This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft File: cxkAeiit4HgdMS2NSUcts2dnBBY.mft (raw, json) Hash identifier: PlCGjtptWbQw3uHXYA6GGOm9Pdp4jSPpoXdBe14QU8Y= Subject key identifier: 30:82:E0:14:72:8A:47:40:38:DB:4E:B8:38:39:DA:CD:7A:00:58:B3 Authority key identifier: 73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16 Certificate issuer: /CN=7319007a28ade0781d312d8d49472db367670416 Certificate serial: 019BF91B74426928BF3310035322AEBA7825 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft Manifest number: 0A66 Signing time: Mon 26 Jan 2026 07:01:24 +0000 Manifest this update: Mon 26 Jan 2026 07:01:24 +0000 Manifest next update: Tue 27 Jan 2026 07:01:24 +0000 Files and hashes: 1: Le8K7qSkEZ1_FmI_JNvcQwDT3kM.roa (hash: YPGYe40UQA7fHzeXPlUUiQ7ZZraM1bL1CPz1T+qTDdY=) 2: cxkAeiit4HgdMS2NSUcts2dnBBY.crl (hash: gbDb5O2QViYBtDnszbBma5hPq/SU5e2XF35L9YJ5oOU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:74:42:69:28:bf:33:10:03:53:22:ae:ba:78:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7319007a28ade0781d312d8d49472db367670416 Validity Not Before: Jan 26 07:01:24 2026 GMT Not After : Jan 27 07:01:24 2026 GMT Subject: CN=3082e014728a474038db4eb83839dacd7a0058b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e0:9a:8f:5f:8a:a5:04:e2:87:e2:f5:84:58: 2a:88:e0:98:b5:dc:38:3d:84:e1:05:1e:a5:9e:6e: 71:70:87:2d:a5:a8:67:76:a2:89:00:4c:6c:a3:5f: 19:41:79:94:d0:6b:1e:f1:b2:ba:03:e6:7b:a2:32: a7:a6:cb:d2:ee:c7:f5:ee:4f:d8:db:0a:ee:39:6b: 93:df:2c:99:66:fb:32:13:46:51:5f:3d:00:e5:a0: 3a:f4:a3:87:9a:45:cd:cd:6e:de:42:77:5f:e4:ce: e7:8f:c9:38:f5:36:0b:3c:95:36:16:c0:ae:8c:ee: e7:77:45:52:4f:4e:62:53:77:1d:66:48:df:03:46: a8:26:6e:0f:d9:48:60:61:66:72:05:6a:9e:2b:15: 96:05:37:c1:4c:6f:dd:28:b5:ff:1d:34:78:5a:90: 30:bd:91:01:3a:01:be:c8:86:7d:d1:7b:ed:81:a3: 61:21:42:4c:c9:43:80:f4:b4:cd:8a:24:e4:88:82: 90:f5:b2:9b:be:8b:e0:55:40:3f:bc:43:84:61:f4: b0:0a:1c:3f:7e:00:f4:9e:f8:7e:b4:42:1b:d9:ab: e7:61:c2:30:2a:43:d3:e4:8f:4a:68:09:3b:16:ba: 60:d2:53:5a:3c:7b:c2:d3:ac:a6:60:01:7b:6b:78: dd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:82:E0:14:72:8A:47:40:38:DB:4E:B8:38:39:DA:CD:7A:00:58:B3 X509v3 Authority Key Identifier: keyid:73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:30:67:26:06:9f:8a:33:de:a1:52:f7:8a:e5:98:b4:e8:59: d5:ff:95:69:7d:c5:54:a0:29:d1:8b:d3:cf:00:28:a0:f9:a7: 