This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft File: XcYkXKggiZ1-tBQDAsIQQbXbygY.mft (raw, json) Hash identifier: rr3NpbjtsVPLgDsn0UmM9MR4WR/66mt7KiW5xQY7BRo= Subject key identifier: 2C:80:01:D5:B0:35:37:A1:D7:77:C1:16:8A:1E:E8:58:BF:11:18:9D Authority key identifier: 5D:C6:24:5C:A8:20:89:9D:7E:B4:14:03:02:C2:10:41:B5:DB:CA:06 Certificate issuer: /CN=5dc6245ca820899d7eb4140302c21041b5dbca06 Certificate serial: 019C41D90C6169CDD2AD125279687DD270BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft Manifest number: 07FA Signing time: Mon 09 Feb 2026 10:01:09 +0000 Manifest this update: Mon 09 Feb 2026 10:01:09 +0000 Manifest next update: Tue 10 Feb 2026 10:01:09 +0000 Files and hashes: 1: XcYkXKggiZ1-tBQDAsIQQbXbygY.crl (hash: rM9DTctKYgP3kJT5soqt7m9hiVchWlgHpFNBPVH6Ijg=) 2: iDrTmSYQpvy7vo3KT85M4NqZ4jY.roa (hash: +0AgLX/1nLHcInEl5vkO9SuWGWou8jccVXQFvcHqqjk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d9:0c:61:69:cd:d2:ad:12:52:79:68:7d:d2:70:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dc6245ca820899d7eb4140302c21041b5dbca06 Validity Not Before: Feb 9 10:01:09 2026 GMT Not After : Feb 10 10:01:09 2026 GMT Subject: CN=2c8001d5b03537a1d777c1168a1ee858bf11189d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:60:64:55:da:04:f4:54:bf:79:6f:fa:ef:d9: 19:6e:a8:cb:1f:88:cf:7a:4d:d2:ad:49:80:ee:5b: 74:c6:46:22:b8:07:c1:9b:ee:4f:e4:28:b7:5b:6b: 23:52:93:a6:d5:21:e2:3e:0b:93:4d:07:ed:fe:8f: f8:35:a0:9d:9b:68:c1:8b:a4:64:5d:31:eb:99:5d: ba:7c:4b:d7:bd:54:aa:2d:2c:31:d9:d8:5b:38:d0: 79:98:4b:de:dc:99:cb:4f:9a:bd:ea:61:d5:d7:71: d2:a9:69:48:4b:aa:a6:2c:4a:36:80:75:c5:6e:b9: d0:e9:bb:d3:fe:fc:4b:8b:85:df:68:b3:20:99:d8: 4b:16:98:64:5c:2b:c8:2d:04:1a:8e:bb:af:87:41: b3:18:2b:ee:27:95:72:0a:d1:2c:b1:88:31:69:6c: 61:9b:97:55:24:d7:d4:35:bb:e7:86:4a:12:72:34: 57:32:87:59:0f:9e:f4:c3:60:73:77:3f:bb:d8:55: 8d:33:37:7e:99:f4:0c:37:22:70:65:19:b4:33:92: 44:68:62:7f:4c:22:61:5c:42:68:b5:41:1a:b6:e8: 2f:ec:6d:c6:42:e4:7f:6f:1e:d6:d6:d1:3a:62:8c: 15:ae:f3:10:a4:81:89:a7:98:52:0a:94:9b:d2:8b: a0:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:80:01:D5:B0:35:37:A1:D7:77:C1:16:8A:1E:E8:58:BF:11:18:9D X509v3 Authority Key Identifier: keyid:5D:C6:24:5C:A8:20:89:9D:7E:B4:14:03:02:C2:10:41:B5:DB:CA:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:00:61:04:68:90:27:53:66:2f:03:9c:b8:08:72:19:2d:0f: 