This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft File: xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft (raw, json) Hash identifier: I/hSSJDeJI0fJKMo1hphI6ViQNIgNzepDzZugycomCA= Subject key identifier: C3:43:D8:33:CE:C9:E8:D0:A9:79:DA:0F:56:90:99:E1:5C:ED:47:73 Authority key identifier: C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B Certificate issuer: /CN=c59c41daf0092b703bc059ba1353f071ed12199b Certificate serial: 019BF72D60A65F32DFA406854195C73D0FEB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft Manifest number: 177C Signing time: Sun 25 Jan 2026 22:01:44 +0000 Manifest this update: Sun 25 Jan 2026 22:01:44 +0000 Manifest next update: Mon 26 Jan 2026 22:01:44 +0000 Files and hashes: 1: 8cS6Qj5MYE4B8boPnbZ2kcXbU-k.roa (hash: AKR29eJxFVsOMPaiI3uGdOD049mIqIl+nuPgud2mgtc=) 2: xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl (hash: Dm6knrtluYpJ1Z8Gs8w6uGKQowracsZ7x6AmbfVk8Lk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:60:a6:5f:32:df:a4:06:85:41:95:c7:3d:0f:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c59c41daf0092b703bc059ba1353f071ed12199b Validity Not Before: Jan 25 22:01:44 2026 GMT Not After : Jan 26 22:01:44 2026 GMT Subject: CN=c343d833cec9e8d0a979da0f569099e15ced4773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d2:bf:86:19:7d:73:e4:85:42:88:ce:22:41: f3:63:46:d1:e8:ac:f3:40:28:63:06:cf:c7:19:f4: a8:ea:c8:65:bc:ab:16:87:41:59:dd:cd:52:eb:3a: ef:df:12:01:00:06:50:9a:15:33:c3:bd:97:ff:67: 8b:c3:39:37:4d:24:87:46:ad:79:6c:0a:e2:06:29: e5:8f:19:75:71:c0:c8:83:33:75:03:f4:31:f9:a4: 60:c1:ff:70:fd:0b:f5:51:a8:c3:e0:5d:64:3a:b4: c9:2a:c5:2d:3c:36:18:f0:01:ac:ce:75:47:64:a2: e3:ff:f7:33:63:91:5a:92:cb:1a:98:37:cd:66:25: cf:31:38:63:da:46:c0:ec:6d:d8:56:de:da:d4:d1: d7:90:af:bd:5c:b9:61:5d:5d:99:76:8e:3a:d0:ba: 66:24:2d:98:e6:6d:8f:75:7b:fb:82:e3:d7:f4:8f: d8:cb:c4:df:1a:b4:ee:d1:27:81:98:50:64:3f:49: 15:a5:50:1d:a7:35:cc:90:4a:01:3f:e9:03:8d:f4: f1:92:66:7b:38:a1:75:f4:f5:d4:07:5b:05:5e:53: e7:9c:a5:33:c2:38:e9:b0:2b:72:ba:85:75:33:45: b7:d6:9f:2c:7a:ac:8c:15:c4:63:a4:09:69:82:5c: 46:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:43:D8:33:CE:C9:E8:D0:A9:79:DA:0F:56:90:99:E1:5C:ED:47:73 X509v3 Authority Key Identifier: keyid:C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:d5:7a:04:6d:31:30:48:a6:21:5a:9e:ba:05:bc:a3:e6:81: 