This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft File: xcgmUInL3eamxXnNd2tfgMD4rdQ.mft (raw, json) Hash identifier: f+fdrROZ61jR3WOR35CL7WPE+ldLYPoEvE8LdUgqGx8= Subject key identifier: DE:96:DA:8A:B8:0F:93:40:02:8C:E0:AE:16:1D:8C:98:7B:A7:18:60 Authority key identifier: C5:C8:26:50:89:CB:DD:E6:A6:C5:79:CD:77:6B:5F:80:C0:F8:AD:D4 Certificate issuer: /CN=c5c8265089cbdde6a6c579cd776b5f80c0f8add4 Certificate serial: 019BF83F56752DC0DB5BFFA5796256B377C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft Manifest number: 0301 Signing time: Mon 26 Jan 2026 03:00:59 +0000 Manifest this update: Mon 26 Jan 2026 03:00:59 +0000 Manifest next update: Tue 27 Jan 2026 03:00:59 +0000 Files and hashes: 1: m7FhPhHs11a2vSve5xnlsfFohsw.roa (hash: hMpM0IenW1hqeUpQGO4ux70XpFaz54EzPiQ0jMGVOds=) 2: xcgmUInL3eamxXnNd2tfgMD4rdQ.crl (hash: OIFibR3bzkWp905ykajl5hc4RrBOixPB4SjZbBw2Zcw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:3f:56:75:2d:c0:db:5b:ff:a5:79:62:56:b3:77:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5c8265089cbdde6a6c579cd776b5f80c0f8add4 Validity Not Before: Jan 26 03:00:59 2026 GMT Not After : Jan 27 03:00:59 2026 GMT Subject: CN=de96da8ab80f9340028ce0ae161d8c987ba71860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:60:47:e1:53:8f:9e:87:7f:59:cd:8f:64:a9: 6a:ec:ea:d7:0b:85:c6:fb:03:9f:d4:95:53:85:88: ac:9b:29:0a:33:67:24:a6:54:1e:89:de:93:17:9b: 5b:b6:6e:e5:e2:3e:cc:de:a1:49:99:4a:9c:96:ac: 76:da:83:ff:25:08:44:74:2d:bb:c8:47:87:b6:5d: 83:63:e2:1d:c7:3c:d5:b7:37:34:0e:b6:af:e0:0d: 10:61:00:04:1a:5c:d9:41:c5:50:48:5d:b4:5e:fd: af:37:ff:c3:f2:2c:34:d4:2f:17:21:a3:0a:cb:b1: 9f:1e:79:89:87:b9:59:c1:1e:c8:57:09:4e:68:8e: 8b:75:6a:69:e4:dc:a0:ad:7d:1b:d0:ac:1e:38:7c: 37:02:f0:42:77:cf:85:e3:75:ff:f9:41:ec:53:80: f8:23:17:f9:ce:80:76:b3:1b:0b:a2:fe:64:c3:e7: fc:2f:91:05:62:d4:94:a7:c8:ba:17:65:2f:3a:dd: 3e:c4:79:e6:79:e6:1e:33:f6:f3:28:e6:ee:29:77: 76:87:33:11:d3:d8:a8:44:c8:e2:7c:12:c1:fc:51: ca:d1:01:56:9d:5e:3f:dc:f2:99:76:e1:e3:00:f8: 48:70:68:99:f9:58:4e:84:94:fd:67:3c:fd:6f:7c: ff:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:96:DA:8A:B8:0F:93:40:02:8C:E0:AE:16:1D:8C:98:7B:A7:18:60 X509v3 Authority Key Identifier: keyid:C5:C8:26:50:89:CB:DD:E6:A6:C5:79:CD:77:6B:5F:80:C0:F8:AD:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:93:44:61:8a:c9:66:22:e6:26:15:e3:e1:0e:42:43:f6:d0: 