This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft File: 1XfOFDQjLYCBldDKcKs5HfsHry0.mft (raw, json) Hash identifier: rxod58raEsJuTXMDMsoPkcj76HsU26RrQ6pi9KjTizQ= Subject key identifier: 66:F0:AC:E1:EF:A8:A2:6A:80:D8:AF:68:29:5C:C7:29:61:4E:21:26 Authority key identifier: D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D Certificate issuer: /CN=d577ce1434232d808195d0ca70ab391dfb07af2d Certificate serial: 019C43C6E1558E9C37B086CF518F8BF8F3EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 19:00:33 +0000 Manifest this update: Mon 09 Feb 2026 19:00:33 +0000 Manifest next update: Tue 10 Feb 2026 19:00:33 +0000 Files and hashes: 1: 1XfOFDQjLYCBldDKcKs5HfsHry0.crl (hash: 0sAvrKBCNcP1liSoY0khyJk5J+RDE8H+GbB2vHmTyhI=) 2: OeILc9n1u8YEH2AOBIE0o0dgpEE.roa (hash: /7A8rLMm0YbWTOXfPXut3LLp0Fa9Ut9MxlMvs+Wsm1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:e1:55:8e:9c:37:b0:86:cf:51:8f:8b:f8:f3:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d577ce1434232d808195d0ca70ab391dfb07af2d Validity Not Before: Feb 9 19:00:33 2026 GMT Not After : Feb 10 19:00:33 2026 GMT Subject: CN=66f0ace1efa8a26a80d8af68295cc729614e2126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:26:32:4f:d9:12:63:78:97:5d:64:ee:69:db: 7a:c8:0f:1e:c9:bf:15:62:5c:bf:52:2f:5a:e5:e2: ed:78:a4:11:b2:28:43:ad:95:11:19:3c:1f:64:a9: 3a:1e:28:40:bd:d3:56:92:23:a7:35:26:6d:1c:8a: c1:98:73:f2:01:6e:43:de:37:45:90:23:e8:1b:b6: 00:51:4a:cf:00:aa:f0:a3:a2:da:20:1a:b3:c3:11: 42:3c:74:c6:1a:a7:48:1e:e0:72:26:89:95:73:01: 66:a5:b7:68:3d:21:78:47:27:f8:dc:30:dd:72:c6: fc:da:73:2f:b6:02:42:62:50:9d:22:65:da:9e:5e: f1:51:69:e3:ff:b8:bf:49:47:48:25:a8:15:b9:69: d9:44:5b:e4:79:92:99:c0:61:db:ed:fd:86:7a:df: 9a:34:ad:c6:36:dd:67:b8:74:4d:bf:ec:e0:73:a0: 7d:08:97:ae:5c:06:26:7a:c8:63:34:1b:0f:37:13: 15:e9:9b:60:ce:61:33:81:dc:86:e4:c2:69:24:8b: cf:bd:75:ec:e3:dc:11:2b:ea:5a:fc:2f:ae:5a:75: d4:7c:f5:c6:6e:c0:68:98:3f:e0:55:bb:55:95:e7: 92:28:f5:e7:f2:f2:f4:9a:3d:de:0e:04:3b:c2:dd: 08:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:F0:AC:E1:EF:A8:A2:6A:80:D8:AF:68:29:5C:C7:29:61:4E:21:26 X509v3 Authority Key Identifier: keyid:D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:6c:d2:83:41:6d:2c:53:01:68:41:4d:49:7b:76:0d:84:81: af:6d:27:9e:c3:e1:9c:d5:a8:32:28:86:a1:9c:49:7d:ec:62: 