This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft File: QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft (raw, json) Hash identifier: WxbaUa2uICV59V7ArFoR4/Swa3SJwuRiseXWh3ExmYA= Subject key identifier: 74:53:D8:D3:C4:A9:D3:0C:12:D4:BE:8B:B4:CF:54:EF:BE:CD:AF:CF Authority key identifier: 40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C Certificate issuer: /CN=40cf69cca2c86e194754788edcd88e352ed4e11c Certificate serial: 019BF61A0E1B932B02727FAFB8A7A7B31FCA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft Manifest number: 0E06 Signing time: Sun 25 Jan 2026 17:01:01 +0000 Manifest this update: Sun 25 Jan 2026 17:01:01 +0000 Manifest next update: Mon 26 Jan 2026 17:01:01 +0000 Files and hashes: 1: QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl (hash: /3j5guf3q/P3BUVL/lBA1LS0W+C5IwsjoCDI9u8u+AY=) 2: yaEEybz2NfCWEApyu2Dzx2yLpcI.roa (hash: j2pzI49xHsyv/Ol3MBefWz6almNV2xHEmt1n4qjR/Wk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:1a:0e:1b:93:2b:02:72:7f:af:b8:a7:a7:b3:1f:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40cf69cca2c86e194754788edcd88e352ed4e11c Validity Not Before: Jan 25 17:01:01 2026 GMT Not After : Jan 26 17:01:01 2026 GMT Subject: CN=7453d8d3c4a9d30c12d4be8bb4cf54efbecdafcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:93:67:5c:fb:ee:e8:b0:bb:38:f3:54:b8:9e: 46:60:3d:02:87:dd:e9:00:d3:0d:21:be:1c:e9:c1: 56:e0:89:0f:83:9b:fa:c8:27:8d:01:91:2f:d2:fd: c2:eb:d3:1e:51:64:9a:fa:fa:b9:fe:c1:96:cd:6b: cf:1e:b0:9d:1d:98:60:b1:f1:7f:34:c7:08:d7:e4: 56:94:48:47:ac:89:a0:b2:e2:bb:ed:1c:5d:c6:a8: 77:20:c4:a1:e4:1f:2d:72:09:ae:e8:49:08:ba:ff: 0a:5d:94:38:f5:c5:62:b1:2f:46:d0:dd:9c:59:51: 14:65:7d:ea:75:a9:8c:7f:82:06:ab:d3:9a:a8:90: f1:1e:15:33:a5:2c:e5:e3:a9:74:11:9e:e5:28:79: 49:c9:78:61:b6:95:63:00:a2:9d:a1:f6:82:46:be: fd:6e:6d:41:54:c6:9d:f0:e0:d2:1c:07:0a:40:4c: 2f:8b:be:68:32:94:65:c5:e1:6c:d2:d9:b3:36:ea: e9:6a:4b:c9:f3:04:25:6a:09:5a:8c:0e:03:bb:dc: 63:32:a7:0c:52:8c:3f:cb:76:f7:a5:8c:e3:b5:9f: 64:93:75:b2:80:09:be:bf:c6:f1:2b:68:6f:d4:b6: fb:74:12:79:77:9c:bd:9b:75:7a:b1:41:ff:35:2e: f3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:53:D8:D3:C4:A9:D3:0C:12:D4:BE:8B:B4:CF:54:EF:BE:CD:AF:CF X509v3 Authority Key Identifier: keyid:40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:c8:12:75:b3:7d:e0:3a:f3:9a:df:94:6d:41:d9:a9:f9:47: