This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json) Hash identifier: Buul+n/dQt0cbgGvjdU6XBR1FcxVDEzMsoeo3zV9gEg= Subject key identifier: 8F:7E:B7:C9:7E:AA:6E:A6:3B:FB:FD:EF:C7:7E:7A:E5:E2:CB:EE:86 Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b Certificate serial: 019BF763531F9B96E864D9326AC751605A4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft Manifest number: 02EF Signing time: Sun 25 Jan 2026 23:00:40 +0000 Manifest this update: Sun 25 Jan 2026 23:00:40 +0000 Manifest next update: Mon 26 Jan 2026 23:00:40 +0000 Files and hashes: 1: DV_1PU5sghttOAyD5Fk0auja6M4.roa (hash: vyYX2XFHKs4PfXvL2MDa+XaKNUQzIY/+9Y9TmVp9CiU=) 2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: DEBynXhfgnJCn5Sy5AV6JlaOgBE4K/OKwc/WrGvsaCE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:63:53:1f:9b:96:e8:64:d9:32:6a:c7:51:60:5a:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b Validity Not Before: Jan 25 23:00:40 2026 GMT Not After : Jan 26 23:00:40 2026 GMT Subject: CN=8f7eb7c97eaa6ea63bfbfdefc77e7ae5e2cbee86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:aa:59:c8:0f:8d:82:d7:d9:5c:48:71:74:27: 60:52:54:5c:db:49:46:f6:8e:9c:3d:41:f7:c0:03: 28:71:6a:9e:34:3c:45:35:35:54:4e:1e:b1:29:9b: d1:bb:50:bd:c8:8a:78:2d:23:e5:ed:84:3a:29:48: 20:42:f8:9e:5b:b6:89:81:ba:06:4b:14:a9:ea:21: 06:74:0b:77:49:c6:3e:18:0d:13:ed:a9:33:88:ed: 93:df:8d:61:7b:f9:6a:c0:56:fc:7c:6e:13:e1:36: cd:4f:06:f7:0e:6f:e5:d4:34:6b:b6:67:cb:60:15: 7f:6e:40:46:be:65:36:da:0a:0c:ab:9f:3e:f8:4c: 6c:3b:ac:dc:25:1f:8b:80:01:ce:1a:e8:7e:e5:34: 16:e2:b1:bd:eb:b5:a3:45:0a:5d:e7:43:93:3c:c5: 78:b3:05:07:c7:7d:e9:64:45:b6:6b:f1:9b:de:d8: d3:eb:da:87:f2:5b:7f:2a:80:88:15:33:2a:7a:b0: 0f:bc:20:f0:fb:be:9a:a6:a2:6e:4f:6d:3e:74:06: 37:10:d4:11:66:e8:bd:54:97:eb:06:86:67:05:4b: 1c:45:3f:58:55:32:8f:ab:5a:ae:f3:9c:f8:1f:14: de:1c:da:e3:73:8f:74:1f:c3:60:41:b4:64:35:45: 21:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7E:B7:C9:7E:AA:6E:A6:3B:FB:FD:EF:C7:7E:7A:E5:E2:CB:EE:86 X509v3 Authority Key Identifier: keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:3b:6e:b5:d1:98:88:ef:7b:58:33:dc:12:51:4e:ab:03:8c: 2c:7a:1f:eb:67:17:5d:39:a7:6d:2a:b0:b4:81:f5:52:e6:96: ff:55:af:0c:16:78:7f:81:0a:fc:e8:7a:b7:55:5e:06:a1:d8: 