This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft File: XX9jQBQHwcx5excDToE9IlT5dz4.mft (raw, json) Hash identifier: O9j4fzK9PtZotH7Ex4GY1lxNagPiQQQqyWQbkQBI2ww= Subject key identifier: 23:D2:F3:50:9E:A3:3F:E3:89:0A:A0:8A:7E:ED:E2:A1:C9:93:8D:3E Authority key identifier: 5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E Certificate issuer: /CN=5d7f63401407c1cc797b17034e813d2254f9773e Certificate serial: 019BF6F5B2ABBEB92828ABFE3F5B085D80B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft Manifest number: 0E80 Signing time: Sun 25 Jan 2026 21:00:55 +0000 Manifest this update: Sun 25 Jan 2026 21:00:55 +0000 Manifest next update: Mon 26 Jan 2026 21:00:55 +0000 Files and hashes: 1: IJctrhezjfWjiA84ZaayWYeZh1k.roa (hash: VetyKsjNSyH6fNCp1k97xHgv6Vja8yJIQbMcO2qIjkU=) 2: XX9jQBQHwcx5excDToE9IlT5dz4.crl (hash: hIs6UJg/lC9dgdK5N+sHHirHpip2x/NKdwwSn8v4qnc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:b2:ab:be:b9:28:28:ab:fe:3f:5b:08:5d:80:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d7f63401407c1cc797b17034e813d2254f9773e Validity Not Before: Jan 25 21:00:55 2026 GMT Not After : Jan 26 21:00:55 2026 GMT Subject: CN=23d2f3509ea33fe3890aa08a7eede2a1c9938d3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:78:b9:9e:3e:30:2d:78:2d:5d:37:6d:e2:e0: f8:19:1f:6a:b3:da:48:2d:31:12:2a:b2:78:12:58: d4:be:1d:9d:95:a9:47:ad:7e:69:12:b1:ab:3b:66: f5:10:56:f4:08:05:3b:b0:42:89:35:95:ed:b0:72: c1:59:99:c1:d0:5e:e9:37:8d:99:5c:94:83:7a:93: 24:dd:ec:a0:bb:48:8a:d1:2a:aa:2c:cb:14:fb:c0: ec:27:d3:c8:6d:d0:f3:3c:b9:b6:cb:c9:84:00:5f: dd:80:a8:d8:90:27:2a:4a:8e:48:b9:64:38:64:6a: 14:6b:1e:c3:1d:56:a4:36:08:5c:93:2b:9e:6b:84: 2d:d8:01:e0:90:97:89:37:59:0c:56:15:f6:88:87: d1:50:c1:1e:42:c0:7a:48:ec:3c:03:47:c0:4a:8a: 34:ed:c4:b7:ba:f3:dc:b8:bf:59:63:34:88:48:69: b3:c3:ff:c4:82:c9:51:14:8b:fe:03:fb:c7:67:30: 5d:70:ef:49:28:63:69:fa:37:21:35:f5:10:1b:80: 6f:33:59:7f:da:6b:9c:dd:86:67:03:ee:7c:ac:3e: f4:85:4b:f0:43:a7:46:e4:dc:1c:94:b6:8d:e6:21: 30:e9:17:d8:38:5d:89:de:05:40:95:a5:a4:a7:07: 22:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D2:F3:50:9E:A3:3F:E3:89:0A:A0:8A:7E:ED:E2:A1:C9:93:8D:3E X509v3 Authority Key Identifier: keyid:5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:21:56:38:54:4c:a3:c8:32:f4:4b:6c:31:8e:2b:66:98:35: bf:f9:81:f1:df:d8:c8:85:cc:1b:4a:3b:26:3f:e8:de:9f:23: 