This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft File: XYJmcuaPPaXbUO2ButuNM73M0ro.mft (raw, json) Hash identifier: 2Ke7njjRrHmawjZIvrJv+hSdXsxwJBpDToPxoaRqkuA= Subject key identifier: 8B:0D:0A:1E:0C:7A:B4:4A:BC:98:2C:6C:B3:E2:0A:EE:AD:26:0E:3E Authority key identifier: 5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA Certificate issuer: /CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba Certificate serial: 019BFC1BDA7E514818F1A862F017C7C9E0F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft Manifest number: 1427 Signing time: Mon 26 Jan 2026 21:00:42 +0000 Manifest this update: Mon 26 Jan 2026 21:00:42 +0000 Manifest next update: Tue 27 Jan 2026 21:00:42 +0000 Files and hashes: 1: XYJmcuaPPaXbUO2ButuNM73M0ro.crl (hash: Z9LibMnjBCvzMqxBuyQ7iPc+0faAQonRpV3BHV8FwFo=) 2: fDzIkCC4HQZF8d8gvy277WuuRYM.roa (hash: TzMFdxwnyUIL4oJ9MUVrNEjKX81ekLEZoq92hFxo3V4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:1b:da:7e:51:48:18:f1:a8:62:f0:17:c7:c9:e0:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba Validity Not Before: Jan 26 21:00:42 2026 GMT Not After : Jan 27 21:00:42 2026 GMT Subject: CN=8b0d0a1e0c7ab44abc982c6cb3e20aeead260e3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:96:12:c5:a0:df:1a:96:cc:02:0d:75:b4:03: d8:a9:64:89:58:f2:42:ea:d4:1e:f4:bd:9a:74:6b: 87:66:07:3a:91:6d:cf:31:b0:40:38:4b:3a:ed:27: 9a:37:e5:c4:e7:1c:fa:f2:9f:a4:52:e5:70:35:a3: 61:c7:c7:d6:ec:01:39:e5:cd:23:8b:d3:cc:2f:6f: 2e:b7:b2:fe:ad:f5:2f:e8:7d:c3:38:99:8d:02:bf: 9c:33:37:2f:fe:9b:14:d0:9b:7f:f0:8a:40:50:cc: a0:b4:0b:bc:b1:0d:1e:bd:34:2c:e5:d9:39:b8:e8: ca:82:d9:33:82:65:13:e3:75:bf:b4:c0:6d:c0:54: 67:20:93:72:cb:16:89:0d:e8:2a:46:fa:a5:de:c7: 4d:07:fe:17:67:77:a5:0d:8d:52:ee:27:62:0c:e1: 1b:9e:f4:f3:ff:15:bd:d3:73:59:06:4b:d8:c3:02: d6:b0:f8:4d:2a:0d:88:fb:9f:21:e3:44:6a:85:f5: 2e:2e:85:67:aa:b5:10:d2:3a:35:20:a9:34:22:ce: 80:2d:42:82:b5:4b:ef:6d:a9:6c:1a:ef:5e:9f:7c: 34:21:0f:63:6b:82:45:64:ad:a2:ee:14:bc:63:61: 88:ed:d0:fa:ac:12:df:0b:79:78:5c:17:5a:f8:10: 7c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0D:0A:1E:0C:7A:B4:4A:BC:98:2C:6C:B3:E2:0A:EE:AD:26:0E:3E X509v3 Authority Key Identifier: keyid:5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:f3:f4:83:b7:f9:95:f7:e3:70:9e:c3:4d:bf:3a:18:96:d1: 8b:2b:ad:c7:e1:04:5a:50:50:7c:8e:a9:bf:47:e3:07:ad:dc: 