This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft File: nxFouFcXoUZmABtbL2yQgBmX3gY.mft (raw, json) Hash identifier: 3v2YSFJCDy8/UWFwGGGSKKwssUusGZDZPmu1d+SpqTk= Subject key identifier: 23:B3:8B:07:ED:C0:79:81:87:1F:53:D9:5C:16:26:E4:EE:68:73:32 Authority key identifier: 9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06 Certificate issuer: /CN=9f1168b85717a14666001b5b2f6c90801997de06 Certificate serial: 019BF5E36BF79E15EA0663327B158B3BBC5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft Manifest number: 059A Signing time: Sun 25 Jan 2026 16:01:20 +0000 Manifest this update: Sun 25 Jan 2026 16:01:20 +0000 Manifest next update: Mon 26 Jan 2026 16:01:20 +0000 Files and hashes: 1: 4mcjlfKQeAXTF7xGEKQ2QAqMI50.roa (hash: JOKnaNGFem+HWwH7PdEKl79mLEfLJaQb9H34d4OS4AM=) 2: nxFouFcXoUZmABtbL2yQgBmX3gY.crl (hash: DfOOgqHEKohZSnDTIDaWi9Iybf2BkYKtFO2tKGxSKZY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:6b:f7:9e:15:ea:06:63:32:7b:15:8b:3b:bc:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f1168b85717a14666001b5b2f6c90801997de06 Validity Not Before: Jan 25 16:01:20 2026 GMT Not After : Jan 26 16:01:20 2026 GMT Subject: CN=23b38b07edc07981871f53d95c1626e4ee687332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:18:4e:81:2e:04:95:f9:98:94:a8:8d:10:60: ce:f5:61:9e:ca:2a:c5:4e:22:bc:42:12:6d:80:8c: 21:18:d9:0e:42:ae:68:87:bb:82:88:c4:08:4e:8e: 2b:2f:80:da:fa:44:1b:e6:8e:0e:56:c9:d0:ce:40: eb:29:1e:9b:0b:56:b9:02:b6:ca:4b:58:ad:5b:93: 2d:d2:27:5b:00:32:09:c6:91:c8:aa:e5:ce:af:4f: 70:f7:08:cd:40:bd:01:22:45:dc:f1:5e:b1:5b:a5: 91:c5:65:9d:e1:68:87:77:4b:4c:4c:e9:a0:cd:53: 5f:2b:1a:96:64:eb:1b:3d:05:55:2d:25:15:f1:6e: 83:ab:ca:35:bd:98:75:37:a3:8f:56:88:2a:59:e1: c6:2a:30:ff:f5:02:c2:9e:8a:fa:87:5c:08:ff:4f: 78:5a:af:14:b5:8f:ff:e1:06:ad:ea:98:9a:16:8b: e4:2c:b5:92:b0:a0:ce:43:f3:11:e2:80:7e:c0:ed: b6:9f:d5:24:d3:fe:69:dd:4a:01:3c:49:0a:61:f7: 9d:6c:c8:ff:61:c9:88:3a:62:5c:2b:41:db:37:22: f5:bc:bb:0f:22:41:ee:9a:19:6e:fb:0d:a5:45:20: a3:a7:1e:6a:71:ca:22:6f:06:12:43:7e:4d:b5:f0: c0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B3:8B:07:ED:C0:79:81:87:1F:53:D9:5C:16:26:E4:EE:68:73:32 X509v3 Authority Key Identifier: keyid:9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:8f:22:05:2f:9d:28:47:bf:b5:b8:be:a1:51:59:fd:d5:b3: d8:72:b9:8c:d1:b1:84:c1:cc:22:6c:42:22:a6:b3:47:98:2e: