This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft File: XZxbcz-6cemMB-E7A6fFWrhMyO0.mft (raw, json) Hash identifier: 2AVAoHa/dJ5CVkcFNm9kDUFgOzdvTOMrBSoeiY4du5c= Subject key identifier: D0:5C:60:A6:38:9F:6C:C9:79:AC:09:35:7A:90:FE:DA:BF:3D:3B:3C Authority key identifier: 5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED Certificate issuer: /CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed Certificate serial: 019C4358EC1BC5AA233DB151CBA7AC869CBB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 17:00:26 +0000 Manifest this update: Mon 09 Feb 2026 17:00:26 +0000 Manifest next update: Tue 10 Feb 2026 17:00:26 +0000 Files and hashes: 1: D7RyDh7lTL4H2jBeI3MtODxeB2w.roa (hash: j4FPb00AEU8sTGz7vN2WFChjUdkqXvKYmGt4w0kqQbw=) 2: XZxbcz-6cemMB-E7A6fFWrhMyO0.crl (hash: ciYQZOTx9P63M4gK5OUBgO+CPipDh2VfuSR2yKhMIgE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:ec:1b:c5:aa:23:3d:b1:51:cb:a7:ac:86:9c:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed Validity Not Before: Feb 9 17:00:26 2026 GMT Not After : Feb 10 17:00:26 2026 GMT Subject: CN=d05c60a6389f6cc979ac09357a90fedabf3d3b3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:37:5b:e8:ed:39:a4:5e:78:8a:81:1c:6b:42: 2d:42:b6:83:76:c5:75:60:e2:16:e6:e4:0a:7e:b6: a9:7b:6d:df:9e:80:53:6c:4f:17:cf:17:8f:2d:4b: 93:55:12:80:67:45:a7:7b:21:4f:4e:ea:d1:6c:f6: 81:8c:c7:e2:6c:7e:72:18:15:60:ce:dd:12:6a:fb: 95:f8:dd:17:59:83:e9:16:0f:6f:b3:a2:49:fa:0b: be:c5:06:3a:ac:4f:ed:3b:33:35:83:fd:90:b2:0a: af:7f:ed:c7:dd:bb:df:d1:4b:4b:94:c5:1b:13:ac: f1:97:cc:3e:62:16:47:ed:f1:19:f2:51:a0:8a:d8: 97:73:e1:87:cd:b5:d2:59:76:ba:ab:73:07:92:35: 57:21:b5:f5:02:57:fb:a7:15:56:ec:ff:52:69:22: 3c:ef:bb:47:f9:14:95:e2:db:03:45:bd:72:fc:91: c7:be:b5:2f:2b:17:dd:b1:ea:11:ae:83:19:c0:88: 9f:eb:c1:93:a9:3d:a1:26:91:e2:ab:6d:0b:7a:18: e9:64:0d:ba:a4:70:fd:54:00:de:41:89:ca:b5:cc: b3:43:c9:df:b0:f1:c8:c1:2d:a3:31:a3:47:19:c1: b9:4a:1c:81:40:2b:10:f2:34:e1:4b:2c:aa:3a:c4: 98:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:5C:60:A6:38:9F:6C:C9:79:AC:09:35:7A:90:FE:DA:BF:3D:3B:3C X509v3 Authority Key Identifier: keyid:5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:c0:22:83:72:90:be:41:ac:87:2c:c4:1d:bb:aa:07:47:7b: 98:c3:cf:16:ef:d2:89:d0:08:e4:52:04:74:32:50:3a:35:0f: 49:13:27:fd:ba:2a:22:02:49:ae:30:69:85:97:a3:7c:e5:bc: