This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json) Hash identifier: eueIueU9TEs8LX+OZ9GClPMmYpYSH1IxDVUboP6IVbA= Subject key identifier: 1A:FE:3E:92:6B:50:40:3A:B6:56:88:83:86:DB:6F:66:D4:A5:9E:7B Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e Certificate serial: 019C427E11646B935510A59CF380107A4E7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft Manifest number: 09AE Signing time: Mon 09 Feb 2026 13:01:24 +0000 Manifest this update: Mon 09 Feb 2026 13:01:24 +0000 Manifest next update: Tue 10 Feb 2026 13:01:24 +0000 Files and hashes: 1: bkpFrc_6laoYbGdkqTlHlW-Qe80.roa (hash: p/3gwRkkBDXycKoUYkEzWpJbWT3T+RMybdZ5AMyzIgo=) 2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: KRi2FxQBs0CT5JjyKNHgn/FetH2ybI855iEkiGLExsE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:11:64:6b:93:55:10:a5:9c:f3:80:10:7a:4e:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e Validity Not Before: Feb 9 13:01:24 2026 GMT Not After : Feb 10 13:01:24 2026 GMT Subject: CN=1afe3e926b50403ab656888386db6f66d4a59e7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2d:02:66:83:d1:0e:ac:bd:d7:69:e0:c2:40: b6:9e:c7:4f:77:93:10:ef:4e:a6:20:49:c9:9d:5d: 34:f0:39:03:f0:1f:0f:da:26:b0:5a:b5:25:fb:56: bf:be:ee:b0:6e:59:fb:01:6e:e3:be:7e:d9:31:c1: 83:bf:ca:bb:07:e9:df:99:b5:31:d4:67:e0:55:05: 72:0c:8d:1f:21:d2:37:e1:3a:b9:5c:dd:be:d5:c3: 9a:01:d6:dd:17:23:7b:ee:53:e4:c5:cd:b8:8c:7d: ab:0f:b2:b0:5e:6e:1c:90:b2:c2:c1:01:bb:b9:f1: 24:df:83:5d:8b:18:57:73:15:9a:88:33:bb:05:7b: a9:b2:0f:11:f5:c4:eb:0a:14:85:b6:2b:87:9b:7c: 87:04:7f:94:ca:90:f7:e5:ed:b4:24:d2:9f:19:f3: 91:a0:a0:9a:1f:9d:e2:d6:c3:6e:79:73:df:0d:b2: 78:bd:f1:9b:09:76:4a:d9:b3:11:30:5a:ec:76:86: 44:6f:56:e3:ff:1f:38:8b:42:59:ab:a1:de:5a:bd: 74:1c:c0:dd:c1:e2:c9:b4:d7:27:d2:d7:bb:5b:79: 32:ca:e8:00:e1:13:dd:8c:47:a5:4d:f4:95:3f:ed: b4:e0:45:0b:2c:38:19:fe:05:02:e2:f0:94:c7:53: be:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FE:3E:92:6B:50:40:3A:B6:56:88:83:86:DB:6F:66:D4:A5:9E:7B X509v3 Authority Key Identifier: keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:10:55:a7:ad:0b:29:04:4c:83:ff:b5:20:cc:b8:ad:81:53: 35:0f:69:eb:55:8b:13:86:96:2e:42:2c:b0:02:d9:f7:7a:e9: fb:92:36:a9:77:07:d5:60:fb:40:0e:c2:13:a4:61:6b:d8:8f: 0b:f8:a8:eb:44:1b:18:a0:a8:e8:06:74:49:08:92:da:91:21: 1a:2c:0d:90:1e:68:28:cf:fc:a6:fc:a5:37:8e:34:30:58:6a: b7:dd:58:da:11:25:a8:0b:ef:69:a8:6a:56:0f:52:26:d6:07: 07:44:b2:ed:52:35:b8:c8:ac:74:78:d1:98:bd:fb:e1:a2:58: aa:d0:d7:06:1d:ab:34:42:9f:f4:c5:53:a0:33:40:8b:3b:15: 9b:84:e4:ef:3c:db:c2:3a:8b:a2:cc:90:f4:fb:11:d5:77:a1: a5:3d:92:18:a5:80:02:d8:33:b6:fd:59:96:da:72:13:33:ca: 35:5f:c5:96:2b:49:7a:ac:2a:4c:ca:53:86:30:53:1e:b2:48: 13:a3:7c:6a:43:d6:0e:ae:84:bd:32:ee:89:96:b8:b2:1c:79: e9:d6:1e:ac:88:eb:da:56:f6:1f:74:6f:4e:2f:26:a8:ac:cf: a7:7f:60:86:34:e4:05:06:41:fa:e9:ff:9a:4c:d9:dd:20:d9: bc:70:c8:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfhFka5NVEKWc84AQek57MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0M2M3NDAyMmNiYmYwYjNjZmZmNjAzMWQ2ZDJkZTAzNjlj OTllNGUwHhcNMjYwMjA5MTMwMTI0WhcNMjYwMjEwMTMwMTI0WjAzMTEwLwYDVQQD EygxYWZlM2U5MjZiNTA0MDNhYjY1Njg4ODM4NmRiNmY2NmQ0YTU5ZTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxi0CZoPRDqy912ngwkC2nsdPd5MQ 706mIEnJnV008DkD8B8P2iawWrUl+1a/vu6wbln7AW7jvn7ZMcGDv8q7B+nfmbUx 1GfgVQVyDI0fIdI34Tq5XN2+1cOaAdbdFyN77lPkxc24jH2rD7KwXm4ckLLCwQG7 ufEk34NdixhXcxWaiDO7BXupsg8R9cTrChSFtiuHm3yHBH+UypD35e20JNKfGfOR oKCaH53i1sNueXPfDbJ4vfGbCXZK2bMRMFrsdoZEb1bj/x84i0JZq6HeWr10HMDd weLJtNcn0te7W3kyyugA4RPdjEelTfSVP+204EULLDgZ/gUC4vCUx1O+fwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBr+PpJrUEA6tlaIg4bbb2bUpZ57MB8GA1UdIwQY MBaAFMQ8dAIsu/Czz/9gMdbS3gNpyZ5OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzIt MjUwZTU1YjlkNGE5LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzItMjUwZTU1YjlkNGE5 LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKhBVp60L KQRMg/+1IMy4rYFTNQ9p61WLE4aWLkIssALZ93rp+5I2qXcH1WD7QA7CE6Rha9iP C/io60QbGKCo6AZ0SQiS2pEhGiwNkB5oKM/8pvylN440MFhqt91Y2hElqAvvaahq Vg9SJtYHB0Sy7VI1uMisdHjRmL374aJYqtDXBh2rNEKf9MVToDNAizsVm4Tk7zzb wjqLosyQ9PsR1XehpT2SGKWAAtgztv1ZltpyEzPKNV/FlitJeqwqTMpThjBTHrJI E6N8akPWDq6EvTLuiZa4shx56dYerIjr2lb2H3RvTi8mqKzPp39ghjTkBQZB+un/ mkzZ3SDZvHDISw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:19 2026 by rpki-client