62:37:59:77:d5:8d:19:80:f1:d1:12:27:bb:5e:f6:92:90:50: 6b:64:e2:6c:58:6f:d2:6b:bd:73:62:20:f6:0f:a2:a8:0f:b3: 07:f6:2f:d0:8f:8a:65:37:92:cd:76:8d:2b:66:af:47:fe:b1: ff:00:4a:0f:78:ca:44:5b:59:81:71:8c:52:77:ac:60:a8:25: 30:27:05:cb:0f:28:39:53:a5:25:6c:31:92:31:fb:a3:96:8b: ac:f3:e1:62:2f:c8:ef:45:85:3c:70:39:c6:20:1e:b8:92:08: 2e:29:f9:19:c7:5d:57:d0:56:38:d1:f5:f1:3e:d2:ed:a9:0e: 52:3c:6e:1d:a5:12:44:b9:b1:36:f6:dc:f2:ac:19:a9:74:8f: 27:3e:37:7c:5d:29:ab:94:2c:88:6b:e4:be:20:22:72:34:85: 65:c7:d7:3f:95:d3:08:33:70:9a:6d:ce:e5:0a:55:60:60:f1: af:d5:85:39:bc:b9:94:7d:10:61:82:a8:e2:05:19:46:b4:8f: cf:46:4b:4f:42:f0:c5:c0:13:28:f6:e8:81:75:d0:77:5f:4f: 16:dc:5d:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxuFVjpw3sIbPUY+L+PPsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1NzdjZTE0MzQyMzJkODA4MTk1ZDBjYTcwYWIzOTFkZmIw N2FmMmQwHhcNMjYwMjA5MTkwMDMzWhcNMjYwMjEwMTkwMDMzWjAzMTEwLwYDVQQD Eyg2NmYwYWNlMWVmYThhMjZhODBkOGFmNjgyOTVjYzcyOTYxNGUyMTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCYyT9kSY3iXXWTuadt6yA8eyb8V Yly/Ui9a5eLteKQRsihDrZURGTwfZKk6HihAvdNWkiOnNSZtHIrBmHPyAW5D3jdF kCPoG7YAUUrPAKrwo6LaIBqzwxFCPHTGGqdIHuByJomVcwFmpbdoPSF4Ryf43DDd csb82nMvtgJCYlCdImXanl7xUWnj/7i/SUdIJagVuWnZRFvkeZKZwGHb7f2Get+a NK3GNt1nuHRNv+zgc6B9CJeuXAYmeshjNBsPNxMV6ZtgzmEzgdyG5MJpJIvPvXXs 49wRK+pa/C+uWnXUfPXGbsBomD/gVbtVleeSKPXn8vL0mj3eDgQ7wt0I/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGbwrOHvqKJqgNivaClcxylhTiEmMB8GA1UdIwQY MBaAFNV3zhQ0Iy2AgZXQynCrOR37B68tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVhmT0ZEUWpMWUNCbGRES2NLczVIZnNIcnkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8wZDYxNWUtMjRkYi00N2VmLTlhYTMt NjBlNmIxNDhkMjhiLzEvMVhmT0ZEUWpMWUNCbGRES2NLczVIZnNIcnkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS8wZDYxNWUtMjRkYi00N2VmLTlhYTMtNjBlNmIxNDhkMjhi LzEvMVhmT0ZEUWpMWUNCbGRES2NLczVIZnNIcnkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmmzSg0Ft LFMBaEFNSXt2DYSBr20nnsPhnNWoMiiGoZxJfexiYjdZd9WNGYDx0RInu172kpBQ a2TibFhv0mu9c2Ig9g+iqA+zB/Yv0I+KZTeSzXaNK2avR/6x/wBKD3jKRFtZgXGM UnesYKglMCcFyw8oOVOlJWwxkjH7o5aLrPPhYi/I70WFPHA5xiAeuJIILin5Gcdd V9BWONH18T7S7akOUjxuHaUSRLmxNvbc8qwZqXSPJz43fF0pq5QsiGvkviAicjSF ZcfXP5XTCDNwmm3O5QpVYGDxr9WFOby5lH0QYYKo4gUZRrSPz0ZLT0LwxcATKPbo gXXQd19PFtxd+Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:57 2026 by rpki-client