This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft File: 1XgxwfXmACVCvOut7yQSithG6vk.mft (raw, json) Hash identifier: RYmMA735j3pN96XY2mHepFBGqlBEyOPbEk+BWxc2T2E= Subject key identifier: C5:29:91:A7:67:B3:99:28:53:97:C4:81:BF:C8:76:CA:83:25:A0:82 Authority key identifier: D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9 Certificate issuer: /CN=d57831c1f5e6002542bcebadef24128ad846eaf9 Certificate serial: 019BF72D754FFE6DDE800208C221479022AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft Manifest number: 02AC Signing time: Sun 25 Jan 2026 22:01:50 +0000 Manifest this update: Sun 25 Jan 2026 22:01:50 +0000 Manifest next update: Mon 26 Jan 2026 22:01:50 +0000 Files and hashes: 1: 1XgxwfXmACVCvOut7yQSithG6vk.crl (hash: KzARVYj56be+xPq7CwVj2TblG3mWT7lzWqbyQtasN/8=) 2: edoHN6_JsP-n0lJvF27iJ8eI6P4.roa (hash: 8NDkYnaMysyzTRQRKzPfGA1yeZmwSTwDWWtshuRs65s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:75:4f:fe:6d:de:80:02:08:c2:21:47:90:22:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d57831c1f5e6002542bcebadef24128ad846eaf9 Validity Not Before: Jan 25 22:01:50 2026 GMT Not After : Jan 26 22:01:50 2026 GMT Subject: CN=c52991a767b399285397c481bfc876ca8325a082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9d:8c:5d:9e:35:f4:e9:03:68:4f:55:eb:80: 58:83:f4:c4:be:1c:44:5b:0c:a8:32:67:cb:c7:2d: 52:90:72:46:24:f5:df:7b:81:be:c5:44:35:2c:73: d3:b0:25:61:38:73:2b:ad:ea:8d:a3:e7:27:de:4e: 22:20:a9:3e:62:63:7c:d8:17:a8:12:29:e6:d7:5f: b9:41:ee:af:07:e2:66:a4:92:65:77:36:ea:b1:3e: c5:ee:d7:2b:63:42:5a:69:42:65:46:f1:c6:67:f1: 43:56:79:0e:9b:58:71:a8:a1:b2:8c:a2:bc:4d:84: 7c:ae:d8:da:92:1a:71:2a:dc:db:2c:37:56:c9:21: 16:21:51:1f:2b:c4:5a:f4:8b:5b:81:fc:30:4b:cd: 19:9b:ab:64:20:61:66:ed:86:ce:4b:ed:93:e9:c7: 9d:d4:1f:31:52:6e:2c:b9:8a:27:a3:b4:88:fe:7c: 8c:64:30:a1:40:a6:2c:8d:76:58:ef:4d:7c:98:62: 87:c0:3a:c8:3e:aa:ea:26:d0:d9:e3:1b:df:98:73: 2c:91:dd:25:4f:af:44:c5:a0:33:33:1e:f8:92:89: ef:f6:73:a3:5b:af:e5:10:f5:a1:03:39:6b:37:a7: ce:e4:81:29:28:88:66:52:f9:ed:27:cd:78:61:f5: d4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:29:91:A7:67:B3:99:28:53:97:C4:81:BF:C8:76:CA:83:25:A0:82 X509v3 Authority Key Identifier: keyid:D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:4a:f8:5f:9d:99:86:32:f0:a6:7b:91:8b:fd:b7:1e:85:63: 99:34:50:06:54:2c:5b:e4:e1:66:9b:e6:9f:ff:41:73:fb:ff: