This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft File: Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft (raw, json) Hash identifier: MOG9p57rvASrh1m2R/wHMnQgF2uZG7fPEwHIT3VJTu4= Subject key identifier: 34:F3:6A:A6:9C:63:67:BA:DF:CD:0F:77:A0:10:B8:0C:21:94:94:DC Authority key identifier: 5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6 Certificate issuer: /CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6 Certificate serial: 019BF3BDC9B51DBE238F1FFBCB44DFBE0077 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft Manifest number: 0CD9 Signing time: Sun 25 Jan 2026 06:00:59 +0000 Manifest this update: Sun 25 Jan 2026 06:00:59 +0000 Manifest next update: Mon 26 Jan 2026 06:00:59 +0000 Files and hashes: 1: RrwlRSSdwln9HbzArcN9f7ThR9c.roa (hash: Ic3y0/hXv+5FL5zNAqt7WX+ncQH0cGC5wuQsjbsXF7I=) 2: Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl (hash: txTmO+wXera/ZnltW5/FXRrALC7UYPkpQZszjft6ykI=) 3: fWpL_ta7aXoIKT8lwYmDL0nQegU.roa (hash: r+7J0jRgrAdlkGpSk5T7jtJhr78GxAY9zYWBhS85+uQ=) 4: l5tw0iDO7abT_AibKjZJaQ4nwWc.roa (hash: r+71S+WnEwowT4NhvO1eI4eYiERh6tzaeOlSbc80Img=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:bd:c9:b5:1d:be:23:8f:1f:fb:cb:44:df:be:00:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6 Validity Not Before: Jan 25 06:00:59 2026 GMT Not After : Jan 26 06:00:59 2026 GMT Subject: CN=34f36aa69c6367badfcd0f77a010b80c219494dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ad:8a:49:a8:39:a1:6b:b9:c9:48:ee:64:37: c0:8c:8f:8b:ef:93:dc:75:0b:54:23:0d:93:d2:21: 5e:24:a1:60:4d:e6:44:ef:13:4e:7d:1c:b4:c4:c1: f8:ec:e5:70:df:eb:37:c6:8c:3e:44:4a:21:3d:fc: 59:1e:da:c8:c8:44:22:41:76:9b:5f:d0:a3:ee:8c: 7e:7a:59:a0:ca:e0:d0:07:18:eb:7e:69:53:ff:3a: 3e:54:bd:91:60:c1:c4:77:23:9c:91:5e:fd:c5:d1: 21:69:6a:9f:f1:a5:3d:36:4f:09:7c:79:c8:3d:00: 0c:ad:59:34:9f:6c:d2:dd:fa:95:48:07:e3:5b:e5: 80:61:4d:b5:02:5f:9b:07:a1:49:45:3b:34:07:31: 07:09:1f:3f:5a:16:2f:d7:72:bd:00:c9:ae:be:ea: 71:c0:1f:b1:8e:0f:cd:c2:45:88:1d:f0:49:97:b2: cd:85:c9:6c:b0:de:fb:7c:6e:ee:6a:39:1d:25:63: cf:eb:2a:0d:c5:37:b0:78:fb:10:3b:21:ee:ac:a8: 76:bf:86:a5:d8:06:55:8f:3f:d4:52:39:9b:1f:10: d0:d0:64:17:da:4a:82:67:69:f8:d2:c0:74:6a:99: 0d:7a:ea:b9:7f:79:19:d8:33:aa:6f:48:91:cd:39: 8a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F3:6A:A6:9C:63:67:BA:DF:CD:0F:77:A0:10:B8:0C:21:94:94:DC X509v3 Authority