3f:1f:aa:3b:4d:65:1f:f2:a2:7f:bb:f2:a9:9d:d8:c9:34:3e: 34:b1:5b:88:6f:a8:78:a4:3f:26:ac:ce:08:12:b4:c1:16:76: e4:8c:bb:c1:f6:3e:12:f6:86:48:33:14:0d:8e:81:38:3e:92: 33:1c:80:4a:1e:58:2e:8e:c8:d9:ef:e7:fd:9d:90:f3:7c:c3: 4e:ab:39:f6:6f:89:a1:a5:b5:b2:e3:83:af:35:1c:3a:31:6d: b1:4b:50:b1:76:61:51:a6:63:f4:31:e7:03:5a:f6:ee:4c:5b: 28:59:d6:03:28:ed:52:b6:a2:9a:82:e6:d4:ad:76:f8:0f:2d: 2c:39:94:96:b1:82:cf:b2:8f:eb:42:92:97:d7:ed:49:58:f0: f3:15:64:b6:3c:72:7b:db:8c:35:d3:ef:af:2f:e7:a6:2b:0d: 94:d7:67:bb:da:b3:38:84:e1:01:56:6f:fc:b8:79:e2:e0:f7: bd:88:b6:df:d8:a3:5f:1f:81:11:45:47:fb:f4:6e:f6:23:0a: 30:df:f3:3f:1d:69:9e:bd:f4:95:d9:0c:c2:56:d5:a7:80:96: b1:14:47:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8G9p+UUgY8ahi8BfHyeD3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkODI2NjcyZTY4ZjNkYTVkYjUwZWQ4MWJhZGI4ZDMzYmRj Y2QyYmEwHhcNMjYwMTI2MjEwMDQyWhcNMjYwMTI3MjEwMDQyWjAzMTEwLwYDVQQD Eyg4YjBkMGExZTBjN2FiNDRhYmM5ODJjNmNiM2UyMGFlZWFkMjYwZTNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZYSxaDfGpbMAg11tAPYqWSJWPJC 6tQe9L2adGuHZgc6kW3PMbBAOEs67SeaN+XE5xz68p+kUuVwNaNhx8fW7AE55c0j i9PML28ut7L+rfUv6H3DOJmNAr+cMzcv/psU0Jt/8IpAUMygtAu8sQ0evTQs5dk5 uOjKgtkzgmUT43W/tMBtwFRnIJNyyxaJDegqRvql3sdNB/4XZ3elDY1S7idiDOEb nvTz/xW903NZBkvYwwLWsPhNKg2I+58h40RqhfUuLoVnqrUQ0jo1IKk0Is6ALUKC tUvvbalsGu9en3w0IQ9ja4JFZK2i7hS8Y2GI7dD6rBLfC3l4XBda+BB8uwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIsNCh4MerRKvJgsbLPiCu6tJg4+MB8GA1UdIwQY MBaAFF2CZnLmjz2l21DtgbrbjTO9zNK6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFlKbWN1YVBQYVhiVU8yQnV0dU5NNzNNMHJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9jNzlkMTMtOWVhMi00ZWVkLThkZDIt Y2VkYWI0NjNlZTViLzEvWFlKbWN1YVBQYVhiVU8yQnV0dU5NNzNNMHJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9jNzlkMTMtOWVhMi00ZWVkLThkZDItY2VkYWI0NjNlZTVi LzEvWFlKbWN1YVBQYVhiVU8yQnV0dU5NNzNNMHJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi/P0g7f5 lffjcJ7DTb86GJbRiyutx+EEWlBQfI6pv0fjB63cPx+qO01lH/Kif7vyqZ3YyTQ+ NLFbiG+oeKQ/JqzOCBK0wRZ25Iy7wfY+EvaGSDMUDY6BOD6SMxyASh5YLo7I2e/n /Z2Q83zDTqs59m+JoaW1suODrzUcOjFtsUtQsXZhUaZj9DHnA1r27kxbKFnWAyjt UraimoLm1K12+A8tLDmUlrGCz7KP60KSl9ftSVjw8xVktjxye9uMNdPvry/npisN lNdnu9qzOIThAVZv/Lh54uD3vYi239ijXx+BEUVH+/Ru9iMKMN/zPx1pnr30ldkM wlbVp4CWsRRHjw== -----END CERTIFICATE-----Generated at Tue Jan 27 01:17:22 2026 by rpki-client