This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft File: xmJhwznF7fjYxIPwjka4SAqAXvE.mft (raw, json) Hash identifier: HODbdYkEPt7IVQ09uKWQe7+GemJ8wxoh95XUCBoj1Oc= Subject key identifier: 76:D2:A0:8C:87:9C:C6:A2:DB:55:EF:F3:94:B1:A5:56:93:18:A1:86 Authority key identifier: C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1 Certificate issuer: /CN=c66261c339c5edf8d8c483f08e46b8480a805ef1 Certificate serial: 019BF91B2DE731E109399647282FE6B8C4CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft Manifest number: 1726 Signing time: Mon 26 Jan 2026 07:01:06 +0000 Manifest this update: Mon 26 Jan 2026 07:01:06 +0000 Manifest next update: Tue 27 Jan 2026 07:01:06 +0000 Files and hashes: 1: GkysysiUBXozBtdhxp6l182WpJ8.roa (hash: VR1FnjecjyRiwX08EOHPvLrD5A0SMs3OVYweJtUa454=) 2: xmJhwznF7fjYxIPwjka4SAqAXvE.crl (hash: X0xgrPk3cTLAfTNZGr2zm0oSmeHD5D95K+nnXSOIy+g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:2d:e7:31:e1:09:39:96:47:28:2f:e6:b8:c4:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66261c339c5edf8d8c483f08e46b8480a805ef1 Validity Not Before: Jan 26 07:01:06 2026 GMT Not After : Jan 27 07:01:06 2026 GMT Subject: CN=76d2a08c879cc6a2db55eff394b1a5569318a186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cf:17:9b:1c:1d:56:4e:c6:3c:d4:71:1c:d6: b6:c9:a1:a7:c0:52:d1:f7:b4:80:2b:9d:8f:b4:8d: 0d:a1:9b:fd:de:cd:90:5e:e7:6e:71:2b:07:8d:83: 82:09:ce:3c:b3:70:39:7b:65:d7:23:71:1f:48:4d: 48:a2:57:95:20:f6:e5:96:d1:df:4f:d3:b1:0f:d4: 80:17:40:1e:d5:0b:c1:d2:da:7f:24:06:a2:f7:6f: 42:80:79:78:45:2a:8b:3a:a7:72:3c:92:f1:55:ca: 7f:72:2b:88:3c:ce:cb:0c:b5:73:d0:8c:30:23:39: 4e:41:23:4c:55:40:19:6c:40:e6:30:86:f6:e2:e7: 3a:dd:9a:60:2b:01:63:d7:d1:84:47:05:e3:d2:05: f5:a3:3e:95:c4:d1:59:32:2c:1c:cc:26:1a:59:e3: 67:ab:c8:81:6c:4e:8c:e4:de:7c:a4:3b:ab:f9:03: a8:8c:0c:73:96:95:1e:30:9f:1d:8b:94:0e:3a:23: 1f:5f:6d:c6:8f:d1:e4:ac:ff:a0:0d:24:3d:b4:4e: 40:89:12:7b:a4:6e:cf:30:a5:23:78:03:7a:6d:3e: da:97:6a:d2:94:41:f6:17:7d:37:45:fd:b5:7a:77: 6f:1d:f0:3f:89:fc:4b:f4:fc:53:a9:99:b3:ca:17: c3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D2:A0:8C:87:9C:C6:A2:DB:55:EF:F3:94:B1:A5:56:93:18:A1:86 X509v3 Authority Key Identifier: keyid:C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:c4:a4:5e:49:f0:95:e6:d2:97:07:e7:06:73:dc:39:be:f1: af:3c:51:a9:11:59:49:7c:04:31:86:41:3f:60:05:80:d4:b1: 