d2:12:e2:85:8a:64:ee:36:f1:77:7b:5a:62:f0:f6:70:91:89: 50:2a:85:26:08:20:3e:de:a1:ba:34:1d:db:04:4b:e4:a0:79: 9f:38:e3:7d:f1:9d:43:25:9b:39:13:5a:1a:72:87:e2:e7:94: b0:68:6e:00:f1:9c:92:40:83:6c:8b:e7:7d:0e:b0:a5:79:2e: 7f:5b:69:c6:f4:93:87:70:32:a5:43:88:ad:e5:20:bf:5f:9b: 5f:02:ad:25:58:89:20:dd:d7:1e:90:ae:68:ba:91:5a:e1:1d: 12:83:e3:83:4e:7e:ad:73:2b:ba:77:db:b1:86:fa:54:66:f5: 23:45:ab:5f:98:7a:0f:01:0d:8b:8e:a0:9b:7c:ce:b4:9a:8f: 17:a5:3d:fb:af:0d:a6:7f:25:72:94:64:e1:70:4c:6b:db:52: 21:a5:c2:cd:22:5e:5d:65:f6:b1:b9:7d:f7:68:8d:30:3e:a5: 66:cb:48:eb:20:50:0c:8a:45:78:2f:4c:6f:49:93:a1:66:76: 79:18:d2:45:02:13:86:76:38:07:b0:06:7b:35:8a:97:0a:01: f4:b4:b2:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LXVP/m3egAIIwiFHkCKqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1NzgzMWMxZjVlNjAwMjU0MmJjZWJhZGVmMjQxMjhhZDg0 NmVhZjkwHhcNMjYwMTI1MjIwMTUwWhcNMjYwMTI2MjIwMTUwWjAzMTEwLwYDVQQD EyhjNTI5OTFhNzY3YjM5OTI4NTM5N2M0ODFiZmM4NzZjYTgzMjVhMDgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz52MXZ419OkDaE9V64BYg/TEvhxE WwyoMmfLxy1SkHJGJPXfe4G+xUQ1LHPTsCVhOHMrreqNo+cn3k4iIKk+YmN82Beo Einm11+5Qe6vB+JmpJJldzbqsT7F7tcrY0JaaUJlRvHGZ/FDVnkOm1hxqKGyjKK8 TYR8rtjakhpxKtzbLDdWySEWIVEfK8Ra9ItbgfwwS80Zm6tkIGFm7YbOS+2T6ced 1B8xUm4suYono7SI/nyMZDChQKYsjXZY7018mGKHwDrIPqrqJtDZ4xvfmHMskd0l T69ExaAzMx74konv9nOjW6/lEPWhAzlrN6fO5IEpKIhmUvntJ814YfXUmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMUpkadns5koU5fEgb/IdsqDJaCCMB8GA1UdIwQY MBaAFNV4McH15gAlQrzrre8kEorYRur5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVhneHdmWG1BQ1ZDdk91dDd5UVNpdGhHNnZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9iMTk2NGEtMzBhZS00NDgyLTg0NWQt NzQ2MzY1ZGJhNWJiLzEvMVhneHdmWG1BQ1ZDdk91dDd5UVNpdGhHNnZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC9iMTk2NGEtMzBhZS00NDgyLTg0NWQtNzQ2MzY1ZGJhNWJi LzEvMVhneHdmWG1BQ1ZDdk91dDd5UVNpdGhHNnZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEkr4X52Z hjLwpnuRi/23HoVjmTRQBlQsW+ThZpvmn/9Bc/v/0hLihYpk7jbxd3taYvD2cJGJ UCqFJgggPt6hujQd2wRL5KB5nzjjffGdQyWbORNaGnKH4ueUsGhuAPGckkCDbIvn fQ6wpXkuf1tpxvSTh3AypUOIreUgv1+bXwKtJViJIN3XHpCuaLqRWuEdEoPjg05+ rXMrunfbsYb6VGb1I0WrX5h6DwENi46gm3zOtJqPF6U9+68Npn8lcpRk4XBMa9tS IaXCzSJeXWX2sbl992iNMD6lZstI6yBQDIpFeC9Mb0mToWZ2eRjSRQIThnY4B7AG ezWKlwoB9LSyIA== -----END CERTIFICATE-----Generated at Mon Jan 26 00:18:17 2026 by rpki-client