This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft File: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft (raw, json) Hash identifier: 0dw1r0Reimy6EtdnU0zmV3FtjECuHB2ycDS/iaBLx18= Subject key identifier: CD:DC:AB:58:A8:71:74:67:72:09:DE:21:DA:1E:75:CD:99:33:39:DD Authority key identifier: 91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D Certificate issuer: /CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d Certificate serial: 019BF68826091AC40A37CE6E7D917F71F2CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft Manifest number: 0805 Signing time: Sun 25 Jan 2026 19:01:16 +0000 Manifest this update: Sun 25 Jan 2026 19:01:16 +0000 Manifest next update: Mon 26 Jan 2026 19:01:16 +0000 Files and hashes: 1: _E48T5Kk_YeYZLQhVAgd8hC7YsU.roa (hash: k0dJ8PeVcNyuxj67fWBRQ1gHRoWtlCyhQvB826alDbQ=) 2: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl (hash: bubwW0Htuo8n451hv4COfaJQOUSDq8+Hn4nEocMjrnw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:88:26:09:1a:c4:0a:37:ce:6e:7d:91:7f:71:f2:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d Validity Not Before: Jan 25 19:01:16 2026 GMT Not After : Jan 26 19:01:16 2026 GMT Subject: CN=cddcab58a87174677209de21da1e75cd993339dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6d:88:91:93:97:1c:c4:87:37:cf:f0:07:d4: af:5b:46:30:48:da:65:fd:f6:5c:0e:a4:43:f7:b0: 95:08:af:30:0d:4c:a0:01:9b:bf:cf:ea:27:cf:4e: d7:a7:20:19:66:ac:0d:55:35:37:57:7b:fd:86:ea: 10:53:e3:48:2f:ae:fd:15:f4:51:2b:a7:af:71:ed: 80:33:34:ba:d4:3b:7d:25:2c:ae:0e:af:42:45:dd: e0:92:ab:73:e0:18:90:40:e5:a1:56:38:f5:72:cf: 39:31:d9:cc:7b:f2:43:1b:3d:47:69:c7:95:39:70: e9:93:5f:dc:50:4b:54:6e:7c:9f:75:bf:ad:8d:5c: df:90:32:99:d2:8b:bd:4c:0c:3f:69:b3:3a:19:83: 47:6e:b8:3c:42:1e:fc:fd:f2:57:82:d7:11:11:4c: 43:2c:89:37:4b:28:66:8a:54:1d:c9:e3:62:68:f7: 9e:7b:41:52:7a:93:e2:ef:20:b0:f2:52:b7:66:eb: a1:cd:b2:0e:3f:aa:e6:86:d1:ab:90:a6:f0:66:d1: 76:43:3a:08:7c:32:c4:93:ca:ae:d3:e4:77:a6:c0: fd:bf:89:36:5d:1b:9a:c7:06:d3:c4:9b:78:9f:f2: 71:df:ee:f0:f8:26:67:ba:78:33:50:5d:8f:0e:a2: 9b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:DC:AB:58:A8:71:74:67:72:09:DE:21:DA:1E:75:CD:99:33:39:DD X509v3 Authority Key Identifier: keyid:91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:b6:4d:86:1d:2e:58:95:75:88:fe:12:27:a5:ea:27:0c:c1: ba:f0:9d:49:2e:ba:01:85:e6:23:be:d0:7a:23:76:59:55:8b: 7a:45:f7:80:2e:80:04:36:ef:c3:d0:0b:64:eb:5b:87:f0:8e: 3d:17:05:66:7b:08:a5:35:75:0f:d6:98:81:26:a8:06:23:60: 38:62:5b:eb:07:bd:c6:4e:9c:3d:4b:4d:90:af:2a:3d:10:ef: e0:f5:2f:f3:5e:9c:0c:5a:6a:4c:24:d8:85:0e:e2:e4:ce:32: d6:ac:49:92:ba:20:f7:02:18:6c:e0:5f:aa:2b:b4:06:4e:50: 05:02:2a:ec:7f:df:9f:3b:c6:8d:fb:41:1f:94:1b:45:aa:46: ed:d7:ce:70:30:3a:9d:cb:fe:9c:94:2d:a8:6a:c3:ad:6d:01: cc:e1:67:9d:8c:3e:08:b5:65:0e:97:b2:a3:a0:69:d1:25:ec: 9f:05:c8:86:69:97:23:61:f5:30:5c:9f:f4:3b:c8:8e:fe:b7: fe:7f:3a:4e:5d:89:f7:04:7c:b9:63:3f:b9:07:26:e4:8f:75: 8c:92:62:a9:ff:9e:81:3b:03:32:83:cd:67:67:5d:9f:f8:cc: b5:eb:91:d2:cf:c9:bf:16:76:1c:f4:cc:1d:29:43:5d:21:5d: 3f:2f:21:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2iCYJGsQKN85ufZF/cfLMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxN2MzM2M3NTk2MTMxOGQ4ZWUzY2IxMzQ2NGE5MGQwMGFi OGJkMmQwHhcNMjYwMTI1MTkwMTE2WhcNMjYwMTI2MTkwMTE2WjAzMTEwLwYDVQQD EyhjZGRjYWI1OGE4NzE3NDY3NzIwOWRlMjFkYTFlNzVjZDk5MzMzOWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv22IkZOXHMSHN8/wB9SvW0YwSNpl /fZcDqRD97CVCK8wDUygAZu/z+onz07XpyAZZqwNVTU3V3v9huoQU+NIL679FfRR K6evce2AMzS61Dt9JSyuDq9CRd3gkqtz4BiQQOWhVjj1cs85MdnMe/JDGz1HaceV OXDpk1/cUEtUbnyfdb+tjVzfkDKZ0ou9TAw/abM6GYNHbrg8Qh78/fJXgtcREUxD LIk3SyhmilQdyeNiaPeee0FSepPi7yCw8lK3ZuuhzbIOP6rmhtGrkKbwZtF2QzoI fDLEk8qu0+R3psD9v4k2XRuaxwbTxJt4n/Jx3+7w+CZnungzUF2PDqKbLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM3cq1iocXRncgneIdoedc2ZMzndMB8GA1UdIwQY MBaAFJF8M8dZYTGNjuPLE0ZKkNAKuL0tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9hYzI3M2EtOWM4Yi00ZWY3LWE0MDAt YzM3NjFhNzVkMDQ3LzEva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi9hYzI3M2EtOWM4Yi00ZWY3LWE0MDAtYzM3NjFhNzVkMDQ3 LzEva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHLZNhh0u WJV1iP4SJ6XqJwzBuvCdSS66AYXmI77QeiN2WVWLekX3gC6ABDbvw9ALZOtbh/CO PRcFZnsIpTV1D9aYgSaoBiNgOGJb6we9xk6cPUtNkK8qPRDv4PUv816cDFpqTCTY hQ7i5M4y1qxJkrog9wIYbOBfqiu0Bk5QBQIq7H/fnzvGjftBH5QbRapG7dfOcDA6 ncv+nJQtqGrDrW0BzOFnnYw+CLVlDpeyo6Bp0SXsnwXIhmmXI2H1MFyf9DvIjv63 /n86Tl2J9wR8uWM/uQcm5I91jJJiqf+egTsDMoPNZ2ddn/jMteuR0s/JvxZ2HPTM HSlDXSFdPy8hnQ== -----END CERTIFICATE-----Generated at Mon Jan 26 03:33:53 2026 by rpki-client