This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json) Hash identifier: hyGo+qL+c65CTPTwJCgm7Hz1K4aI55R77yJ5ShH0rCc= Subject key identifier: 8A:0A:B0:65:81:0B:B5:E3:14:8C:32:A7:B3:8F:BD:0B:72:AC:E5:4D Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9 Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9 Certificate serial: 019BF72D68106606A5742C9B52FDABAA7968 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft Manifest number: 0F99 Signing time: Sun 25 Jan 2026 22:01:46 +0000 Manifest this update: Sun 25 Jan 2026 22:01:46 +0000 Manifest next update: Mon 26 Jan 2026 22:01:46 +0000 Files and hashes: 1: 2Nc5AsSnBWzCuxjbHnI5SDdmCKE.roa (hash: IY9E1+Z/A+D4/xzAfwUZ6RBDyrzbb4T4cIqPhChpPt8=) 2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: J7VBq423X76uhkExvEMyIUxjwqziydUXVEzR0bor+Lk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:68:10:66:06:a5:74:2c:9b:52:fd:ab:aa:79:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9 Validity Not Before: Jan 25 22:01:46 2026 GMT Not After : Jan 26 22:01:46 2026 GMT Subject: CN=8a0ab065810bb5e3148c32a7b38fbd0b72ace54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:44:a1:56:a3:27:01:5c:86:ed:30:ae:78:e1: 24:58:3d:58:ed:25:ab:21:b3:14:bd:e7:4c:d8:6c: 22:dd:f3:63:47:ca:79:ce:51:0d:a7:1f:2b:d9:ba: 4f:23:d2:5e:ab:63:10:16:08:7d:fe:bf:78:a7:b7: 50:62:27:6d:d8:02:8d:17:9f:dc:ec:39:87:0b:2c: 6a:db:99:46:ff:ec:06:c3:80:cc:24:0c:6f:9b:15: 1a:ab:11:d6:68:ea:08:2a:3c:6f:e2:97:13:34:b4: 07:be:11:9a:da:8f:41:d4:a8:b7:b9:32:ff:07:ea: 03:09:be:91:7c:18:03:19:5b:e5:54:15:b1:21:54: 75:14:5a:49:75:74:a7:62:42:d2:04:40:6c:12:f1: 24:1d:8c:0b:70:c2:48:f8:d2:b5:c1:0f:dc:ea:db: b3:ad:30:ba:c1:2a:bc:e1:b7:0e:ac:3b:9a:84:6b: ba:aa:22:4d:b0:f5:99:29:8a:d2:e9:ad:ec:07:b3: 0c:65:81:90:96:5c:5a:2b:cb:1a:cd:be:54:a2:8f: 57:3d:b1:bb:4d:21:40:f3:ba:4f:06:1d:9b:f1:44: 02:f9:5d:38:14:87:09:eb:e3:71:01:8c:33:47:54: a4:c8:0a:1a:11:b5:3b:37:83:12:d4:45:ff:8a:c3: 11:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:0A:B0:65:81:0B:B5:E3:14:8C:32:A7:B3:8F:BD:0B:72:AC:E5:4D X509v3 Authority Key Identifier: keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:d9:2f:35:da:0c:9a:bd:3d:d2:c2:dc:3d:b6:14:3c:1a:20: 1d:fe:54:3e:2f:e9:6c:54:69:bb:03:a3:88:3e:0e:8c:39:26: d5:3b:17:dd:95:30:fc:da:20:c7:ae:fb:0e:86:f8:e3:5f:f4: d9:b5:31:ac:10:dc:85:17:f0:97:a5:9f:0a:7a:50:ab:8c:ee: 74:3a:54:41:e0:d9:ac:ff:08:e7:f2:54:c5:ba:c4:6e:cb:3a: 3a:64:60:c1:e6:8d:06:82:5f:16:22:d7:12:2d:0e:0f:b5:d9: bf:7b:46:2a:6c:ab:2c:5b:73:a6:a2:40:31:25:2e:e1:bf:39: 8e:9d:7e:12:da:9c:bc:c9:09:d1:20:1f:1a:0a:8c:50:79:eb: 0c:11:97:63:c9:d0:1c:d4:1e:4f:e5:09:84:50:6a:fb:64:62: f4:48:be:6b:2f:1a:4c:f2:4e:69:9c:c6:d5:cf:a2:9e:91:54: c3:02:d9:0c:cc:d7:95:82:71:73:14:89:a6:86:17:e2:d3:50: 2f:6f:1a:e3:e5:ca:f3:6c:25:0d:d4:d1:60:0d:ef:22:7c:b6: 9b:6c:81:72:fd:7a:9c:ac:f2:37:26:81:83:f6:d4:7d:fe:7d: ff:0f:cc:01:42:4d:01:33:a0:ce:d4:2f:92:63:51:5a:e0:d5: 7c:b4:e0:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LWgQZgaldCybUv2rqnloMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjYjNhMjE0NWY5YjRkNDY2MDU4MmFkYzZiNzM1NDk2OWUw ODljYTkwHhcNMjYwMTI1MjIwMTQ2WhcNMjYwMTI2MjIwMTQ2WjAzMTEwLwYDVQQD Eyg4YTBhYjA2NTgxMGJiNWUzMTQ4YzMyYTdiMzhmYmQwYjcyYWNlNTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0ShVqMnAVyG7TCueOEkWD1Y7SWr IbMUvedM2Gwi3fNjR8p5zlENpx8r2bpPI9Jeq2MQFgh9/r94p7dQYidt2AKNF5/c 7DmHCyxq25lG/+wGw4DMJAxvmxUaqxHWaOoIKjxv4pcTNLQHvhGa2o9B1Ki3uTL/ B+oDCb6RfBgDGVvlVBWxIVR1FFpJdXSnYkLSBEBsEvEkHYwLcMJI+NK1wQ/c6tuz rTC6wSq84bcOrDuahGu6qiJNsPWZKYrS6a3sB7MMZYGQllxaK8sazb5Uoo9XPbG7 TSFA87pPBh2b8UQC+V04FIcJ6+NxAYwzR1SkyAoaEbU7N4MS1EX/isMR4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIoKsGWBC7XjFIwyp7OPvQtyrOVNMB8GA1UdIwQY MBaAFFyzohRfm01GYFgq3GtzVJaeCJypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9kMDY2MWMtY2ViYi00ZTIyLWIxOTct MTM5ODAwYThjNzVmLzEvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9kMDY2MWMtY2ViYi00ZTIyLWIxOTctMTM5ODAwYThjNzVm LzEvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF9kvNdoM mr090sLcPbYUPBogHf5UPi/pbFRpuwOjiD4OjDkm1TsX3ZUw/Nogx677Dob441/0 2bUxrBDchRfwl6WfCnpQq4zudDpUQeDZrP8I5/JUxbrEbss6OmRgweaNBoJfFiLX Ei0OD7XZv3tGKmyrLFtzpqJAMSUu4b85jp1+EtqcvMkJ0SAfGgqMUHnrDBGXY8nQ HNQeT+UJhFBq+2Ri9Ei+ay8aTPJOaZzG1c+inpFUwwLZDMzXlYJxcxSJpoYX4tNQ L28a4+XK82wlDdTRYA3vIny2m2yBcv16nKzyNyaBg/bUff59/w/MAUJNATOgztQv kmNRWuDVfLTgBg== -----END CERTIFICATE-----Generated at Sun Jan 25 23:54:16 2026 by rpki-client