:5e:d3:8a:4d:68:32:79:21:17:5e:f9: f2:93:a9:a4:35:6e:0d:49:ee:82:00:b2:10:09:c8: c5:2f:ca:05:a6:1f:b8:db:ab:77:2a:f8:41:b5:c5: 0e:eb:be:58:e9:59:60:0a:6d:e6:ed:70:7f:67:8c: eb:e5:4f:b9:1a:ad:4c:44:f3:45:b3:41:71:ca:7f: 58:93:23:23:8b:80:dd:8c:bc:12:4e:93:dc:56:18: d7:45:ca:85:54:b8:79:82:ac:3b:08:7a:f9:9b:d7: 81:95:51:e5:9e:64:39:dd:24:61:90:31:1b:74:c5: 8c:0a:76:57:e6:1f:65:0a:52:79:1a:c5:d1:24:cc: 2a:43:5d:25:79:15:ea:aa:1f:61:31:04:b6:24:59: c0:53:58:51:53:c2:02:a7:84:34:04:6f:27:a8:c4: 72:fa:73:ad:17:d0:12:38:13:e0:1d:a0:c7:94:d0: fe:1e:da:ec:0c:ec:c8:22:7a:98:da:2a:c9:83:50: b4:1c:c9:b8:e3:8a:49:8c:3c:a2:0e:ff:11:32:7c: 79:73:4c:0d:8c:c3:d9:c8:d5:bf:7c:df:00:42:34: f4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:15:D0:89:BA:6F:5A:74:4A:02:85:26:0D:21:A0:2D:28:8E:6F:AE X509v3 Authority Key Identifier: keyid:C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e3:08:3c:cb:00:f9:f1:7d:3e:8c:68:31:2e:d0:71:7b:07:1b: b8:89:75:f3:ef:fe:94:c9:49:c9:d0:50:97:da:35:a8:f2:0e: 64:9b:1e:ad:bb:c0:f2:7f:7a:14:4d:7a:e0:c2:25:de:90:7a: 2f:43:f0:8d:77:1f:03:47:73:ab:a9:63:3a:c4:96:32:f0:4d: b6:c3:aa:d6:54:34:0b:77:bd:f7:2d:99:48:4c:7b:84:28:5a: e4:5b:fe:67:99:4e:e5:59:31:38:a3:da:22:5b:fc:92:6f:ad: e4:71:8c:06:a5:5a:21:18:17:96:63:3d:41:38:5d:3f:3f:56: 46:8f:f8:38:53:e9:32:99:98:88:e7:33:1b:4f:cf:77:fd:fa: f2:bd:62:06:df:82:9b:bd:0c:55:23:9f:41:58:82:a0:92:09: a8:df:74:18:d9:9f:ec:db:b4:5e:b7:a5:2a:2a:b5:4c:1e:06: 06:ce:c1:6c:39:31:b5:d9:17:be:a2:92:00:f7:69:0d:99:97: 63:72:5f:0f:3a:b5:26:ab:de:74:81:45:6e:3b:32:6a:39:86: dc:58:77:30:cb:83:a4:44:df:b1:82:5f:83:9a:ab:e7:4b:bd: a3:e2:e3:89:f9:ca:a8:8a:ef:12:62:1f:99:4e:1b:bd:c9:7e: 5e:12:2b:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwkqunGLqeX+Nq2eUsQXJJuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0NzBiOGQ0YmY4NzE0MDRiY2E1M2M3NzgxNTMwNGVmMmVh NGUxY2EwHhcNMjYwMjAzMTgwMTQ2WhcNMjYwMjA0MTgwMTQ2WjAzMTEwLwYDVQQD EygyMjE1ZDA4OWJhNmY1YTc0NGEwMjg1MjYwZDIxYTAyZDI4OGU2ZmFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3R2dIzKu6k64n/ssZ0BAeWZxfgu EsNrAyayzwo87N1FXtOKTWgyeSEXXvnyk6mkNW4NSe6CALIQCcjFL8oFph+426t3 KvhBtcUO675Y6VlgCm3m7XB/Z4zr5U+5Gq1MRPNFs0Fxyn9YkyMji4DdjLwSTpPc VhjXRcqFVLh5gqw7CHr5m9eBlVHlnmQ53SRhkDEbdMWMCnZX5h9lClJ5GsXRJMwq Q10leRXqqh9hMQS2JFnAU1hRU8ICp4Q0BG8nqMRy+nOtF9ASOBPgHaDHlND+Htrs DOzIInqY2irJg1C0HMm444pJjDyiDv8RMnx5c0wNjMPZyNW/fN8AQjT0sQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCIV0Im6b1p0SgKFJg0hoC0ojm+uMB8GA1UdIwQY MBaAFMRwuNS/hxQEvKU8d4FTBO8upOHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEhDNDFMLUhGQVM4cFR4M2dWTUU3eTZrNGNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9hNGJhOGYtNWU2MS00ZGNjLWJhMGIt ZjYyNGVkNWY0NmZlLzEveEhDNDFMLUhGQVM4cFR4M2dWTUU3eTZrNGNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9hNGJhOGYtNWU2MS00ZGNjLWJhMGItZjYyNGVkNWY0NmZl LzEveEhDNDFMLUhGQVM4cFR4M2dWTUU3eTZrNGNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA4wg8ywD5 8X0+jGgxLtBxewcbuIl18+/+lMlJydBQl9o1qPIOZJserbvA8n96FE164MIl3pB6 L0PwjXcfA0dzq6ljOsSWMvBNtsOq1lQ0C3e99y2ZSEx7hCha5Fv+Z5lO5VkxOKPa Ilv8km+t5HGMBqVaIRgXlmM9QThdPz9WRo/4OFPpMpmYiOczG0/Pd/368r1iBt+C m70MVSOfQViCoJIJqN90GNmf7Nu0XrelKiq1TB4GBs7BbDkxtdkXvqKSAPdpDZmX Y3JfDzq1JqvedIFFbjsyajmG3Fh3MMuDpETfsYJfg5qr50u9o+LjifnKqIrvEmIf mU4bvcl+XhIrtQ== -----END CERTIFICATE-----Generated at Tue Feb 3 21:58:35 2026 by rpki-client