This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft File: XM3soXHkIseck4wnMqkNSKjFPAY.mft (raw, json) Hash identifier: nhOqpyKGIl5fUtdUS3KmZdZAdvleOY6M4MF9J3N6uQk= Subject key identifier: 36:61:82:22:BC:33:23:01:52:F9:76:B6:3C:F5:BE:4A:13:03:35:4E Authority key identifier: 5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06 Certificate issuer: /CN=5ccdeca171e422c79c938c2732a90d48a8c53c06 Certificate serial: 019BD8B4866E6EA893C46D9FCD51E9EAD4A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft Manifest number: 17E8 Signing time: Tue 20 Jan 2026 00:01:07 +0000 Manifest this update: Tue 20 Jan 2026 00:01:07 +0000 Manifest next update: Wed 21 Jan 2026 00:01:07 +0000 Files and hashes: 1: 5MQ7t76xz5o1VUyW1dJisXNk5Jo.roa (hash: FT8iwKYv0kNgK5WeEIsGI02McKnrcUBiN3g9glXLUYs=) 2: Vcrxz5upkyAccEnWWkm1jKbiHCU.roa (hash: DF9acpeNSt3QcU3RLTkyAoSPyBTgnqf4yVUPlH/IEUw=) 3: XM3soXHkIseck4wnMqkNSKjFPAY.crl (hash: i0PkM8X6DDBTix/eyUnd90GiHQ7OoPYdX9iTjgBbR/A=) 4: d61QkjArffvt5fKMvIXWF8nIPcE.roa (hash: n77B2cSkql2uFL2mgGTUwbPJJQCN8pumVVKiMumdlmQ=) 5: vEmqZz7TyOIZcMFGWq5sr0qWa9c.roa (hash: rxEx9pdbLlzRrifCSn69fPPljhSEaN1XwXY/F5cFM9M=) 6: x9IxkDkzEkDokkzWh7NpXLA6pSU.roa (hash: HHdD49yqs88lPuXMSPj56CT2/FilbQVuZopBY9/6oH8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d8:b4:86:6e:6e:a8:93:c4:6d:9f:cd:51:e9:ea:d4:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ccdeca171e422c79c938c2732a90d48a8c53c06 Validity Not Before: Jan 20 00:01:07 2026 GMT Not After : Jan 21 00:01:07 2026 GMT Subject: CN=36618222bc33230152f976b63cf5be4a1303354e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4c:52:f0:da:a9:c4:7c:da:f7:55:e8:fe:d4: 93:85:7a:1e:0a:a3:94:f2:9c:e6:e9:dd:33:e8:a2: b0:4f:79:46:b7:b6:c3:be:69:0a:b1:0c:ef:bc:5e: f3:2b:86:e0:d9:d5:d5:88:2f:00:ef:8b:06:5a:15: 33:dc:bb:c5:30:f1:bf:46:a7:e3:99:ee:94:fe:ed: b7:5d:f5:a6:78:ff:8b:d7:f1:99:06:37:3b:77:d1: 09:4a:97:49:92:77:ca:51:83:cb:95:92:7e:f2:ee: 78:ed:a1:22:de:bc:dd:12:8e:4b:58:97:04:8b:22: b0:f1:b3:88:a6:6e:22:a5:ef:77:b7:45:b3:9a:fa: 3a:75:df:4c:08:a8:e6:10:e2:42:2a:e9:bd:a1:95: 8a:fd:c5:fb:83:7b:ec:35:db:87:77:58:f7:d4:2d: d6:00:7d:cb:84:d1:a3:70:46:cc:e6:ca:83:f4:11: ed:3e:10:5a:7a:db:85:f3:7f:e9:eb:71:56:d0:22: 1c:8b:ac:a0:87:44:2c:72:aa:4a:70:07:6e:a2:99: 36:58:5c:12:ac:a5:47:55:d3:3d:5a:b2:ff:07:24: fe:03:3d:7d:f5:fe:33:40:e3:c3:e8:d7:ab:45:49: c4:3a:4e:d2:ef:76:5e:61:58:26:6e:24:7d:c2:49: de:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:61:82:22:BC:33:23:01:52:F9:76:B6:3C:F5:BE:4A:13:03:35:4E X509v3 Authority Key Identifier: keyid:5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:be:f2:8c:4c:f2:25:66:2f:60:e7:83:2e:86:56:fc:fd:46: f5:05:3c:cc:ad:df:4c:68:f9:a3:2b:5b:27:d6:ae:3e:08:ad: 73:72:d3:53:e7:ca:51:17:37:19:ea:a6:05:86:18:2f:06:3b: ac:81:81:2c:f3:f7:16:2d:b8:1f:44:a5:2c:3e:32:a1:f9:ab: 33:6b:34:38:0e:c6:32:bc:fe:74:c9:1c:02:10:98:6a:87:c2: 87:c5:55:0b:b7:4d:59:25:cd:50:21:64:92:c5:7b:5b:12:11: ae:0d:a1:69:43:89:b5:77:7f:90:32:25:0b:a6:23:fd:d8:f2: 84:19:15:79:e9:5a:b5:84:51:14:aa:49:3c:93:23:6e:a9:82: 34:e6:20:d0:a6:34:2f:23:5c:bb:13:26:80:30:44:05:4b:0a: d6:5b:20:e4:a2:ef:bf:3d:37:8e:76:bf:82:17:a8:28:66:b9: 8c:97:92:f4:e1:cb:07:eb:8c:03:6d:d5:68:c7:7d:9a:8e:45: 2b:88:54:b4:59:77:1e:9b:31:00:f3:58:f9:30:88:66:7a:82: a3:58:08:3f:e4:08:c7:18:ec:85:27:06:78:d4:57:f0:9c:65: 4d:3e:0d:a1:4d:ac:a4:59:bd:4f:84:1c:f6:de:c3:d6:28:31: 4d:15:bb:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvYtIZubqiTxG2fzVHp6tSoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjY2RlY2ExNzFlNDIyYzc5YzkzOGMyNzMyYTkwZDQ4YThj NTNjMDYwHhcNMjYwMTIwMDAwMTA3WhcNMjYwMTIxMDAwMTA3WjAzMTEwLwYDVQQD EygzNjYxODIyMmJjMzMyMzAxNTJmOTc2YjYzY2Y1YmU0YTEzMDMzNTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUxS8NqpxHza91Xo/tSThXoeCqOU 8pzm6d0z6KKwT3lGt7bDvmkKsQzvvF7zK4bg2dXViC8A74sGWhUz3LvFMPG/Rqfj me6U/u23XfWmeP+L1/GZBjc7d9EJSpdJknfKUYPLlZJ+8u547aEi3rzdEo5LWJcE iyKw8bOIpm4ipe93t0Wzmvo6dd9MCKjmEOJCKum9oZWK/cX7g3vsNduHd1j31C3W AH3LhNGjcEbM5sqD9BHtPhBaetuF83/p63FW0CIci6ygh0QscqpKcAduopk2WFwS rKVHVdM9WrL/ByT+Az199f4zQOPD6NerRUnEOk7S73ZeYVgmbiR9wkne7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDZhgiK8MyMBUvl2tjz1vkoTAzVOMB8GA1UdIwQY MBaAFFzN7KFx5CLHnJOMJzKpDUioxTwGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUt YTg4MWVjODIyOGI1LzEvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUtYTg4MWVjODIyOGI1 LzEvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApb7yjEzy JWYvYOeDLoZW/P1G9QU8zK3fTGj5oytbJ9auPgitc3LTU+fKURc3GeqmBYYYLwY7 rIGBLPP3Fi24H0SlLD4yofmrM2s0OA7GMrz+dMkcAhCYaofCh8VVC7dNWSXNUCFk ksV7WxIRrg2haUOJtXd/kDIlC6Yj/djyhBkVeelatYRRFKpJPJMjbqmCNOYg0KY0 LyNcuxMmgDBEBUsK1lsg5KLvvz03jna/gheoKGa5jJeS9OHLB+uMA23VaMd9mo5F K4hUtFl3HpsxAPNY+TCIZnqCo1gIP+QIxxjshScGeNRX8JxlTT4NoU2spFm9T4Qc 9t7D1igxTRW7Lg== -----END CERTIFICATE-----Generated at Tue Jan 20 03:00:50 2026 by rpki-client