This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json) Hash identifier: jX/trtJtXdgtGfPYDx4oaJAc1OEffP9eDM+SkomY4GI= Subject key identifier: 62:A4:5D:B9:5E:02:63:72:F5:42:D4:9B:80:02:14:10:EA:E7:11:68 Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb Certificate serial: 019C2AE3884D275AD71039BE1751CAE9B74C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft Manifest number: 1797 Signing time: Wed 04 Feb 2026 23:01:20 +0000 Manifest this update: Wed 04 Feb 2026 23:01:20 +0000 Manifest next update: Thu 05 Feb 2026 23:01:20 +0000 Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=) 2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: itWg0PaB+9Q5cVnPBbE2YzfhqP3Vus76JrsEeXsL6iM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:2a:e3:88:4d:27:5a:d7:10:39:be:17:51:ca:e9:b7:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb Validity Not Before: Feb 4 23:01:20 2026 GMT Not After : Feb 5 23:01:20 2026 GMT Subject: CN=62a45db95e026372f542d49b80021410eae71168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:54:c2:21:1d:d1:1d:46:1f:5d:f1:e1:be:0f: ab:31:bb:8c:76:c7:e9:ab:0b:09:e2:2a:4c:11:2e: e2:ab:0a:a5:05:96:3e:22:3a:c9:36:2b:7e:cb:47: 60:98:41:84:4f:c7:0a:d9:67:96:fb:c7:4a:3d:82: 6b:0f:89:e8:80:f8:99:fc:73:e0:08:30:9b:b1:59: b4:20:36:b4:41:84:3e:70:86:03:de:c3:d4:c4:d2: f7:1b:49:e1:fd:03:6d:cf:17:f8:6b:7e:d0:85:64: c0:c2:7f:f2:bb:65:22:0b:41:48:70:fa:05:c3:e5: de:4f:14:eb:43:d2:2a:d7:c9:30:a3:87:12:1a:7f: fd:dd:eb:38:e0:32:4a:bd:75:6f:2e:0b:87:fe:c9: a4:08:78:ea:b0:11:b0:4c:35:5c:28:d2:36:d3:2c: 95:b1:66:c0:6f:e6:03:42:58:9d:7c:3a:c9:2b:fc: 07:42:49:c0:c1:aa:3d:17:0b:31:c5:24:c5:5b:c1: 88:3d:43:87:50:0f:d4:b8:69:87:b0:72:d7:96:f8: b0:a5:5c:07:2c:c5:e1:ad:f1:4c:c6:bc:6e:a8:48: d3:21:ed:65:f0:cf:ac:a2:d1:77:88:84:d5:ab:a4: 83:2c:b1:a6:b6:f5:e1:a3:3c:09:a7:91:fb:10:79: 08:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A4:5D:B9:5E:02:63:72:F5:42:D4:9B:80:02:14:10:EA:E7:11:68 X509v3 Authority Key Identifier: keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:17:c1:b3:e3:c7:9a:2e:8c:55:81:c5:de:11:cb:16:74:84: 81:49:94:c7:86:53:7e:31:8d:38:14:a7:bf:8b:12:be:b2:b5: 89:65:23:a9:21:bd:ea:64:37:df:96:47:22:09:f4:f9:bf:87: 10:71:44:a3:a6:6f:0a:7e:fc:79:8b:23:66:d1:9c:2a:e0:af: c4:0e:ad:b3:04:1c:fa:2d:01:56:73:b7:42:4c:04:65:c2:86: 30:f0:17:8b:d4:b5:ea:f1:8b:62:65:0e:a7:9d:91:2e:1f:54: c9:58:c4:85:aa:4a:2c:85:35:40:cf:6e:ae:a6:44:d5:92:f2: 0f:56:e2:c6:94:4c:c6:1d:1c:e6:40:f7:64:ae:ad:33:57:90: 99:5f:0a:ef:8b:16:3f:c4:1f:d9:0c:b4:3d:98:d1:fd:6c:a0: 6d:a5:a5:ba:c7:ba:a5:af:29:ff:93:4c:8e:94:ff:a6:a1:cd: 8d:b0:27:12:9b:f7:0e:b0:61:b5:95:5b:4b:c1:05:7d:bd:36: 8d:0a:f2:07:41:6e:b2:65:d8:a1:b4:4b:99:15:c4:57:e8:f2: 06:c3:ff:65:60:36:72:da:77:31:bd:e7:c5:08:a5:9b:db:87: 4e:5b:88:f1:08:39:08:5c:f7:41:d0:0c:2d:d9:2d:bb:98:e5: d7:ed:58:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwq44hNJ1rXEDm+F1HK6bdMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl YTU3YmIwHhcNMjYwMjA0MjMwMTIwWhcNMjYwMjA1MjMwMTIwWjAzMTEwLwYDVQQD Eyg2MmE0NWRiOTVlMDI2MzcyZjU0MmQ0OWI4MDAyMTQxMGVhZTcxMTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFTCIR3RHUYfXfHhvg+rMbuMdsfp qwsJ4ipMES7iqwqlBZY+IjrJNit+y0dgmEGET8cK2WeW+8dKPYJrD4nogPiZ/HPg CDCbsVm0IDa0QYQ+cIYD3sPUxNL3G0nh/QNtzxf4a37QhWTAwn/yu2UiC0FIcPoF w+XeTxTrQ9Iq18kwo4cSGn/93es44DJKvXVvLguH/smkCHjqsBGwTDVcKNI20yyV sWbAb+YDQlidfDrJK/wHQknAwao9FwsxxSTFW8GIPUOHUA/UuGmHsHLXlviwpVwH LMXhrfFMxrxuqEjTIe1l8M+sotF3iITVq6SDLLGmtvXhozwJp5H7EHkIfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGKkXbleAmNy9ULUm4ACFBDq5xFoMB8GA1UdIwQY MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2 LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhhfBs+PH mi6MVYHF3hHLFnSEgUmUx4ZTfjGNOBSnv4sSvrK1iWUjqSG96mQ335ZHIgn0+b+H EHFEo6ZvCn78eYsjZtGcKuCvxA6tswQc+i0BVnO3QkwEZcKGMPAXi9S16vGLYmUO p52RLh9UyVjEhapKLIU1QM9urqZE1ZLyD1bixpRMxh0c5kD3ZK6tM1eQmV8K74sW P8Qf2Qy0PZjR/WygbaWluse6pa8p/5NMjpT/pqHNjbAnEpv3DrBhtZVbS8EFfb02 jQryB0FusmXYobRLmRXEV+jyBsP/ZWA2ctp3Mb3nxQilm9uHTluI8Qg5CFz3QdAM Ldktu5jl1+1Yow== -----END CERTIFICATE-----Generated at Thu Feb 5 06:43:50 2026 by rpki-client