This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft File: XEwop1rJaVHcOEAKgPnvOqryqss.mft (raw, json) Hash identifier: C6aiW92eKFzYfsBBWkuuxbtXBWatyoi9HqM3iE05IuU= Subject key identifier: A6:C3:BE:95:79:D3:E6:AA:8C:5A:81:81:46:F5:C6:53:78:3A:16:7C Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb Certificate serial: 019BFA9B798BF88D978DEF45703CFCF7F822 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft Manifest number: 17EB Signing time: Mon 26 Jan 2026 14:00:51 +0000 Manifest this update: Mon 26 Jan 2026 14:00:51 +0000 Manifest next update: Tue 27 Jan 2026 14:00:51 +0000 Files and hashes: 1: 9hnY7Mi-DWWNXT8zxPWlDMpFkVY.roa (hash: KmgeWMyp8Cb4dRrZsFfQDYyQitlhpxsyGtinqL7w4YI=) 2: XEwop1rJaVHcOEAKgPnvOqryqss.crl (hash: 0rKcHCuKdAIbctCe0/MRBpKPuXd2dDualxdoH68bmXQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:9b:79:8b:f8:8d:97:8d:ef:45:70:3c:fc:f7:f8:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb Validity Not Before: Jan 26 14:00:51 2026 GMT Not After : Jan 27 14:00:51 2026 GMT Subject: CN=a6c3be9579d3e6aa8c5a818146f5c653783a167c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:5c:77:eb:29:94:7f:a5:46:4b:37:aa:4d:34: 6e:d2:78:75:9d:69:f7:06:66:c4:06:7b:f9:f8:23: d1:9c:18:09:eb:17:f6:04:00:c6:26:d0:1f:f2:8f: e2:dc:fb:bd:bc:d0:1e:f1:e9:c9:78:a8:14:74:d8: b0:3f:33:b6:a1:32:62:b2:89:e3:18:4e:82:42:6e: 30:e6:e0:01:10:5c:8a:66:28:d1:b0:ed:47:b0:e3: e7:3e:c3:8f:53:70:66:9b:21:35:6b:b7:9f:59:18: b9:53:b1:24:2f:e8:48:65:a4:fa:be:cc:8d:e1:14: e5:a6:05:a7:72:eb:1f:8a:a1:af:bd:27:2f:84:d4: 9c:66:81:d8:c1:4f:07:cf:69:20:1b:09:9b:8a:e0: 97:0c:22:81:af:53:25:dc:e0:d8:42:d1:2f:c4:a7: 9b:40:3b:09:12:a9:c7:38:dc:86:1b:c3:fb:42:f7: bd:af:eb:b3:ee:61:67:d6:cd:61:22:89:84:44:b9: 92:cc:ac:56:04:54:98:30:32:5f:1c:37:75:35:d5: d8:5e:a5:01:fc:d0:a6:d9:57:d5:06:b4:8d:18:19: 10:1f:01:28:f1:2c:09:f5:7b:82:d5:6e:7c:4d:7a: a1:8d:3f:c5:1b:b6:37:bf:71:48:6d:8d:1e:99:03: 46:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C3:BE:95:79:D3:E6:AA:8C:5A:81:81:46:F5:C6:53:78:3A:16:7C X509v3 Authority Key Identifier: keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:de:be:9e:2d:54:15:7a:70:34:20:37:e1:36:d2:96:8d:33: df:bf:bb:0c:61:b5:8d:7b:a4:45:9f:57:02:dc:0e:fa:0d:8b: 4c:c1:79:a8:28:c1:c1:bd:61:2e:fe:bd:1c:5d:7a:c3:e1:f6: