This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft File: QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft (raw, json) Hash identifier: HafEUUb2kRjMyFh4mpZl2oYetIULf+8QMA8yuaiIauA= Subject key identifier: E1:8F:7C:48:DD:A0:A7:B9:3C:2D:FF:28:41:1F:91:69:23:15:17:FB Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72 Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72 Certificate serial: 019BF57555D9B8B3383531B95BC035FACC0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft Manifest number: 17EF Signing time: Sun 25 Jan 2026 14:01:06 +0000 Manifest this update: Sun 25 Jan 2026 14:01:06 +0000 Manifest next update: Mon 26 Jan 2026 14:01:06 +0000 Files and hashes: 1: 2pkPSs8gVn643UGplZoHfvgJ4jU.roa (hash: X1hpztinQvCh1GRCCDgW40Mdj2XAHD7UuWOgieEm9aw=) 2: 5_3H5oUB0Z5mLwXi_W_cQfYMDuk.roa (hash: NEc7QIS1126HxAUD9gRMIkc83/j75nLK/QAT5XjvVaU=) 3: JzhyAViO7IK7RlS2hXx7L9AIs80.roa (hash: DNuJU3HK3yevWo0xWtq0yRqUiOXXwFV8rL1Um11rKUA=) 4: QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl (hash: qzoYHLDFiowECh//H9un2kMB8NclQZ8a2S5Sby8/JLc=) 5: zdUU6xh-U_UhQuIpzwDv3G1TgNc.roa (hash: Xcmlw4uYbZey4RR44rfO/TAhXzqgGs0gxnMsef5qoaI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:75:55:d9:b8:b3:38:35:31:b9:5b:c0:35:fa:cc:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72 Validity Not Before: Jan 25 14:01:06 2026 GMT Not After : Jan 26 14:01:06 2026 GMT Subject: CN=e18f7c48dda0a7b93c2dff28411f9169231517fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b7:13:53:2d:50:28:d2:f6:05:79:38:95:bb: 79:c1:76:39:c2:be:1d:23:1c:ad:ee:0f:b9:de:cd: df:95:db:c2:fc:f5:4f:20:da:fa:fd:3c:70:fb:c0: d1:84:e4:31:bf:38:ab:47:33:a5:ac:b6:df:32:83: f0:26:69:0e:4c:0f:7c:8a:a9:c8:7d:2c:66:b6:53: 25:8a:d7:7f:a6:91:1d:0f:26:b7:f0:69:ea:61:49: 7f:bc:2f:ea:bc:e6:6f:48:a3:ca:57:9c:85:a6:24: 43:c6:61:6c:c0:5c:df:44:f0:a8:45:21:e1:b9:ba: 84:4b:ba:66:02:ad:dc:d2:6d:f3:b7:87:76:63:06: df:47:cf:9f:98:5c:d4:b7:10:10:9b:8f:a6:c1:73: 74:4c:2a:f1:1d:67:5d:64:2a:08:06:e0:3a:86:ab: 17:70:21:12:05:3e:48:6b:83:cf:f6:25:4c:31:b2: 75:27:c5:fe:b3:6f:60:ea:9c:72:29:78:66:46:d6: 63:d8:5b:0a:9a:c0:83:2f:de:7b:68:9c:d5:e4:53: a0:3a:f2:16:a4:ea:07:c1:58:62:24:2d:9a:5c:ff: 8d:83:92:f5:48:96:57:55:8f:5b:bb:58:ed:e5:46: 88:65:ab:78:d0:f0:7f:4c:4d:9f:d3:e8:19:8a:77: dc:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:8F:7C:48:DD:A0:A7:B9:3C:2D:FF:28:41:1F:91:69:23:15:17:FB