This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft File: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft (raw, json) Hash identifier: wA0G096gPq/C09O1Xs9LLeblQ2EMV3R/zFfylu+6j5s= Subject key identifier: 90:F6:F2:FB:A3:6E:3E:AB:68:1F:68:25:18:07:DE:56:26:F2:9E:E3 Authority key identifier: F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35 Certificate issuer: /CN=f970049cba7f39aeed31d65313c7b953f3fda135 Certificate serial: 019BFBAE45D5A110E8AE81DE14124A928F15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft Manifest number: 161A Signing time: Mon 26 Jan 2026 19:01:00 +0000 Manifest this update: Mon 26 Jan 2026 19:01:00 +0000 Manifest next update: Tue 27 Jan 2026 19:01:00 +0000 Files and hashes: 1: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl (hash: 1dNWbqQZIid2QIjF7M3QHGA/77s/22o3IUFUaOzRKD0=) 2: 9O4dKfnZgTgqWB_iiNETLsmvwXY.roa (hash: B3+44Wl16VVGNQlYDiIt0cK5DguWkC82Gzjl2M8qljQ=) 3: 9wP7mpH_B0PGwWv5_AlRe4xldiA.roa (hash: zYLWTc75j+s7gKIa+ebYI+LbuI7qKTL5YSAgcKHFymE=) 4: HUC0yUJUDgqy27kx_QVtwVTYAPk.roa (hash: CyeQ43VG6tD5RMnxhr0UsmCBVHZpmO9VtiFMAauD0/c=) 5: OuUlmrN0axWfSqeYSWZ3VFyR9gQ.roa (hash: QKGtXpsKu8AS09muhwUu1IIbo7MS1z9kgfO0GKSJA9I=) 6: UgGCU0bNSuQOEElr01rlVK8sU_Q.roa (hash: AacHgDrHZ+OvhSoYCRcjSoSerNRKqDKHnF8VQ9u1BE8=) 7: Wp-glj4jLDxWifTRA7ilsUKXI0w.roa (hash: vAjHOys3Ggc83LnsEZEpKy5P5ZSFbz3QKqyxgLEsEXc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:ae:45:d5:a1:10:e8:ae:81:de:14:12:4a:92:8f:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f970049cba7f39aeed31d65313c7b953f3fda135 Validity Not Before: Jan 26 19:01:00 2026 GMT Not After : Jan 27 19:01:00 2026 GMT Subject: CN=90f6f2fba36e3eab681f68251807de5626f29ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1a:be:e4:0b:98:89:e2:4d:a7:a8:02:c6:f4: 6a:0a:76:6d:a5:fb:04:99:f8:3d:44:e3:39:0e:97: f6:09:d2:17:f7:47:11:79:cf:bb:be:ee:64:de:7e: 1c:78:e4:50:c7:fc:56:4b:c9:e1:fd:87:e9:0b:9b: c4:e0:29:ff:f0:20:f7:3f:7f:d3:ac:b8:80:17:54: cb:4f:50:0b:cb:bc:4e:32:8d:ee:fc:d5:45:ca:92: f5:ad:66:db:ee:f7:a4:eb:2d:3e:a4:99:1b:d0:e1: 98:74:be:53:46:01:d0:95:99:0b:a0:9a:ec:02:4e: 7e:a7:c9:06:31:93:39:53:03:23:5f:52:26:79:26: 71:b0:93:5f:59:e7:15:42:9f:31:6a:e8:a3:61:64: bd:ec:d4:3c:da:c9:5c:8f:a4:0b:d3:5a:39:58:70: be:91:38:d7:d6:55:e0:ed:19:51:34:7a:c6:08:d6: 9c:13:21:9b:57:99:c6:b6:a0:0b:b7:13:35:a5:ba: 43:3b:0d:fe:3d:2a:4a:8d:2f:f0:86:21:c2:96:f6: bd:ba:65:47:a1:10:44:f6:73:96:ad:bd:98:82:f0: 9b:d4:a0:43:bb:16:75:64:d5:ca:0a:fb:eb:a6:f2: 12:40:59:22:27:9c:e7:44:1f:f3:c8:e5:ea:1b:c5: c9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F6:F2:FB:A3:6E:3E:AB:68:1F:68:25:18:07:DE:56:26:F2:9E:E3 