4b:9f:c9:46:3e:8c:be:70:d6:85:f4:07:18:50:6c:32:5f:f0: 1d:46:45:b6:b5:13:1e:3b:c3:7a:18:b7:bb:4b:39:cd:13:b6: 7b:e8:fb:bc:21:d7:00:5a:18:78:bb:6f:1c:aa:be:7c:bd:13: 6f:10:50:b0:d2:e6:ff:87:01:c1:f0:79:0f:93:8b:45:7c:c7: 51:e8:1c:76:b1:17:e4:c5:29:be:cf:64:ac:de:44:24:6d:93: 8d:08:a5:00:8c:8e:ab:ce:ac:d1:ef:83:f4:84:55:9c:f9:d7: d2:bc:0b:71:7a:9b:f7:e2:f6:e6:cf:1f:8f:1e:45:ae:d0:3e: 5d:03:4b:a0:0f:be:8a:43:33:a6:cc:c8:b7:a7:a6:54:7c:49: 28:e8:18:51:f7:b7:97:07:3e:fb:4f:9b:9b:c0:cb:a1:12:3f: 59:7e:7e:53:81:9d:67:0a:6c:31:33:72:64:cd:09:64:e6:60: 37:63:a6:6e:25:53:b9:1a:76:b5:db:a0:97:bf:2b:0d:bf:bf: 84:cd:7b:a7:79:86:4a:fe:f0:ac:0e:b8:6c:05:7c:c6:fb:36: c8:0d:cc:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5G3RCaSi/MxADUyKuunglMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczMTkwMDdhMjhhZGUwNzgxZDMxMmQ4ZDQ5NDcyZGIzNjc2 NzA0MTYwHhcNMjYwMTI2MDcwMTI0WhcNMjYwMTI3MDcwMTI0WjAzMTEwLwYDVQQD EygzMDgyZTAxNDcyOGE0NzQwMzhkYjRlYjgzODM5ZGFjZDdhMDA1OGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOCaj1+KpQTih+L1hFgqiOCYtdw4 PYThBR6lnm5xcIctpahndqKJAExso18ZQXmU0Gse8bK6A+Z7ojKnpsvS7sf17k/Y 2wruOWuT3yyZZvsyE0ZRXz0A5aA69KOHmkXNzW7eQndf5M7nj8k49TYLPJU2FsCu jO7nd0VST05iU3cdZkjfA0aoJm4P2UhgYWZyBWqeKxWWBTfBTG/dKLX/HTR4WpAw vZEBOgG+yIZ90XvtgaNhIUJMyUOA9LTNiiTkiIKQ9bKbvovgVUA/vEOEYfSwChw/ fgD0nvh+tEIb2avnYcIwKkPT5I9KaAk7Frpg0lNaPHvC06ymYAF7a3jdhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDCC4BRyikdAONtOuDg52s16AFizMB8GA1UdIwQY MBaAFHMZAHooreB4HTEtjUlHLbNnZwQWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3hrQWVpaXQ0SGdkTVMyTlNVY3RzMmRuQkJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9mOGM3ZTItMzI4Mi00ZWJiLTg1MDgt OWY5NDk0OTY2YzU0LzEvY3hrQWVpaXQ0SGdkTVMyTlNVY3RzMmRuQkJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi9mOGM3ZTItMzI4Mi00ZWJiLTg1MDgtOWY5NDk0OTY2YzU0 LzEvY3hrQWVpaXQ0SGdkTVMyTlNVY3RzMmRuQkJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiDBnJgaf ijPeoVL3iuWYtOhZ1f+VaX3FVKAp0YvTzwAooPmnS5/JRj6MvnDWhfQHGFBsMl/w HUZFtrUTHjvDehi3u0s5zRO2e+j7vCHXAFoYeLtvHKq+fL0TbxBQsNLm/4cBwfB5 D5OLRXzHUegcdrEX5MUpvs9krN5EJG2TjQilAIyOq86s0e+D9IRVnPnX0rwLcXqb 9+L25s8fjx5FrtA+XQNLoA++ikMzpszIt6emVHxJKOgYUfe3lwc++0+bm8DLoRI/ WX5+U4GdZwpsMTNyZM0JZOZgN2OmbiVTuRp2tdugl78rDb+/hM17p3mGSv7wrA64 bAV8xvs2yA3MWg== -----END CERTIFICATE-----Generated at Mon Jan 26 09:02:05 2026 by rpki-client