This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft File: mXyCWBNDX7ARVDjuP2B2N869jo4.mft (raw, json) Hash identifier: D1mgw86taJ8i3riGWDLthM3lNcrpMM/zs+gLETUcZ/A= Subject key identifier: FB:F0:53:47:2F:C2:24:4C:CC:46:5B:97:39:30:1B:9A:D6:BF:4A:26 Authority key identifier: 99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E Certificate issuer: /CN=997c825813435fb0115438ee3f607637cebd8e8e Certificate serial: 019BCFB1F1965AD7E197AC8C996B85B27657 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft Manifest number: B4 Signing time: Sun 18 Jan 2026 06:01:43 +0000 Manifest this update: Sun 18 Jan 2026 06:01:43 +0000 Manifest next update: Mon 19 Jan 2026 06:01:43 +0000 Files and hashes: 1: IqAZ7XQz7BlbCx4e-ofeDvMJfNU.roa (hash: Kp2XtcxtOkZThbBMLc4hB6JTrGLoaZOP4GbgJkvTA/A=) 2: mXyCWBNDX7ARVDjuP2B2N869jo4.crl (hash: FoOGMUKMUJJ3SCuNJHSUHcPv8doGI0UtX+EF7RyoSmY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:cf:b1:f1:96:5a:d7:e1:97:ac:8c:99:6b:85:b2:76:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=997c825813435fb0115438ee3f607637cebd8e8e Validity Not Before: Jan 18 06:01:43 2026 GMT Not After : Jan 19 06:01:43 2026 GMT Subject: CN=fbf053472fc2244ccc465b9739301b9ad6bf4a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:6f:bc:09:92:c1:34:25:6c:11:15:fd:52:1b: 92:01:25:ee:82:aa:3c:4d:b3:c8:55:c5:a6:2b:2c: 77:6a:27:16:e9:d8:52:42:52:0a:bc:04:84:bc:b4: ce:ad:66:98:ba:1c:18:cf:cb:b7:13:33:90:5e:f8: 17:1a:da:d6:d3:81:ad:8e:1e:58:a9:f1:54:49:d8: 17:84:7e:7f:65:75:49:21:c6:ff:49:1c:24:e7:e0: e2:2b:9a:38:4c:94:86:e4:db:71:5f:37:de:3e:c0: cd:90:d4:68:eb:58:06:ee:47:0f:b4:24:3d:ce:96: e4:83:48:1e:33:e3:b5:e8:60:c3:26:45:fd:62:1b: 27:4e:72:97:6e:89:b7:c3:ab:3b:cb:5a:85:5e:61: 7e:fa:c4:09:a0:7e:69:7f:25:8b:9e:28:26:d9:6c: 5d:ab:fa:06:9a:89:32:20:47:52:ea:8a:fd:35:0c: 6e:65:0a:9a:ed:b6:d4:35:0c:e3:66:82:82:db:c4: bb:26:55:5b:7e:9d:44:59:80:36:56:56:1c:cd:52: e4:df:e0:0c:c1:00:7b:bb:0e:29:48:11:c1:0f:a5: 24:b7:37:d0:98:3b:46:d4:c3:39:86:76:11:72:d4: 6d:2a:79:b2:60:a7:20:3f:ee:58:8a:c8:4f:ec:93: ae:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F0:53:47:2F:C2:24:4C:CC:46:5B:97:39:30:1B:9A:D6:BF:4A:26 X509v3 Authority Key Identifier: keyid:99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:fe:eb:f4:57:c8:c6:2d:f6:e4:1d:e1:d6:66:1d:a7:63:3a: 