This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft File: xN8L0EqoQ-aAgvbezgeYcytviDI.mft (raw, json) Hash identifier: IVzeBqNgZ70P52BX1/wj0PPukDzq3It2+bsBGmDe0wU= Subject key identifier: E6:00:F3:F3:5B:16:74:88:35:2C:F5:F1:25:B7:FA:97:E9:8D:CE:3B Authority key identifier: C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32 Certificate issuer: /CN=c4df0bd04aa843e68082f6dece0798732b6f8832 Certificate serial: 019BF61A1A1C43D42AFD1776BE865F910D96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft Manifest number: 177A Signing time: Sun 25 Jan 2026 17:01:04 +0000 Manifest this update: Sun 25 Jan 2026 17:01:04 +0000 Manifest next update: Mon 26 Jan 2026 17:01:04 +0000 Files and hashes: 1: Bufh8fLfGuFcJIRDH90wZyey3vQ.roa (hash: 97pbnQhhP+W/DGuiQ6yzPinj80mmymwV5CPqsqreqm0=) 2: aCjEV-QnOk8LOF5MzDA0-UkFuK4.roa (hash: Xqrg7NBvSV9yvVpUUwp51n6WbUWMsfHL/0GgkjRTj1U=) 3: gjKej6nLmog1Pdhy2m7-nfTgjGw.roa (hash: q4iLVi9p7pL885pUO6lukqaAAVZW6+EWxQvMee6AK60=) 4: phc_rWomL_SloTsFG0Feb3oexB8.roa (hash: vPwplBARp1RlzeoBKfqMgLEmEz1s7NkUpEh7QDk9mPM=) 5: xN8L0EqoQ-aAgvbezgeYcytviDI.crl (hash: 2BIGm/XZ1r3ELrYUipTE+m2wvRjvmmdwVENwkYq2HnA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:1a:1a:1c:43:d4:2a:fd:17:76:be:86:5f:91:0d:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c4df0bd04aa843e68082f6dece0798732b6f8832 Validity Not Before: Jan 25 17:01:04 2026 GMT Not After : Jan 26 17:01:04 2026 GMT Subject: CN=e600f3f35b167488352cf5f125b7fa97e98dce3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b6:3d:8b:fd:02:83:fb:0c:74:56:86:67:cf: 64:b3:f0:98:48:45:86:69:4c:01:b6:d6:fd:92:31: 31:69:a3:1b:f4:44:05:e8:41:bb:0a:4a:3e:e2:21: ea:8c:8f:18:02:52:5e:3c:84:fd:86:02:ad:20:56: 75:f6:16:1c:c0:69:f9:f0:95:21:a0:c3:5f:68:17: 94:21:57:b6:64:8e:bb:e3:b6:3c:44:bd:1d:30:19: b3:6b:52:4b:7c:f1:50:41:95:7e:bf:ae:bd:1d:77: 63:6f:2f:89:65:f9:32:8b:dc:96:9b:1e:b6:eb:c8: 49:49:b4:fd:1a:0f:72:99:d3:d7:99:77:36:f9:c0: c7:91:61:52:ef:82:14:ef:93:57:48:13:a7:eb:ff: 16:d8:e3:14:8f:22:7b:c8:ef:26:dc:11:46:e6:5b: 04:b8:bc:6c:cc:c3:41:6d:1d:c4:b4:6e:7c:46:1f: 24:44:b7:89:d5:3a:20:67:cb:43:41:fe:79:8c:49: 66:ac:98:95:d8:ee:ce:91:b2:71:85:ad:75:4b:b3: 2c:5c:d2:e2:10:3a:e0:05:e5:38:b9:de:ce:b6:27: 36:e4:cf:5d:46:a0:73:6e:87:18:45:51:e7:28:4a: 2a:27:7b:06:c1:97:1b:a4:24:67:b3:7e:98:fd:56: b8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:00:F3:F3:5B:16:74:88:35:2C:F5:F1:25:B7:FA:97:E9:8D:CE:3B X509v3 Authority Key Identifier: