This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft File: KXNk9QJTTodxoMYll5TCbibUvKQ.mft (raw, json) Hash identifier: kqhB9ML3v+uC4Lbmf0Qoe7lVxBVrFin3UhVmXLLYqp8= Subject key identifier: D8:32:F3:54:F1:29:F0:AB:B5:AC:B1:09:8B:70:45:B5:87:9B:A2:A3 Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4 Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4 Certificate serial: 019BF4D085B9A01734182FC08083FC921AD1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft Manifest number: 1653 Signing time: Sun 25 Jan 2026 11:01:04 +0000 Manifest this update: Sun 25 Jan 2026 11:01:04 +0000 Manifest next update: Mon 26 Jan 2026 11:01:04 +0000 Files and hashes: 1: 2kkM-Y1oeDm04wY-B4Ml04duWlg.roa (hash: MnJVJ4NyKNUCeBGsbiD72vxTrQHy4p8bo+xWfr40jXY=) 2: 8iiZMHriRE_NQY6BUN56TO301wk.roa (hash: 8IgM/46WS34GJx+A7aRcZL/22xuZUdfmC4JGezJbIGo=) 3: KXNk9QJTTodxoMYll5TCbibUvKQ.crl (hash: ordWR/N/eY30QTFIrnJklYtwdFckjMuLl4ZqcBrXJSM=) 4: NPRTFimJGsBmacQOAQQPr9jae44.roa (hash: wYMwFG2bixNFHagAivVzR2PmUxqhFfwt/BNGFSbdkYM=) 5: OaCi7coDoqW_riGEhMlZBNecV8E.roa (hash: kw8cwASGXXkuOedKfXksZTABUFf4TlTavoR1JiY/+a8=) 6: c-719yS8qxXgAQfc5k5AVeBx00Y.roa (hash: YUllSSiOqr0+m8URR4HPwAVQ/Ac036ttga4eWG7Bio8=) 7: qeQwzeNuT9jDdOYxI4TWIN4Zo9k.roa (hash: PM8l8vqtrNKxFXFYvlOWXQYhkfaDDt1UoO4UWCG6wSU=) 8: u2ApTDuWn4HOYvbWn1xa_cni-dQ.roa (hash: Y3toE9g8ryMSPFUg9EX1w3rj5SHRcm5JoXPtk8CcbE0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:85:b9:a0:17:34:18:2f:c0:80:83:fc:92:1a:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4 Validity Not Before: Jan 25 11:01:04 2026 GMT Not After : Jan 26 11:01:04 2026 GMT Subject: CN=d832f354f129f0abb5acb1098b7045b5879ba2a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a2:85:04:fc:ed:07:7a:be:c2:08:11:e8:34: df:c2:2d:ea:8c:47:ca:00:e3:d9:86:68:d0:82:1a: 5b:e1:78:06:5b:72:52:c6:96:2a:44:47:28:12:90: 93:5a:ca:12:0f:e2:c6:53:7c:dd:69:f8:81:bb:ca: d7:e4:c9:5a:38:8a:77:ab:9c:f4:1d:5a:ad:7b:2b: cb:c6:bc:7c:50:7c:18:98:3b:32:97:5e:a3:3d:ec: fd:84:e9:6a:01:d7:ac:94:4a:0f:25:f6:ef:09:69: c5:4e:fa:74:70:a6:94:1b:c7:97:d8:88:d8:97:8d: 28:99:c5:5d:e1:e9:4b:b8:9d:5a:25:d8:6c:50:ea: 19:db:24:33:1c:07:8b:fb:6e:03:cb:a1:16:98:6d: 1b:49:d4:aa:74:e9:d9:ad:58:ce:cb:ee:e1:09:33: b7:05:f4:a7:01:26:20:10:d9:ef:8c:a6:52:42:df: e8:64:02:f0:2a:62:44:b8:b2:03:e2:77:a2:89:e9: d1:10:54:e8:e0:7b:cc:fd:f4:d7:f2:b3:3e:4f:8c: 55:02:2b:bc:b7:3f:a6:8a:b2:92:85:39:cb:41:8d: 92:d2:fe:7e:4c:ba:3f:78:3d:a1:de:06:8b:f6:bb: 1f:eb:55:93:e4:40:8d:df:ac:90:b3:0a:24:47:81: ea:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:32:F3:54:F1:29:F0:AB:B5:AC:B1:09:8B:70:45:B5:87:9B:A2:A3 