This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft File: sXtEkEx2lKVAig0pcsOf8LGwPqU.mft (raw, json) Hash identifier: 1x7mpcRg2GWR72WsHkD3Axty7/GF/S+NnwBNkeZMUg0= Subject key identifier: B5:24:18:61:AE:FE:63:D9:CD:E8:06:F8:4A:DB:17:7F:68:E3:67:58 Authority key identifier: B1:7B:44:90:4C:76:94:A5:40:8A:0D:29:72:C3:9F:F0:B1:B0:3E:A5 Certificate issuer: /CN=b17b44904c7694a5408a0d2972c39ff0b1b03ea5 Certificate serial: 019BFCF8621B21BC72AF4F4E69B6F3C1C16E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft Manifest number: 1036 Signing time: Tue 27 Jan 2026 01:01:34 +0000 Manifest this update: Tue 27 Jan 2026 01:01:34 +0000 Manifest next update: Wed 28 Jan 2026 01:01:34 +0000 Files and hashes: 1: _RUk9FpS67FmhL3-cjuZddAmpdk.roa (hash: B9UAAuPL9bMWFoRGXof1Klm+Lwvuj9esb9qSVPpnlxw=) 2: sXtEkEx2lKVAig0pcsOf8LGwPqU.crl (hash: cW6PVMYbAC/omtmtNitIJ+xtR/Jdf/Ho43PAH729QUM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:f8:62:1b:21:bc:72:af:4f:4e:69:b6:f3:c1:c1:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b17b44904c7694a5408a0d2972c39ff0b1b03ea5 Validity Not Before: Jan 27 01:01:34 2026 GMT Not After : Jan 28 01:01:34 2026 GMT Subject: CN=b5241861aefe63d9cde806f84adb177f68e36758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:7e:84:9c:32:c2:81:12:8b:fa:b4:ae:0b:22: 08:c8:b0:18:a3:94:b8:55:44:25:85:aa:89:84:15: 90:65:80:a8:98:dd:13:b3:4f:34:33:c2:bb:af:83: 58:24:29:42:b2:7d:96:32:9a:d8:55:d2:b1:51:48: 9f:27:6b:3f:ff:87:d3:ac:19:ff:b8:43:22:c2:b8: cb:09:41:4d:23:96:ec:0a:aa:f1:d4:8e:b5:ed:c0: 2c:b1:ab:35:c4:c7:26:58:43:88:33:7d:b1:37:9c: e4:91:a3:c2:1c:0c:4f:7d:10:05:ad:e6:fe:47:4c: 4f:4a:a2:32:58:1b:88:c9:16:89:1f:40:fa:9b:ba: 76:46:fd:f4:0a:ad:41:4a:48:25:b6:66:e8:73:e6: f2:91:2b:18:8c:08:be:97:cb:67:d6:39:49:43:88: 42:8b:10:25:55:85:2e:1c:42:39:11:40:56:7e:d4: ce:16:06:fc:b0:50:0f:4b:0c:65:9b:e6:b6:83:11: 30:a4:28:1a:21:17:02:0b:df:d8:c7:b0:a6:26:82: b8:a5:ff:a2:d2:db:e9:85:d2:3f:a3:01:be:e2:cd: 8a:ca:83:02:31:58:70:3d:14:4c:d9:6c:08:20:04: 7f:cc:a3:83:5b:e8:6e:55:96:78:98:d4:3a:b1:c9: 07:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:24:18:61:AE:FE:63:D9:CD:E8:06:F8:4A:DB:17:7F:68:E3:67:58 X509v3 Authority Key Identifier: keyid:B1:7B:44:90:4C:76:94:A5:40:8A:0D:29:72:C3:9F:F0:B1:B0:3E:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:b5:37:2b:ea:16:67:b1:a7:f2:82:e8:62:f1:7f:34:40:86: 