X509v3 Authority Key Identifier: keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:36:ca:46:c1:12:bd:e7:e6:e0:f3:cb:cd:da:6e:b3:c0:07: 0f:3d:c3:86:e0:39:6c:2d:91:07:dc:06:9d:0c:8d:44:02:ff: 63:fe:56:db:e4:8b:8f:80:4e:bd:84:a7:66:c0:08:1f:e4:67: f7:b3:de:92:da:ab:1c:31:d3:bb:1a:96:c5:2e:3d:a6:32:59: e4:2a:36:90:f9:ce:1c:a8:0b:23:b8:30:f7:07:96:57:2c:54: 31:6d:a7:3e:c5:b1:14:50:42:89:b3:c0:17:25:42:71:28:49: c4:ed:b7:16:89:1f:4b:34:81:bc:96:4b:78:3d:87:05:8d:ef: c8:b9:31:3f:2d:eb:01:ca:47:eb:fa:a7:3b:cf:f2:81:ea:5a: e8:47:be:7c:11:ea:62:29:21:b7:73:ed:93:e7:75:ed:8b:dd: dc:71:e4:0c:62:48:b5:3d:ae:09:a6:bb:c8:0b:e3:62:da:6b: 33:ad:17:94:95:ec:b8:b9:e5:32:ca:a4:55:a1:ef:53:b3:b7: eb:1d:ff:73:b4:dd:90:8e:ab:8b:e9:aa:82:5c:08:87:37:57: 3e:71:96:20:e6:0d:0e:3e:20:a2:3c:61:93:32:72:17:c6:a6: 65:e7:74:7d:32:55:1d:a5:aa:4d:e9:de:70:d9:93:11:41:7d: 5d:f5:30:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1dVXZuLM4NTG5W8A1+swOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZTM5NTNjNWNiNDUyZjE1OWY4ZTE1MDVmYzcwMmU4ODM2 NTdlNzIwHhcNMjYwMTI1MTQwMTA2WhcNMjYwMTI2MTQwMTA2WjAzMTEwLwYDVQQD EyhlMThmN2M0OGRkYTBhN2I5M2MyZGZmMjg0MTFmOTE2OTIzMTUxN2ZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLcTUy1QKNL2BXk4lbt5wXY5wr4d Ixyt7g+53s3fldvC/PVPINr6/Txw+8DRhOQxvzirRzOlrLbfMoPwJmkOTA98iqnI fSxmtlMlitd/ppEdDya38GnqYUl/vC/qvOZvSKPKV5yFpiRDxmFswFzfRPCoRSHh ubqES7pmAq3c0m3zt4d2YwbfR8+fmFzUtxAQm4+mwXN0TCrxHWddZCoIBuA6hqsX cCESBT5Ia4PP9iVMMbJ1J8X+s29g6pxyKXhmRtZj2FsKmsCDL957aJzV5FOgOvIW pOoHwVhiJC2aXP+Ng5L1SJZXVY9bu1jt5UaIZat40PB/TE2f0+gZinfckwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOGPfEjdoKe5PC3/KEEfkWkjFRf7MB8GA1UdIwQY MBaAFEDjlTxctFLxWfjhUF/HAuiDZX5yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEt ZmE1YWYzOGRlYjVlLzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEtZmE1YWYzOGRlYjVl LzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUjbKRsES vefm4PPLzdpus8AHDz3DhuA5bC2RB9wGnQyNRAL/Y/5W2+SLj4BOvYSnZsAIH+Rn 97PektqrHDHTuxqWxS49pjJZ5Co2kPnOHKgLI7gw9weWVyxUMW2nPsWxFFBCibPA FyVCcShJxO23FokfSzSBvJZLeD2HBY3vyLkxPy3rAcpH6/qnO8/ygepa6Ee+fBHq Yikht3Ptk+d17Yvd3HHkDGJItT2uCaa7yAvjYtprM60XlJXsuLnlMsqkVaHvU7O3 6x3/c7TdkI6ri+mqglwIhzdXPnGWIOYNDj4gojxhkzJyF8amZed0fTJVHaWqTene cNmTEUF9XfUw4w== -----END CERTIFICATE-----Generated at Sun Jan 25 18:53:32 2026 by rpki-client