This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft File: XWlT20hASwxmoV8Npu-n-sCpNp4.mft (raw, json) Hash identifier: ARc4QxlPsLQa9QiIHtWDOa576hjPIKgTubSiMOKvA2Y= Subject key identifier: 6E:03:2B:83:67:6A:D8:A7:CB:B1:F1:70:16:63:78:15:00:89:58:C7 Authority key identifier: 5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E Certificate issuer: /CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e Certificate serial: 019BF8E3C92CE40432A16A2C9980CCCEF073 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft Manifest number: 17E9 Signing time: Mon 26 Jan 2026 06:00:36 +0000 Manifest this update: Mon 26 Jan 2026 06:00:36 +0000 Manifest next update: Tue 27 Jan 2026 06:00:36 +0000 Files and hashes: 1: PnV6MRrCbEDbUgZOWZkw0F-5fTw.roa (hash: gpEq7vfgynN+KUY61gV3ilXsbaQKj+P9YjZ3SCCvLxo=) 2: XWlT20hASwxmoV8Npu-n-sCpNp4.crl (hash: KsCPZU0hsunJHREqnyjOvqN4W1UlRzU2bOWJbdzEQws=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:e3:c9:2c:e4:04:32:a1:6a:2c:99:80:cc:ce:f0:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e Validity Not Before: Jan 26 06:00:36 2026 GMT Not After : Jan 27 06:00:36 2026 GMT Subject: CN=6e032b83676ad8a7cbb1f17016637815008958c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:da:8b:1d:75:ea:0f:a5:ee:da:39:00:21:3d: 2a:da:f2:98:79:28:c0:4a:c0:ba:c8:20:d2:00:43: d0:ba:1a:e4:98:03:c4:10:1f:e3:ee:35:4b:e2:81: 52:84:94:ac:2e:21:52:72:81:ae:b9:33:1c:aa:6c: 1a:73:c5:c4:c9:a1:b7:53:11:97:85:06:02:6e:9a: 36:a1:c8:30:97:a9:78:19:7c:97:23:4c:f8:49:75: a9:29:3f:59:0e:66:d9:19:5f:6c:cb:87:f1:8e:a4: 88:48:22:2b:cc:42:93:58:7e:48:b0:41:6c:e0:06: 4f:49:97:f0:26:a0:81:8e:20:70:fa:c6:64:e6:a4: b7:05:22:3d:c6:68:b7:e8:e2:13:ef:d9:06:58:83: bb:95:1a:4d:6b:c3:36:25:5e:55:c8:a4:3e:6b:9b: 6c:45:e4:74:01:eb:e4:1e:2e:16:8f:26:21:ee:f8: 13:9f:89:40:ad:3b:db:66:40:4b:c5:4b:1e:d2:94: 78:87:ee:24:19:48:a5:46:dd:d6:c2:f6:74:06:59: 98:0a:af:73:18:b8:24:f1:12:03:0b:0e:da:72:b3: f1:96:f2:78:a4:d1:e4:ac:79:33:c9:f5:02:34:5f: 29:fe:db:e0:df:40:cf:b1:81:af:b5:36:c7:55:a4: ef:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:03:2B:83:67:6A:D8:A7:CB:B1:F1:70:16:63:78:15:00:89:58:C7 X509v3 Authority Key Identifier: keyid:5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:d9:92:aa:30:c3:89:45:fa:b8:9a:8f:e7:92:86:a0:de:e1: 60:a2:98:cd:8f:f7:a4:dc:6b:44:6a:66:62:9a:49:97:f1:18: 