X509v3 Authority Key Identifier: keyid:F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:0f:74:3b:9d:17:b9:a2:89:43:ca:e3:ab:51:db:31:8f:a0: b6:c7:cb:90:1b:f4:f0:aa:b9:44:41:c9:f9:43:14:d8:e7:38: 00:dc:06:d5:da:6b:91:26:b8:08:63:59:bf:bb:13:b0:ee:56: 42:52:4a:cf:36:b6:74:bd:e8:c1:3a:39:f6:ea:bf:ee:c6:b1: 16:0e:6f:f1:6b:ef:e2:27:af:63:b0:57:ec:ba:9a:00:ec:b8: 3c:cf:cc:36:5c:64:53:89:06:ed:23:59:8f:bb:65:16:f9:7c: 29:81:b4:b7:2d:6a:25:02:6b:e5:1b:ee:f6:cd:61:62:d8:56: fc:f8:1e:f0:8b:19:3b:43:45:27:92:b4:e2:ba:73:05:9f:0f: e8:fa:17:8c:d7:00:fc:06:41:6f:08:ca:d5:21:e1:6e:c8:de: 10:87:5a:e1:c0:91:6f:ef:35:dc:f4:1c:da:c9:e5:c1:3f:80: 8e:eb:ca:6f:b5:9d:b1:81:f2:ad:bf:c7:8d:ec:b7:77:14:b5: 9e:b1:50:a7:49:3f:65:63:ff:bb:2f:d5:82:d1:2e:70:08:e5: 3d:94:0b:46:3a:3a:a1:00:63:a9:bd:dd:b4:f4:8c:0c:03:f0: 80:61:c1:f1:7d:38:36:d0:a8:cd:12:88:42:c5:53:74:e4:f1: 63:c6:48:d3 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZv7rkXVoRDoroHeFBJKko8VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5NzAwNDljYmE3ZjM5YWVlZDMxZDY1MzEzYzdiOTUzZjNm ZGExMzUwHhcNMjYwMTI2MTkwMTAwWhcNMjYwMTI3MTkwMTAwWjAzMTEwLwYDVQQD Eyg5MGY2ZjJmYmEzNmUzZWFiNjgxZjY4MjUxODA3ZGU1NjI2ZjI5ZWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxq+5AuYieJNp6gCxvRqCnZtpfsE mfg9ROM5Dpf2CdIX90cRec+7vu5k3n4ceORQx/xWS8nh/YfpC5vE4Cn/8CD3P3/T rLiAF1TLT1ALy7xOMo3u/NVFypL1rWbb7vek6y0+pJkb0OGYdL5TRgHQlZkLoJrs Ak5+p8kGMZM5UwMjX1ImeSZxsJNfWecVQp8xauijYWS97NQ82slcj6QL01o5WHC+ kTjX1lXg7RlRNHrGCNacEyGbV5nGtqALtxM1pbpDOw3+PSpKjS/whiHClva9umVH oRBE9nOWrb2YgvCb1KBDuxZ1ZNXKCvvrpvISQFkiJ5znRB/zyOXqG8XJYQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFJD28vujbj6raB9oJRgH3lYm8p7jMB8GA1UdIwQY MBaAFPlwBJy6fzmu7THWUxPHuVPz/aE1MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1YQUVuTHBfT2E3dE1kWlRFOGU1VV9QOW9UVS5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTIvMTNmNWYxLTQ1YjYtNGJjMS1iNWE1 LTUyMWZhNDFkZmM5Ni8xLzEtWEFFbkxwX09hN3RNZFpURThlNVVfUDlvVFUubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxUL2EyLzEzZjVmMS00NWI2LTRiYzEtYjVhNS01MjFmYTQxZGZj OTYvMS8xLVhBRW5McF9PYTd0TWRaVEU4ZTVVX1A5b1RVLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABg90 O50XuaKJQ8rjq1HbMY+gtsfLkBv08Kq5REHJ+UMU2Oc4ANwG1dprkSa4CGNZv7sT sO5WQlJKzza2dL3owTo59uq/7saxFg5v8Wvv4ievY7BX7LqaAOy4PM/MNlxkU4kG 7SNZj7tlFvl8KYG0ty1qJQJr5Rvu9s1hYthW/Pge8IsZO0NFJ5K04rpzBZ8P6PoX jNcA/AZBbwjK1SHhbsjeEIda4cCRb+813PQc2snlwT+AjuvKb7WdsYHyrb/Hjey3 dxS1nrFQp0k/ZWP/uy/VgtEucAjlPZQLRjo6oQBjqb3dtPSMDAPwgGHB8X04NtCo zRKIQsVTdOTxY8ZI0w== -----END CERTIFICATE-----Generated at Mon Jan 26 22:40:35 2026 by rpki-client