This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft File: xcSzrlnZgfJQzIfatZeFSr7XowA.mft (raw, json) Hash identifier: yySqx+7oJtiz/S31B1oS/PiMThwIwoPciFNx3H/xj+0= Subject key identifier: FB:16:63:7F:67:D2:E3:A5:F0:08:43:64:A3:C3:6B:F2:A4:38:96:69 Authority key identifier: C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00 Certificate issuer: /CN=c5c4b3ae59d981f250cc87dab597854abed7a300 Certificate serial: 019BFBE4FB424955EFF1456F6847D27708AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft Manifest number: 0704 Signing time: Mon 26 Jan 2026 20:00:46 +0000 Manifest this update: Mon 26 Jan 2026 20:00:46 +0000 Manifest next update: Tue 27 Jan 2026 20:00:46 +0000 Files and hashes: 1: OBYyhiA-o_Lu_Sii3K0csw4HB8Q.roa (hash: losaCS7PxxPceDw56uDFnzA7tz476/wdte0ltw/SmOk=) 2: xcSzrlnZgfJQzIfatZeFSr7XowA.crl (hash: Xmn/JfGc0wECFU91e3067Tua8QdNcat9bsST/TXNEdM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:e4:fb:42:49:55:ef:f1:45:6f:68:47:d2:77:08:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5c4b3ae59d981f250cc87dab597854abed7a300 Validity Not Before: Jan 26 20:00:46 2026 GMT Not After : Jan 27 20:00:46 2026 GMT Subject: CN=fb16637f67d2e3a5f0084364a3c36bf2a4389669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d9:8c:5b:d0:df:ef:e7:23:83:02:6a:e6:90: 75:5c:4e:ba:62:ba:7f:e9:b5:14:18:ff:0b:e8:45: ac:e1:42:c8:1e:90:b2:bd:b7:d6:40:fa:e5:6e:b9: e4:60:de:88:b4:08:ba:2e:9e:bd:40:15:67:a8:ac: 6d:68:fe:3b:37:47:3c:f0:1f:b6:03:78:f7:47:42: 9d:2f:09:da:3e:29:ac:5c:11:97:a4:96:34:52:12: 70:da:d9:3b:44:d5:b0:86:38:13:b7:4e:63:20:af: 40:d2:e4:5d:5f:2d:d9:ae:19:2d:d8:7a:d7:80:da: 43:e8:e0:7e:60:c3:c8:4b:ea:dd:a7:85:94:41:84: a7:eb:1e:fa:03:5b:04:45:ca:6f:55:17:01:a1:f9: 5a:ef:95:9c:77:ff:43:d5:c2:d6:19:c4:49:83:ef: 60:72:97:85:63:d7:37:30:d1:37:cf:45:a3:0d:06: ca:d2:c6:22:af:ee:9f:a1:65:7e:b3:bc:49:49:d1: ce:2a:09:7f:88:f5:6c:8a:be:20:70:4b:90:6d:3b: dc:df:a5:9b:0a:0c:0c:75:bd:c5:01:af:2f:d7:82: 52:b5:c9:7c:82:eb:ad:5f:d7:1d:ca:3d:25:de:95: da:9a:c0:db:61:77:f3:bc:d3:24:dd:48:4a:e9:8e: 72:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:16:63:7F:67:D2:E3:A5:F0:08:43:64:A3:C3:6B:F2:A4:38:96:69 X509v3 Authority Key Identifier: keyid:C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:b1:72:64:a7:a1:70:da:dd:df:6c:a1:c9:7b:a5:96:0d:53: 32:a9:53:3b:33:25:d0:fc:d0:3b:d5:ee:50:c5:81:6b:5f:a0: