This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft File: XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft (raw, json) Hash identifier: xwhmbSxXnRdwVbWDwOu+Y5mJyMoS+sr81yCSfPpV+pg= Subject key identifier: 14:D7:B3:D0:34:BF:54:DE:34:04:63:28:D9:19:F4:3F:0F:F6:53:12 Authority key identifier: 5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C Certificate issuer: /CN=5dc67c6be367ab9e941d1427d050449447b8865c Certificate serial: 019C43228A1DA5138857D73AA2F7A0179D9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft Manifest number: 1817 Signing time: Mon 09 Feb 2026 16:01:02 +0000 Manifest this update: Mon 09 Feb 2026 16:01:02 +0000 Manifest next update: Tue 10 Feb 2026 16:01:02 +0000 Files and hashes: 1: XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl (hash: 4F02Su9kt1qgAkPRgOwHrgURuW0psW1czY5Jg/pV68k=) 2: uSf8YpQ-0ch8yPbVC8hW_1UaI7E.roa (hash: TdBQBjgQL2vkXRlnvGccZPDz+o0AOBvhUDV7Uw/d7z0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:8a:1d:a5:13:88:57:d7:3a:a2:f7:a0:17:9d:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dc67c6be367ab9e941d1427d050449447b8865c Validity Not Before: Feb 9 16:01:02 2026 GMT Not After : Feb 10 16:01:02 2026 GMT Subject: CN=14d7b3d034bf54de34046328d919f43f0ff65312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:75:3c:f8:4e:f6:eb:d9:69:20:11:5e:9d:50: c1:6b:9d:ea:e4:74:54:f5:6d:ad:70:53:b2:7c:08: d4:49:86:2c:3f:9b:58:39:0f:a1:ce:2d:c6:8b:0a: 29:5d:f1:c4:68:7f:bf:9b:81:b5:08:24:49:ae:09: c2:2f:5c:5b:0e:5c:32:36:5e:06:9d:01:de:24:53: 5a:9a:d0:f9:2f:55:15:e6:36:b1:a3:f1:97:05:d2: 18:01:f9:0a:7b:5b:4c:87:36:97:54:39:3b:4f:81: 20:7f:08:80:7b:0e:11:24:19:db:b0:9d:3c:4a:51: 2f:dc:98:1f:0f:23:d6:39:50:5b:c7:2d:6a:0e:a9: 70:6d:0b:7e:e8:57:b7:51:d1:66:14:60:cf:ed:c2: db:dc:98:1c:5f:42:23:e2:81:46:e3:76:1f:ea:b0: 7e:87:6c:93:8b:e8:6f:20:38:f9:40:87:49:a9:26: da:c8:e9:28:63:1f:da:90:24:5e:d3:ee:b1:08:03: e6:f6:dd:31:95:c3:1f:af:4b:d6:e3:ee:37:e3:59: 83:67:3e:25:e9:ca:ab:06:b2:90:30:15:ff:5a:ab: 4c:a7:14:8e:de:ea:ee:e2:6d:c7:82:6f:5f:04:d2: 37:63:9d:ec:10:60:be:aa:68:d4:d8:c3:2a:66:71: 3d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D7:B3:D0:34:BF:54:DE:34:04:63:28:D9:19:F4:3F:0F:F6:53:12 X509v3 Authority Key Identifier: keyid:5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:bf:89:3d:c0:62:e9:eb:de:be:e5:e2:11:c6:fb:65:0c:10: bc:34:f7:6e:aa:9b:74:c2:22:03:52:0a:0c:86:20:12:bf:a9: 62:d7:f6:18:e2:78:4d:86:15:52:7f:e5:34:a6:1b:a5:51:d0: 10:10:d4:f1:39:74:d5:87:ad:a8:44:53:bf:d4:37:f7:4b:60: 81:32:42:a8:00:cf:a8:fd:29:ab:68:76:8e:d6:7e:aa:a7:1c: 6c:22:3d:85:b8:d3:5e:68:39:bd:20:50:b9:b5:82:ad:2c:f7: e5:0a:07:a7:f3:94:a2:11:57:0d:07:52:5a:f5:bd:e0:22:10: eb:92:38:5d:e0:89:ed:c4:63:12:c4:6c:71:a8:e6:0b:d8:1f: 52:ab:81:27:30:ca:06:c0:8d:d6:12:19:df:ce:98:9a:25:38: 49:77:0d:3e:89:cd:90:c6:88:1d:ef:bd:8b:b9:94:e0:b3:8f: 9e:0a:6b:2d:ae:0a:bf:87:31:dc:74:a2:17:58:84:8c:81:7f: f8:ab:cc:bd:fb:a8:bf:6c:d3:70:c6:b6:2f:90:bf:8c:a5:eb: 81:6b:02:56:e8:c4:03:b1:18:b0:63:b4:20:4b:88:4c:61:8b: dc:3c:0e:b3:70:08:3a:0f:2b:f6:53:6d:05:a0:6b:f4:b3:01: dc:6a:9b:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoodpROIV9c6ovegF52eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkYzY3YzZiZTM2N2FiOWU5NDFkMTQyN2QwNTA0NDk0NDdi ODg2NWMwHhcNMjYwMjA5MTYwMTAyWhcNMjYwMjEwMTYwMTAyWjAzMTEwLwYDVQQD EygxNGQ3YjNkMDM0YmY1NGRlMzQwNDYzMjhkOTE5ZjQzZjBmZjY1MzEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHU8+E7269lpIBFenVDBa53q5HRU 9W2tcFOyfAjUSYYsP5tYOQ+hzi3GiwopXfHEaH+/m4G1CCRJrgnCL1xbDlwyNl4G nQHeJFNamtD5L1UV5jaxo/GXBdIYAfkKe1tMhzaXVDk7T4EgfwiAew4RJBnbsJ08 SlEv3JgfDyPWOVBbxy1qDqlwbQt+6Fe3UdFmFGDP7cLb3JgcX0Ij4oFG43Yf6rB+ h2yTi+hvIDj5QIdJqSbayOkoYx/akCRe0+6xCAPm9t0xlcMfr0vW4+4341mDZz4l 6cqrBrKQMBX/WqtMpxSO3uru4m3Hgm9fBNI3Y53sEGC+qmjU2MMqZnE9AQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBTXs9A0v1TeNARjKNkZ9D8P9lMSMB8GA1UdIwQY MBaAFF3GfGvjZ6uelB0UJ9BQRJRHuIZcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGNaOGEtTm5xNTZVSFJRbjBGQkVsRWU0aGx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy83NjI3NWEtNmY0MS00ODA0LTgzN2It ODk3OTlkZWFkYzQ3LzEvWGNaOGEtTm5xNTZVSFJRbjBGQkVsRWU0aGx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy83NjI3NWEtNmY0MS00ODA0LTgzN2ItODk3OTlkZWFkYzQ3 LzEvWGNaOGEtTm5xNTZVSFJRbjBGQkVsRWU0aGx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAL+JPcBi 6evevuXiEcb7ZQwQvDT3bqqbdMIiA1IKDIYgEr+pYtf2GOJ4TYYVUn/lNKYbpVHQ EBDU8Tl01YetqERTv9Q390tggTJCqADPqP0pq2h2jtZ+qqccbCI9hbjTXmg5vSBQ ubWCrSz35QoHp/OUohFXDQdSWvW94CIQ65I4XeCJ7cRjEsRscajmC9gfUquBJzDK BsCN1hIZ386YmiU4SXcNPonNkMaIHe+9i7mU4LOPngprLa4Kv4cx3HSiF1iEjIF/ +KvMvfuov2zTcMa2L5C/jKXrgWsCVujEA7EYsGO0IEuITGGL3DwOs3AIOg8r9lNt BaBr9LMB3GqbzA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:44 2026 by rpki-client