This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json) Hash identifier: GjgREVkkE/TTuBzLlU7q8DVGIdi6npUboVxHbzynyuo= Subject key identifier: B6:4E:4C:0E:78:C3:40:2C:D5:03:6C:57:4F:13:B3:89:58:E5:D1:51 Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f Certificate serial: 019BF1AEE9D580EB3D02EC1668E7569CFBFB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft Manifest number: 17FC Signing time: Sat 24 Jan 2026 20:25:30 +0000 Manifest this update: Sat 24 Jan 2026 20:25:30 +0000 Manifest next update: Sun 25 Jan 2026 20:25:30 +0000 Files and hashes: 1: 3M28JHI7FacsIOAJQWmxce2Slr8.roa (hash: YkTIvgr/OPBfSq7cSMGcukiH55SIyz1JhUaAuApclZY=) 2: C28DWNXDejdL7MAcc4Gi6FPgeMM.roa (hash: IsJNEkpniLV6uLgZ6ioRBU52pmL/v472ljfJA8Ci5sE=) 3: Gk3x3dMvMywr2S8J1gmXYe0hnoU.roa (hash: /bwOAvbGES0zjJv2PTCP3py4NDDoCXEMIJubC3y4gDQ=) 4: IK5t8ZtR9FmBC9B2Oc1q_FzsZ60.roa (hash: 99eWXzzKhZzYTyaPK2nn6KPekh7aMTWJKB401rZwNvg=) 5: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: YR7OfvAAZp9sxVHsPbQ36jYTwCbVi0omoqqmN+e6Big=) 6: jXdcvBqCE8rVio9YNuEiuZYnuIo.roa (hash: ZtkqLvQ4ehKRiTxaMSbbV1v3/KL7Hxac2TJ9AgS/V8k=) 7: khD-5GIOCtdSW94SprlTc6aKDCw.roa (hash: 9g8S387WfYIRLJ6x0iTubqGcDstg4uHac2ZeVMN70tA=) 8: t6tq-2dxd5qXIQsHS260x-wYfhg.roa (hash: FZSuoJ0/qWL2hs06t/8YE+2HG3/6O+VMmmCGlR++IJU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f1:ae:e9:d5:80:eb:3d:02:ec:16:68:e7:56:9c:fb:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f Validity Not Before: Jan 24 20:25:30 2026 GMT Not After : Jan 25 20:25:30 2026 GMT Subject: CN=b64e4c0e78c3402cd5036c574f13b38958e5d151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e8:f1:b0:17:0c:a6:df:14:65:9e:29:d3:b5: 21:a3:db:f9:7b:39:e2:29:04:3b:fc:b5:23:9b:2e: 50:47:ee:65:ac:64:e4:1f:5e:62:e2:a7:5f:ba:31: 8e:d0:e7:4d:89:54:49:b4:ca:c8:a7:0a:61:7c:4f: 40:e4:e8:30:1b:af:b2:c8:3b:4a:de:8c:e0:c6:fa: a6:c2:95:ab:b8:1e:d5:2c:17:7d:c7:71:dd:b0:9c: 50:a0:c3:7f:81:8a:f9:10:63:83:5d:f0:97:3b:56: 2d:b0:01:31:b1:66:4e:74:d9:c4:6e:a4:75:55:10: a4:be:39:1e:2d:f6:2e:e5:cf:f6:0c:7b:bb:fe:0b: 8f:a6:43:c6:50:47:ce:4a:d4:c0:e7:c6:4e:0f:e9: 86:64:32:f1:22:ef:f3:e5:cc:98:84:e9:ca:73:d7: f2:0d:57:35:9f:e7:37:0c:a5:64:52:5f:53:a1:b6: f4:e4:d6:bb:f2:4f:d1:5e:da:cf:6f:af:c5:cc:ee: e8:2c:da:f9:b5:7c:a8:e7:e4:d0:10:b9:e1:46:a2: 31:9f:66:d6:e2:7a:79:4e:58:f0:37:b1:a3:9a:7e: ea:01:12:92:51:e7:36:8a:3b:06:bf:00:b2:69:27: eb:58:ea:22:91:0f:e4:99:4d:9b:66:23:d0:99:3f: 