This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json) Hash identifier: qdtT6Pn6Zgl8mPRhU9P0kvBAQXHW4v6padgRqo5TeUo= Subject key identifier: FE:B1:A4:F4:F6:C9:16:72:E9:03:31:15:1F:CF:89:06:C4:F8:2B:8E Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef Certificate serial: 019BF79ACD2ADF696A1BD9CB5437B9A2CB23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft Manifest number: 0CF9 Signing time: Mon 26 Jan 2026 00:01:15 +0000 Manifest this update: Mon 26 Jan 2026 00:01:15 +0000 Manifest next update: Tue 27 Jan 2026 00:01:15 +0000 Files and hashes: 1: Fnr8UBCRPeUQhRVFOAHVctCKPfo.roa (hash: PgOyYUmMG9zgljOcOgtP5byxd2cN3HfKRRt85MDBTwk=) 2: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: 6jwtVDtcn1hD6aEuZkkBs1pbqNXfzfbw+jJFPFt2Dms=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:cd:2a:df:69:6a:1b:d9:cb:54:37:b9:a2:cb:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef Validity Not Before: Jan 26 00:01:15 2026 GMT Not After : Jan 27 00:01:15 2026 GMT Subject: CN=feb1a4f4f6c91672e90331151fcf8906c4f82b8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e5:85:cc:df:78:25:e8:be:92:1c:67:c2:25: c7:3c:8a:1c:ef:27:bf:27:23:c0:38:25:3a:e0:33: 06:4c:e2:2c:52:3f:6d:ac:24:3c:7b:04:db:e1:77: 9b:13:2c:ee:b9:cd:6a:19:ab:d4:de:cc:60:71:9c: a6:c9:66:1e:9b:c6:a9:55:19:b1:43:3e:b9:27:d1: 18:83:6d:1b:e0:05:3f:b8:3f:40:7d:fe:a0:df:b6: 54:6c:b1:fa:a4:d4:b1:64:a3:19:c8:04:c7:2a:63: 98:44:6c:27:31:43:95:b4:55:65:b7:20:4e:45:79: cf:6a:bd:36:fc:c5:27:41:34:35:da:44:c1:d3:34: 4b:b7:9b:cd:0c:9f:09:d1:3f:0b:66:7a:8b:fd:8a: 97:80:b2:ee:71:6e:9a:05:f2:40:c1:d3:0b:c6:d3: cb:39:c7:08:5f:44:f2:c7:5e:94:a2:3e:ab:77:7d: d3:ce:00:b9:a8:48:97:f0:44:24:31:4a:fa:4e:c4: d6:09:a7:b6:e5:e8:88:d9:f3:c3:cf:89:80:83:35: 01:8e:ef:a0:5e:6e:ed:56:30:7a:a5:4b:e0:c8:6a: 14:91:52:af:4d:8f:fa:03:22:d8:0b:11:d3:85:bf: e7:fc:c0:71:3c:af:e4:73:b6:fc:87:2f:c5:57:24: 47:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:B1:A4:F4:F6:C9:16:72:E9:03:31:15:1F:CF:89:06:C4:F8:2B:8E X509v3 Authority Key Identifier: keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:23:f8:a5:ae:86:b1:7b:57:2c:89:dd:8f:50:de:a5:9d:da: 40:e0:e2:09:da:de:b9:6c:c8:7e:78:af:48:58:26:c7:18:a6: e0:da:0d:af:17:a1:9a:61:49:27:2e:71:88:06:4e:60:a5:ca: c2:e2:91:11:ce:ed:f7:98:0f:42:0b:22:04:2a:c2:cc:da:0b: b7:47:75:50:49:9f:1b:64:a2:22:ef:31:9a:23:a1:0b:8f:41: 85:1f:42:16:d1:96:72:0c:fd:12:64:4d:f5:9a:cc:2c:e3:1f: 4c:3f:a8:35:06:c7:a6:72:54:40:49:e0:f2:fe:ba:b7:f4:88: 01:18:b6:ee:b8:6e:9e:3c:0d:69:f4:23:af:86:ce:77:4a:a7: e0:14:50:49:3d:07:8c:60:12:90:c0:fb:8e:bc:a2:1a:64:aa: 15:1e:2c:a2:d9:ac:f7:2b:38:b5:b3:e0:1a:78:54:78:7f:1e: 6a:bd:3e:50:c5:2c:52:27:e9:28:60:76:2f:4f:e9:62:73:78: 55:33:4b:ec:82:80:c9:7a:3f:de:9a:6d:08:e7:0f:6b:d2:41: 42:9d:2c:39:6f:fd:8a:2f:fa:6a:16:28:95:84:e3:6b:cc:71: dc:63:be:44:e6:70:4c:31:f5:0c:53:2a:81:63:38:2c:2f:e1: d5:c6:30:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3ms0q32lqG9nLVDe5ossjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmYmFiMGQzOWZiNjk3OWZlNGQzZDI0ODNhMDFiZGQzYzkz YmVjZWYwHhcNMjYwMTI2MDAwMTE1WhcNMjYwMTI3MDAwMTE1WjAzMTEwLwYDVQQD EyhmZWIxYTRmNGY2YzkxNjcyZTkwMzMxMTUxZmNmODkwNmM0ZjgyYjhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAneWFzN94Jei+khxnwiXHPIoc7ye/ JyPAOCU64DMGTOIsUj9trCQ8ewTb4XebEyzuuc1qGavU3sxgcZymyWYem8apVRmx Qz65J9EYg20b4AU/uD9Aff6g37ZUbLH6pNSxZKMZyATHKmOYRGwnMUOVtFVltyBO RXnPar02/MUnQTQ12kTB0zRLt5vNDJ8J0T8LZnqL/YqXgLLucW6aBfJAwdMLxtPL OccIX0Tyx16Uoj6rd33TzgC5qEiX8EQkMUr6TsTWCae25eiI2fPDz4mAgzUBju+g Xm7tVjB6pUvgyGoUkVKvTY/6AyLYCxHThb/n/MBxPK/kc7b8hy/FVyRHeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP6xpPT2yRZy6QMxFR/PiQbE+CuOMB8GA1UdIwQY MBaAFF+6sNOftpef5NPSSDoBvdPJO+zvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDdxdzA1LTJsNV9rMDlKSU9nRzkwOGs3N084LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zYzUyNGUtMTJiOC00ZGNjLThmMTAt MzBkZjYyNDI5ZGYwLzEvWDdxdzA1LTJsNV9rMDlKSU9nRzkwOGs3N084Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8zYzUyNGUtMTJiOC00ZGNjLThmMTAtMzBkZjYyNDI5ZGYw LzEvWDdxdzA1LTJsNV9rMDlKSU9nRzkwOGs3N084LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApCP4pa6G sXtXLIndj1DepZ3aQODiCdreuWzIfnivSFgmxxim4NoNrxehmmFJJy5xiAZOYKXK wuKREc7t95gPQgsiBCrCzNoLt0d1UEmfG2SiIu8xmiOhC49BhR9CFtGWcgz9EmRN 9ZrMLOMfTD+oNQbHpnJUQEng8v66t/SIARi27rhunjwNafQjr4bOd0qn4BRQST0H jGASkMD7jryiGmSqFR4sotms9ys4tbPgGnhUeH8ear0+UMUsUifpKGB2L0/pYnN4 VTNL7IKAyXo/3pptCOcPa9JBQp0sOW/9ii/6ahYolYTja8xx3GO+ROZwTDH1DFMq gWM4LC/h1cYwEQ== -----END CERTIFICATE-----Generated at Mon Jan 26 07:12:08 2026 by rpki-client