3b:5e:8f:e8:80:ee:4c:a0:1f:f7:d9:61:69:90:c9:f0:11:bc: 08:a1:b7:69:68:d5:7c:d2:72:ab:01:a2:53:3c:fd:93:77:97: 93:13:53:1f:82:08:1f:d5:1a:69:d1:75:25:c7:01:91:ff:c4: da:8d:fd:b4:f3:44:8d:1c:eb:92:72:f3:81:bd:9f:f9:98:3c: 29:b2:74:a6:d0:70:88:29:08:ac:69:11:bc:7c:49:4b:0a:7e: 6c:9f:25:0b:8e:5d:23:cc:a5:83:77:ff:c3:ff:2a:bb:85:c2: de:81:11:16:6b:80:0b:9b:95:df:35:8d:bc:97:8c:a3:7c:00: 69:74:64:18:d1:27:21:8e:7c:14:17:97:a7:38:d3:5b:fc:8d: a5:e5:7e:a4:ff:6b:d0:99:8f:e4:59:40:bd:72:77:96:9e:53: 6b:0c:1a:ee:8a:50:c4:3d:50:4f:91:34:59:e5:17:32:3a:f2: 74:70:39:b1:33:f3:6b:f1:e9:98:20:72:0e:cc:a8:c2:8d:bd: c4:c3:13:a6:53:61:fb:72:33:91:4a:12:26:e4:0c:f3:e9:ba: a7:2e:aa:49:e4:95:61:4b:6e:86:f0:d7:c5:94:c9:dc:0d:d0: 66:42:86:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4P1Z1LcDbW/+leWJWs3fGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1YzgyNjUwODljYmRkZTZhNmM1NzljZDc3NmI1ZjgwYzBm OGFkZDQwHhcNMjYwMTI2MDMwMDU5WhcNMjYwMTI3MDMwMDU5WjAzMTEwLwYDVQQD EyhkZTk2ZGE4YWI4MGY5MzQwMDI4Y2UwYWUxNjFkOGM5ODdiYTcxODYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2BH4VOPnod/Wc2PZKlq7OrXC4XG +wOf1JVThYismykKM2ckplQeid6TF5tbtm7l4j7M3qFJmUqclqx22oP/JQhEdC27 yEeHtl2DY+IdxzzVtzc0Drav4A0QYQAEGlzZQcVQSF20Xv2vN//D8iw01C8XIaMK y7GfHnmJh7lZwR7IVwlOaI6LdWpp5NygrX0b0KweOHw3AvBCd8+F43X/+UHsU4D4 Ixf5zoB2sxsLov5kw+f8L5EFYtSUp8i6F2UvOt0+xHnmeeYeM/bzKObuKXd2hzMR 09ioRMjifBLB/FHK0QFWnV4/3PKZduHjAPhIcGiZ+VhOhJT9Zzz9b3z/fwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN6W2oq4D5NAAozgrhYdjJh7pxhgMB8GA1UdIwQY MBaAFMXIJlCJy93mpsV5zXdrX4DA+K3UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGNnbVVJbkwzZWFteFhuTmQydGZnTUQ0cmRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi80OGM3ZWMtMGM3NS00MWM0LTg1YWEt NDM4ODIwZmJhMjU0LzEveGNnbVVJbkwzZWFteFhuTmQydGZnTUQ0cmRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi80OGM3ZWMtMGM3NS00MWM0LTg1YWEtNDM4ODIwZmJhMjU0 LzEveGNnbVVJbkwzZWFteFhuTmQydGZnTUQ0cmRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkpNEYYrJ ZiLmJhXj4Q5CQ/bQO16P6IDuTKAf99lhaZDJ8BG8CKG3aWjVfNJyqwGiUzz9k3eX kxNTH4IIH9UaadF1JccBkf/E2o39tPNEjRzrknLzgb2f+Zg8KbJ0ptBwiCkIrGkR vHxJSwp+bJ8lC45dI8ylg3f/w/8qu4XC3oERFmuAC5uV3zWNvJeMo3wAaXRkGNEn IY58FBeXpzjTW/yNpeV+pP9r0JmP5FlAvXJ3lp5Tawwa7opQxD1QT5E0WeUXMjry dHA5sTPza/HpmCByDsyowo29xMMTplNh+3IzkUoSJuQM8+m6py6qSeSVYUtuhvDX xZTJ3A3QZkKGOw== -----END CERTIFICATE-----Generated at Mon Jan 26 09:45:27 2026 by rpki-client