fd:11:6d:bc:ec:54:79:1b:77:7a:42:e9:a2:e1:57:46:a6:85: ae:83:6c:c4:30:b2:46:09:7f:61:0f:a4:d2:7b:1b:4f:5a:88: 48:d1:e7:d3:b6:69:1e:79:fb:01:3e:19:59:e6:33:72:69:fc: 37:58:be:8b:2b:47:f4:8d:68:72:f5:9d:85:ed:76:bd:58:07: 7f:f0:69:eb:90:12:51:e1:1d:bc:58:d1:ca:96:df:cc:62:52: 7b:25:0c:ad:ef:a6:7b:a4:c3:e7:46:3d:89:40:09:a1:b3:8d: c8:6d:18:8d:e3:3c:50:54:c0:22:06:05:27:9a:58:1e:7b:f7: 4a:9e:9f:a7:45:d7:4e:b0:bf:20:59:ec:cd:14:4d:d7:1f:a1: 32:86:15:f7:9c:53:02:a2:1e:3c:63:bd:d4:07:e4:4a:79:53: 94:be:a0:d6:b8:33:5e:af:3e:a3:dd:b9:0e:6d:2d:41:bf:4f: 61:00:65:03:e3:23:9c:1e:f9:0a:92:bc:e1:38:4d:11:f7:8b: f2:21:16:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6m3mL+I2Xje9FcDz89/giMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNGMyOGE3NWFjOTY5NTFkYzM4NDAwYTgwZjllZjNhYWFm MmFhY2IwHhcNMjYwMTI2MTQwMDUxWhcNMjYwMTI3MTQwMDUxWjAzMTEwLwYDVQQD EyhhNmMzYmU5NTc5ZDNlNmFhOGM1YTgxODE0NmY1YzY1Mzc4M2ExNjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh1x36ymUf6VGSzeqTTRu0nh1nWn3 BmbEBnv5+CPRnBgJ6xf2BADGJtAf8o/i3Pu9vNAe8enJeKgUdNiwPzO2oTJisonj GE6CQm4w5uABEFyKZijRsO1HsOPnPsOPU3BmmyE1a7efWRi5U7EkL+hIZaT6vsyN 4RTlpgWncusfiqGvvScvhNScZoHYwU8Hz2kgGwmbiuCXDCKBr1Ml3ODYQtEvxKeb QDsJEqnHONyGG8P7Qve9r+uz7mFn1s1hIomERLmSzKxWBFSYMDJfHDd1NdXYXqUB /NCm2VfVBrSNGBkQHwEo8SwJ9XuC1W58TXqhjT/FG7Y3v3FIbY0emQNGrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKbDvpV50+aqjFqBgUb1xlN4OhZ8MB8GA1UdIwQY MBaAFFxMKKdayWlR3DhACoD57zqq8qrLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEV3b3AxckphVkhjT0VBS2dQbnZPcXJ5cXNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wOTc3ZWUtYjk4ZC00YTNlLWIzYWYt NjdjNzYzMjAxODZhLzEvWEV3b3AxckphVkhjT0VBS2dQbnZPcXJ5cXNzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8wOTc3ZWUtYjk4ZC00YTNlLWIzYWYtNjdjNzYzMjAxODZh LzEvWEV3b3AxckphVkhjT0VBS2dQbnZPcXJ5cXNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmN6+ni1U FXpwNCA34TbSlo0z37+7DGG1jXukRZ9XAtwO+g2LTMF5qCjBwb1hLv69HF16w+H2 /RFtvOxUeRt3ekLpouFXRqaFroNsxDCyRgl/YQ+k0nsbT1qISNHn07ZpHnn7AT4Z WeYzcmn8N1i+iytH9I1ocvWdhe12vVgHf/Bp65ASUeEdvFjRypbfzGJSeyUMre+m e6TD50Y9iUAJobONyG0YjeM8UFTAIgYFJ5pYHnv3Sp6fp0XXTrC/IFnszRRN1x+h MoYV95xTAqIePGO91AfkSnlTlL6g1rgzXq8+o925Dm0tQb9PYQBlA+MjnB75CpK8 4ThNEfeL8iEWgg== -----END CERTIFICATE-----Generated at Mon Jan 26 20:50:56 2026 by rpki-client