e1:35:41:04:e9:c8:36:1b:52:47:ff:0a:de:ac:99:ad:23:f4: 7d:59:67:e1:5d:9a:3b:3f:a2:2a:32:28:8c:93:79:16:44:6a: ab:91:ab:0c:55:60:cb:97:be:99:5c:ad:5a:14:0d:e4:f9:e0: cb:e0:cf:a7:cb:30:a7:f3:2b:7e:e8:5a:f1:16:44:3f:8c:0d: 42:96:0b:48:b4:94:56:fd:62:7c:32:d8:08:9b:4a:68:21:8d: ed:e1:d0:92:25:2f:f3:2e:2f:1d:19:4a:82:05:8f:2b:95:44: bb:e7:d2:bf:a0:59:10:e9:38:51:60:2b:4e:54:36:1b:0a:ea: d1:e9:22:6e:a3:9b:8b:79:d4:41:7f:83:3d:7c:42:dd:10:9d: cf:55:b2:f9:04:19:ef:c6:33:f4:b0:6b:f0:59:57:d1:69:68: a3:92:77:e8:59:fb:79:a6:69:1a:27:eb:4d:5c:16:33:82:1d: 23:1d:32:31:39:32:31:53:9b:70:8c:39:aa:27:7e:4b:b7:36: c3:f5:85:e4:e7:b7:60:36:fa:1d:42:f2:be:f1:3e:18:7b:bf: e3:36:96:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv142v3nhXqBmMyexWLO7xaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMTE2OGI4NTcxN2ExNDY2NjAwMWI1YjJmNmM5MDgwMTk5 N2RlMDYwHhcNMjYwMTI1MTYwMTIwWhcNMjYwMTI2MTYwMTIwWjAzMTEwLwYDVQQD EygyM2IzOGIwN2VkYzA3OTgxODcxZjUzZDk1YzE2MjZlNGVlNjg3MzMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxhOgS4ElfmYlKiNEGDO9WGeyirF TiK8QhJtgIwhGNkOQq5oh7uCiMQITo4rL4Da+kQb5o4OVsnQzkDrKR6bC1a5ArbK S1itW5Mt0idbADIJxpHIquXOr09w9wjNQL0BIkXc8V6xW6WRxWWd4WiHd0tMTOmg zVNfKxqWZOsbPQVVLSUV8W6Dq8o1vZh1N6OPVogqWeHGKjD/9QLCnor6h1wI/094 Wq8UtY//4Qat6piaFovkLLWSsKDOQ/MR4oB+wO22n9Uk0/5p3UoBPEkKYfedbMj/ YcmIOmJcK0HbNyL1vLsPIkHumhlu+w2lRSCjpx5qccoibwYSQ35NtfDAUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCOziwftwHmBhx9T2VwWJuTuaHMyMB8GA1UdIwQY MBaAFJ8RaLhXF6FGZgAbWy9skIAZl94GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnhGb3VGY1hvVVptQUJ0YkwyeVFnQm1YM2dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC84ZjY1OGMtM2ZhYy00OThkLWI5NWUt ZjQyMTliZWRkYjM3LzEvbnhGb3VGY1hvVVptQUJ0YkwyeVFnQm1YM2dZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC84ZjY1OGMtM2ZhYy00OThkLWI5NWUtZjQyMTliZWRkYjM3 LzEvbnhGb3VGY1hvVVptQUJ0YkwyeVFnQm1YM2dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADo8iBS+d KEe/tbi+oVFZ/dWz2HK5jNGxhMHMImxCIqazR5gu4TVBBOnINhtSR/8K3qyZrSP0 fVln4V2aOz+iKjIojJN5FkRqq5GrDFVgy5e+mVytWhQN5Pngy+DPp8swp/Mrfuha 8RZEP4wNQpYLSLSUVv1ifDLYCJtKaCGN7eHQkiUv8y4vHRlKggWPK5VEu+fSv6BZ EOk4UWArTlQ2Gwrq0ekibqObi3nUQX+DPXxC3RCdz1Wy+QQZ78Yz9LBr8FlX0Wlo o5J36Fn7eaZpGifrTVwWM4IdIx0yMTkyMVObcIw5qid+S7c2w/WF5Oe3YDb6HULy vvE+GHu/4zaWww== -----END CERTIFICATE-----Generated at Sun Jan 25 23:55:39 2026 by rpki-client