This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft File: xcidUmDLNP27s7wlv0rbr0zcaKA.mft (raw, json) Hash identifier: zPfdXs5YoLK+n+r11OzaH8X4qDLmh5Do+GnURz6542Q= Subject key identifier: 3E:26:55:03:7A:65:3F:97:37:0A:2B:E5:AF:6F:AE:7A:7F:C1:4C:BE Authority key identifier: C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0 Certificate issuer: /CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0 Certificate serial: 019C4322DE61A1A129657002E9C6F0050529 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft Manifest number: 07CC Signing time: Mon 09 Feb 2026 16:01:24 +0000 Manifest this update: Mon 09 Feb 2026 16:01:24 +0000 Manifest next update: Tue 10 Feb 2026 16:01:24 +0000 Files and hashes: 1: xcidUmDLNP27s7wlv0rbr0zcaKA.crl (hash: m2EFwegPZ3VdIN88ZXJfozu4+Wn5o6LpsAxJbEp940w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:de:61:a1:a1:29:65:70:02:e9:c6:f0:05:05:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0 Validity Not Before: Feb 9 16:01:24 2026 GMT Not After : Feb 10 16:01:24 2026 GMT Subject: CN=3e2655037a653f97370a2be5af6fae7a7fc14cbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c8:07:9a:0c:8a:12:19:1d:1f:00:6b:a5:cb: 89:c4:c8:dd:79:d4:05:e5:ff:64:77:d1:1a:4e:dc: ca:65:31:fc:ed:92:5e:12:38:b8:c2:c3:c9:e6:52: 47:a7:0a:1f:bb:cd:4c:48:6a:49:dc:88:22:fe:d6: 21:70:e8:93:d3:e5:d0:58:82:26:7e:1b:55:72:51: 54:c7:82:95:ce:be:45:59:14:95:a4:1e:56:1d:c1: f9:2e:22:a6:11:3c:9b:3e:2c:92:1b:62:87:4d:70: ae:bc:a0:d1:a3:50:8b:1e:0d:96:ef:be:ee:0d:11: 83:d5:46:db:f7:78:c5:70:d9:87:1c:aa:4f:b3:af: 4f:15:5b:20:e8:41:76:2b:fd:8a:20:f4:a3:0d:91: 55:f7:12:40:32:56:c2:b2:a4:dc:2b:d5:35:53:9b: 40:d9:2d:00:7f:e7:4a:5b:aa:f3:1f:88:20:1f:7a: 5c:50:0e:26:e4:34:c5:5b:61:46:2b:d4:62:3d:a2: 04:53:f2:b7:ea:6a:87:3d:c3:79:ff:37:9d:01:9f: fc:d1:f8:30:2f:b6:a5:23:d9:4c:45:8a:b9:ff:37: ca:8c:84:f4:c6:3b:2c:b5:2c:3e:eb:cf:c7:d5:61: 64:63:6e:fe:f8:69:50:c1:ea:72:48:ab:d7:56:3a: bb:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:26:55:03:7A:65:3F:97:37:0A:2B:E5:AF:6F:AE:7A:7F:C1:4C:BE X509v3 Authority Key Identifier: keyid:C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:63:71:39:7a:8b:f2:25:f1:8b:5b:b9:9f:b5:b6:b4:6f:99: 18:b4:8e:a3:5b:8f:28:de:23:5a:ef:03:7c:87:bd:5a:f7:4b: aa:42:e4:9d:71:be:11:db:82:a7:47:f1:97:1a:18:36:93:86: 6d:83:c4:55:b3:1a:d3:37:ff:bb:f8:f8:10:42:ce:d7:f4:c5: 59:85:6b:55:9a:bc:79:f6:1f:0a:9f:bb:42:b0:3a:2e:38:69: 80:4b:ea:81:44:50:9e:4c:69:a2:59:f4:fb:66:de:51:b6:9f: 9d:75:51:0e:5e:50:9e:96:da:1d:d1:11:9d:4f:43:69:a8:8b: 1d:e2:f3:d2:c7:58:d1:57:e1:27:12:eb:f1:53:32:b9:9a:8b: 80:64:fd:b4:84:a7:0c:8a:71:f0:b4:14:63:bf:45:34:62:ee: e5:f9:a2:c1:3b:2c:e2:7f:2f:c0:ed:65:58:8d:9b:17:d9:d8: 5d:e9:1b:7c:07:ba:02:01:ed:30:c2:9b:de:c7:c1:b7:79:14: 11:96:43:a0:e8:f5:6b:e3:15:32:c9:bb:8a:9a:b7:ad:70:7f: e7:ce:78:dc:ba:6c:e7:04:56:f1:38:2d:7f:95:c8:71:9e:7d: 1a:fc:3e:ff:71:98:92:cf:52:5d:4b:e0:14:9f:64:d1:a7:53: b4:f0:7c:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIt5hoaEpZXAC6cbwBQUpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1Yzg5ZDUyNjBjYjM0ZmRiYmIzYmMyNWJmNGFkYmFmNGNk YzY4YTAwHhcNMjYwMjA5MTYwMTI0WhcNMjYwMjEwMTYwMTI0WjAzMTEwLwYDVQQD EygzZTI2NTUwMzdhNjUzZjk3MzcwYTJiZTVhZjZmYWU3YTdmYzE0Y2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp8gHmgyKEhkdHwBrpcuJxMjdedQF 5f9kd9EaTtzKZTH87ZJeEji4wsPJ5lJHpwofu81MSGpJ3Igi/tYhcOiT0+XQWIIm fhtVclFUx4KVzr5FWRSVpB5WHcH5LiKmETybPiySG2KHTXCuvKDRo1CLHg2W777u DRGD1Ubb93jFcNmHHKpPs69PFVsg6EF2K/2KIPSjDZFV9xJAMlbCsqTcK9U1U5tA 2S0Af+dKW6rzH4ggH3pcUA4m5DTFW2FGK9RiPaIEU/K36mqHPcN5/zedAZ/80fgw L7alI9lMRYq5/zfKjIT0xjsstSw+68/H1WFkY27++GlQwepySKvXVjq7lQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD4mVQN6ZT+XNwor5a9vrnp/wUy+MB8GA1UdIwQY MBaAFMXInVJgyzT9u7O8Jb9K269M3GigMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGNpZFVtRExOUDI3czd3bHYwcmJyMHpjYUtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82MjNiMTQtNGU2ZS00YzMxLTk2YmUt OGViY2QwOWIyYmNhLzEveGNpZFVtRExOUDI3czd3bHYwcmJyMHpjYUtBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS82MjNiMTQtNGU2ZS00YzMxLTk2YmUtOGViY2QwOWIyYmNh LzEveGNpZFVtRExOUDI3czd3bHYwcmJyMHpjYUtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVWNxOXqL 8iXxi1u5n7W2tG+ZGLSOo1uPKN4jWu8DfIe9WvdLqkLknXG+EduCp0fxlxoYNpOG bYPEVbMa0zf/u/j4EELO1/TFWYVrVZq8efYfCp+7QrA6LjhpgEvqgURQnkxpoln0 +2beUbafnXVRDl5QnpbaHdERnU9DaaiLHeLz0sdY0VfhJxLr8VMyuZqLgGT9tISn DIpx8LQUY79FNGLu5fmiwTss4n8vwO1lWI2bF9nYXekbfAe6AgHtMMKb3sfBt3kU EZZDoOj1a+MVMsm7ipq3rXB/58543Lps5wRW8Tgtf5XIcZ59Gvw+/3GYks9SXUvg FJ9k0adTtPB8WQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:27:33 2026 by rpki-client