This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft File: UxUwA3N9ePci25oo4iBD412Nhx4.mft (raw, json) Hash identifier: 7Q68V+DRUD1P+L/fZLoq6KzgM5FN0OIs+5oJnENcFWM= Subject key identifier: 8E:82:52:40:8F:A3:03:F3:F5:9F:6B:B2:A9:38:6F:39:08:2A:4D:A2 Authority key identifier: 53:15:30:03:73:7D:78:F7:22:DB:9A:28:E2:20:43:E3:5D:8D:87:1E Certificate issuer: /CN=53153003737d78f722db9a28e22043e35d8d871e Certificate serial: 019BFC8A4A2C77F6DB39DA6E2E568588C437 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft Manifest number: 17ED Signing time: Mon 26 Jan 2026 23:01:19 +0000 Manifest this update: Mon 26 Jan 2026 23:01:19 +0000 Manifest next update: Tue 27 Jan 2026 23:01:19 +0000 Files and hashes: 1: 5I0HBHU6DFGjisjl0_HXu6MzkBc.roa (hash: J1zWeGNMh7+0ujc6n39n2VNnjxJR10bleZ2BiJvLPD8=) 2: UxUwA3N9ePci25oo4iBD412Nhx4.crl (hash: fJ2osaLnH007SVje2LtgCAapmZ+i10tyEAWjNIaKzrQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 23:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:8a:4a:2c:77:f6:db:39:da:6e:2e:56:85:88:c4:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53153003737d78f722db9a28e22043e35d8d871e Validity Not Before: Jan 26 23:01:19 2026 GMT Not After : Jan 27 23:01:19 2026 GMT Subject: CN=8e8252408fa303f3f59f6bb2a9386f39082a4da2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4a:86:86:a0:2b:4d:d0:d3:3e:b3:60:b1:e9: 77:78:82:6b:d0:3c:75:36:05:04:bb:b1:71:01:7b: 27:14:b2:58:cb:31:49:0e:44:cc:7a:3c:2d:f4:eb: a8:cd:8e:8b:db:15:1b:9d:77:34:5e:0c:52:10:57: d4:a1:17:1e:57:69:b1:1a:30:58:8c:17:d8:50:2f: e7:ed:68:2c:70:70:16:95:9e:01:0b:89:89:7f:63: fe:98:dd:5a:4d:fb:f5:b9:47:69:c6:d3:16:9d:92: a3:e4:4f:4d:e8:9e:4e:19:87:2f:37:9a:cf:e4:4c: 7d:b2:0b:49:5b:8e:2d:a6:d3:84:8b:c6:7d:7a:a8: 16:f3:b9:52:d0:07:56:82:86:c0:b2:e3:23:6b:83: 04:c9:df:6d:1c:1a:1e:7e:32:cb:5a:f4:ea:0e:5f: e1:03:6f:75:e5:0d:50:a5:9b:69:6c:a1:46:eb:77: e8:76:ac:82:fd:80:fb:83:a8:92:75:1f:09:5d:e7: 35:3e:12:ce:4a:56:1b:9e:31:77:32:1d:2b:70:91: ec:d0:25:d4:ee:97:99:83:54:b9:40:87:3c:11:e0: e0:f7:d3:9b:95:9e:1e:0f:0e:a6:9d:92:25:10:1b: 4f:96:87:2f:cb:13:03:76:0c:41:62:77:db:c3:b3: c2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:82:52:40:8F:A3:03:F3:F5:9F:6B:B2:A9:38:6F:39:08:2A:4D:A2 X509v3 Authority Key Identifier: keyid:53:15:30:03:73:7D:78:F7:22:DB:9A:28:E2:20:43:E3:5D:8D:87:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:b1:72:55:01:47:95:15:fb:84:a2:42:be:e8:64:2f:4a:a5: 