This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft File: mXpkd92XDJSyoXtSUCmC1Px1skQ.mft (raw, json) Hash identifier: Kq7x8tTuL6OohmSjZcluYjV1omcuVmCbBkPfSa1L3Ww= Subject key identifier: 92:4E:A3:7E:FC:C1:FD:95:2C:AB:B0:0F:92:88:AC:91:25:8A:A9:31 Authority key identifier: 99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44 Certificate issuer: /CN=997a6477dd970c94b2a17b52502982d4fc75b244 Certificate serial: 019BF507123061877DA3C4D6C7C922C0424D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft Manifest number: 0714 Signing time: Sun 25 Jan 2026 12:00:39 +0000 Manifest this update: Sun 25 Jan 2026 12:00:39 +0000 Manifest next update: Mon 26 Jan 2026 12:00:39 +0000 Files and hashes: 1: 6bYFArU-m22v_2LMnKGfPfQ5d_U.roa (hash: T50wLh+t9t04GFvV8DA2eC2Fd5ixjDyLVmolPRcQuvk=) 2: mXpkd92XDJSyoXtSUCmC1Px1skQ.crl (hash: re/uO0CTGQpMjfUdA+tPPl2o2bISX9+TDfjl65gODns=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:07:12:30:61:87:7d:a3:c4:d6:c7:c9:22:c0:42:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=997a6477dd970c94b2a17b52502982d4fc75b244 Validity Not Before: Jan 25 12:00:39 2026 GMT Not After : Jan 26 12:00:39 2026 GMT Subject: CN=924ea37efcc1fd952cabb00f9288ac91258aa931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:47:a4:bd:14:47:db:54:7a:14:b3:50:79:07: 4b:3b:93:c6:12:a9:78:b7:f7:43:f3:f5:84:16:0c: 2c:34:ab:a3:1d:09:dd:f1:b0:5b:76:2e:01:13:38: 5a:88:fe:17:7c:58:b4:ac:48:8e:ae:a6:fb:08:92: 65:53:1e:7a:f3:d1:da:18:d4:d6:9f:bd:1f:ac:47: 66:21:2e:4a:07:17:29:fa:52:6a:03:be:16:d8:f2: e5:f2:e7:e5:23:ad:4d:6e:b0:02:96:1d:91:78:04: 86:8c:ee:af:96:cb:9e:a4:46:d2:33:f1:7b:34:bd: f0:1f:1d:12:c6:cf:b2:ea:8a:81:12:e0:17:56:c8: be:4e:f9:05:5a:8d:76:f2:8d:78:a6:f5:77:93:fb: a0:73:31:26:28:de:c6:2e:07:10:c6:46:5f:04:54: bb:37:c0:81:bd:c3:61:c0:64:91:59:63:ce:73:c2: 72:1e:85:35:9c:00:28:0a:08:65:4a:5a:e8:e9:23: 4a:6d:77:cd:4d:92:3e:e0:de:91:d8:65:10:26:4a: ce:e0:3a:4d:91:a9:70:6b:1b:a0:b2:fe:24:1c:1b: 0e:af:c9:00:3c:08:76:c2:7a:f5:5b:b5:f9:be:97: cc:1e:d1:64:89:b8:7e:65:66:92:d3:ed:59:90:8f: 0b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4E:A3:7E:FC:C1:FD:95:2C:AB:B0:0F:92:88:AC:91:25:8A:A9:31 X509v3 Authority Key Identifier: keyid:99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:92:70:a5:a8:97:74:a8:99:9e:6d:d9:51:f1:c7:a3:fd:cb: 40:09:ca:dc:94:51:0e:f9:01:16:1d:3d:12:e7:91:8e:20:37: 