This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft File: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft (raw, json) Hash identifier: yxHCnh4UOzqKQHLsmAQc/8c+ayD6uBlIh41FfGg7Zlw= Subject key identifier: 34:E2:9F:B4:D0:CF:28:AD:5A:B0:F7:AB:CE:38:64:CF:9B:CB:3C:CA Authority key identifier: 9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39 Certificate issuer: /CN=9e74135bb07c6540cd307bda08ca0674bc84c939 Certificate serial: 019BF91B04E9D9DFF9E164AB575C3C2F6CF0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft Manifest number: 17ED Signing time: Mon 26 Jan 2026 07:00:55 +0000 Manifest this update: Mon 26 Jan 2026 07:00:55 +0000 Manifest next update: Tue 27 Jan 2026 07:00:55 +0000 Files and hashes: 1: Cu4pJx-r5WHHtQlLqPIl7Qbn6a8.roa (hash: nvdmwUw2DJYlyGm2Jpi5RTC+E3z4Xl1tYxTpqZlijT8=) 2: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl (hash: +DmFwL0fzC1QcWC6YAxK1rne3f0zWgXjdaLgDNe2EN8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:04:e9:d9:df:f9:e1:64:ab:57:5c:3c:2f:6c:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e74135bb07c6540cd307bda08ca0674bc84c939 Validity Not Before: Jan 26 07:00:55 2026 GMT Not After : Jan 27 07:00:55 2026 GMT Subject: CN=34e29fb4d0cf28ad5ab0f7abce3864cf9bcb3cca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:16:47:01:a2:38:05:4c:e7:8b:23:ad:04:4a: 08:19:6d:c3:21:c6:17:d8:4d:7f:4c:4c:c2:3b:45: 7b:59:75:16:40:eb:93:51:f9:25:2d:a8:34:6e:db: 7d:70:9d:e9:e2:95:ce:f2:46:db:0c:00:8d:78:e8: 9d:76:6e:27:ed:31:7c:c9:f5:8f:cc:0e:85:10:a4: 93:94:95:3c:b0:f9:ae:cc:87:ab:ac:6b:3d:91:f2: cd:0e:b7:17:f7:ff:eb:ce:a3:24:b8:d7:e1:9f:72: 28:72:a0:3a:df:57:bc:b6:73:af:6f:86:c6:85:dc: 6f:3d:6d:da:b9:42:58:43:3c:96:93:86:84:a7:e6: ca:03:8e:4d:87:e7:9e:fa:a4:d9:f3:85:e7:d2:26: 4c:33:3f:42:ab:16:e3:61:93:d1:34:ff:45:9b:86: 19:f2:22:17:fd:18:fd:5a:de:4a:89:cd:d6:7c:a2: 21:63:f4:7a:e3:60:b4:15:88:2b:21:d9:ac:16:17: c1:3d:dd:b1:08:87:28:19:20:17:fc:5a:eb:3d:4e: 5d:bf:1f:71:3d:3b:a9:06:e3:91:84:94:84:68:5a: a3:ec:29:e6:12:88:95:64:96:bb:ae:a8:b8:29:6c: c1:47:8e:4b:a9:85:35:95:4b:02:6b:0e:9a:4c:0b: 75:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E2:9F:B4:D0:CF:28:AD:5A:B0:F7:AB:CE:38:64:CF:9B:CB:3C:CA X509v3 Authority Key Identifier: keyid:9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:48:dd:a2:f5:30:f1:db:d4:6e:35:89:ff:3c:21:8e:8d:d3: b7:35:c8:6c:e2:8b:c0:c4:79:1d:e8:92:72:61:74:49:40:ed: cc:c9:60:be:9f:23:f9:49:58:c5:f9:0f:44:8c:be:7c:f2:7e: 4c:9b:46:5a:3e:76:46:69:69:b7:11:70:59:71:f6:5f:42:3c: 22:84:93:7e:3a:96:11:c5:3d:22:03:33:07:1a:3a:9c:29:07: 54:6f:67:77:e1:4a:d6:c6:68:31:8f:2e:8b:e4:2d:71:fe:43: 4f:07:b6:da:d8:64:38:f0:27:c4:64:b1:b6:92:65:d7:22:ad: 23:4f:bb:99:73:07:bc:2e:44:60:7d:46:fb:1f:e0:6a:e4:f4: 02:5c:b3:54:55:1a:34:66:b4:ba:2f:a5:dd:0a:08:1d:0d:b1: 35:b7:f0:d4:95:c9:7b:da:ae:12:4e:b8:af:bd:d9:bc:32:35: 43:71:fb:c9:11:55:78:50:88:22:5d:9c:d8:91:3b:b6:a5:15: ee:d6:69:c7:36:83:30:ac:6d:11:12:e7:9c:22:39:0a:50:11: d6:0a:8e:ab:74:48:2e:8b:47:ce:9d:ea:83:d5:9b:e5:49:24: 12:d2:bc:c2:1e:28:7f:fc:7d:43:35:9f:4b:60:68:a3:6e:d2: 6a:e3:f5:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5GwTp2d/54WSrV1w8L2zwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllNzQxMzViYjA3YzY1NDBjZDMwN2JkYTA4Y2EwNjc0YmM4 NGM5MzkwHhcNMjYwMTI2MDcwMDU1WhcNMjYwMTI3MDcwMDU1WjAzMTEwLwYDVQQD EygzNGUyOWZiNGQwY2YyOGFkNWFiMGY3YWJjZTM4NjRjZjliY2IzY2NhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRZHAaI4BUzniyOtBEoIGW3DIcYX 2E1/TEzCO0V7WXUWQOuTUfklLag0btt9cJ3p4pXO8kbbDACNeOiddm4n7TF8yfWP zA6FEKSTlJU8sPmuzIerrGs9kfLNDrcX9//rzqMkuNfhn3IocqA631e8tnOvb4bG hdxvPW3auUJYQzyWk4aEp+bKA45Nh+ee+qTZ84Xn0iZMMz9CqxbjYZPRNP9Fm4YZ 8iIX/Rj9Wt5Kic3WfKIhY/R642C0FYgrIdmsFhfBPd2xCIcoGSAX/FrrPU5dvx9x PTupBuORhJSEaFqj7CnmEoiVZJa7rqi4KWzBR45LqYU1lUsCaw6aTAt1qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDTin7TQzyitWrD3q844ZM+byzzKMB8GA1UdIwQY MBaAFJ50E1uwfGVAzTB72gjKBnS8hMk5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbm5RVFc3QjhaVUROTUh2YUNNb0dkTHlFeVRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS81ZTc4ZjYtMjUzYS00MTE1LWFlNWQt NWRjODBmYWVkMmRjLzEvbm5RVFc3QjhaVUROTUh2YUNNb0dkTHlFeVRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS81ZTc4ZjYtMjUzYS00MTE1LWFlNWQtNWRjODBmYWVkMmRj LzEvbm5RVFc3QjhaVUROTUh2YUNNb0dkTHlFeVRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC0jdovUw 8dvUbjWJ/zwhjo3TtzXIbOKLwMR5HeiScmF0SUDtzMlgvp8j+UlYxfkPRIy+fPJ+ TJtGWj52RmlptxFwWXH2X0I8IoSTfjqWEcU9IgMzBxo6nCkHVG9nd+FK1sZoMY8u i+Qtcf5DTwe22thkOPAnxGSxtpJl1yKtI0+7mXMHvC5EYH1G+x/gauT0AlyzVFUa NGa0ui+l3QoIHQ2xNbfw1JXJe9quEk64r73ZvDI1Q3H7yRFVeFCIIl2c2JE7tqUV 7tZpxzaDMKxtERLnnCI5ClAR1gqOq3RILotHzp3qg9Wb5UkkEtK8wh4of/x9QzWf S2Boo27SauP12g== -----END CERTIFICATE-----Generated at Mon Jan 26 12:24:43 2026 by rpki-client