This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft File: XYbEfabZB5NHtg8E7VxVV_6YPrg.mft (raw, json) Hash identifier: WqfXLSZShOfZQcHPDaZxe2vM47JzbICOtVDYjg7cF5U= Subject key identifier: C9:56:B4:CF:21:0C:5B:C6:3E:C5:68:FC:BB:47:BE:1B:A7:27:59:73 Authority key identifier: 5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8 Certificate issuer: /CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8 Certificate serial: 019C21A8F3AB5E6FB28FEE46FACEBC11BEE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft Manifest number: 08C8 Signing time: Tue 03 Feb 2026 04:00:46 +0000 Manifest this update: Tue 03 Feb 2026 04:00:46 +0000 Manifest next update: Wed 04 Feb 2026 04:00:46 +0000 Files and hashes: 1: HhZLJKHTDSxUIKRb-RQDIpmwb2c.roa (hash: a/gPxO3vEuqfCp70KpDQq2lcCKuUQZuTopPVCy8m4LA=) 2: PLVDJ7dkDU--d-zDM1gbGBw8XBs.roa (hash: 7fFDeno1llfmG5xw2+UhwO2bFxAsVyxjb17vnpRCoYg=) 3: PfU-pIQUztpuCpjeK4PA6M387xY.roa (hash: IxKP4N/sSJx4IV1KMlr0VGqT7A6A6/R7M00aHJnoW/w=) 4: XYbEfabZB5NHtg8E7VxVV_6YPrg.crl (hash: uqefRbCgvqEd+lv09LuYY5egJ6Q5E/eJfXlD3tje13s=) 5: _BWqmK6mrfBuguQtqF75TBClGMs.roa (hash: uZ7P5xdR1guWm1uC7RQ3bBaQOHT/pKp/etCCjtf5eTs=) 6: mUrwLBSn-6OABt-a8CWyid9HQT0.roa (hash: QLR5JTAjIM5uhR1YB984cbq/Umms9s9InAJMrrGnnxg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 21:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:21:a8:f3:ab:5e:6f:b2:8f:ee:46:fa:ce:bc:11:be:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8 Validity Not Before: Feb 3 04:00:46 2026 GMT Not After : Feb 4 04:00:46 2026 GMT Subject: CN=c956b4cf210c5bc63ec568fcbb47be1ba7275973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b8:2e:41:1b:dd:43:3d:8b:2d:b9:bc:b5:02: 45:96:6c:2f:cb:47:ae:ed:26:6d:86:89:d8:b2:21: 3b:fd:a9:7c:46:95:28:a9:78:9f:05:3f:5d:92:01: 89:bf:54:10:99:c0:4d:bc:3e:68:f4:eb:54:e7:e0: 6b:da:d5:89:28:5c:49:57:ff:cc:ba:de:e2:f9:b8: e9:6d:f0:b8:4c:85:01:ff:38:fe:67:a8:83:c5:9e: 7a:e7:a5:63:59:74:e6:08:ed:2e:86:fa:3f:24:56: d3:29:25:58:e7:8a:15:c5:67:3a:f1:f4:9a:ea:4d: 36:22:61:0e:23:44:fc:b9:72:3d:51:63:0c:9b:d8: e9:18:48:34:6d:2f:ae:28:69:e8:d2:07:38:71:9c: ba:93:4c:ce:10:3e:9d:ef:24:5a:d2:c3:23:bd:6b: af:7e:71:fa:68:5e:66:65:42:73:4a:1e:58:12:bc: 7e:20:e9:7e:ec:dc:78:18:82:36:c8:41:4c:12:da: 57:1a:29:e0:3f:0a:fc:24:36:d6:88:60:0b:e4:53: 34:41:bb:8a:07:4a:ce:bc:32:b7:fe:a9:d6:c3:67: 98:ca:f4:a3:28:d2:ce:23:88:1d:c0:89:14:cd:ef: 3c:f7:63:18:62:e7:09:c2:ae:6c:24:dd:7b:ed:da: 5b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:56:B4:CF:21:0C:5B:C6:3E:C5:68:FC:BB:47:BE:1B:A7:27:59:73 