6d:72:d3:22:9e:88:44:13:dd:bd:d7:14:ec:4f:59:fc:2b:16: 3d:2f:14:07:21:ee:bd:f9:a1:cf:ed:80:e7:a1:b6:48:f0:54: 83:b7:6a:ba:5c:e2:8d:2a:d1:56:04:e3:8d:07:13:69:8f:8c: 38:23:a0:ac:b5:f3:a6:ae:d1:3a:eb:4b:a1:db:f0:66:4a:b1: 56:2d:ae:93:81:a8:8e:89:d8:aa:c5:43:18:45:90:40:c2:df: cc:89:fd:77:d2:ae:99:9c:fb:9a:6f:ce:17:2a:96:bc:e5:75: ef:de:d6:51:ca:1d:7d:10:d3:83:ad:a2:cb:30:56:18:6f:43: 87:db:b6:2f:5c:d3:2e:d9:c4:a7:5e:68:43:2b:64:a5:d1:56: 3f:35:92:ca:48:45:e1:b3:27:ba:05:8d:b5:ea:5a:4a:e9:74: c7:f9:c2:81:f2:69:fa:d8:de:2d:64:ca:6b:e5:b1:c1:ad:23: fb:08:d6:3f:b3:63:22:d4:2b:18:85:ba:63:cc:d4:e1:2d:78: 94:95:9e:cd:c0:ec:58:a2:14:24:1f:68:a2:00:8b:69:bc:8e: 0e:e6:b4:ac:97:2b:64:20:ee:4e:3d:7a:7f:37:1c:7f:8a:81: d0:8b:34:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2Qxhac3SrRJSeWh90nC7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkYzYyNDVjYTgyMDg5OWQ3ZWI0MTQwMzAyYzIxMDQxYjVk YmNhMDYwHhcNMjYwMjA5MTAwMTA5WhcNMjYwMjEwMTAwMTA5WjAzMTEwLwYDVQQD EygyYzgwMDFkNWIwMzUzN2ExZDc3N2MxMTY4YTFlZTg1OGJmMTExODlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqmBkVdoE9FS/eW/679kZbqjLH4jP ek3SrUmA7lt0xkYiuAfBm+5P5Ci3W2sjUpOm1SHiPguTTQft/o/4NaCdm2jBi6Rk XTHrmV26fEvXvVSqLSwx2dhbONB5mEve3JnLT5q96mHV13HSqWlIS6qmLEo2gHXF brnQ6bvT/vxLi4XfaLMgmdhLFphkXCvILQQajruvh0GzGCvuJ5VyCtEssYgxaWxh m5dVJNfUNbvnhkoScjRXModZD570w2Bzdz+72FWNMzd+mfQMNyJwZRm0M5JEaGJ/ TCJhXEJotUEatugv7G3GQuR/bx7W1tE6YowVrvMQpIGJp5hSCpSb0oug5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCyAAdWwNTeh13fBFooe6Fi/ERidMB8GA1UdIwQY MBaAFF3GJFyoIImdfrQUAwLCEEG128oGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGNZa1hLZ2dpWjEtdEJRREFzSVFRYlhieWdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi84YTQzMGYtNDBjNS00NzRiLThmZDkt MDc0ZWQ3MGI0NjczLzEvWGNZa1hLZ2dpWjEtdEJRREFzSVFRYlhieWdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi84YTQzMGYtNDBjNS00NzRiLThmZDktMDc0ZWQ3MGI0Njcz LzEvWGNZa1hLZ2dpWjEtdEJRREFzSVFRYlhieWdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkABhBGiQ J1NmLwOcuAhyGS0PbXLTIp6IRBPdvdcU7E9Z/CsWPS8UByHuvfmhz+2A56G2SPBU g7dqulzijSrRVgTjjQcTaY+MOCOgrLXzpq7ROutLodvwZkqxVi2uk4GojonYqsVD GEWQQMLfzIn9d9KumZz7mm/OFyqWvOV1797WUcodfRDTg62iyzBWGG9Dh9u2L1zT LtnEp15oQytkpdFWPzWSykhF4bMnugWNtepaSul0x/nCgfJp+tjeLWTKa+Wxwa0j +wjWP7NjItQrGIW6Y8zU4S14lJWezcDsWKIUJB9oogCLabyODua0rJcrZCDuTj16 fzccf4qB0Is08A== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:04 2026 by rpki-client