3d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:4E:4C:0E:78:C3:40:2C:D5:03:6C:57:4F:13:B3:89:58:E5:D1:51 X509v3 Authority Key Identifier: keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:88:a0:c9:bb:41:36:b3:28:c1:33:a5:e6:cd:a0:28:c2:ca: f8:f8:18:a1:03:96:8c:ff:3c:3d:96:d3:11:68:cb:04:1b:17: b1:2a:fe:df:ed:b1:d1:9c:c5:8c:33:ec:95:c9:f9:17:84:55: f8:97:a3:d7:b2:44:70:71:6b:95:8b:87:27:59:74:12:b0:86: 15:92:b2:37:a7:73:a1:ca:18:2e:e6:bf:3c:80:50:64:d2:a9: ed:09:46:9c:3a:b1:75:40:c7:f5:94:5f:c5:04:05:ec:03:64: a6:00:38:f4:7b:27:b7:7e:d6:82:be:fc:fc:5a:76:7b:a1:e3: 31:dd:d1:65:ce:1d:0f:2e:c7:cc:08:55:8a:1b:f5:44:c5:e2: df:68:71:a6:11:df:7d:c0:eb:d9:fe:18:f8:9d:fd:fc:8a:7b: d3:9d:5e:66:8b:f8:2c:02:94:16:7e:7f:ed:15:10:87:5b:e8: dd:db:2d:16:53:68:a6:da:9a:b6:44:74:50:00:ec:03:21:4f: 3a:3c:38:8c:b8:ae:f8:7a:24:b4:8d:f4:b9:c6:fa:4a:6e:b5: a8:28:f4:3e:06:37:ca:17:fd:3d:fe:dd:04:1b:88:18:1e:21: 89:e4:b6:c8:8e:6b:56:04:05:45:3c:ee:98:1a:6e:7a:68:e8: c4:15:72:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvxrunVgOs9AuwWaOdWnPv7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkZGU0YjNiODJmMjA5YjcwMWFlMzQwY2Y1M2I5NzQwNzhm MTZhOWYwHhcNMjYwMTI0MjAyNTMwWhcNMjYwMTI1MjAyNTMwWjAzMTEwLwYDVQQD EyhiNjRlNGMwZTc4YzM0MDJjZDUwMzZjNTc0ZjEzYjM4OTU4ZTVkMTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+jxsBcMpt8UZZ4p07Uho9v5ezni KQQ7/LUjmy5QR+5lrGTkH15i4qdfujGO0OdNiVRJtMrIpwphfE9A5OgwG6+yyDtK 3ozgxvqmwpWruB7VLBd9x3HdsJxQoMN/gYr5EGODXfCXO1YtsAExsWZOdNnEbqR1 VRCkvjkeLfYu5c/2DHu7/guPpkPGUEfOStTA58ZOD+mGZDLxIu/z5cyYhOnKc9fy DVc1n+c3DKVkUl9Tobb05Na78k/RXtrPb6/FzO7oLNr5tXyo5+TQELnhRqIxn2bW 4np5TljwN7Gjmn7qARKSUec2ijsGvwCyaSfrWOoikQ/kmU2bZiPQmT896wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLZOTA54w0As1QNsV08Ts4lY5dFRMB8GA1UdIwQY MBaAFF3eSzuC8gm3Aa40DPU7l0B48WqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWIt ODZhNTUxOGUyZDUyLzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWItODZhNTUxOGUyZDUy LzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkYigybtB NrMowTOl5s2gKMLK+PgYoQOWjP88PZbTEWjLBBsXsSr+3+2x0ZzFjDPslcn5F4RV +Jej17JEcHFrlYuHJ1l0ErCGFZKyN6dzocoYLua/PIBQZNKp7QlGnDqxdUDH9ZRf xQQF7ANkpgA49Hsnt37Wgr78/Fp2e6HjMd3RZc4dDy7HzAhVihv1RMXi32hxphHf fcDr2f4Y+J39/Ip7051eZov4LAKUFn5/7RUQh1vo3dstFlNoptqatkR0UADsAyFP Ojw4jLiu+HoktI30ucb6Sm61qCj0PgY3yhf9Pf7dBBuIGB4hieS2yI5rVgQFRTzu mBpuemjoxBVy8w== -----END CERTIFICATE-----Generated at Sun Jan 25 05:40:16 2026 by rpki-client