This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft File: xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft (raw, json) Hash identifier: +nrRnU8KjzKWpCSQ6LjU+6ZEIrG9RfHwrYazFjTSsV8= Subject key identifier: 99:71:C1:D7:6E:F7:EE:8E:03:02:AF:59:D3:A5:A6:C6:C6:38:3E:34 Authority key identifier: C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4 Certificate issuer: /CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4 Certificate serial: 019BF462979D644C58668D47688D23C5AD2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft Manifest number: 0838 Signing time: Sun 25 Jan 2026 09:01:00 +0000 Manifest this update: Sun 25 Jan 2026 09:01:00 +0000 Manifest next update: Mon 26 Jan 2026 09:01:00 +0000 Files and hashes: 1: MzPbvxkGVytyjVvJa-yqgfiMcIA.roa (hash: iRBcRBbjvYz5opuvRz+YjQjB1MOrbFdu6n8IkIPeZ/g=) 2: XW6qbpTIlTwOQdneDWa6wjNdR74.roa (hash: dcEokQUe6pj3bzQt6OXabzo/nAai4+pH/cycG3xngyE=) 3: xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl (hash: yG1wChCmvPO5eOSRE9uu/7hBZwLVJCKT1z8NExcijFs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:62:97:9d:64:4c:58:66:8d:47:68:8d:23:c5:ad:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4 Validity Not Before: Jan 25 09:01:00 2026 GMT Not After : Jan 26 09:01:00 2026 GMT Subject: CN=9971c1d76ef7ee8e0302af59d3a5a6c6c6383e34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:33:34:08:d7:21:44:78:68:b7:98:e3:02:39: 8a:2b:87:87:58:43:91:ed:c8:6b:bb:9a:55:e2:07: 32:68:9e:00:ce:c8:72:5e:79:52:2e:d9:23:a4:67: a2:f9:a5:f5:bc:90:97:90:22:5d:31:29:93:e1:db: 86:78:88:2d:76:5b:96:35:4b:e6:d1:31:5f:e2:f8: da:ea:d8:4a:3f:5c:46:08:cf:6f:6c:86:70:fd:97: 63:c6:a1:b7:2d:1d:60:43:94:b3:70:8c:84:67:f9: f3:98:d8:cd:96:a6:f7:41:db:32:a7:5a:22:1b:74: 7a:37:3b:77:ec:12:ff:8f:26:31:3c:b4:cb:17:89: 3e:f3:46:a6:d5:28:df:e3:2d:a5:a4:cb:b0:a9:d5: b4:b6:6e:28:c5:c4:22:ad:75:08:37:9d:8c:15:8e: 86:29:66:b6:1c:c0:1d:8b:87:b6:e2:31:da:e9:9e: c2:36:f8:cc:24:80:e8:b3:aa:b7:45:6f:32:49:d8: 9d:9a:b5:e6:d6:ad:20:ba:46:07:34:f0:cf:ad:c5: c5:68:4a:c6:c8:ff:a5:35:8e:f1:48:e6:e7:b8:8c: 6a:5b:da:88:31:20:0e:2d:0b:ca:55:5a:be:77:48: 92:16:af:74:35:40:2a:6c:4a:74:64:25:d3:02:fd: 93:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:71:C1:D7:6E:F7:EE:8E:03:02:AF:59:D3:A5:A6:C6:C6:38:3E:34 X509v3 Authority Key Identifier: keyid:C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:42:eb:02:af:88:3a:01:a0:01:c7:7d:18:be:70:9b:e2:69: 