This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft File: _XBhwg1PCXYTrAMTI3pt8rsstdw.mft (raw, json) Hash identifier: Wb0O55WL8WTYRps7zkNAqsJsFjaywIVDpCpYVgFwS3w= Subject key identifier: 1C:8E:C7:04:40:8D:5B:49:B2:9E:B7:FB:7D:30:0D:80:54:1C:F2:B5 Authority key identifier: FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC Certificate issuer: /CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc Certificate serial: 019C4358EC29EBA156CB1D1DC3191273ED1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft Manifest number: 03A6 Signing time: Mon 09 Feb 2026 17:00:26 +0000 Manifest this update: Mon 09 Feb 2026 17:00:26 +0000 Manifest next update: Tue 10 Feb 2026 17:00:26 +0000 Files and hashes: 1: ON48mzQU_ZkOuAlZyHAa9FLTToE.roa (hash: TGKZsRuel7PSpfKiU9Wd7dmrbOAx1arJ02E3xTpIfM8=) 2: _XBhwg1PCXYTrAMTI3pt8rsstdw.crl (hash: VLqEEy9mNEizjgf0XBxMNU0WIPcIsqmNQndA34+RPYA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:ec:29:eb:a1:56:cb:1d:1d:c3:19:12:73:ed:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc Validity Not Before: Feb 9 17:00:26 2026 GMT Not After : Feb 10 17:00:26 2026 GMT Subject: CN=1c8ec704408d5b49b29eb7fb7d300d80541cf2b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ba:e4:42:2d:30:2d:18:7a:60:d6:67:b2:d9: c0:68:bb:3d:00:96:2b:1b:ec:66:31:db:5c:89:15: fb:15:8a:c9:54:42:1b:30:77:22:0c:a9:3e:0e:46: 71:98:68:00:d3:d1:6e:cc:28:dc:c6:71:71:82:83: e8:61:9f:af:7e:11:42:3c:8b:52:e2:ee:20:ce:78: 9f:a0:aa:5c:e4:0d:43:bd:c6:bc:d3:38:70:9a:c7: a6:8f:b3:eb:12:97:bd:5b:67:7b:cc:2d:ad:38:12: e7:b3:40:8b:43:82:f0:52:ac:1f:a0:5a:2c:26:9c: d7:83:b8:4c:ca:15:59:38:a6:a7:d9:2f:94:69:94: bb:e2:df:34:63:99:84:5d:1b:72:9a:d3:f2:61:9b: 29:83:0a:4b:08:53:12:1f:aa:2f:ed:ad:7d:31:32: 46:c6:e9:de:9c:2b:75:87:b4:59:85:2c:bb:1b:57: c3:4b:d1:98:0a:d1:79:87:ca:7d:68:3e:db:4e:79: e7:8e:14:87:46:3e:8b:c2:e0:9a:36:6f:9d:03:36: 5b:90:96:0d:ae:f9:9c:41:bd:3e:4f:b6:df:fe:de: a3:c0:b3:43:4d:52:0b:e6:8f:15:26:28:43:2c:57: 46:d8:38:2a:8d:43:2f:56:98:6a:6b:d9:96:78:fa: e5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:8E:C7:04:40:8D:5B:49:B2:9E:B7:FB:7D:30:0D:80:54:1C:F2:B5 X509v3 Authority Key Identifier: keyid:FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:56:79:06:7a:fe:4a:59:0e:1e:a4:6d:fb:8d:97:ae:b5:0b: fd:49:71:80:44:ef:4f:64:db:5d:d7:8b:54:a8:f4:49:6d:86: 