keyid:C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:f1:15:d9:63:e8:32:2f:5b:f4:b8:ea:05:2f:a9:c7:93:e9: 6c:77:52:3c:8b:ee:9e:1c:79:52:ad:04:c2:cd:8e:8d:06:7f: 1d:2d:df:27:8a:17:fb:9f:b4:ac:2d:ab:93:e4:f3:9f:97:eb: 0b:cc:d5:61:7b:0f:40:78:64:fa:fe:6c:c7:a7:d4:57:04:f0: a2:41:0d:53:4f:54:71:9b:26:fd:2e:5a:0f:14:73:3c:f8:51: 91:dd:75:00:09:d4:39:a0:b0:97:fd:a0:39:a8:6f:81:4e:f3: e4:0b:da:9d:b3:1a:d9:c0:16:1b:75:f4:ba:0a:56:46:b1:de: b6:06:01:e7:93:4b:13:dd:2c:3d:10:23:cf:b5:99:54:3a:70: 06:fb:6e:85:34:cd:d6:3a:58:4d:d6:22:06:ea:55:ea:de:58: fd:25:45:7d:4a:c7:f0:66:d5:85:4e:ba:cd:35:69:ac:b3:86: 69:00:03:68:18:d4:56:9f:b3:44:07:87:37:01:f3:a6:45:41: c4:df:d1:48:ae:21:3f:48:0c:e6:19:98:55:b4:10:7a:1f:7d: d8:56:21:36:5b:e5:03:dc:53:22:f2:c6:7c:22:c6:cb:7a:6b: 28:73:31:57:ec:21:9b:0c:82:00:9d:e7:ab:54:5f:fd:0a:1e: 64:da:c9:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2GhocQ9Qq/Rd2voZfkQ2WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0ZGYwYmQwNGFhODQzZTY4MDgyZjZkZWNlMDc5ODczMmI2 Zjg4MzIwHhcNMjYwMTI1MTcwMTA0WhcNMjYwMTI2MTcwMTA0WjAzMTEwLwYDVQQD EyhlNjAwZjNmMzViMTY3NDg4MzUyY2Y1ZjEyNWI3ZmE5N2U5OGRjZTNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA57Y9i/0Cg/sMdFaGZ89ks/CYSEWG aUwBttb9kjExaaMb9EQF6EG7Cko+4iHqjI8YAlJePIT9hgKtIFZ19hYcwGn58JUh oMNfaBeUIVe2ZI6747Y8RL0dMBmza1JLfPFQQZV+v669HXdjby+JZfkyi9yWmx62 68hJSbT9Gg9ymdPXmXc2+cDHkWFS74IU75NXSBOn6/8W2OMUjyJ7yO8m3BFG5lsE uLxszMNBbR3EtG58Rh8kRLeJ1TogZ8tDQf55jElmrJiV2O7OkbJxha11S7MsXNLi EDrgBeU4ud7Otic25M9dRqBzbocYRVHnKEoqJ3sGwZcbpCRns36Y/Va4mwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOYA8/NbFnSINSz18SW3+pfpjc47MB8GA1UdIwQY MBaAFMTfC9BKqEPmgIL23s4HmHMrb4gyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveE44TDBFcW9RLWFBZ3ZiZXpnZVljeXR2aURJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85NWRlMjEtMGZiYy00ZDEzLWI2ZTAt Y2I5ZTFlZDc3OWFjLzEveE44TDBFcW9RLWFBZ3ZiZXpnZVljeXR2aURJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi85NWRlMjEtMGZiYy00ZDEzLWI2ZTAtY2I5ZTFlZDc3OWFj LzEveE44TDBFcW9RLWFBZ3ZiZXpnZVljeXR2aURJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQfEV2WPo Mi9b9LjqBS+px5PpbHdSPIvunhx5Uq0Ews2OjQZ/HS3fJ4oX+5+0rC2rk+Tzn5fr C8zVYXsPQHhk+v5sx6fUVwTwokENU09UcZsm/S5aDxRzPPhRkd11AAnUOaCwl/2g OahvgU7z5AvanbMa2cAWG3X0ugpWRrHetgYB55NLE90sPRAjz7WZVDpwBvtuhTTN 1jpYTdYiBupV6t5Y/SVFfUrH8GbVhU66zTVprLOGaQADaBjUVp+zRAeHNwHzpkVB xN/RSK4hP0gM5hmYVbQQeh992FYhNlvlA9xTIvLGfCLGy3prKHMxV+whmwyCAJ3n q1Rf/QoeZNrJzQ== -----END CERTIFICATE-----Generated at Mon Jan 26 01:22:55 2026 by rpki-client