9d:90:d9:45:95:d6:89:4e:e2:1b:88:87:6e:0e:21:76:2d:d6: d3:c2:cd:0d:fc:2e:bd:17:c3:75:f3:8c:91:1f:da:b1:5f:cf: 2f:5c:dc:59:2e:b2:8d:5d:c1:1a:e7:13:ba:35:6a:89:a0:9c: b9:91:ad:04:d3:f7:72:44:ff:ee:53:ca:34:3f:5d:9f:1f:0f: 00:d8:6f:68:bd:84:e7:1c:a9:8c:36:f4:a2:c4:0f:b6:fa:0e: 84:2a:bd:65:95:47:fb:29:01:35:1e:68:bf:9a:2b:c3:9e:f6: 40:44:67:bf:81:c4:64:7a:37:22:a4:80:c7:1a:9a:de:aa:b1: 60:20:40:67:f8:22:8e:cf:b8:9d:c3:a8:df:13:d7:d3:f4:0c: 41:b4:21:6d:62:55:ad:b8:fa:9e:42:de:b0:af:b5:08:0c:f0: 1c:0e:83:ad:60:bf:4e:85:a2:82:6a:9d:dd:3c:3d:70:bd:22: 92:cf:43:80:92:c2:ab:d2:36:02:2c:60:7f:7c:7e:f2:19:49: 29:e7:ad:d1:4d:9a:58:81:1f:f0:52:26:1b:04:54:b0:96:ab: dd:4a:6c:c1:45:45:a6:75:e3:8c:ca:37:14:47:ca:74:f9:78: a6:60:53:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvPsfGWWtfhl6yMmWuFsnZXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5N2M4MjU4MTM0MzVmYjAxMTU0MzhlZTNmNjA3NjM3Y2Vi ZDhlOGUwHhcNMjYwMTE4MDYwMTQzWhcNMjYwMTE5MDYwMTQzWjAzMTEwLwYDVQQD EyhmYmYwNTM0NzJmYzIyNDRjY2M0NjViOTczOTMwMWI5YWQ2YmY0YTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlm+8CZLBNCVsERX9UhuSASXugqo8 TbPIVcWmKyx3aicW6dhSQlIKvASEvLTOrWaYuhwYz8u3EzOQXvgXGtrW04Gtjh5Y qfFUSdgXhH5/ZXVJIcb/SRwk5+DiK5o4TJSG5NtxXzfePsDNkNRo61gG7kcPtCQ9 zpbkg0geM+O16GDDJkX9YhsnTnKXbom3w6s7y1qFXmF++sQJoH5pfyWLnigm2Wxd q/oGmokyIEdS6or9NQxuZQqa7bbUNQzjZoKC28S7JlVbfp1EWYA2VlYczVLk3+AM wQB7uw4pSBHBD6UktzfQmDtG1MM5hnYRctRtKnmyYKcgP+5YishP7JOuqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPvwU0cvwiRMzEZblzkwG5rWv0omMB8GA1UdIwQY MBaAFJl8glgTQ1+wEVQ47j9gdjfOvY6OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8yZjU1MDItMDA3YS00NjgzLTk4NzIt MjhmNzFhYmJhMDNhLzEvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni8yZjU1MDItMDA3YS00NjgzLTk4NzItMjhmNzFhYmJhMDNh LzEvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB/7r9FfI xi325B3h1mYdp2M6nZDZRZXWiU7iG4iHbg4hdi3W08LNDfwuvRfDdfOMkR/asV/P L1zcWS6yjV3BGucTujVqiaCcuZGtBNP3ckT/7lPKND9dnx8PANhvaL2E5xypjDb0 osQPtvoOhCq9ZZVH+ykBNR5ov5orw572QERnv4HEZHo3IqSAxxqa3qqxYCBAZ/gi js+4ncOo3xPX0/QMQbQhbWJVrbj6nkLesK+1CAzwHA6DrWC/ToWigmqd3Tw9cL0i ks9DgJLCq9I2Aixgf3x+8hlJKeet0U2aWIEf8FImGwRUsJar3UpswUVFpnXjjMo3 FEfKdPl4pmBTBg== -----END CERTIFICATE-----Generated at Sun Jan 18 14:17:46 2026 by rpki-client