aa:8a:4a:f8:90:f3:9b:e0:3c:21:f3:d9:6f:a6:3f:7d:df:56: bb:04:4d:0b:26:6c:65:cd:e1:2a:5e:22:a8:23:5c:f2:58:30: d3:3e:fe:1d:c4:c6:aa:79:21:d9:ed:f2:ed:4b:7a:0c:29:69: 94:fd:10:7e:12:32:85:1a:f0:6f:41:58:7d:9b:43:bb:ce:3b: 79:cb:71:b1:90:0a:72:f3:4e:9a:96:ca:0f:4e:ca:0a:9c:c0: 28:48:f3:cd:95:4f:86:35:7b:13:58:55:47:50:ad:30:73:b8: 05:27:f4:db:02:47:5e:08:08:de:c7:0c:1f:36:84:7c:cb:20: ec:27:54:3b:87:be:98:d2:6a:e4:80:a5:b5:0e:c5:80:22:ec: 2b:24:e6:f3:70:44:ac:a3:d4:30:c1:44:7b:12:c6:41:e8:1d: 4b:7d:56:03:54:29:31:a6:e2:86:5d:3b:d9:68:56:78:be:b0: 20:02:fc:a4:b6:61:dc:4e:79:1e:d8:64:02:18:3e:09:42:0d: e0:5a:de:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWOwbxaojPbFRy6eshpy7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkOWM1YjczM2ZiYTcxZTk4YzA3ZTEzYjAzYTdjNTVhYjg0 Y2M4ZWQwHhcNMjYwMjA5MTcwMDI2WhcNMjYwMjEwMTcwMDI2WjAzMTEwLwYDVQQD EyhkMDVjNjBhNjM4OWY2Y2M5NzlhYzA5MzU3YTkwZmVkYWJmM2QzYjNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTdb6O05pF54ioEca0ItQraDdsV1 YOIW5uQKfrape23fnoBTbE8XzxePLUuTVRKAZ0WneyFPTurRbPaBjMfibH5yGBVg zt0SavuV+N0XWYPpFg9vs6JJ+gu+xQY6rE/tOzM1g/2Qsgqvf+3H3bvf0UtLlMUb E6zxl8w+YhZH7fEZ8lGgitiXc+GHzbXSWXa6q3MHkjVXIbX1Alf7pxVW7P9SaSI8 77tH+RSV4tsDRb1y/JHHvrUvKxfdseoRroMZwIif68GTqT2hJpHiq20LehjpZA26 pHD9VADeQYnKtcyzQ8nfsPHIwS2jMaNHGcG5ShyBQCsQ8jThSyyqOsSYoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNBcYKY4n2zJeawJNXqQ/tq/PTs8MB8GA1UdIwQY MBaAFF2cW3M/unHpjAfhOwOnxVq4TMjtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFp4YmN6LTZjZW1NQi1FN0E2ZkZXcmhNeU8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9hMmQ0Y2ItOTIzYS00ZTA0LThkODUt YWQ5ZDVkYjBmMDk5LzEvWFp4YmN6LTZjZW1NQi1FN0E2ZkZXcmhNeU8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy9hMmQ0Y2ItOTIzYS00ZTA0LThkODUtYWQ5ZDVkYjBmMDk5 LzEvWFp4YmN6LTZjZW1NQi1FN0E2ZkZXcmhNeU8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArcAig3KQ vkGshyzEHbuqB0d7mMPPFu/SidAI5FIEdDJQOjUPSRMn/boqIgJJrjBphZejfOW8 qopK+JDzm+A8IfPZb6Y/fd9WuwRNCyZsZc3hKl4iqCNc8lgw0z7+HcTGqnkh2e3y 7Ut6DClplP0QfhIyhRrwb0FYfZtDu847ectxsZAKcvNOmpbKD07KCpzAKEjzzZVP hjV7E1hVR1CtMHO4BSf02wJHXggI3scMHzaEfMsg7CdUO4e+mNJq5ICltQ7FgCLs KyTm83BErKPUMMFEexLGQegdS31WA1QpMabihl072WhWeL6wIAL8pLZh3E55Hthk Ahg+CUIN4Fre7w== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:24 2026 by rpki-client