1d:8d:1b:59:00:93:4b:f9:3b:1d:14:b1:6c:23:50:4f:8d:e2: af:99:f1:41:8f:07:4b:aa:7c:3a:01:5e:f4:29:e1:23:b6:7f: 12:65:f1:e1:c3:56:64:bc:5b:f7:c3:1c:4c:04:02:d8:d0:9a: 84:d0:5b:42:bb:06:57:50:f3:36:19:73:a5:5e:69:97:58:d4: 6d:3b:ac:f2:5c:73:64:5a:a8:e3:8e:8f:62:60:c3:31:65:53: 5e:21:0f:6a:c2:50:f9:ba:33:93:bd:93:b0:24:df:4a:b6:34: 80:0f:fc:44:ec:bb:bf:64:52:1a:91:f7:d2:47:a5:78:42:7d: d6:82:0f:1e:03:f3:31:43:76:34:1a:9f:13:b8:2b:05:72:87: b1:5d:91:53:49:eb:e7:6b:57:15:cd:c4:b3:a3:bf:5f:2a:b3: 43:be:d9:ec:69:8d:d7:a0:a9:0c:74:db:88:5d:0e:9a:11:83: be:d9:85:66:66:c9:6f:ac:2a:28:c8:d2:1f:84:6f:b9:51:9b: 92:ca:e6:ed:7b:87:8c:67:11:01:6e:ba:29:21:20:7b:7c:2e: 7a:3c:79:fa:86:01:0f:58:b6:c8:bd:d5:3a:b0:74:13:1a:32: 1e:ac:55:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8+GIbIbxyr09OabbzwcFuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxN2I0NDkwNGM3Njk0YTU0MDhhMGQyOTcyYzM5ZmYwYjFi MDNlYTUwHhcNMjYwMTI3MDEwMTM0WhcNMjYwMTI4MDEwMTM0WjAzMTEwLwYDVQQD EyhiNTI0MTg2MWFlZmU2M2Q5Y2RlODA2Zjg0YWRiMTc3ZjY4ZTM2NzU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7H6EnDLCgRKL+rSuCyIIyLAYo5S4 VUQlhaqJhBWQZYComN0Ts080M8K7r4NYJClCsn2WMprYVdKxUUifJ2s//4fTrBn/ uEMiwrjLCUFNI5bsCqrx1I617cAssas1xMcmWEOIM32xN5zkkaPCHAxPfRAFreb+ R0xPSqIyWBuIyRaJH0D6m7p2Rv30Cq1BSkgltmboc+bykSsYjAi+l8tn1jlJQ4hC ixAlVYUuHEI5EUBWftTOFgb8sFAPSwxlm+a2gxEwpCgaIRcCC9/Yx7CmJoK4pf+i 0tvphdI/owG+4s2KyoMCMVhwPRRM2WwIIAR/zKODW+huVZZ4mNQ6sckH6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLUkGGGu/mPZzegG+ErbF39o42dYMB8GA1UdIwQY MBaAFLF7RJBMdpSlQIoNKXLDn/CxsD6lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1h0RWtFeDJsS1ZBaWcwcGNzT2Y4TEd3UHFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC85MTgyNDUtN2I1MC00OTUyLWEzYTct YTQ1OTE2OTU1ZTZmLzEvc1h0RWtFeDJsS1ZBaWcwcGNzT2Y4TEd3UHFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC85MTgyNDUtN2I1MC00OTUyLWEzYTctYTQ1OTE2OTU1ZTZm LzEvc1h0RWtFeDJsS1ZBaWcwcGNzT2Y4TEd3UHFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUrU3K+oW Z7Gn8oLoYvF/NECGHY0bWQCTS/k7HRSxbCNQT43ir5nxQY8HS6p8OgFe9CnhI7Z/ EmXx4cNWZLxb98McTAQC2NCahNBbQrsGV1DzNhlzpV5pl1jUbTus8lxzZFqo446P YmDDMWVTXiEPasJQ+bozk72TsCTfSrY0gA/8ROy7v2RSGpH30keleEJ91oIPHgPz MUN2NBqfE7grBXKHsV2RU0nr52tXFc3Es6O/XyqzQ77Z7GmN16CpDHTbiF0OmhGD vtmFZmbJb6wqKMjSH4RvuVGbksrm7XuHjGcRAW66KSEge3wuejx5+oYBD1i2yL3V OrB0ExoyHqxVhQ== -----END CERTIFICATE-----Generated at Tue Jan 27 05:37:29 2026 by rpki-client