This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft File: XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft (raw, json) Hash identifier: y1Q3PoNsZWPfd495HyItfZjlWLAAdniJkmMVBLZWYk8= Subject key identifier: 0C:03:1F:65:94:5F:A9:DF:CA:0E:D2:EB:33:7A:14:2B:D3:95:18:63 Authority key identifier: 5D:D6:C1:38:4B:4A:4C:A5:01:DD:33:C5:F0:D8:58:0D:44:16:EB:3A Certificate issuer: /CN=5dd6c1384b4a4ca501dd33c5f0d8580d4416eb3a Certificate serial: 019BF6F5AF216B10C4A68486AFCC7B9CC9FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft Manifest number: 04E3 Signing time: Sun 25 Jan 2026 21:00:54 +0000 Manifest this update: Sun 25 Jan 2026 21:00:54 +0000 Manifest next update: Mon 26 Jan 2026 21:00:54 +0000 Files and hashes: 1: XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl (hash: dgZyy8d74vj5eiUgG6esmpfOL8fXoaARHayQmA4OD14=) 2: x90dPkWW8REhzconoQULUI7Rl80.roa (hash: IZPztQukbhq4U8uDrkKMf9ofAgLjzhebtlSwoKIMZXM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:af:21:6b:10:c4:a6:84:86:af:cc:7b:9c:c9:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dd6c1384b4a4ca501dd33c5f0d8580d4416eb3a Validity Not Before: Jan 25 21:00:54 2026 GMT Not After : Jan 26 21:00:54 2026 GMT Subject: CN=0c031f65945fa9dfca0ed2eb337a142bd3951863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c6:c0:87:88:35:77:0a:f6:e0:10:a6:a6:87: a9:25:b4:24:cc:1c:91:98:d8:a5:d1:17:46:0c:1f: d5:5d:7d:4a:6a:9b:f2:9c:0e:f1:e1:67:b7:1e:ea: 4d:ca:0d:92:dd:d8:de:30:67:d6:cf:15:f5:89:8e: 1f:49:06:1a:61:fb:ef:3d:1a:cf:3b:04:8a:af:c0: 08:0c:86:59:e8:38:2e:1f:81:37:32:72:49:71:89: 92:65:6c:f9:d8:87:ef:64:d0:a3:95:a1:88:f8:e3: 4a:09:1c:70:b7:60:57:9e:36:06:89:ff:6a:5d:ec: 70:1f:ef:d5:0b:6a:a1:2d:90:3e:11:4e:a6:0f:9d: 25:bb:cf:bc:62:9b:04:ec:c9:3d:7f:17:d3:6d:f1: e3:c9:ca:21:93:b8:ca:d0:f4:78:57:67:91:c4:81: 7e:e4:f5:7d:18:7d:3f:7a:99:1e:4d:19:03:d4:32: b1:10:58:4f:19:07:76:66:11:5e:cb:de:8e:18:53: 92:35:30:8b:c5:0f:73:b7:ee:4c:9b:37:b7:61:9a: 2c:a5:6e:ff:13:09:30:ff:53:27:7b:c1:d7:59:33: ee:38:f2:64:cc:67:d8:ea:ec:34:bc:57:1a:25:0c: c8:16:1a:cd:57:d4:40:c7:c0:dd:d3:2c:e2:f0:6f: 4c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:03:1F:65:94:5F:A9:DF:CA:0E:D2:EB:33:7A:14:2B:D3:95:18:63 X509v3 Authority Key Identifier: keyid:5D:D6:C1:38:4B:4A:4C:A5:01:DD:33:C5:F0:D8:58:0D:44:16:EB:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:57:e7:61:d4:57:6f:08:83:76:cb:e0:f4:e2:1b:a4:b3:1b: 