X509v3 Authority Key Identifier: keyid:5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:90:5c:06:f2:7c:1e:88:06:94:ea:75:74:8d:3d:6c:7e:eb: 0f:50:e1:79:f4:92:42:7c:10:78:f6:13:93:d2:f0:80:09:5e: 0f:1c:a5:75:21:36:2e:ca:72:c8:df:40:23:98:c0:c0:cb:d0: 76:9f:44:ae:80:78:79:00:2c:c4:4e:77:83:83:58:0e:5a:0f: d0:22:a2:80:17:43:1e:9a:09:75:1e:b3:80:ac:da:60:f8:49: d1:b7:0e:ac:05:41:11:25:9e:81:6d:2c:a8:d6:f7:76:bd:cb: 54:cf:04:4b:72:2f:0d:e5:4d:d1:b8:f0:92:c9:ae:ea:f1:c0: 9b:1f:62:6f:13:12:5f:90:e3:ae:2a:7c:54:2b:46:02:6a:00: 4c:51:7a:62:48:db:94:30:07:20:8d:41:d1:d1:bc:61:84:10: a4:a0:6d:51:26:c1:7f:88:fa:0f:6e:df:ab:00:ad:a4:27:35: 8d:7f:bd:e1:e7:72:bb:ac:98:05:4d:e5:76:25:e1:34:81:c9: 4e:31:94:c0:0d:f8:73:3e:be:4b:87:95:74:3d:87:d6:fd:ee: 0e:a0:68:d5:9d:79:f5:3e:9f:b6:9c:f1:6e:ad:59:3b:7e:6a: 81:5e:b7:c6:6f:a6:e7:4d:c4:a2:57:59:a2:cd:68:c9:55:03: 3d:1c:eb:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwhqPOrXm+yj+5G+s68Eb7pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkODZjNDdkYTZkOTA3OTM0N2I2MGYwNGVkNWM1NTU3ZmU5 ODNlYjgwHhcNMjYwMjAzMDQwMDQ2WhcNMjYwMjA0MDQwMDQ2WjAzMTEwLwYDVQQD EyhjOTU2YjRjZjIxMGM1YmM2M2VjNTY4ZmNiYjQ3YmUxYmE3Mjc1OTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbguQRvdQz2LLbm8tQJFlmwvy0eu 7SZthonYsiE7/al8RpUoqXifBT9dkgGJv1QQmcBNvD5o9OtU5+Br2tWJKFxJV//M ut7i+bjpbfC4TIUB/zj+Z6iDxZ5656VjWXTmCO0uhvo/JFbTKSVY54oVxWc68fSa 6k02ImEOI0T8uXI9UWMMm9jpGEg0bS+uKGno0gc4cZy6k0zOED6d7yRa0sMjvWuv fnH6aF5mZUJzSh5YErx+IOl+7Nx4GII2yEFMEtpXGingPwr8JDbWiGAL5FM0QbuK B0rOvDK3/qnWw2eYyvSjKNLOI4gdwIkUze8892MYYucJwq5sJN177dpbRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMlWtM8hDFvGPsVo/LtHvhunJ1lzMB8GA1UdIwQY MBaAFF2GxH2m2QeTR7YPBO1cVVf+mD64MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFliRWZhYlpCNU5IdGc4RTdWeFZWXzZZUHJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9kZjY2YTAtYzk1OC00ZTVjLWE2ZGYt ZmM2MzI4NDFiYTNlLzEvWFliRWZhYlpCNU5IdGc4RTdWeFZWXzZZUHJnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS9kZjY2YTAtYzk1OC00ZTVjLWE2ZGYtZmM2MzI4NDFiYTNl LzEvWFliRWZhYlpCNU5IdGc4RTdWeFZWXzZZUHJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOJBcBvJ8 HogGlOp1dI09bH7rD1DhefSSQnwQePYTk9LwgAleDxyldSE2LspyyN9AI5jAwMvQ dp9EroB4eQAsxE53g4NYDloP0CKigBdDHpoJdR6zgKzaYPhJ0bcOrAVBESWegW0s qNb3dr3LVM8ES3IvDeVN0bjwksmu6vHAmx9ibxMSX5Djrip8VCtGAmoATFF6Ykjb lDAHII1B0dG8YYQQpKBtUSbBf4j6D27fqwCtpCc1jX+94edyu6yYBU3ldiXhNIHJ TjGUwA34cz6+S4eVdD2H1v3uDqBo1Z159T6ftpzxbq1ZO35qgV63xm+m503EoldZ os1oyVUDPRzrvQ== -----END CERTIFICATE-----Generated at Tue Feb 3 07:18:38 2026 by rpki-client