77:d0:3c:9e:b8:ca:bb:4e:c7:9d:58:43:02:91:80:13:43:11: 17:00:bd:47:13:c1:29:f7:21:be:94:3c:9b:6c:ba:ae:f7:9f: b1:db:39:fe:7d:0f:7b:29:69:09:65:48:66:ec:a5:54:1c:c9: fb:fa:bd:e5:1e:d2:df:0a:42:40:53:a2:c5:53:eb:8e:ee:7c: 98:b8:53:8a:73:6b:85:e4:b8:21:7d:a6:32:68:00:f2:d6:e8: fb:70:87:b5:9e:85:9c:d9:86:51:7a:19:bb:a6:a5:11:c8:df: 26:a2:d6:df:0b:bc:2b:9a:3f:74:51:c2:4f:02:a0:4d:76:a9: a3:aa:4f:1a:ec:22:f3:de:27:19:30:fb:b3:c6:82:bc:e5:13: 47:54:a3:d0:e4:1d:9e:00:dd:d9:00:86:32:c7:81:ed:03:10: 15:52:96:fa:17:b3:87:8a:67:ea:85:6f:ab:6c:6e:3a:07:e8: ce:47:2a:b4:9e:22:d8:d3:3c:b1:e3:83:63:8b:21:a2:40:25: 8d:68:82:9a:ea:12:71:ac:5b:7d:76:1b:0b:14:aa:39:c3:46: b8:9d:2e:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv448ks5AQyoWosmYDMzvBzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkNjk1M2RiNDg0MDRiMGM2NmExNWYwZGE2ZWZhN2ZhYzBh OTM2OWUwHhcNMjYwMTI2MDYwMDM2WhcNMjYwMTI3MDYwMDM2WjAzMTEwLwYDVQQD Eyg2ZTAzMmI4MzY3NmFkOGE3Y2JiMWYxNzAxNjYzNzgxNTAwODk1OGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsdqLHXXqD6Xu2jkAIT0q2vKYeSjA SsC6yCDSAEPQuhrkmAPEEB/j7jVL4oFShJSsLiFScoGuuTMcqmwac8XEyaG3UxGX hQYCbpo2ocgwl6l4GXyXI0z4SXWpKT9ZDmbZGV9sy4fxjqSISCIrzEKTWH5IsEFs 4AZPSZfwJqCBjiBw+sZk5qS3BSI9xmi36OIT79kGWIO7lRpNa8M2JV5VyKQ+a5ts ReR0AevkHi4WjyYh7vgTn4lArTvbZkBLxUse0pR4h+4kGUilRt3WwvZ0BlmYCq9z GLgk8RIDCw7acrPxlvJ4pNHkrHkzyfUCNF8p/tvg30DPsYGvtTbHVaTv9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG4DK4Nnatiny7HxcBZjeBUAiVjHMB8GA1UdIwQY MBaAFF1pU9tIQEsMZqFfDabvp/rAqTaeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFdsVDIwaEFTd3htb1Y4TnB1LW4tc0NwTnA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi81MzZmZGUtYTAyZC00OGY1LWE3NWQt ZmEyZmI5NGRhMWEyLzEvWFdsVDIwaEFTd3htb1Y4TnB1LW4tc0NwTnA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi81MzZmZGUtYTAyZC00OGY1LWE3NWQtZmEyZmI5NGRhMWEy LzEvWFdsVDIwaEFTd3htb1Y4TnB1LW4tc0NwTnA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqNmSqjDD iUX6uJqP55KGoN7hYKKYzY/3pNxrRGpmYppJl/EYd9A8nrjKu07HnVhDApGAE0MR FwC9RxPBKfchvpQ8m2y6rvefsds5/n0PeylpCWVIZuylVBzJ+/q95R7S3wpCQFOi xVPrju58mLhTinNrheS4IX2mMmgA8tbo+3CHtZ6FnNmGUXoZu6alEcjfJqLW3wu8 K5o/dFHCTwKgTXapo6pPGuwi894nGTD7s8aCvOUTR1Sj0OQdngDd2QCGMseB7QMQ FVKW+hezh4pn6oVvq2xuOgfozkcqtJ4i2NM8seODY4shokAljWiCmuoScaxbfXYb CxSqOcNGuJ0uCA== -----END CERTIFICATE-----Generated at Mon Jan 26 09:02:08 2026 by rpki-client