4e:d4:20:4f:15:da:70:67:bc:0a:d0:0a:26:3e:69:ee:ef:a2: 56:0c:85:36:05:4d:6a:bf:09:55:a9:ba:f1:74:a9:95:16:b3: bb:9c:30:93:91:39:f1:be:05:7f:59:34:15:a2:7a:4e:d0:f7: 3c:3d:49:47:13:78:4f:7e:93:61:94:3c:db:9b:69:16:6b:a6: d0:b0:59:61:32:9f:a0:19:2a:05:f3:f1:50:73:c6:8c:06:cb: 2a:ec:21:79:e0:53:8a:1f:f0:f8:0a:7d:b1:08:78:f2:e6:95: 4a:9f:13:a9:d4:51:a1:c6:55:d0:be:3f:e8:fc:5d:76:d8:eb: a7:99:48:3c:2c:e5:8b:8f:ec:5d:7e:ef:37:74:a8:5e:1d:69: ee:bb:53:18:67:f4:d7:ba:1f:62:76:e3:cc:80:1d:52:10:73: 57:dc:a9:6c:e7:63:e6:c2:57:0e:04:b8:60:cc:4e:19:3d:6b: a5:57:b8:90:87:76:99:7d:c6:20:1d:24:bb:6c:e7:30:27:ad: 0c:6b:cc:df:14:b1:0a:0e:0f:79:42:d5:44:71:59:83:91:21: 8e:67:6a:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1BxIwYYd9o8TWx8kiwEJNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5N2E2NDc3ZGQ5NzBjOTRiMmExN2I1MjUwMjk4MmQ0ZmM3 NWIyNDQwHhcNMjYwMTI1MTIwMDM5WhcNMjYwMTI2MTIwMDM5WjAzMTEwLwYDVQQD Eyg5MjRlYTM3ZWZjYzFmZDk1MmNhYmIwMGY5Mjg4YWM5MTI1OGFhOTMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsEekvRRH21R6FLNQeQdLO5PGEql4 t/dD8/WEFgwsNKujHQnd8bBbdi4BEzhaiP4XfFi0rEiOrqb7CJJlUx5689HaGNTW n70frEdmIS5KBxcp+lJqA74W2PLl8uflI61NbrAClh2ReASGjO6vlsuepEbSM/F7 NL3wHx0Sxs+y6oqBEuAXVsi+TvkFWo128o14pvV3k/ugczEmKN7GLgcQxkZfBFS7 N8CBvcNhwGSRWWPOc8JyHoU1nAAoCghlSlro6SNKbXfNTZI+4N6R2GUQJkrO4DpN kalwaxugsv4kHBsOr8kAPAh2wnr1W7X5vpfMHtFkibh+ZWaS0+1ZkI8LKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJJOo378wf2VLKuwD5KIrJEliqkxMB8GA1UdIwQY MBaAFJl6ZHfdlwyUsqF7UlApgtT8dbJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVhwa2Q5MlhESlN5b1h0U1VDbUMxUHgxc2tRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80ODE0NjYtMGUzOC00ZTNiLTliZjMt Mjg1NzQ1NjQ3ZjVmLzEvbVhwa2Q5MlhESlN5b1h0U1VDbUMxUHgxc2tRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS80ODE0NjYtMGUzOC00ZTNiLTliZjMtMjg1NzQ1NjQ3ZjVm LzEvbVhwa2Q5MlhESlN5b1h0U1VDbUMxUHgxc2tRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOZJwpaiX dKiZnm3ZUfHHo/3LQAnK3JRRDvkBFh09EueRjiA3TtQgTxXacGe8CtAKJj5p7u+i VgyFNgVNar8JVam68XSplRazu5wwk5E58b4Ff1k0FaJ6TtD3PD1JRxN4T36TYZQ8 25tpFmum0LBZYTKfoBkqBfPxUHPGjAbLKuwheeBTih/w+Ap9sQh48uaVSp8TqdRR ocZV0L4/6Pxddtjrp5lIPCzli4/sXX7vN3SoXh1p7rtTGGf017ofYnbjzIAdUhBz V9ypbOdj5sJXDgS4YMxOGT1rpVe4kId2mX3GIB0ku2znMCetDGvM3xSxCg4PeULV RHFZg5Ehjmdqvw== -----END CERTIFICATE-----Generated at Sun Jan 25 22:00:54 2026 by rpki-client