3d:e9:b3:eb:35:fb:27:91:a0:2a:0d:ea:ab:95:ca:85:54:68: c1:fd:7a:80:2d:8f:a5:52:7a:12:2d:a8:28:f5:a8:c3:c8:18: cb:94:e8:bb:86:6d:12:87:57:84:3c:78:a6:53:e5:81:8d:7a: a7:b6:f9:c8:39:4c:2f:dd:96:e5:18:ec:9f:c8:9e:a6:fc:22: ee:1a:84:0d:09:10:ad:7f:a1:3b:fd:88:1d:60:a6:69:4a:d2: 11:88:60:12:78:de:c5:62:2b:d9:21:e8:2c:47:bd:47:c7:55: f2:30:b0:d7:53:04:b2:d1:1b:13:bf:90:3f:d5:d5:4a:fd:09: 8c:cc:fb:49:40:92:6f:72:91:60:c3:ef:cc:38:1e:b6:a6:5c: 45:68:06:49:4c:95:7f:55:67:1d:dd:09:ee:02:45:f6:b1:d8: 4e:a1:2b:28:55:b4:f2:8f:16:82:de:c2:5f:4f:d8:47:0f:5d: 92:fe:88:0b:55:44:89:28:70:00:84:40:3c:63:e7:ca:d8:bc: 22:50:83:50:3a:19:91:33:42:44:28:0f:87:e8:ef:c3:9e:2c: 3d:4e:25:08:d0:d7:77:62:11:f9:3e:fb:a5:23:23:26:d7:d6: 07:59:4a:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LWCmXzLfpAaFQZXHPQ/rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1OWM0MWRhZjAwOTJiNzAzYmMwNTliYTEzNTNmMDcxZWQx MjE5OWIwHhcNMjYwMTI1MjIwMTQ0WhcNMjYwMTI2MjIwMTQ0WjAzMTEwLwYDVQQD EyhjMzQzZDgzM2NlYzllOGQwYTk3OWRhMGY1NjkwOTllMTVjZWQ0NzczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9K/hhl9c+SFQojOIkHzY0bR6Kzz QChjBs/HGfSo6shlvKsWh0FZ3c1S6zrv3xIBAAZQmhUzw72X/2eLwzk3TSSHRq15 bAriBinljxl1ccDIgzN1A/Qx+aRgwf9w/Qv1UajD4F1kOrTJKsUtPDYY8AGsznVH ZKLj//czY5FakssamDfNZiXPMThj2kbA7G3YVt7a1NHXkK+9XLlhXV2Zdo460Lpm JC2Y5m2PdXv7guPX9I/Yy8TfGrTu0SeBmFBkP0kVpVAdpzXMkEoBP+kDjfTxkmZ7 OKF19PXUB1sFXlPnnKUzwjjpsCtyuoV1M0W31p8seqyMFcRjpAlpglxGqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMND2DPOyejQqXnaD1aQmeFc7UdzMB8GA1UdIwQY MBaAFMWcQdrwCStwO8BZuhNT8HHtEhmbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFp4QjJ2QUpLM0E3d0ZtNkUxUHdjZTBTR1pzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kNTRkMmItMjEyNi00NTQyLWE1ZTQt YzU0OTNmZTgyZTI2LzEveFp4QjJ2QUpLM0E3d0ZtNkUxUHdjZTBTR1pzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9kNTRkMmItMjEyNi00NTQyLWE1ZTQtYzU0OTNmZTgyZTI2 LzEveFp4QjJ2QUpLM0E3d0ZtNkUxUHdjZTBTR1pzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAetV6BG0x MEimIVqeugW8o+aBPemz6zX7J5GgKg3qq5XKhVRowf16gC2PpVJ6Ei2oKPWow8gY y5Tou4ZtEodXhDx4plPlgY16p7b5yDlML92W5Rjsn8iepvwi7hqEDQkQrX+hO/2I HWCmaUrSEYhgEnjexWIr2SHoLEe9R8dV8jCw11MEstEbE7+QP9XVSv0JjMz7SUCS b3KRYMPvzDgetqZcRWgGSUyVf1VnHd0J7gJF9rHYTqErKFW08o8Wgt7CX0/YRw9d kv6IC1VEiShwAIRAPGPnyti8IlCDUDoZkTNCRCgPh+jvw54sPU4lCNDXd2IR+T77 pSMjJtfWB1lK/w== -----END CERTIFICATE-----Generated at Mon Jan 26 05:37:27 2026 by rpki-client