8f:94:7f:0c:27:f4:dd:68:af:66:12:34:54:f0:ce:d4:99:a6: 45:6e:67:ce:6a:a4:83:06:70:6b:9d:3e:f9:a3:45:9f:b1:af: 66:30:a1:8d:17:0c:67:01:be:ff:a0:ed:16:e4:67:64:9e:20: 32:1f:3a:e3:66:87:77:38:2a:fa:82:78:bf:04:3e:00:55:46: f5:12:fa:c7:cf:dc:66:10:f0:4f:0f:a3:21:6e:47:f6:a1:f0: b4:28:e6:09:ef:f5:e8:06:e2:92:8c:7b:b9:42:74:91:69:fe: da:6c:4c:c6:39:c0:fd:3d:69:34:81:98:f3:d0:56:91:56:ac: 0b:29:83:0a:b6:89:a0:08:f9:38:7a:0a:34:31:ab:79:62:e6: 2c:87:1d:ce:7b:8d:35:1a:a9:8c:8c:e8:a4:9b:e6:4a:1f:03: 75:94:70:d6:e1:d2:b0:2f:2e:fc:c4:15:da:5d:6f:df:c2:9f: 6e:04:20:1c:f5:59:c4:ad:7d:94:ff:19:ac:9d:d6:47:5d:6d: 8a:9b:47:4f:2a:5a:c6:64:c9:39:b5:73:e9:e4:65:f5:64:39: 6e:9b:7a:e2:8b:39:6e:35:56:5f:ba:cc:8a:5d:04:86:f4:90: e6:64:89:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29a8haxDEpoSGr8x7nMn8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkZDZjMTM4NGI0YTRjYTUwMWRkMzNjNWYwZDg1ODBkNDQx NmViM2EwHhcNMjYwMTI1MjEwMDU0WhcNMjYwMTI2MjEwMDU0WjAzMTEwLwYDVQQD EygwYzAzMWY2NTk0NWZhOWRmY2EwZWQyZWIzMzdhMTQyYmQzOTUxODYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvsbAh4g1dwr24BCmpoepJbQkzByR mNil0RdGDB/VXX1KapvynA7x4We3HupNyg2S3djeMGfWzxX1iY4fSQYaYfvvPRrP OwSKr8AIDIZZ6DguH4E3MnJJcYmSZWz52IfvZNCjlaGI+ONKCRxwt2BXnjYGif9q XexwH+/VC2qhLZA+EU6mD50lu8+8YpsE7Mk9fxfTbfHjycohk7jK0PR4V2eRxIF+ 5PV9GH0/epkeTRkD1DKxEFhPGQd2ZhFey96OGFOSNTCLxQ9zt+5Mmze3YZospW7/ Ewkw/1Mne8HXWTPuOPJkzGfY6uw0vFcaJQzIFhrNV9RAx8Dd0yzi8G9MPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAwDH2WUX6nfyg7S6zN6FCvTlRhjMB8GA1UdIwQY MBaAFF3WwThLSkylAd0zxfDYWA1EFus6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGRiQk9FdEtUS1VCM1RQRjhOaFlEVVFXNnpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi85MTU3YTktMDRiMC00MWJlLTljMjQt ZDgyZDA2YTg3YmZlLzEvWGRiQk9FdEtUS1VCM1RQRjhOaFlEVVFXNnpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi85MTU3YTktMDRiMC00MWJlLTljMjQtZDgyZDA2YTg3YmZl LzEvWGRiQk9FdEtUS1VCM1RQRjhOaFlEVVFXNnpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe1fnYdRX bwiDdsvg9OIbpLMbj5R/DCf03WivZhI0VPDO1JmmRW5nzmqkgwZwa50++aNFn7Gv ZjChjRcMZwG+/6DtFuRnZJ4gMh8642aHdzgq+oJ4vwQ+AFVG9RL6x8/cZhDwTw+j IW5H9qHwtCjmCe/16Abikox7uUJ0kWn+2mxMxjnA/T1pNIGY89BWkVasCymDCraJ oAj5OHoKNDGreWLmLIcdznuNNRqpjIzopJvmSh8DdZRw1uHSsC8u/MQV2l1v38Kf bgQgHPVZxK19lP8ZrJ3WR11tiptHTypaxmTJObVz6eRl9WQ5bpt64os5bjVWX7rM il0EhvSQ5mSJqA== -----END CERTIFICATE-----Generated at Mon Jan 26 07:12:25 2026 by rpki-client