This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json) Hash identifier: KKp1ydfUAgXqVD5VSSVSStZPkZ9z42Xrgt8j3EvEvZI= Subject key identifier: BC:E9:4B:86:AA:23:E7:71:91:02:D2:D1:02:D7:11:77:1D:EC:C7:9A Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e Certificate serial: 019C446C675274A45AB7A90744003C33502A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft Manifest number: 09AF Signing time: Mon 09 Feb 2026 22:01:20 +0000 Manifest this update: Mon 09 Feb 2026 22:01:20 +0000 Manifest next update: Tue 10 Feb 2026 22:01:20 +0000 Files and hashes: 1: bkpFrc_6laoYbGdkqTlHlW-Qe80.roa (hash: p/3gwRkkBDXycKoUYkEzWpJbWT3T+RMybdZ5AMyzIgo=) 2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: vH+9WHeUg3CgViXhQv522MrJSE8EDwj39AJkGT31Nak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6c:67:52:74:a4:5a:b7:a9:07:44:00:3c:33:50:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e Validity Not Before: Feb 9 22:01:20 2026 GMT Not After : Feb 10 22:01:20 2026 GMT Subject: CN=bce94b86aa23e7719102d2d102d711771decc79a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e9:23:fd:0f:ff:64:d8:b2:c8:29:ea:21:c1: fc:fb:36:9a:7e:3a:53:01:30:79:01:08:e9:20:5e: ef:3a:0c:d5:90:4e:71:ed:58:e7:f1:a3:6b:58:6a: 8e:29:74:ff:bb:96:4d:29:42:7e:22:86:e1:70:f9: 10:5e:6f:1b:24:55:67:c6:a2:46:57:b4:55:b2:97: 32:df:a5:7a:76:85:f3:a5:ad:bf:1c:6c:e5:8d:05: ce:f1:93:92:cc:4b:4f:4e:68:08:64:f4:ba:24:66: 37:ca:90:99:a2:41:46:ee:a9:1e:0f:d4:00:ec:04: 92:7d:75:6f:41:c6:cd:49:09:4d:1b:fa:93:1c:5a: da:9c:77:21:df:cd:58:a0:88:cb:cb:78:fc:58:b8: 98:20:1e:34:07:d6:64:82:4c:26:59:96:46:1e:5c: 9f:b9:27:4d:f5:77:e7:9a:93:ba:bc:cb:c8:4e:60: a1:40:c9:82:6a:c2:ca:ee:5a:9e:7b:10:09:22:31: 99:2d:c6:12:3a:a2:d1:d8:c4:0f:37:ad:57:8b:c5: f8:ac:b9:11:46:63:66:5f:6d:12:db:45:6b:d4:ab: da:88:79:a6:12:13:c8:73:33:01:23:f4:91:8f:cc: 3c:0e:50:2e:70:2e:d2:1c:17:1c:6e:b6:de:eb:65: b4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E9:4B:86:AA:23:E7:71:91:02:D2:D1:02:D7:11:77:1D:EC:C7:9A X509v3 Authority Key Identifier: keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:9c:28:34:87:fd:64:bc:e3:3a:86:83:42:05:b0:50:18:32: 7b:7b:ad:dc:96:11:bc:72:53:62:1a:cc:83:46:33:4d:e3:13: f0:07:1f:22:69:60:a4:d4:af:3f:09:d8:fe:99:c7:a4:2e:da: 0a:d2:1a:53:e2:70:de:2b:24:e8:e9:ed:00:0b:3d:61:07:1d: ed:b7:3d:f1:c1:a7:eb:40:e0:39:2e:5d:b7:34:b8:ab:7f:46: a3:4a:dc:18:48:07:6d:be:44:01:5f:5d:86:bd:f6:cf:2a:ba: 25:66:0d:b2:2c:09:af:d6:c3:ee:bc:9b:8a:fd:b0:c2:fa:05: 50:a9:8c:ae:88:b7:97:22:d2:47:b8:0d:4a:db:b6:82:b6:6f: 6e:57:56:55:e1:4e:99:1c:8a:1b:44:eb:96:84:97:80:87:56: fe:ca:7d:ad:4e:39:3f:24:bb:0f:31:59:f1:f2:ce:ce:2d:02: a4:4b:0f:f1:16:69:06:70:af:9f:ee:bd:97:2a:ef:e8:dc:fb: 3e:0d:a6:ed:4d:fa:a8:9b:20:78:c6:07:f0:b3:4d:48:80:7f: 6a:28:59:f0:a9:84:fe:c1:69:10:1b:a8:88:61:0d:be:ae:a0: 6d:74:7a:08:56:f1:d9:fb:37:1a:91:ff:34:76:fd:e2:04:38: 1d:34:ef:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEbGdSdKRat6kHRAA8M1AqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0M2M3NDAyMmNiYmYwYjNjZmZmNjAzMWQ2ZDJkZTAzNjlj OTllNGUwHhcNMjYwMjA5MjIwMTIwWhcNMjYwMjEwMjIwMTIwWjAzMTEwLwYDVQQD EyhiY2U5NGI4NmFhMjNlNzcxOTEwMmQyZDEwMmQ3MTE3NzFkZWNjNzlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ekj/Q//ZNiyyCnqIcH8+zaafjpT ATB5AQjpIF7vOgzVkE5x7Vjn8aNrWGqOKXT/u5ZNKUJ+IobhcPkQXm8bJFVnxqJG V7RVspcy36V6doXzpa2/HGzljQXO8ZOSzEtPTmgIZPS6JGY3ypCZokFG7qkeD9QA 7ASSfXVvQcbNSQlNG/qTHFranHch381YoIjLy3j8WLiYIB40B9ZkgkwmWZZGHlyf uSdN9XfnmpO6vMvITmChQMmCasLK7lqeexAJIjGZLcYSOqLR2MQPN61Xi8X4rLkR RmNmX20S20Vr1KvaiHmmEhPIczMBI/SRj8w8DlAucC7SHBccbrbe62W0gwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLzpS4aqI+dxkQLS0QLXEXcd7MeaMB8GA1UdIwQY MBaAFMQ8dAIsu/Czz/9gMdbS3gNpyZ5OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzIt MjUwZTU1YjlkNGE5LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzItMjUwZTU1YjlkNGE5 LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhpwoNIf9 ZLzjOoaDQgWwUBgye3ut3JYRvHJTYhrMg0YzTeMT8AcfImlgpNSvPwnY/pnHpC7a CtIaU+Jw3isk6OntAAs9YQcd7bc98cGn60DgOS5dtzS4q39Go0rcGEgHbb5EAV9d hr32zyq6JWYNsiwJr9bD7rybiv2wwvoFUKmMroi3lyLSR7gNStu2grZvbldWVeFO mRyKG0TrloSXgIdW/sp9rU45PyS7DzFZ8fLOzi0CpEsP8RZpBnCvn+69lyrv6Nz7 Pg2m7U36qJsgeMYH8LNNSIB/aihZ8KmE/sFpEBuoiGENvq6gbXR6CFbx2fs3GpH/ NHb94gQ4HTTvew== -----END CERTIFICATE-----Generated at Tue Feb 10 04:19:53 2026 by rpki-client