This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json) Hash identifier: sNyO0xbjPKQ0CX1+jqRrKxHx9kLuuoxI77/8ogmsogQ= Subject key identifier: E2:3E:05:39:32:C1:F6:2C:72:69:E4:39:57:6C:51:23:E2:0E:4D:B3 Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f Certificate serial: 019BF951F4AEC1E647D855D449271741E747 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft Manifest number: 1800 Signing time: Mon 26 Jan 2026 08:00:56 +0000 Manifest this update: Mon 26 Jan 2026 08:00:56 +0000 Manifest next update: Tue 27 Jan 2026 08:00:56 +0000 Files and hashes: 1: 3M28JHI7FacsIOAJQWmxce2Slr8.roa (hash: YkTIvgr/OPBfSq7cSMGcukiH55SIyz1JhUaAuApclZY=) 2: C28DWNXDejdL7MAcc4Gi6FPgeMM.roa (hash: IsJNEkpniLV6uLgZ6ioRBU52pmL/v472ljfJA8Ci5sE=) 3: Gk3x3dMvMywr2S8J1gmXYe0hnoU.roa (hash: /bwOAvbGES0zjJv2PTCP3py4NDDoCXEMIJubC3y4gDQ=) 4: IK5t8ZtR9FmBC9B2Oc1q_FzsZ60.roa (hash: 99eWXzzKhZzYTyaPK2nn6KPekh7aMTWJKB401rZwNvg=) 5: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: BpioM6j09tAhgZOgDqAj0yM972SIS9dJBzxgyRzVlHE=) 6: jXdcvBqCE8rVio9YNuEiuZYnuIo.roa (hash: ZtkqLvQ4ehKRiTxaMSbbV1v3/KL7Hxac2TJ9AgS/V8k=) 7: khD-5GIOCtdSW94SprlTc6aKDCw.roa (hash: 9g8S387WfYIRLJ6x0iTubqGcDstg4uHac2ZeVMN70tA=) 8: t6tq-2dxd5qXIQsHS260x-wYfhg.roa (hash: FZSuoJ0/qWL2hs06t/8YE+2HG3/6O+VMmmCGlR++IJU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:51:f4:ae:c1:e6:47:d8:55:d4:49:27:17:41:e7:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f Validity Not Before: Jan 26 08:00:56 2026 GMT Not After : Jan 27 08:00:56 2026 GMT Subject: CN=e23e053932c1f62c7269e439576c5123e20e4db3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:56:dc:7e:0a:63:45:93:3d:9c:6d:3f:3c:eb: 2b:16:d5:16:a9:af:c8:ac:6d:ec:97:f1:5c:bd:b6: 64:a3:69:1f:2c:02:dc:8b:02:68:a1:72:5c:23:22: 51:64:e5:f1:6e:f7:cf:32:84:26:3f:5b:a3:78:ae: a2:81:83:ff:d3:49:d7:36:a5:09:a8:75:31:5e:e1: 61:b4:83:56:62:13:88:2e:2f:f0:63:1b:1f:79:79: 57:f7:0f:cb:01:77:6e:cf:09:3c:40:05:4c:9c:59: 90:e9:32:0c:a0:e7:44:d9:62:22:46:c1:89:df:0b: 32:fa:92:a2:f7:80:5d:76:a0:49:55:7f:1b:16:80: 8d:85:2c:f7:05:cd:46:a7:f0:fb:a5:0d:f1:7d:b2: 05:c4:d0:e9:36:dd:a6:c4:c7:6c:40:2d:78:a7:d9: 06:88:78:9b:c9:e9:d7:a2:5e:08:e1:ef:13:6a:31: 98:fb:74:de:b7:9b:b4:fc:9f:0d:e8:4d:da:40:f0: 6c:b4:f2:07:8e:b6:26:02:29:24:15:24:f2:5f:e7: f2:a2:12:04:87:73:1f:0a:1d:7f:4f:f9:e9:e6:d2: f4:de:84:a4:d4:c3:4a:de:fc:dc:0b:7b:77:24:27: e7:f4:fb:6f:07:f8:97:cf:6c:05:88:a1:59:54:00: 10:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:3E:05:39:32:C1:F6:2C:72:69:E4:39:57:6C:51:23:E2:0E:4D:B3 X509v3 Authority Key Identifier: keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:67:f7:9e:31:aa:67:28:d8:77:c0:16:30:64:64:44:0e:e3: a6:14:1a:d0:d1:bb:55:47:9e:9b:30:1b:5b:5e:73:a4:99:3a: f0:77:55:b8:1f:13:3d:0f:e5:d3:65:99:f0:5a:3b:9a:ec:c1: 03:8d:76:20:49:bf:82:99:34:79:5e:ac:03:ff:61:39:71:4e: b4:ad:3e:5a:57:35:68:47:db:35:41:af:9d:b2:c7:f3:8a:06: fb:a6:2f:44:ab:ff:6f:03:78:85:47:ee:9d:4a:a1:93:7e:c0: 45:87:b7:b4:20:c9:2a:a2:44:f5:5a:e5:60:71:6b:7c:8a:be: bb:e8:89:aa:31:e0:da:85:b7:2d:9a:04:ad:a9:21:81:91:82: 55:e8:da:9e:60:94:8d:e3:58:f5:9e:ce:d6:c1:f9:b7:c5:21: 81:e8:43:d9:8d:22:4b:12:51:39:24:4d:c0:1e:d7:41:b7:50: e8:8f:a3:a8:9f:25:5e:37:ee:c5:fe:aa:d6:91:c3:c8:a6:de: 2a:c2:14:73:0a:72:d7:f0:87:79:ea:fe:21:20:07:51:a7:9a: 4a:96:12:c9:1d:6e:98:a1:70:9e:2c:88:cf:c2:f7:bf:f3:58: e6:7b:53:c0:15:da:4b:d3:1b:b5:af:92:54:a3:b2:b4:3e:29: fe:a9:d2:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5UfSuweZH2FXUSScXQedHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkZGU0YjNiODJmMjA5YjcwMWFlMzQwY2Y1M2I5NzQwNzhm MTZhOWYwHhcNMjYwMTI2MDgwMDU2WhcNMjYwMTI3MDgwMDU2WjAzMTEwLwYDVQQD EyhlMjNlMDUzOTMyYzFmNjJjNzI2OWU0Mzk1NzZjNTEyM2UyMGU0ZGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4FbcfgpjRZM9nG0/POsrFtUWqa/I rG3sl/FcvbZko2kfLALciwJooXJcIyJRZOXxbvfPMoQmP1ujeK6igYP/00nXNqUJ qHUxXuFhtINWYhOILi/wYxsfeXlX9w/LAXduzwk8QAVMnFmQ6TIMoOdE2WIiRsGJ 3wsy+pKi94BddqBJVX8bFoCNhSz3Bc1Gp/D7pQ3xfbIFxNDpNt2mxMdsQC14p9kG iHibyenXol4I4e8TajGY+3Tet5u0/J8N6E3aQPBstPIHjrYmAikkFSTyX+fyohIE h3MfCh1/T/np5tL03oSk1MNK3vzcC3t3JCfn9PtvB/iXz2wFiKFZVAAQmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOI+BTkywfYscmnkOVdsUSPiDk2zMB8GA1UdIwQY MBaAFF3eSzuC8gm3Aa40DPU7l0B48WqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWIt ODZhNTUxOGUyZDUyLzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWItODZhNTUxOGUyZDUy LzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGWf3njGq ZyjYd8AWMGRkRA7jphQa0NG7VUeemzAbW15zpJk68HdVuB8TPQ/l02WZ8Fo7muzB A412IEm/gpk0eV6sA/9hOXFOtK0+Wlc1aEfbNUGvnbLH84oG+6YvRKv/bwN4hUfu nUqhk37ARYe3tCDJKqJE9VrlYHFrfIq+u+iJqjHg2oW3LZoErakhgZGCVejanmCU jeNY9Z7O1sH5t8UhgehD2Y0iSxJROSRNwB7XQbdQ6I+jqJ8lXjfuxf6q1pHDyKbe KsIUcwpy1/CHeer+ISAHUaeaSpYSyR1umKFwniyIz8L3v/NY5ntTwBXaS9Mbta+S VKOytD4p/qnS+w== -----END CERTIFICATE-----Generated at Mon Jan 26 17:00:55 2026 by rpki-client