26:90:78:d2:ad:ef:74:9e:75:c2:84:8b:92:22:d8:e9:86:c9: 83:9f:9c:51:2f:67:15:06:45:7a:a6:f7:f0:e4:e4:32:25:70: c4:d9:34:ba:59:1d:a9:63:02:c7:ea:8d:c1:90:89:1a:d5:bd: ca:7e:dd:81:6f:30:9e:93:9f:cd:b5:a1:98:a4:3b:df:e5:46: 5f:37:a6:a0:89:5f:7e:3b:01:fe:f8:c4:e9:61:63:c7:6a:67: c2:da:1a:0d:ef:70:4e:da:54:dc:2e:5e:63:1f:4b:1f:af:e9: de:e5:d8:04:9e:11:2c:a1:4e:01:81:db:62:90:04:62:65:ed: ec:52:68:2d:25:db:d1:38:ba:97:63:61:eb:15:d8:3c:c4:dd: 51:9d:84:d1:ea:db:7f:bc:41:29:97:fe:4e:a5:90:e9:21:21: 66:7f:e9:f8:41:49:bd:c8:52:07:46:78:0f:57:6b:1b:1e:21: 09:be:2c:96:74:1a:8b:7d:ac:d6:14:ba:5a:15:a6:b6:f8:53: 52:83:85:14:ee:b1:a0:fc:c7:84:fa:90:4f:18:ca:a8:d0:60: 19:48:8d:92:19:26:cd:6c:06:ab:d9:fb:1e:5f:2b:0c:df:87: 9a:6c:ac:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8ikosd/bbOdpuLlaFiMQ3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzMTUzMDAzNzM3ZDc4ZjcyMmRiOWEyOGUyMjA0M2UzNWQ4 ZDg3MWUwHhcNMjYwMTI2MjMwMTE5WhcNMjYwMTI3MjMwMTE5WjAzMTEwLwYDVQQD Eyg4ZTgyNTI0MDhmYTMwM2YzZjU5ZjZiYjJhOTM4NmYzOTA4MmE0ZGEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUqGhqArTdDTPrNgsel3eIJr0Dx1 NgUEu7FxAXsnFLJYyzFJDkTMejwt9OuozY6L2xUbnXc0XgxSEFfUoRceV2mxGjBY jBfYUC/n7WgscHAWlZ4BC4mJf2P+mN1aTfv1uUdpxtMWnZKj5E9N6J5OGYcvN5rP 5Ex9sgtJW44tptOEi8Z9eqgW87lS0AdWgobAsuMja4MEyd9tHBoefjLLWvTqDl/h A2915Q1QpZtpbKFG63fodqyC/YD7g6iSdR8JXec1PhLOSlYbnjF3Mh0rcJHs0CXU 7peZg1S5QIc8EeDg99OblZ4eDw6mnZIlEBtPlocvyxMDdgxBYnfbw7PCQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI6CUkCPowPz9Z9rsqk4bzkIKk2iMB8GA1UdIwQY MBaAFFMVMANzfXj3ItuaKOIgQ+NdjYceMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXhVd0EzTjllUGNpMjVvbzRpQkQ0MTJOaHg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS84ZjcxNDgtMjM2ZC00MDg4LTg5ZTYt NjY1OTk1YzYyODM4LzEvVXhVd0EzTjllUGNpMjVvbzRpQkQ0MTJOaHg0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS84ZjcxNDgtMjM2ZC00MDg4LTg5ZTYtNjY1OTk1YzYyODM4 LzEvVXhVd0EzTjllUGNpMjVvbzRpQkQ0MTJOaHg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAILFyVQFH lRX7hKJCvuhkL0qlJpB40q3vdJ51woSLkiLY6YbJg5+cUS9nFQZFeqb38OTkMiVw xNk0ulkdqWMCx+qNwZCJGtW9yn7dgW8wnpOfzbWhmKQ73+VGXzemoIlffjsB/vjE 6WFjx2pnwtoaDe9wTtpU3C5eYx9LH6/p3uXYBJ4RLKFOAYHbYpAEYmXt7FJoLSXb 0Ti6l2Nh6xXYPMTdUZ2E0erbf7xBKZf+TqWQ6SEhZn/p+EFJvchSB0Z4D1drGx4h Cb4slnQai32s1hS6WhWmtvhTUoOFFO6xoPzHhPqQTxjKqNBgGUiNkhkmzWwGq9n7 Hl8rDN+HmmysNQ== -----END CERTIFICATE-----Generated at Tue Jan 27 08:29:50 2026 by rpki-client