X509v3 Authority Key Identifier: keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c0:de:c8:20:ae:b1:e0:63:6d:18:d7:3c:09:ad:5c:ae:3c:b1: b5:93:eb:e9:43:89:05:3f:f9:98:9b:34:1c:b5:c9:84:64:ec: 73:f3:af:b2:b8:6b:84:31:03:c8:e9:cf:09:d3:44:8f:29:1f: ee:30:9c:31:4a:be:2c:c8:e6:9a:c2:9b:2a:d0:4e:6b:79:52: 91:3f:98:f1:a1:97:e7:b5:6f:a0:cb:47:54:6e:0e:c4:f8:02: 90:8f:12:77:dd:e0:1a:47:07:0e:97:0b:67:4c:2b:06:aa:7a: d2:13:fc:64:74:3f:9a:58:bf:91:0b:ae:09:f8:46:a2:e5:2f: 70:5a:f6:3d:f2:43:25:20:b2:8b:b1:dd:20:79:50:f0:2e:1d: c4:10:66:27:c1:89:5f:d9:47:2e:14:c7:51:26:63:54:da:a0: 06:c0:c7:9c:1e:b8:20:67:eb:df:ad:99:04:d4:dd:da:27:2f: 02:de:86:ed:11:81:24:a9:66:8e:a0:27:94:2f:60:7d:6a:9d: 88:b2:65:c7:c4:ae:88:cf:1f:dc:19:95:08:00:d9:ef:8b:a5: b4:9f:9a:86:b4:1f:1a:3b:fc:e9:ed:ad:c8:15:e8:ce:ef:9f: e0:6a:32:93:2a:f7:11:03:85:2d:dc:f5:64:2b:e0:25:3b:b5: b9:01:58:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00IW5oBc0GC/AgIP8khrRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NzM2NGY1MDI1MzRlODc3MWEwYzYyNTk3OTRjMjZlMjZk NGJjYTQwHhcNMjYwMTI1MTEwMTA0WhcNMjYwMTI2MTEwMTA0WjAzMTEwLwYDVQQD EyhkODMyZjM1NGYxMjlmMGFiYjVhY2IxMDk4YjcwNDViNTg3OWJhMmEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoKKFBPztB3q+wggR6DTfwi3qjEfK AOPZhmjQghpb4XgGW3JSxpYqREcoEpCTWsoSD+LGU3zdafiBu8rX5MlaOIp3q5z0 HVqteyvLxrx8UHwYmDsyl16jPez9hOlqAdeslEoPJfbvCWnFTvp0cKaUG8eX2IjY l40omcVd4elLuJ1aJdhsUOoZ2yQzHAeL+24Dy6EWmG0bSdSqdOnZrVjOy+7hCTO3 BfSnASYgENnvjKZSQt/oZALwKmJEuLID4neiienREFTo4HvM/fTX8rM+T4xVAiu8 tz+mirKShTnLQY2S0v5+TLo/eD2h3gaL9rsf61WT5ECN36yQswokR4HqDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNgy81TxKfCrtayxCYtwRbWHm6KjMB8GA1UdIwQY MBaAFClzZPUCU06HcaDGJZeUwm4m1LykMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1hOazlRSlRUb2R4b01ZbGw1VENiaWJVdktRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wNDU4MjAtMzU0Ni00MDdjLTgzYTUt MGEwZjNlNzhhNDkzLzEvS1hOazlRSlRUb2R4b01ZbGw1VENiaWJVdktRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8wNDU4MjAtMzU0Ni00MDdjLTgzYTUtMGEwZjNlNzhhNDkz LzEvS1hOazlRSlRUb2R4b01ZbGw1VENiaWJVdktRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwN7IIK6x 4GNtGNc8Ca1crjyxtZPr6UOJBT/5mJs0HLXJhGTsc/OvsrhrhDEDyOnPCdNEjykf 7jCcMUq+LMjmmsKbKtBOa3lSkT+Y8aGX57VvoMtHVG4OxPgCkI8Sd93gGkcHDpcL Z0wrBqp60hP8ZHQ/mli/kQuuCfhGouUvcFr2PfJDJSCyi7HdIHlQ8C4dxBBmJ8GJ X9lHLhTHUSZjVNqgBsDHnB64IGfr362ZBNTd2icvAt6G7RGBJKlmjqAnlC9gfWqd iLJlx8SuiM8f3BmVCADZ74ultJ+ahrQfGjv86e2tyBXozu+f4Goykyr3EQOFLdz1 ZCvgJTu1uQFYFQ== -----END CERTIFICATE-----Generated at Sun Jan 25 21:10:18 2026 by rpki-client