39:81:1d:7e:da:6b:54:cf:2b:1f:4e:c5:d3:2b:08:f7:e9:6c: 07:a5:54:7d:18:22:03:e4:35:f2:28:c8:28:b8:54:cb:3b:8b: c4:c4:fd:c6:42:29:bc:4f:96:e8:5c:e3:d4:64:c9:00:8a:8f: dd:cc:c5:50:e3:2c:90:c5:3f:39:fb:d4:6d:83:92:2e:d7:15: 94:6d:d3:5a:8f:b5:9b:a1:80:36:33:bd:99:20:19:27:b7:0f: c4:1e:b8:78:e8:c2:cd:f5:e5:b6:11:b9:57:5b:4d:48:8f:67: 29:a8:56:45:b0:d1:fb:a9:72:b1:52:3e:a7:06:d2:bf:6a:bf: 90:70:30:31:e3:5d:72:a6:a8:0a:89:1f:8a:f9:78:16:ee:b4: af:58:34:40:50:f6:c3:7a:cb:24:04:4e:9c:f1:a7:bf:50:d4: 86:6c:c0:ea:e7:38:11:39:d3:54:47:c4:3a:54:a3:89:f1:df: aa:92:40:3a:5e:7f:44:2d:8d:45:0e:a6:f6:02:06:88:2f:3a: 53:c1:77:ae:30:67:1d:c3:9b:1c:62:e2:d1:9f:f8:49:ba:92: 2e:fa:1c:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWOwp66FWyx0dwxkSc+0fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkNzA2MWMyMGQ0ZjA5NzYxM2FjMDMxMzIzN2E2ZGYyYmIy Y2I1ZGMwHhcNMjYwMjA5MTcwMDI2WhcNMjYwMjEwMTcwMDI2WjAzMTEwLwYDVQQD EygxYzhlYzcwNDQwOGQ1YjQ5YjI5ZWI3ZmI3ZDMwMGQ4MDU0MWNmMmI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbrkQi0wLRh6YNZnstnAaLs9AJYr G+xmMdtciRX7FYrJVEIbMHciDKk+DkZxmGgA09FuzCjcxnFxgoPoYZ+vfhFCPItS 4u4gznifoKpc5A1Dvca80zhwmsemj7PrEpe9W2d7zC2tOBLns0CLQ4LwUqwfoFos JpzXg7hMyhVZOKan2S+UaZS74t80Y5mEXRtymtPyYZspgwpLCFMSH6ov7a19MTJG xunenCt1h7RZhSy7G1fDS9GYCtF5h8p9aD7bTnnnjhSHRj6LwuCaNm+dAzZbkJYN rvmcQb0+T7bf/t6jwLNDTVIL5o8VJihDLFdG2DgqjUMvVphqa9mWePrlMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFByOxwRAjVtJsp63+30wDYBUHPK1MB8GA1UdIwQY MBaAFP1wYcINTwl2E6wDEyN6bfK7LLXcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1hCaHdnMVBDWFlUckFNVEkzcHQ4cnNzdGR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8zMmUzZDMtOWE4ZC00NjUzLTk0ZmEt YTIwMTk5ODgzMzBmLzEvX1hCaHdnMVBDWFlUckFNVEkzcHQ4cnNzdGR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC8zMmUzZDMtOWE4ZC00NjUzLTk0ZmEtYTIwMTk5ODgzMzBm LzEvX1hCaHdnMVBDWFlUckFNVEkzcHQ4cnNzdGR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdVZ5Bnr+ SlkOHqRt+42XrrUL/UlxgETvT2TbXdeLVKj0SW2GOYEdftprVM8rH07F0ysI9+ls B6VUfRgiA+Q18ijIKLhUyzuLxMT9xkIpvE+W6Fzj1GTJAIqP3czFUOMskMU/OfvU bYOSLtcVlG3TWo+1m6GANjO9mSAZJ7cPxB64eOjCzfXlthG5V1tNSI9nKahWRbDR +6lysVI+pwbSv2q/kHAwMeNdcqaoCokfivl4Fu60r1g0QFD2w3rLJAROnPGnv1DU hmzA6uc4ETnTVEfEOlSjifHfqpJAOl5/RC2NRQ6m9gIGiC86U8F3rjBnHcObHGLi 0Z/4SbqSLvocTA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:48 2026 by rpki-client