This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft File: QRoqlAW9oWccEHdvRCYnPJBOStA.mft (raw, json) Hash identifier: nFfwcJVRP9DOn+2wfjpJcJdM8axJYHgbZ9z97OaH3HU= Subject key identifier: 56:15:21:BF:05:C8:19:C1:AD:55:39:EB:AD:83:09:78:7E:2C:BC:BB Authority key identifier: 41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0 Certificate issuer: /CN=411a2a9405bda1671c10776f4426273c904e4ad0 Certificate serial: 019BF53E0C2844E8476EFC91371C1107BBF3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft Manifest number: 17E9 Signing time: Sun 25 Jan 2026 13:00:42 +0000 Manifest this update: Sun 25 Jan 2026 13:00:42 +0000 Manifest next update: Mon 26 Jan 2026 13:00:42 +0000 Files and hashes: 1: ByaMG3qQvevk7AvgHB70KjoE3A0.roa (hash: p1aG6j/NLPI3cpBHB5DlRAwLBJWnR2mOUIqEzPqPSI4=) 2: QCoF-rujbi30mxySq-53A2Un6G0.roa (hash: JvBfOTcTs7nWh8mPAtftbN8wivlXScDpGBs3k9Clm0w=) 3: QRoqlAW9oWccEHdvRCYnPJBOStA.crl (hash: sbJfraodfmK6m1EVScYcNslTrm6GqP2NEJXeiY0DD9c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3e:0c:28:44:e8:47:6e:fc:91:37:1c:11:07:bb:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=411a2a9405bda1671c10776f4426273c904e4ad0 Validity Not Before: Jan 25 13:00:42 2026 GMT Not After : Jan 26 13:00:42 2026 GMT Subject: CN=561521bf05c819c1ad5539ebad8309787e2cbcbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:31:71:48:c6:f1:89:a7:24:16:14:f6:8a:f4: d4:ba:ed:22:44:b0:16:7f:65:19:e4:89:06:7c:25: f5:a3:b0:e4:52:62:64:6b:2f:74:dd:2a:a2:39:30: be:49:3d:0e:e7:f8:1f:f2:83:55:42:66:20:87:44: 48:5e:e4:43:6e:c4:c9:6c:49:9c:32:68:31:b8:4a: b1:a6:cd:a5:7e:11:7b:61:d6:ca:d3:9e:46:77:b5: 13:a6:9a:bd:63:98:1d:42:66:d9:5d:82:87:ce:a8: a5:b2:e7:f5:74:fc:91:bb:1d:92:74:bc:cf:ea:33: b5:0f:87:1f:0c:b8:7e:d6:66:ca:e5:27:9b:b8:3f: 55:6f:78:c1:05:34:92:c7:d0:cd:d3:a2:97:65:55: 5c:b4:3e:6a:42:f9:94:04:bb:b8:16:d8:a4:29:ce: c8:5b:a8:4b:43:2e:e7:be:25:82:78:ff:0e:0d:1e: 18:54:ae:21:2c:54:b7:67:2b:1f:9d:24:a7:cb:1e: f6:cc:83:a7:4b:a5:66:03:46:20:5a:a4:a0:15:b3: 8d:cc:6a:4c:7f:58:b9:3e:ab:e6:f4:61:7b:28:19: 3d:36:c0:53:5e:db:2d:50:df:0f:13:a2:97:c0:0f: 26:59:d6:a6:26:51:17:43:25:5e:42:0a:72:fc:22: e3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:15:21:BF:05:C8:19:C1:AD:55:39:EB:AD:83:09:78:7E:2C:BC:BB X509v3 Authority Key Identifier: keyid:41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:44:98:18:c2:a3:13:e8:6e:be:9e:71:eb:d4:b8:25:00:ca: ca:39:4c:49:f2:67:d6:98:91:b0:53:e1:d3:83:82:ec:58:d4: e1:00:da:36:5c:98:8e:10:9d:64:7c:32:d8:51:0d:e4:71:6e: 1c:83:02:c0:88:3f:4c:85:ec:da:e4:94:be:bc:5f:a3:79:2d: 1d:dd:fc:72:b4:bc:0e:77:ab:e4:08:57:6e:0f:15:a0:b9:b4: 5b:fa:2f:57:fd:dc:92:fc:df:5f:7f:82:c8:fd:7e:70:f1:bf: 4c:5a:c7:ba:fb:da:bb:77:ea:3a:a6:6e:32:c2:8e:11:49:f3: 2d:47:fc:02:90:c1:4f:0b:60:5f:9c:aa:bd:11:c2:05:4d:7d: 8e:04:d0:b9:cf:51:37:37:fa:0a:dd:fe:c6:66:99:85:8d:26: 2e:55:ec:60:33:f0:8f:c0:e7:1e:ed:b0:0a:ec:21:84:75:d8: ea:25:a5:05:b4:9a:1c:8f:73:55:31:17:a7:8c:4d:0a:7c:64: 3e:69:88:cb:0d:bf:8d:41:25:5a:6c:d1:73:97:dc:36:98:fb: b7:bb:c2:e6:26:c6:d0:a5:e9:d7:0f:8b:84:d6:0f:51:8d:ee: aa:41:79:f2:15:1c:aa:46:f6:52:79:62:86:72:b5:db:8b:bd: 10:ec:c4:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1PgwoROhHbvyRNxwRB7vzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxMWEyYTk0MDViZGExNjcxYzEwNzc2ZjQ0MjYyNzNjOTA0 ZTRhZDAwHhcNMjYwMTI1MTMwMDQyWhcNMjYwMTI2MTMwMDQyWjAzMTEwLwYDVQQD Eyg1NjE1MjFiZjA1YzgxOWMxYWQ1NTM5ZWJhZDgzMDk3ODdlMmNiY2JiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzFxSMbxiackFhT2ivTUuu0iRLAW f2UZ5IkGfCX1o7DkUmJkay903SqiOTC+ST0O5/gf8oNVQmYgh0RIXuRDbsTJbEmc MmgxuEqxps2lfhF7YdbK055Gd7UTppq9Y5gdQmbZXYKHzqilsuf1dPyRux2SdLzP 6jO1D4cfDLh+1mbK5SebuD9Vb3jBBTSSx9DN06KXZVVctD5qQvmUBLu4FtikKc7I W6hLQy7nviWCeP8ODR4YVK4hLFS3ZysfnSSnyx72zIOnS6VmA0YgWqSgFbONzGpM f1i5Pqvm9GF7KBk9NsBTXtstUN8PE6KXwA8mWdamJlEXQyVeQgpy/CLjSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFYVIb8FyBnBrVU5662DCXh+LLy7MB8GA1UdIwQY MBaAFEEaKpQFvaFnHBB3b0QmJzyQTkrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVJvcWxBVzlvV2NjRUhkdlJDWW5QSkJPU3RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9mZTY4NzAtMDk5MC00YzIxLTllNGQt OGM1MmU2NjZhOGEyLzEvUVJvcWxBVzlvV2NjRUhkdlJDWW5QSkJPU3RBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9mZTY4NzAtMDk5MC00YzIxLTllNGQtOGM1MmU2NjZhOGEy LzEvUVJvcWxBVzlvV2NjRUhkdlJDWW5QSkJPU3RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATUSYGMKj E+huvp5x69S4JQDKyjlMSfJn1piRsFPh04OC7FjU4QDaNlyYjhCdZHwy2FEN5HFu HIMCwIg/TIXs2uSUvrxfo3ktHd38crS8Dner5AhXbg8VoLm0W/ovV/3ckvzfX3+C yP1+cPG/TFrHuvvau3fqOqZuMsKOEUnzLUf8ApDBTwtgX5yqvRHCBU19jgTQuc9R Nzf6Ct3+xmaZhY0mLlXsYDPwj8DnHu2wCuwhhHXY6iWlBbSaHI9zVTEXp4xNCnxk PmmIyw2/jUElWmzRc5fcNpj7t7vC5ibG0KXp1w+LhNYPUY3uqkF58hUcqkb2Unli hnK124u9EOzEBw== -----END CERTIFICATE-----Generated at Sun Jan 25 20:07:23 2026 by rpki-client