This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json) Hash identifier: kBxEhCRA5Bs6IA258t7GyoqVMSrDbIu1PJ6jpVUjICg= Subject key identifier: EB:E0:80:A4:0D:F9:69:F0:1C:65:70:9E:BA:67:47:2B:99:72:B7:74 Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14 Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914 Certificate serial: 019BFA9C160F3611045EA5B4420D53726020 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft Manifest number: 177C Signing time: Mon 26 Jan 2026 14:01:31 +0000 Manifest this update: Mon 26 Jan 2026 14:01:31 +0000 Manifest next update: Tue 27 Jan 2026 14:01:31 +0000 Files and hashes: 1: 2dj72cUvrZqEtdbBtFlSnYa4QKM.roa (hash: 0SrJodFZpH/UDhRtcg5lODDwzwQCCfVOAxUCuTTXZOI=) 2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: jDHDgVmtWaYk2MBrc4Rit+eAOG8nhlqZr6szNN+VLMs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:9c:16:0f:36:11:04:5e:a5:b4:42:0d:53:72:60:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3f172439599d7da525797899bf213b8e63554914 Validity Not Before: Jan 26 14:01:31 2026 GMT Not After : Jan 27 14:01:31 2026 GMT Subject: CN=ebe080a40df969f01c65709eba67472b9972b774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2e:82:46:f9:ff:3d:51:9e:77:0e:e0:be:de: 1a:46:b1:8e:e2:d1:fe:1f:a6:91:1c:b4:f4:cb:04: cf:41:17:8f:8f:c8:88:f8:be:48:24:7d:bb:d1:39: f6:2e:bd:9b:a0:2e:52:2c:2e:eb:fb:4f:b7:85:97: 54:32:03:1d:a6:7f:a9:9f:24:77:a6:7d:00:26:6a: 7f:4d:a3:91:4e:ad:99:45:9c:10:43:a3:29:0b:3d: c0:b0:82:46:25:46:77:97:d5:8c:5f:6c:9c:9f:23: 15:af:3c:6d:6b:e1:12:b6:55:5a:88:54:8b:b2:f2: a0:d1:d5:d8:ae:80:8f:d2:6c:d0:81:12:34:ee:5a: a8:01:29:83:7a:f6:63:45:ba:03:a7:70:ba:cc:99: aa:68:d7:94:53:8d:94:47:c2:3c:ce:21:a0:27:cc: 9b:ef:9d:db:51:f7:f9:68:31:5b:21:bf:ea:0f:66: 23:36:85:72:4e:54:a2:ef:ac:08:5c:06:80:1c:9c: 06:7e:98:a9:41:8e:a9:fa:4b:19:43:ce:ec:7b:30: 77:62:e8:b4:ef:c8:05:03:f9:cc:c9:9f:0a:5e:79: c7:4d:e9:fc:f1:88:03:ca:04:39:48:ea:cf:b3:2d: 82:89:69:a6:7f:29:ae:c3:50:a4:3a:a4:79:5e:8b: 8e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:E0:80:A4:0D:F9:69:F0:1C:65:70:9E:BA:67:47:2B:99:72:B7:74 X509v3 Authority Key Identifier: keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:8d:a4:40:a5:21:5c:ed:fa:f9:5e:a9:d7:5f:26:87:c2:6c: f7:d6:af:3b:64:eb:8f:e3:0b:1c:d7:0e:b1:73:54:6a:37:22: 59:f8:88:a5:d7:40:e3:67:f8:45:bf:81:a6:0f:25:b8:8f:36: c1:75:21:24:43:c0:09:bb:d2:01:88:c2:e0:13:ce:ed:d8:00: fc:e1:7e:aa:d9:91:0a:79:d3:ef:be:a7:e5:dc:7f:99:a8:2f: 93:08:04:75:e0:05:f2:fb:d1:2f:7d:d1:53:25:b7:70:54:79: 85:61:5d:a8:7f:09:be:53:c6:4f:3b:8b:a8:6e:a8:e6:72:b2: 0d:fc:0e:e2:75:5e:51:29:b2:8b:db:7d:18:2f:7f:f3:6c:34: 77:b3:1a:a3:86:e8:10:2a:19:3e:18:0c:6f:64:88:dd:45:fe: b8:7e:a8:44:29:b8:b2:45:5e:c2:74:e5:da:a5:8a:50:46:b8: e8:10:02:b3:93:80:a8:fa:8e:2f:79:cb:16:0e:45:cd:23:31: 03:cd:14:e1:0e:b9:f8:fb:7c:b3:7f:66:35:3f:53:1e:55:6a: 0a:d7:8b:3b:e6:91:25:cb:4d:9f:f1:a7:6c:4e:c5:0a:17:52: eb:f3:0f:32:16:00:74:2e:08:9e:ca:9b:f4:e3:de:44:84:38: 6b:48:fa:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6nBYPNhEEXqW0Qg1TcmAgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmMTcyNDM5NTk5ZDdkYTUyNTc5Nzg5OWJmMjEzYjhlNjM1 NTQ5MTQwHhcNMjYwMTI2MTQwMTMxWhcNMjYwMTI3MTQwMTMxWjAzMTEwLwYDVQQD EyhlYmUwODBhNDBkZjk2OWYwMWM2NTcwOWViYTY3NDcyYjk5NzJiNzc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArS6CRvn/PVGedw7gvt4aRrGO4tH+ H6aRHLT0ywTPQRePj8iI+L5IJH270Tn2Lr2boC5SLC7r+0+3hZdUMgMdpn+pnyR3 pn0AJmp/TaORTq2ZRZwQQ6MpCz3AsIJGJUZ3l9WMX2ycnyMVrzxta+EStlVaiFSL svKg0dXYroCP0mzQgRI07lqoASmDevZjRboDp3C6zJmqaNeUU42UR8I8ziGgJ8yb 753bUff5aDFbIb/qD2YjNoVyTlSi76wIXAaAHJwGfpipQY6p+ksZQ87sezB3Yui0 78gFA/nMyZ8KXnnHTen88YgDygQ5SOrPsy2CiWmmfymuw1CkOqR5XouOTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOvggKQN+WnwHGVwnrpnRyuZcrd0MB8GA1UdIwQY MBaAFD8XJDlZnX2lJXl4mb8hO45jVUkUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi85ZjlhYTktMDljMC00OGNjLWIwYTEt ODg3MzMxZWZiNzE1LzEvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi85ZjlhYTktMDljMC00OGNjLWIwYTEtODg3MzMxZWZiNzE1 LzEvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk42kQKUh XO36+V6p118mh8Js99avO2Trj+MLHNcOsXNUajciWfiIpddA42f4Rb+Bpg8luI82 wXUhJEPACbvSAYjC4BPO7dgA/OF+qtmRCnnT776n5dx/magvkwgEdeAF8vvRL33R UyW3cFR5hWFdqH8JvlPGTzuLqG6o5nKyDfwO4nVeUSmyi9t9GC9/82w0d7Mao4bo ECoZPhgMb2SI3UX+uH6oRCm4skVewnTl2qWKUEa46BACs5OAqPqOL3nLFg5FzSMx A80U4Q65+Pt8s39mNT9THlVqCteLO+aRJctNn/GnbE7FChdS6/MPMhYAdC4Insqb 9OPeRIQ4a0j6Mw== -----END CERTIFICATE-----Generated at Tue Jan 27 00:10:02 2026 by rpki-client