4c:aa:ee:fd:07:58:92:ab:8b:78:39:00:5f:97:c8:5d:9f:f0: 83:78:23:65:57:58:89:f8:cc:cd:12:dc:86:0d:c6:ca:04:4b: 4e:dd:9a:55:84:5a:ab:aa:b0:ad:e6:b9:5d:61:d8:f0:03:52: 45:14:85:69:df:a0:50:23:b6:1d:29:26:5d:fb:f0:e9:ad:9b: 48:e3:f2:23:eb:22:aa:6f:ac:f6:47:51:83:f2:21:d7:5a:cb: 10:4f:44:2a:11:59:87:b1:6c:67:2a:99:d0:9c:34:f2:b6:1f: b3:14:5a:48:cd:62:1d:45:b2:8a:4f:78:9f:02:09:84:a3:91: 22:2c:f9:81:42:2b:d5:61:f5:c5:48:33:89:64:e2:c0:d3:0f: 43:c5:97:c7:69:b2:4c:8f:4e:0a:3d:8c:f8:67:52:c8:db:65: f6:83:11:de:15:4b:9e:42:17:97:34:1b:7a:4d:c3:71:97:3f: 10:75:3a:3d:45:c6:fa:f2:38:e8:8d:ef:11:cc:61:5b:71:23: 15:49:27:27:24:7f:03:a5:2a:b1:9b:cb:2b:1a:47:34:3a:06: 0b:2e:5b:6d:de:41:8e:20:64:8b:fd:ab:e8:3d:91:fc:3c:7a: c8:8b:90:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0YpedZExYZo1HaI0jxa0vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2MTg1MDE3M2M4ZDI4ZDVhZmJmOTEwOTFjYTYzZTVkYTNj NzVlZDQwHhcNMjYwMTI1MDkwMTAwWhcNMjYwMTI2MDkwMTAwWjAzMTEwLwYDVQQD Eyg5OTcxYzFkNzZlZjdlZThlMDMwMmFmNTlkM2E1YTZjNmM2MzgzZTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDM0CNchRHhot5jjAjmKK4eHWEOR 7chru5pV4gcyaJ4AzshyXnlSLtkjpGei+aX1vJCXkCJdMSmT4duGeIgtdluWNUvm 0TFf4vja6thKP1xGCM9vbIZw/ZdjxqG3LR1gQ5SzcIyEZ/nzmNjNlqb3Qdsyp1oi G3R6Nzt37BL/jyYxPLTLF4k+80am1Sjf4y2lpMuwqdW0tm4oxcQirXUIN52MFY6G KWa2HMAdi4e24jHa6Z7CNvjMJIDos6q3RW8ySdidmrXm1q0gukYHNPDPrcXFaErG yP+lNY7xSObnuIxqW9qIMSAOLQvKVVq+d0iSFq90NUAqbEp0ZCXTAv2TbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJlxwddu9+6OAwKvWdOlpsbGOD40MB8GA1UdIwQY MBaAFMYYUBc8jSjVr7+RCRymPl2jx17UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGhoUUZ6eU5LTld2djVFSkhLWS1YYVBIWHRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9lZTA5ZjEtN2QwYi00MzFmLWFhZWUt YmI4ZGViYzAwMzg4LzEveGhoUUZ6eU5LTld2djVFSkhLWS1YYVBIWHRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC9lZTA5ZjEtN2QwYi00MzFmLWFhZWUtYmI4ZGViYzAwMzg4 LzEveGhoUUZ6eU5LTld2djVFSkhLWS1YYVBIWHRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACULrAq+I OgGgAcd9GL5wm+JpTKru/QdYkquLeDkAX5fIXZ/wg3gjZVdYifjMzRLchg3GygRL Tt2aVYRaq6qwrea5XWHY8ANSRRSFad+gUCO2HSkmXfvw6a2bSOPyI+siqm+s9kdR g/Ih11rLEE9EKhFZh7FsZyqZ0Jw08rYfsxRaSM1iHUWyik94nwIJhKORIiz5gUIr 1WH1xUgziWTiwNMPQ8WXx2myTI9OCj2M+GdSyNtl9oMR3hVLnkIXlzQbek3DcZc/ EHU6PUXG+vI46I3vEcxhW3EjFUknJyR/A6UqsZvLKxpHNDoGCy5bbd5BjiBki/2r 6D2R/Dx6yIuQFw== -----END CERTIFICATE-----Generated at Sun Jan 25 20:32:21 2026 by rpki-client