d5:b1:b2:ab:c7:78:de:de:35:96:61:33:fc:e9:57:aa:80:e3: a3:f2:1e:29:07:8f:82:ca:8c:a7:b2:28:c3:4a:9e:1a:91:4e: 4d:86:ff:5f:2a:e2:2a:c9:43:9f:a1:b4:7f:dd:47:13:91:3d: 58:06:20:4b:3b:ed:a5:8e:56:75:90:0b:84:37:6d:d5:94:f2: c3:7b:7f:86:9d:9f:c2:a3:ab:b4:43:62:e4:5c:3f:a4:d9:7d: 70:27:cb:83:47:7b:39:71:2f:dc:54:9c:15:14:68:bf:ad:8a: d0:cc:b9:9c:99:10:28:e3:93:5b:37:3d:5b:71:d4:ba:0d:34: 86:08:bb:70:4b:48:df:4b:a4:76:5e:6a:aa:3f:3d:8c:23:12: 73:6f:ae:10:60:1f:4a:b3:2e:6e:4c:e2:99:d8:6a:69:5a:73: 0b:05:3d:38:f5:6b:32:26:ec:6d:ae:a1:73:22:fa:33:fd:a2: c0:1a:c9:cf:e7:44:64:83:d3:d7:56:6b:12:76:76:55:8b:c8: 04:a7:00:49:a6:09:e4:33:f7:f7:71:48:75:10:c0:d9:b7:cd: 7a:d1:83:c9:09:ad:97:a2:8d:66:01:3f:07:28:19:72:ef:db: 98:0c:a2:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2Gg4bkysCcn+vuKensx/KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwY2Y2OWNjYTJjODZlMTk0NzU0Nzg4ZWRjZDg4ZTM1MmVk NGUxMWMwHhcNMjYwMTI1MTcwMTAxWhcNMjYwMTI2MTcwMTAxWjAzMTEwLwYDVQQD Eyg3NDUzZDhkM2M0YTlkMzBjMTJkNGJlOGJiNGNmNTRlZmJlY2RhZmNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5NnXPvu6LC7OPNUuJ5GYD0Ch93p ANMNIb4c6cFW4IkPg5v6yCeNAZEv0v3C69MeUWSa+vq5/sGWzWvPHrCdHZhgsfF/ NMcI1+RWlEhHrImgsuK77Rxdxqh3IMSh5B8tcgmu6EkIuv8KXZQ49cVisS9G0N2c WVEUZX3qdamMf4IGq9OaqJDxHhUzpSzl46l0EZ7lKHlJyXhhtpVjAKKdofaCRr79 bm1BVMad8ODSHAcKQEwvi75oMpRlxeFs0tmzNurpakvJ8wQlaglajA4Du9xjMqcM Uow/y3b3pYzjtZ9kk3WygAm+v8bxK2hv1Lb7dBJ5d5y9m3V6sUH/NS7zwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHRT2NPEqdMMEtS+i7TPVO++za/PMB8GA1UdIwQY MBaAFEDPacyiyG4ZR1R4jtzYjjUu1OEcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU05cHpLTEliaGxIVkhpTzNOaU9OUzdVNFJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9iOGI2MDYtYzY1YS00MDlhLWJhOGQt Y2YxYTVkOGU1ZjZkLzEvUU05cHpLTEliaGxIVkhpTzNOaU9OUzdVNFJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9iOGI2MDYtYzY1YS00MDlhLWJhOGQtY2YxYTVkOGU1ZjZk LzEvUU05cHpLTEliaGxIVkhpTzNOaU9OUzdVNFJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMsgSdbN9 4Drzmt+UbUHZqflH1bGyq8d43t41lmEz/OlXqoDjo/IeKQePgsqMp7Iow0qeGpFO TYb/XyriKslDn6G0f91HE5E9WAYgSzvtpY5WdZALhDdt1ZTyw3t/hp2fwqOrtENi 5Fw/pNl9cCfLg0d7OXEv3FScFRRov62K0My5nJkQKOOTWzc9W3HUug00hgi7cEtI 30ukdl5qqj89jCMSc2+uEGAfSrMubkzimdhqaVpzCwU9OPVrMibsba6hcyL6M/2i wBrJz+dEZIPT11ZrEnZ2VYvIBKcASaYJ5DP393FIdRDA2bfNetGDyQmtl6KNZgE/ BygZcu/bmAyi6A== -----END CERTIFICATE-----Generated at Sun Jan 25 22:34:39 2026 by rpki-client