This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft File: xypST5sbOAHb18iaFgrsB2tX5yk.mft (raw, json) Hash identifier: RR4DMDMNtM47W1yLfFnKXBd3XMw+IE+O0SWJp+l+lIE= Subject key identifier: 63:F2:82:0F:8E:84:1F:CC:43:6F:BB:3F:F7:11:32:26:6C:7E:5F:AA Authority key identifier: C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29 Certificate issuer: /CN=c72a524f9b1b3801dbd7c89a160aec076b57e729 Certificate serial: 019BF95225C66AFAA7FDA534FCD7295779D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft Manifest number: 1051 Signing time: Mon 26 Jan 2026 08:01:08 +0000 Manifest this update: Mon 26 Jan 2026 08:01:08 +0000 Manifest next update: Tue 27 Jan 2026 08:01:08 +0000 Files and hashes: 1: 6MOGH8oGvh6IYApLtSaZowTuqtk.roa (hash: HJrHUPLTq5etSutfssfFpw4hmCz6YgNXH+NQPFP+7uM=) 2: U2uOljUf-48wSNUQgF-2wsauE-g.roa (hash: 2YVcDn6Ax9cXhQHx8fyaxNd0XJvsq3/OJmSqm70WvIg=) 3: dtXdklEBCkjgbKoquL4DVM7xMqU.roa (hash: Drj4tg7W2VV/6vKkt0y7Sp3+nXq82WjkyEwAPPM25uA=) 4: xypST5sbOAHb18iaFgrsB2tX5yk.crl (hash: 25J/UB1By2obvJgq1UVs5Kr1Jje/A1mJhwNm8c7qqgo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:52:25:c6:6a:fa:a7:fd:a5:34:fc:d7:29:57:79:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c72a524f9b1b3801dbd7c89a160aec076b57e729 Validity Not Before: Jan 26 08:01:08 2026 GMT Not After : Jan 27 08:01:08 2026 GMT Subject: CN=63f2820f8e841fcc436fbb3ff71132266c7e5faa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1b:2d:8c:4f:f5:f9:4e:f7:9c:11:8e:90:b4: 03:dd:e6:19:e1:50:54:56:c6:94:60:79:9b:e8:a1: 85:a6:17:48:79:3b:0b:75:9f:14:cb:08:70:71:77: fc:5d:72:00:d6:a0:59:21:02:9f:f5:2f:6d:6d:53: be:17:74:95:e9:95:23:bc:e6:cf:4c:37:61:fb:6b: 42:93:4f:66:10:ed:19:7c:9f:33:8b:f3:23:80:ba: 00:92:01:79:86:b0:93:78:77:2a:ae:f2:8d:16:a2: bd:6f:cf:65:1e:6c:02:7e:48:4d:cd:22:f2:48:70: b8:ae:84:0f:10:ae:3c:55:2c:96:b9:fa:02:b9:89: 22:93:f1:9e:25:48:06:9e:96:db:41:04:b8:55:9e: bc:f2:45:2a:83:8d:10:16:d8:9a:f0:f5:f7:67:b4: 60:cc:99:ac:b7:3a:7a:6e:2e:01:61:e5:5c:ee:3e: a1:32:7b:0f:d7:ac:9c:3e:91:37:fa:30:3e:81:7a: 4d:ce:e7:47:96:e4:4d:d7:27:00:b4:32:64:ff:21: 38:eb:df:8f:97:6e:4b:85:8c:e0:9f:22:7a:7c:f3: 77:a2:84:9d:25:84:0c:0b:da:34:53:c0:ec:66:4d: 57:e9:07:03:ab:55:0c:ae:58:d4:9e:8a:d5:ec:b4: 5d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F2:82:0F:8E:84:1F:CC:43:6F:BB:3F:F7:11:32:26:6C:7E:5F:AA X509v3 Authority Key Identifier: keyid:C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:09:b3:59:da:5f:d1:dc:eb:7e:13:7e:7e:7c:44:eb:77:63: a8:63:bb:4c:38:a6:ee:ef:d3:76:c7:3c:87:d4:7c:06:48:ab: c2:40:2e:88:b1:73:cf:df:ed:b3:5f:e9:e9:31:b8:83:a0:ea: c0:94:94:cc:8e:ff:a4:2b:e3:c4:30:b1:cf:c0:7d:42:cb:9b: d6:96:42:9a:d6:88:59:11:f8:2c:18:11:a4:98:87:6d:c8:ee: e0:d7:d7:61:5f:1a:57:47:b3:4c:a6:e6:66:86:e1:8d:e1:d9: 44:6a:3d:05:1a:ed:c2:97:f1:33:25:ef:b8:a7:4e:cd:9c:27: a3:4f:bd:60:ad:7b:85:60:df:06:3d:4d:f5:42:5b:be:1a:ab: 2d:18:38:f7:b2:79:ae:68:a4:33:ec:ca:68:63:f5:22:f3:0e: 73:a4:bb:ce:23:ba:fb:89:aa:3a:63:9e:e2:6b:38:c8:ee:e5: 62:b1:9e:48:21:3f:48:25:96:22:2e:5b:0b:86:5e:4a:aa:4c: 61:6e:eb:a4:8f:ed:6e:0a:9c:c6:4f:b8:1f:ce:91:c2:7d:d1: 72:e1:d6:94:8e:d5:d0:1d:32:4d:70:41:5b:1a:15:11:07:eb: 14:9c:38:33:41:3e:68:1c:dc:e0:31:8b:65:15:2a:c1:61:0f: 53:63:f4:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5UiXGavqn/aU0/NcpV3nYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3MmE1MjRmOWIxYjM4MDFkYmQ3Yzg5YTE2MGFlYzA3NmI1 N2U3MjkwHhcNMjYwMTI2MDgwMTA4WhcNMjYwMTI3MDgwMTA4WjAzMTEwLwYDVQQD Eyg2M2YyODIwZjhlODQxZmNjNDM2ZmJiM2ZmNzExMzIyNjZjN2U1ZmFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRstjE/1+U73nBGOkLQD3eYZ4VBU VsaUYHmb6KGFphdIeTsLdZ8UywhwcXf8XXIA1qBZIQKf9S9tbVO+F3SV6ZUjvObP TDdh+2tCk09mEO0ZfJ8zi/MjgLoAkgF5hrCTeHcqrvKNFqK9b89lHmwCfkhNzSLy SHC4roQPEK48VSyWufoCuYkik/GeJUgGnpbbQQS4VZ688kUqg40QFtia8PX3Z7Rg zJmstzp6bi4BYeVc7j6hMnsP16ycPpE3+jA+gXpNzudHluRN1ycAtDJk/yE469+P l25LhYzgnyJ6fPN3ooSdJYQMC9o0U8DsZk1X6QcDq1UMrljUnorV7LRdXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGPygg+OhB/MQ2+7P/cRMiZsfl+qMB8GA1UdIwQY MBaAFMcqUk+bGzgB29fImhYK7AdrV+cpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My80ZTNjYzItMWEzMy00OTVhLTk5OWYt ZDdhNjg0YTU3YjE5LzEveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My80ZTNjYzItMWEzMy00OTVhLTk5OWYtZDdhNjg0YTU3YjE5 LzEveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIQmzWdpf 0dzrfhN+fnxE63djqGO7TDim7u/Tdsc8h9R8BkirwkAuiLFzz9/ts1/p6TG4g6Dq wJSUzI7/pCvjxDCxz8B9Qsub1pZCmtaIWRH4LBgRpJiHbcju4NfXYV8aV0ezTKbm ZobhjeHZRGo9BRrtwpfxMyXvuKdOzZwno0+9YK17hWDfBj1N9UJbvhqrLRg497J5 rmikM+zKaGP1IvMOc6S7ziO6+4mqOmOe4ms4yO7lYrGeSCE/SCWWIi5bC4ZeSqpM YW7rpI/tbgqcxk+4H86Rwn3RcuHWlI7V0B0yTXBBWxoVEQfrFJw4M0E+aBzc4DGL ZRUqwWEPU2P0Ow== -----END CERTIFICATE-----Generated at Mon Jan 26 13:35:29 2026 by rpki-client