Key Identifier: keyid:5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:25:54:35:16:95:f3:3c:b0:59:0d:65:78:46:7c:5a:03:1a: 37:47:62:40:b0:e1:2f:83:47:ea:80:9c:f0:a3:c8:4a:6e:fe: cd:fd:63:af:47:de:62:06:57:03:a8:8a:e3:3c:a4:c5:fe:22: a1:32:e5:fe:cb:ec:da:ba:12:f7:54:ce:af:29:a8:17:66:bf: 7b:60:d1:21:ee:48:e2:1b:3a:4b:88:78:51:44:9d:92:f9:ae: 0e:50:90:e6:d6:33:2c:50:2f:9e:40:e5:55:10:2e:3d:77:8f: 44:25:b0:fc:90:36:5b:94:3c:e1:a8:ee:9c:da:22:9e:c9:7a: 13:f1:1e:e5:cf:17:f6:2d:09:88:46:c2:91:6a:43:ec:c4:32: 11:68:66:5b:e4:f0:f6:d0:28:d1:9d:90:8a:d9:c9:88:a9:e2: d9:7c:f8:d3:e7:96:31:d1:24:d2:fe:85:c3:fc:60:ba:68:85: aa:c7:59:aa:7a:d6:c7:6e:74:b5:08:40:17:ea:53:7d:84:42: af:81:0c:f1:86:43:c5:a2:e7:56:e4:d3:c8:63:b0:c8:bd:42: 2d:b2:9b:a7:a6:9e:82:93:80:e2:6e:e9:35:46:4a:88:a5:bd: 55:4b:4c:32:77:c6:81:ef:d4:9b:94:9f:08:cf:45:5b:d0:9c: 0d:71:af:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzvcm1Hb4jjx/7y0TfvgB3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmMWYyMTNiOGM3OTJiN2UwMTNmYTUwNDFmNWI4OTk3MWU2 ZjYyZDYwHhcNMjYwMTI1MDYwMDU5WhcNMjYwMTI2MDYwMDU5WjAzMTEwLwYDVQQD EygzNGYzNmFhNjljNjM2N2JhZGZjZDBmNzdhMDEwYjgwYzIxOTQ5NGRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwK2KSag5oWu5yUjuZDfAjI+L75Pc dQtUIw2T0iFeJKFgTeZE7xNOfRy0xMH47OVw3+s3xow+REohPfxZHtrIyEQiQXab X9Cj7ox+elmgyuDQBxjrfmlT/zo+VL2RYMHEdyOckV79xdEhaWqf8aU9Nk8JfHnI PQAMrVk0n2zS3fqVSAfjW+WAYU21Al+bB6FJRTs0BzEHCR8/WhYv13K9AMmuvupx wB+xjg/NwkWIHfBJl7LNhclssN77fG7uajkdJWPP6yoNxTewePsQOyHurKh2v4al 2AZVjz/UUjmbHxDQ0GQX2kqCZ2n40sB0apkNeuq5f3kZ2DOqb0iRzTmKGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDTzaqacY2e6380Pd6AQuAwhlJTcMB8GA1UdIwQY MBaAFF8fITuMeSt+AT+lBB9biZceb2LWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zMmY4ZDMtNzMyOC00NWYwLWEwMDct NDAyMjM4NjM4ZWEzLzEvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy8zMmY4ZDMtNzMyOC00NWYwLWEwMDctNDAyMjM4NjM4ZWEz LzEvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtSVUNRaV 8zywWQ1leEZ8WgMaN0diQLDhL4NH6oCc8KPISm7+zf1jr0feYgZXA6iK4zykxf4i oTLl/svs2roS91TOrymoF2a/e2DRIe5I4hs6S4h4UUSdkvmuDlCQ5tYzLFAvnkDl VRAuPXePRCWw/JA2W5Q84ajunNoinsl6E/Ee5c8X9i0JiEbCkWpD7MQyEWhmW+Tw 9tAo0Z2QitnJiKni2Xz40+eWMdEk0v6Fw/xgumiFqsdZqnrWx250tQhAF+pTfYRC r4EM8YZDxaLnVuTTyGOwyL1CLbKbp6aegpOA4m7pNUZKiKW9VUtMMnfGge/Um5Sf CM9FW9CcDXGvGA== -----END CERTIFICATE-----Generated at Sun Jan 25 14:03:26 2026 by rpki-client