16:3e:c4:ed:0b:fd:60:35:f7:a3:9f:71:aa:e5:39:3c:c9:d7: b9:95:91:03:53:f1:18:47:b0:7b:c9:cf:fb:b9:e5:c2:28:63: 2c:59:8a:35:e8:4c:0e:20:bb:d5:eb:7c:b7:f4:6b:04:ab:1a: b2:b6:94:66:b2:d4:6c:69:0a:48:dd:0d:a2:5f:af:f1:2e:09: 9b:4c:10:fb:2c:79:e9:2d:fc:37:61:01:ff:d2:aa:3f:48:ee: 57:e7:71:a6:8d:86:28:4d:3c:f6:be:e4:66:d0:9f:5a:31:31: fc:7d:a1:08:76:c1:bc:72:90:81:30:df:85:fe:11:3b:d0:06: 09:64:54:06:9a:99:58:8f:92:f0:eb:0c:92:58:6c:52:3d:25: 3f:98:63:1e:71:84:f9:d0:7b:72:ef:2d:62:dd:47:51:5b:72: 04:fc:dd:01:8c:32:91:cc:cf:f6:ea:9b:b6:55:25:ca:25:f8: 27:25:a8:8e:a9:46:cf:32:f3:87:35:a8:85:ae:d8:1b:37:78: 9f:df:6c:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3Y1Mfm5boZNkyasdRYFpOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMDNkMTNkZDI2ZjAwNDRhMjgzZmM2YTExZTc1NmEyYTJi NTY5MWIwHhcNMjYwMTI1MjMwMDQwWhcNMjYwMTI2MjMwMDQwWjAzMTEwLwYDVQQD Eyg4ZjdlYjdjOTdlYWE2ZWE2M2JmYmZkZWZjNzdlN2FlNWUyY2JlZTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvKpZyA+NgtfZXEhxdCdgUlRc20lG 9o6cPUH3wAMocWqeNDxFNTVUTh6xKZvRu1C9yIp4LSPl7YQ6KUggQvieW7aJgboG SxSp6iEGdAt3ScY+GA0T7akziO2T341he/lqwFb8fG4T4TbNTwb3Dm/l1DRrtmfL YBV/bkBGvmU22goMq58++ExsO6zcJR+LgAHOGuh+5TQW4rG967WjRQpd50OTPMV4 swUHx33pZEW2a/Gb3tjT69qH8lt/KoCIFTMqerAPvCDw+76apqJuT20+dAY3ENQR Zui9VJfrBoZnBUscRT9YVTKPq1qu85z4HxTeHNrjc490H8NgQbRkNUUh1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI9+t8l+qm6mO/v978d+euXiy+6GMB8GA1UdIwQY MBaAFM0D0T3SbwBEooP8ahHnVqKitWkbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelFQUlBkSnZBRVNpZ194cUVlZFdvcUsxYVJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9jZmQ0MWUtMzk4ZC00ZjFiLTk5OTUt MWEzZmY1MzJiYzIwLzEvelFQUlBkSnZBRVNpZ194cUVlZFdvcUsxYVJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9jZmQ0MWUtMzk4ZC00ZjFiLTk5OTUtMWEzZmY1MzJiYzIw LzEvelFQUlBkSnZBRVNpZ194cUVlZFdvcUsxYVJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACDtutdGY iO97WDPcElFOqwOMLHof62cXXTmnbSqwtIH1UuaW/1WvDBZ4f4EK/Oh6t1VeBqHY Fj7E7Qv9YDX3o59xquU5PMnXuZWRA1PxGEewe8nP+7nlwihjLFmKNehMDiC71et8 t/RrBKsasraUZrLUbGkKSN0Nol+v8S4Jm0wQ+yx56S38N2EB/9KqP0juV+dxpo2G KE089r7kZtCfWjEx/H2hCHbBvHKQgTDfhf4RO9AGCWRUBpqZWI+S8OsMklhsUj0l P5hjHnGE+dB7cu8tYt1HUVtyBPzdAYwykczP9uqbtlUlyiX4JyWojqlGzzLzhzWo ha7YGzd4n99sPg== -----END CERTIFICATE-----Generated at Mon Jan 26 04:00:03 2026 by rpki-client