This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json) Hash identifier: c4wyic3uJB4rUlfp8FdAugx38NSVqCkZRUW1+SNJOM4= Subject key identifier: BC:BF:8D:1F:B0:7E:77:BA:53:45:FB:C4:DA:67:4F:33:11:D1:EF:FE Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb Certificate serial: 019BF6BE9E3401E64BA3D07631983E75F5FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft Manifest number: 177C Signing time: Sun 25 Jan 2026 20:00:45 +0000 Manifest this update: Sun 25 Jan 2026 20:00:45 +0000 Manifest next update: Mon 26 Jan 2026 20:00:45 +0000 Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=) 2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: mgRqO6v8S7svPPI+iDB0YM+d3H9DC9anXtWO9ufBTo4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:9e:34:01:e6:4b:a3:d0:76:31:98:3e:75:f5:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb Validity Not Before: Jan 25 20:00:45 2026 GMT Not After : Jan 26 20:00:45 2026 GMT Subject: CN=bcbf8d1fb07e77ba5345fbc4da674f3311d1effe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9a:11:11:50:66:61:95:b2:11:e1:5f:06:7e: 2d:bb:ab:f7:76:62:c9:54:99:58:26:93:2d:cc:11: 6d:8c:4f:10:40:6f:76:67:50:76:5c:59:1a:f2:71: e3:6e:70:e1:2c:9a:ae:cb:15:78:b9:56:97:91:62: 3a:42:43:47:72:52:86:fa:6e:d6:bd:bf:59:07:ad: 5e:d3:19:9f:09:a4:b4:04:a4:84:93:05:72:0b:f9: b2:66:84:16:ee:dc:7d:95:76:73:6a:c5:9b:f6:cf: da:18:cf:a2:9f:2c:a4:74:28:81:c4:d2:69:01:ac: e0:45:b0:8f:5f:c5:8c:c6:9b:8d:5f:1c:cd:3f:5b: 1b:5d:f9:b7:f6:45:dc:ac:f1:62:cc:02:22:c6:89: a0:f6:3c:7c:31:98:06:7f:5b:fa:ed:0e:79:b1:e6: c6:3d:d7:35:7f:99:5d:d9:ec:68:7a:9a:c5:c0:f3: db:13:75:ab:ff:13:bc:67:39:97:fa:2f:9a:f0:f0: 4c:a7:40:ab:6f:db:53:b4:c0:33:a8:25:87:e5:b4: 59:64:30:72:4e:b4:c1:25:1b:91:fe:d7:b5:c9:46: ac:64:a4:d5:38:cc:01:41:5d:a2:30:c5:06:06:4e: 6f:49:48:25:98:96:12:70:45:3e:ea:9b:1b:3d:10: 74:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:BF:8D:1F:B0:7E:77:BA:53:45:FB:C4:DA:67:4F:33:11:D1:EF:FE X509v3 Authority Key Identifier: keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:cc:bf:4e:67:05:40:e1:78:6d:ab:01:9b:df:fe:74:66:77: 2c:ca:f9:4b:f8:01:4c:6c:57:82:1e:26:bf:80:de:20:c6:48: b4:18:b0:75:d0:99:c2:0b:79:de:58:af:d9:c6:e1:2c:da:91: 21:5f:d2:61:49:91:90:62:b7:3a:49:47:e1:61:9a:d7:4c:53: 11:89:a5:e3:fe:a7:57:d0:79:cd:23:15:71:0c:a3:f8:28:dd: d9:f2:6a:4d:89:56:61:78:b3:07:df:b6:78:1e:b9:55:88:61: 9d:36:be:bd:c5:b8:37:ce:27:c3:67:4d:96:c9:11:95:c3:9d: c9:83:ca:98:6e:0f:13:3a:71:3d:02:db:c5:c0:37:7d:5b:98: 73:3d:b7:62:d3:48:2d:cd:0a:75:e3:40:35:26:d9:46:45:9b: fe:6d:90:44:b0:ce:dc:4e:41:21:17:c3:21:78:40:e0:88:15: a8:75:7b:06:a6:0f:93:35:f3:5a:b9:f4:e8:e0:93:8e:8b:cf: 02:1a:b3:7b:8a:ba:95:28:4b:e3:5c:25:3b:a8:1b:08:f0:9a: 68:60:b7:1a:94:c8:a1:92:f0:4d:c2:e9:a0:05:f2:e3:27:8a: 1f:e5:19:c2:69:e5:f2:5d:c9:93:bb:dd:1b:b2:50:f8:34:19: f0:88:9f:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vp40AeZLo9B2MZg+dfX8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl YTU3YmIwHhcNMjYwMTI1MjAwMDQ1WhcNMjYwMTI2MjAwMDQ1WjAzMTEwLwYDVQQD EyhiY2JmOGQxZmIwN2U3N2JhNTM0NWZiYzRkYTY3NGYzMzExZDFlZmZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1poREVBmYZWyEeFfBn4tu6v3dmLJ VJlYJpMtzBFtjE8QQG92Z1B2XFka8nHjbnDhLJquyxV4uVaXkWI6QkNHclKG+m7W vb9ZB61e0xmfCaS0BKSEkwVyC/myZoQW7tx9lXZzasWb9s/aGM+inyykdCiBxNJp AazgRbCPX8WMxpuNXxzNP1sbXfm39kXcrPFizAIixomg9jx8MZgGf1v67Q55sebG Pdc1f5ld2exoeprFwPPbE3Wr/xO8ZzmX+i+a8PBMp0Crb9tTtMAzqCWH5bRZZDBy TrTBJRuR/te1yUasZKTVOMwBQV2iMMUGBk5vSUglmJYScEU+6psbPRB0KQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLy/jR+wfne6U0X7xNpnTzMR0e/+MB8GA1UdIwQY MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2 LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf8y/TmcF QOF4basBm9/+dGZ3LMr5S/gBTGxXgh4mv4DeIMZItBiwddCZwgt53liv2cbhLNqR IV/SYUmRkGK3OklH4WGa10xTEYml4/6nV9B5zSMVcQyj+Cjd2fJqTYlWYXizB9+2 eB65VYhhnTa+vcW4N84nw2dNlskRlcOdyYPKmG4PEzpxPQLbxcA3fVuYcz23YtNI Lc0KdeNANSbZRkWb/m2QRLDO3E5BIRfDIXhA4IgVqHV7BqYPkzXzWrn06OCTjovP Ahqze4q6lShL41wlO6gbCPCaaGC3GpTIoZLwTcLpoAXy4yeKH+UZwmnl8l3Jk7vd G7JQ+DQZ8IifKA== -----END CERTIFICATE-----Generated at Mon Jan 26 04:01:35 2026 by rpki-client