7e:22:51:44:0a:94:db:05:aa:55:02:b9:ea:f0:43:8b:cd:3c: 2d:0d:ad:ec:8b:87:47:18:a8:16:ad:78:6c:b7:00:20:24:89: 4c:70:1c:78:bf:bb:a6:34:a8:7e:9f:ab:ae:0d:7c:cd:fd:5b: 42:02:63:74:b0:75:38:b5:fc:4f:4e:1f:4d:2d:de:2b:c8:13: f2:ad:48:0c:f9:29:b4:7e:3e:fd:bc:80:03:ea:55:a0:c5:dc: 50:4c:ec:96:84:df:d9:15:15:c2:f0:ef:3f:3f:85:60:1a:b3: 77:b9:66:e6:ce:71:9a:af:1a:1f:03:1a:4d:c2:4d:5f:d7:7b: 5d:82:20:66:dc:1f:e4:df:5d:8d:e2:82:2e:b4:d3:9c:7b:7e: d4:8e:ed:48:26:2d:21:9c:33:19:b0:b1:25:35:97:1f:af:a7: 68:d9:78:89:a2:ec:84:b4:1a:d9:e0:01:17:06:b3:26:5e:59: 75:ac:97:17:57:90:d7:4a:e7:41:83:de:9b:08:a8:f2:b5:e2: e5:f3:5c:aa:c2:34:44:ec:31:8f:5a:d6:e6:1e:cd:24:50:87: 12:9f:d1:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29bKrvrkoKKv+P1sIXYCzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkN2Y2MzQwMTQwN2MxY2M3OTdiMTcwMzRlODEzZDIyNTRm OTc3M2UwHhcNMjYwMTI1MjEwMDU1WhcNMjYwMTI2MjEwMDU1WjAzMTEwLwYDVQQD EygyM2QyZjM1MDllYTMzZmUzODkwYWEwOGE3ZWVkZTJhMWM5OTM4ZDNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Hi5nj4wLXgtXTdt4uD4GR9qs9pI LTESKrJ4EljUvh2dlalHrX5pErGrO2b1EFb0CAU7sEKJNZXtsHLBWZnB0F7pN42Z XJSDepMk3eygu0iK0SqqLMsU+8DsJ9PIbdDzPLm2y8mEAF/dgKjYkCcqSo5IuWQ4 ZGoUax7DHVakNghckyuea4Qt2AHgkJeJN1kMVhX2iIfRUMEeQsB6SOw8A0fASoo0 7cS3uvPcuL9ZYzSISGmzw//EgslRFIv+A/vHZzBdcO9JKGNp+jchNfUQG4BvM1l/ 2muc3YZnA+58rD70hUvwQ6dG5NwclLaN5iEw6RfYOF2J3gVAlaWkpwciOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCPS81Ceoz/jiQqgin7t4qHJk40+MB8GA1UdIwQY MBaAFF1/Y0AUB8HMeXsXA06BPSJU+Xc+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFg5alFCUUh3Y3g1ZXhjRFRvRTlJbFQ1ZHo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC81NTAwMDQtZTFhNi00NTY5LWFlNjMt MzNmYjE0NTJiYjBhLzEvWFg5alFCUUh3Y3g1ZXhjRFRvRTlJbFQ1ZHo0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC81NTAwMDQtZTFhNi00NTY5LWFlNjMtMzNmYjE0NTJiYjBh LzEvWFg5alFCUUh3Y3g1ZXhjRFRvRTlJbFQ1ZHo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATyFWOFRM o8gy9EtsMY4rZpg1v/mB8d/YyIXMG0o7Jj/o3p8jfiJRRAqU2wWqVQK56vBDi808 LQ2t7IuHRxioFq14bLcAICSJTHAceL+7pjSofp+rrg18zf1bQgJjdLB1OLX8T04f TS3eK8gT8q1IDPkptH4+/byAA+pVoMXcUEzsloTf2RUVwvDvPz+FYBqzd7lm5s5x mq8aHwMaTcJNX9d7XYIgZtwf5N9djeKCLrTTnHt+1I7tSCYtIZwzGbCxJTWXH6+n aNl4iaLshLQa2eABFwazJl5ZdayXF1eQ10rnQYPemwio8rXi5fNcqsI0ROwxj1rW 5h7NJFCHEp/R+Q== -----END CERTIFICATE-----Generated at Mon Jan 26 01:47:58 2026 by rpki-client