c7:be:a4:b2:58:6e:7c:6a:c9:7e:10:77:19:85:ac:25:18:5c: a6:0f:22:9c:c8:fb:7f:f8:af:98:3d:a3:9f:5c:41:a9:67:6d: b3:6e:e9:a3:d5:07:e6:0b:f1:95:6b:52:f8:90:a6:0c:05:cd: 3c:9d:f7:96:95:0e:4b:f9:46:be:a7:88:d6:14:05:7a:e9:85: 6e:18:55:da:4c:00:39:66:4f:5b:a8:a6:5e:fb:72:e1:45:4a: 08:70:a4:1c:2b:84:24:1d:1d:95:62:b1:29:2c:76:a8:c3:4b: 1b:7b:f3:6e:75:0f:0b:1e:09:c9:e1:5d:57:86:15:12:31:47: 5d:92:c3:13:c0:36:f2:48:e5:a2:4e:2f:d3:aa:c0:23:b2:f1: 48:aa:83:4c:eb:55:10:f0:fd:78:a3:33:96:fb:63:6a:e5:72: bd:1e:9e:97:37:5b:3a:57:df:d2:75:96:00:14:56:40:6e:8f: 84:b4:2d:1b:6b:29:1b:f8:60:04:92:a3:5d:a4:d0:0f:c8:b5: 99:97:ed:ab:22:65:13:6e:7c:eb:b0:35:98:b6:c9:4a:16:ef: 32:ed:eb:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv75PtCSVXv8UVvaEfSdwiuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1YzRiM2FlNTlkOTgxZjI1MGNjODdkYWI1OTc4NTRhYmVk N2EzMDAwHhcNMjYwMTI2MjAwMDQ2WhcNMjYwMTI3MjAwMDQ2WjAzMTEwLwYDVQQD EyhmYjE2NjM3ZjY3ZDJlM2E1ZjAwODQzNjRhM2MzNmJmMmE0Mzg5NjY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9mMW9Df7+cjgwJq5pB1XE66Yrp/ 6bUUGP8L6EWs4ULIHpCyvbfWQPrlbrnkYN6ItAi6Lp69QBVnqKxtaP47N0c88B+2 A3j3R0KdLwnaPimsXBGXpJY0UhJw2tk7RNWwhjgTt05jIK9A0uRdXy3Zrhkt2HrX gNpD6OB+YMPIS+rdp4WUQYSn6x76A1sERcpvVRcBofla75Wcd/9D1cLWGcRJg+9g cpeFY9c3MNE3z0WjDQbK0sYir+6foWV+s7xJSdHOKgl/iPVsir4gcEuQbTvc36Wb CgwMdb3FAa8v14JStcl8guutX9cdyj0l3pXamsDbYXfzvNMk3UhK6Y5yxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPsWY39n0uOl8AhDZKPDa/KkOJZpMB8GA1UdIwQY MBaAFMXEs65Z2YHyUMyH2rWXhUq+16MAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGNTenJsblpnZkpReklmYXRaZUZTcjdYb3dBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS85ZjU0YTYtOTMzZi00N2RlLTg3MjYt ZWRkZjUyN2U4ZjJkLzEveGNTenJsblpnZkpReklmYXRaZUZTcjdYb3dBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS85ZjU0YTYtOTMzZi00N2RlLTg3MjYtZWRkZjUyN2U4ZjJk LzEveGNTenJsblpnZkpReklmYXRaZUZTcjdYb3dBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALbFyZKeh cNrd32yhyXullg1TMqlTOzMl0PzQO9XuUMWBa1+gx76kslhufGrJfhB3GYWsJRhc pg8inMj7f/ivmD2jn1xBqWdts27po9UH5gvxlWtS+JCmDAXNPJ33lpUOS/lGvqeI 1hQFeumFbhhV2kwAOWZPW6imXvty4UVKCHCkHCuEJB0dlWKxKSx2qMNLG3vzbnUP Cx4JyeFdV4YVEjFHXZLDE8A28kjlok4v06rAI7LxSKqDTOtVEPD9eKMzlvtjauVy vR6elzdbOlff0nWWABRWQG6PhLQtG2spG/hgBJKjXaTQD8i1mZftqyJlE25867A1 mLbJShbvMu3rIw== -----END CERTIFICATE-----Generated at Tue Jan 27 02:12:15 2026 by rpki-client