This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft File: XWlT20hASwxmoV8Npu-n-sCpNp4.mft (raw, json) Hash identifier: wDT96KHTVYpQM2Feuj4P9bWLf/Lw0OR5iJttReuHRbI= Subject key identifier: 48:9E:62:DD:D6:FF:DA:BB:F6:77:7A:75:A1:EF:BC:D9:AB:BC:60:D2 Authority key identifier: 5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E Certificate issuer: /CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e Certificate serial: 019BF6F56BBBE8DBF8417DA46F2F3C0F1ABB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft Manifest number: 17E8 Signing time: Sun 25 Jan 2026 21:00:37 +0000 Manifest this update: Sun 25 Jan 2026 21:00:37 +0000 Manifest next update: Mon 26 Jan 2026 21:00:37 +0000 Files and hashes: 1: PnV6MRrCbEDbUgZOWZkw0F-5fTw.roa (hash: gpEq7vfgynN+KUY61gV3ilXsbaQKj+P9YjZ3SCCvLxo=) 2: XWlT20hASwxmoV8Npu-n-sCpNp4.crl (hash: TK6H6B8IXkt387ojL8dy8Bz8ogV1kONUlS96drbGnlM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:6b:bb:e8:db:f8:41:7d:a4:6f:2f:3c:0f:1a:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e Validity Not Before: Jan 25 21:00:37 2026 GMT Not After : Jan 26 21:00:37 2026 GMT Subject: CN=489e62ddd6ffdabbf6777a75a1efbcd9abbc60d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:2c:db:a8:c4:cf:88:cf:15:34:20:6d:3b:9b: 54:47:f4:f6:37:1d:87:31:45:9a:3c:cf:74:cf:08: f7:93:7b:7f:a7:97:45:20:37:9a:62:b4:be:ae:2b: 92:b3:63:9c:75:c7:05:0c:96:e6:ac:b7:ea:8c:3c: 6a:8b:21:ba:6e:e5:c8:54:94:76:2a:01:e6:36:ab: 42:cb:87:b6:e9:2f:c9:8d:fe:0a:27:2e:ff:06:b8: b0:6b:c6:c4:7c:6d:cb:6a:01:3c:f0:30:ec:97:0a: 03:47:17:33:41:14:00:c1:2d:88:fe:f5:fa:db:ab: ac:db:09:83:f5:84:db:46:60:2b:35:85:35:ad:db: a6:9f:79:b3:7b:f2:48:b2:a9:a7:f8:8c:34:e3:38: 88:52:d5:57:e9:3b:20:f4:2f:e9:83:a5:dd:e5:2b: aa:46:f6:7f:2e:75:8e:83:93:d5:db:37:7d:d4:f6: a5:8c:e4:44:29:c7:09:48:56:62:c9:1d:ba:8e:bc: 3b:b4:ca:51:c9:47:e4:1f:1b:ab:e7:ae:05:bc:bd: 19:88:81:87:03:87:3c:f6:a4:a7:98:cc:e6:38:a7: bd:27:45:f9:9f:88:a9:84:b7:38:64:e1:32:fc:29: ea:af:06:5b:87:d6:3a:3a:d5:67:24:03:47:a8:a6: d1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9E:62:DD:D6:FF:DA:BB:F6:77:7A:75:A1:EF:BC:D9:AB:BC:60:D2 X509v3 Authority Key Identifier: keyid:5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:c8:d2:dc:f8:d7:11:5a:37:b5:92:77:2b:17:31:3e:08:5d: 2d:63:88:57:4c:f6:55:d9:21:6f:33:a5:6d:8d:64:99:d1:d6: c3:e7:09:c3:8d:a3:41:90:21:5e:bc:92:25:e1:1f:0d:f9:ea: f6:14:03:94:f7:4d:a1:54:65:f9:d5:24:a9:c0:f3:95:db:95: 36:e8:ac:39:d7:fa:70:e1:5f:d7:d0:95:00:69:7f:b7:26:7d: ed:6e:34:51:8e:33:c2:d5:4d:e1:e0:1b:42:79:d5:af:b8:5a: ef:e8:0f:3d:5d:aa:67:62:ab:b7:c1:ff:ba:74:e2:da:fa:11: 93:78:31:04:cf:d9:3e:99:df:89:ac:58:8c:70:21:d2:9e:2c: 7e:08:3f:e6:a1:6d:35:dd:b3:78:7e:29:09:2d:e7:c9:c1:78: 00:8a:00:fd:bd:91:f5:74:d5:4a:f0:1f:77:61:d5:40:c7:88: b0:54:2a:1d:53:66:de:30:9f:24:f7:9c:1b:f5:e5:8b:26:a5: 89:71:64:46:3c:f2:76:5d:0a:1c:29:23:91:dc:e8:fb:8a:00: f0:6e:21:be:eb:72:45:19:2d:c1:27:d6:46:1b:d0:a4:b2:de: 22:20:51:1f:ae:7f:c1:df:65:59:00:19:33:fb:54:f7:9f:37: b7:1a:20:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29Wu76Nv4QX2kby88Dxq7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkNjk1M2RiNDg0MDRiMGM2NmExNWYwZGE2ZWZhN2ZhYzBh OTM2OWUwHhcNMjYwMTI1MjEwMDM3WhcNMjYwMTI2MjEwMDM3WjAzMTEwLwYDVQQD Eyg0ODllNjJkZGQ2ZmZkYWJiZjY3NzdhNzVhMWVmYmNkOWFiYmM2MGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlyzbqMTPiM8VNCBtO5tUR/T2Nx2H MUWaPM90zwj3k3t/p5dFIDeaYrS+riuSs2OcdccFDJbmrLfqjDxqiyG6buXIVJR2 KgHmNqtCy4e26S/Jjf4KJy7/Briwa8bEfG3LagE88DDslwoDRxczQRQAwS2I/vX6 26us2wmD9YTbRmArNYU1rdumn3mze/JIsqmn+Iw04ziIUtVX6Tsg9C/pg6Xd5Suq RvZ/LnWOg5PV2zd91PaljOREKccJSFZiyR26jrw7tMpRyUfkHxur564FvL0ZiIGH A4c89qSnmMzmOKe9J0X5n4iphLc4ZOEy/CnqrwZbh9Y6OtVnJANHqKbR/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEieYt3W/9q79nd6daHvvNmrvGDSMB8GA1UdIwQY MBaAFF1pU9tIQEsMZqFfDabvp/rAqTaeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFdsVDIwaEFTd3htb1Y4TnB1LW4tc0NwTnA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi81MzZmZGUtYTAyZC00OGY1LWE3NWQt ZmEyZmI5NGRhMWEyLzEvWFdsVDIwaEFTd3htb1Y4TnB1LW4tc0NwTnA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi81MzZmZGUtYTAyZC00OGY1LWE3NWQtZmEyZmI5NGRhMWEy LzEvWFdsVDIwaEFTd3htb1Y4TnB1LW4tc0NwTnA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZMjS3PjX EVo3tZJ3KxcxPghdLWOIV0z2VdkhbzOlbY1kmdHWw+cJw42jQZAhXrySJeEfDfnq 9hQDlPdNoVRl+dUkqcDzlduVNuisOdf6cOFf19CVAGl/tyZ97W40UY4zwtVN4eAb QnnVr7ha7+gPPV2qZ2Krt8H/unTi2voRk3gxBM/ZPpnfiaxYjHAh0p4sfgg/5qFt Nd2zeH4pCS3nycF4AIoA/b2R9XTVSvAfd2HVQMeIsFQqHVNm3jCfJPecG/Xliyal iXFkRjzydl0KHCkjkdzo+4oA8G4hvutyRRktwSfWRhvQpLLeIiBRH65/wd9lWQAZ M/tU9583txogUQ== -----END CERTIFICATE-----Generated at Mon Jan 26 05:57:08 2026 by rpki-client