This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json) Hash identifier: oK1sdzv49CUwiEnUbVsCtuQfRNhSpZu6QLjHWTb6vNQ= Subject key identifier: 5C:A3:36:7B:FD:2A:5C:B7:7A:12:59:90:9A:05:E8:08:C2:07:0C:8A Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab Certificate serial: 019C41D8A54E5D890E819F303F42D24F3828 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft Manifest number: 120A Signing time: Mon 09 Feb 2026 10:00:42 +0000 Manifest this update: Mon 09 Feb 2026 10:00:42 +0000 Manifest next update: Tue 10 Feb 2026 10:00:42 +0000 Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: jo8V07Trqpit1XvLdiOPL8P7JB/1jZt03/9aQuUzTBs=) 2: yqeabqkOB5fG5PtO7nwnhSFJt98.roa (hash: qildy36/K9jS6v0WoAJhzWi2T0378O5DKM8NUUD22gI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:a5:4e:5d:89:0e:81:9f:30:3f:42:d2:4f:38:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab Validity Not Before: Feb 9 10:00:42 2026 GMT Not After : Feb 10 10:00:42 2026 GMT Subject: CN=5ca3367bfd2a5cb77a1259909a05e808c2070c8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:57:a9:fc:5d:36:98:49:cc:18:95:19:2f:2c: 54:a8:b9:c8:4a:1c:14:31:29:5c:c5:09:4f:1d:77: 4f:8d:b0:90:3e:4f:7f:46:b7:e4:e4:c5:4f:69:78: 28:79:c9:a8:2f:09:1f:02:72:fb:33:ee:14:1c:97: 6c:02:13:6d:7b:fd:55:01:38:ac:ce:91:ae:6d:18: 34:8e:45:46:b0:a1:8b:f3:ab:4d:f7:bd:13:7a:fb: 18:82:dc:22:25:b4:1c:f5:e2:0c:4d:32:a3:39:00: fe:e6:24:d4:a8:73:8d:a5:bf:8c:67:0b:44:42:2c: e0:b1:f5:61:fa:3d:03:4a:0c:45:de:d1:0f:19:f9: ea:0e:f0:61:90:3c:09:f7:a0:07:86:20:7d:c7:d0: fd:95:51:24:33:e1:c7:8d:16:4b:e3:c4:3c:90:1f: e9:de:b0:07:42:9c:16:fa:60:3f:c2:9e:0f:3e:94: 07:e8:08:e9:3c:0d:56:b6:1d:e0:07:dc:f2:26:b1: 06:ab:5a:55:49:b5:8d:d8:f4:e3:03:c6:cf:38:ce: 34:2f:d6:0d:f6:01:5d:99:73:fc:c3:da:dd:77:bd: 5b:af:04:6b:ed:e1:e4:1a:6c:de:25:fb:d8:3b:a9: 9d:a6:e6:38:c2:f7:5a:8b:0b:ca:7f:2c:e3:0a:2a: ff:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A3:36:7B:FD:2A:5C:B7:7A:12:59:90:9A:05:E8:08:C2:07:0C:8A X509v3 Authority Key Identifier: keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:f8:18:be:c4:27:da:24:d8:36:d6:0a:16:0d:6a:cd:a5:58: 54:dc:6d:d1:19:43:62:04:62:a7:bb:0d:ef:05:80:ad:f0:d8: 98:af:37:63:81:10:96:59:f9:2a:5c:35:40:46:cc:5f:34:53: c1:06:bc:3f:4d:5e:3e:cb:5e:95:72:10:00:c7:9a:26:3c:fd: ad:85:1d:02:69:f4:6b:6b:da:0e:04:16:6f:59:07:35:60:78: 61:69:86:26:a6:67:b4:46:3e:e9:27:98:7b:65:bf:df:94:d7: 45:42:ea:53:e6:11:89:04:49:ad:e2:51:32:8e:43:8b:da:c8: 38:51:b3:46:16:7a:1e:03:f8:07:d8:6f:2b:8f:1e:5f:77:b7: 57:c6:e0:3b:32:d1:2a:f8:18:59:bf:31:c3:2a:73:17:58:67: bb:89:1e:53:41:ea:27:35:82:95:e7:71:6f:ae:0d:cd:65:be: 35:65:79:e6:c0:34:31:de:0f:89:4e:85:db:34:9a:de:9f:92: a5:7d:8a:70:9f:9f:1c:5d:95:62:2e:a0:49:45:1d:d5:c7:0e: 9a:41:8c:94:61:f8:cd:62:f1:b6:de:e9:73:97:3a:61:80:86: bd:d5:6d:1f:ee:e4:15:88:aa:ea:bf:4f:52:30:9d:a2:af:4f: 62:8a:e6:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2KVOXYkOgZ8wP0LSTzgoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkODNiNWE2N2Q5MmZmYTg0NzZjOTMyMWFhN2JmNmQ0YTIw ZDNkYWIwHhcNMjYwMjA5MTAwMDQyWhcNMjYwMjEwMTAwMDQyWjAzMTEwLwYDVQQD Eyg1Y2EzMzY3YmZkMmE1Y2I3N2ExMjU5OTA5YTA1ZTgwOGMyMDcwYzhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Vep/F02mEnMGJUZLyxUqLnIShwU MSlcxQlPHXdPjbCQPk9/Rrfk5MVPaXgoecmoLwkfAnL7M+4UHJdsAhNte/1VATis zpGubRg0jkVGsKGL86tN970TevsYgtwiJbQc9eIMTTKjOQD+5iTUqHONpb+MZwtE QizgsfVh+j0DSgxF3tEPGfnqDvBhkDwJ96AHhiB9x9D9lVEkM+HHjRZL48Q8kB/p 3rAHQpwW+mA/wp4PPpQH6AjpPA1Wth3gB9zyJrEGq1pVSbWN2PTjA8bPOM40L9YN 9gFdmXP8w9rdd71brwRr7eHkGmzeJfvYO6mdpuY4wvdaiwvKfyzjCir/AwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFyjNnv9Kly3ehJZkJoF6AjCBwyKMB8GA1UdIwQY MBaAFF2DtaZ9kv+oR2yTIap79tSiDT2rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFlPMXBuMlNfNmhIYkpNaHFudjIxS0lOUGFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81N2I4OTEtYTkxMi00YzZhLThlM2It ZDQxZmNkZjU3NTk4LzEvWFlPMXBuMlNfNmhIYkpNaHFudjIxS0lOUGFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi81N2I4OTEtYTkxMi00YzZhLThlM2ItZDQxZmNkZjU3NTk4 LzEvWFlPMXBuMlNfNmhIYkpNaHFudjIxS0lOUGFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsvgYvsQn 2iTYNtYKFg1qzaVYVNxt0RlDYgRip7sN7wWArfDYmK83Y4EQlln5Klw1QEbMXzRT wQa8P01ePstelXIQAMeaJjz9rYUdAmn0a2vaDgQWb1kHNWB4YWmGJqZntEY+6SeY e2W/35TXRULqU+YRiQRJreJRMo5Di9rIOFGzRhZ6HgP4B9hvK48eX3e3V8bgOzLR KvgYWb8xwypzF1hnu4keU0HqJzWCledxb64NzWW+NWV55sA0Md4PiU6F2zSa3p+S pX2KcJ+fHF2VYi6gSUUd1ccOmkGMlGH4zWLxtt7pc5c6YYCGvdVtH+7kFYiq6r9P UjCdoq9PYormnQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:08 2026 by rpki-client