47:3e:65:88:cc:b1:6d:48:3c:65:38:49:a7:bc:4c:81:cc:b7: 78:a1:40:04:6e:2d:fc:c0:4b:eb:78:37:1a:40:c1:12:7d:5c: 5a:6d:b8:b5:40:7b:10:ff:68:5d:77:f1:99:39:e5:be:67:4b: b5:f1:04:9d:52:1d:43:df:24:af:3c:62:85:36:0d:43:1c:b9: b0:5e:f1:ca:17:23:41:0d:89:29:10:ee:43:e6:9e:b1:ff:03: b8:b3:8e:cb:9f:ec:70:4c:69:0c:d7:18:8f:2d:97:dc:dd:13: 7e:4b:4c:c5:7e:26:b7:c4:39:0a:d1:5d:37:84:7b:3a:f3:f1: 55:f9:c4:74:e9:cb:f8:94:23:bc:ca:4d:ed:a6:5e:9f:d2:43: 1a:a9:b1:12:8e:c7:d6:18:a4:8f:29:c9:3d:14:84:f8:36:7a: 34:d0:81:39:76:81:78:23:da:08:6d:9b:da:c4:ca:24:22:89: d9:53:dd:44:a8:da:a8:30:69:0c:3d:f9:40:16:4f:fd:84:86: ae:d7:57:9d:80:2c:a1:da:5a:63:2d:ef:a6:ea:5a:e4:4c:f5: 00:5b:6b:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5Gy3nMeEJOZZHKC/muMTMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2MWMzMzljNWVkZjhkOGM0ODNmMDhlNDZiODQ4MGE4 MDVlZjEwHhcNMjYwMTI2MDcwMTA2WhcNMjYwMTI3MDcwMTA2WjAzMTEwLwYDVQQD Eyg3NmQyYTA4Yzg3OWNjNmEyZGI1NWVmZjM5NGIxYTU1NjkzMThhMTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwM8XmxwdVk7GPNRxHNa2yaGnwFLR 97SAK52PtI0NoZv93s2QXuducSsHjYOCCc48s3A5e2XXI3EfSE1IoleVIPblltHf T9OxD9SAF0Ae1QvB0tp/JAai929CgHl4RSqLOqdyPJLxVcp/ciuIPM7LDLVz0Iww IzlOQSNMVUAZbEDmMIb24uc63ZpgKwFj19GERwXj0gX1oz6VxNFZMiwczCYaWeNn q8iBbE6M5N58pDur+QOojAxzlpUeMJ8di5QOOiMfX23Gj9HkrP+gDSQ9tE5AiRJ7 pG7PMKUjeAN6bT7al2rSlEH2F303Rf21endvHfA/ifxL9PxTqZmzyhfDlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHbSoIyHnMai21Xv85SxpVaTGKGGMB8GA1UdIwQY MBaAFMZiYcM5xe342MSD8I5GuEgKgF7xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KaHd6bkY3ZmpZeElQd2prYTRTQXFBWHZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS81MjU5NTItN2FmYi00NDNkLWFmMGEt NzdjM2UxYzhmNmRlLzEveG1KaHd6bkY3ZmpZeElQd2prYTRTQXFBWHZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS81MjU5NTItN2FmYi00NDNkLWFmMGEtNzdjM2UxYzhmNmRl LzEveG1KaHd6bkY3ZmpZeElQd2prYTRTQXFBWHZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAasSkXknw lebSlwfnBnPcOb7xrzxRqRFZSXwEMYZBP2AFgNSxRz5liMyxbUg8ZThJp7xMgcy3 eKFABG4t/MBL63g3GkDBEn1cWm24tUB7EP9oXXfxmTnlvmdLtfEEnVIdQ98krzxi hTYNQxy5sF7xyhcjQQ2JKRDuQ+aesf8DuLOOy5/scExpDNcYjy2X3N0TfktMxX4m t8Q5CtFdN4R7OvPxVfnEdOnL+JQjvMpN7aZen9JDGqmxEo7H1hikjynJPRSE+DZ6 NNCBOXaBeCPaCG2b2sTKJCKJ2VPdRKjaqDBpDD35QBZP/YSGrtdXnYAsodpaYy3v pupa5Ez1AFtrjw== -----END CERTIFICATE-----Generated at Mon Jan 26 15:40:03 2026 by rpki-client