This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft File: qltHHQugidnp9GwpExlnT6yBKNA.mft (raw, json) Hash identifier: COOcW8NeNYuAvwqvWlQ6iVXqcH0lr1HarqjPILFHWoA= Subject key identifier: 4E:8C:4C:58:6A:33:B1:C1:1F:1A:7A:5B:3C:26:2A:64:86:56:E5:14 Authority key identifier: AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0 Certificate issuer: /CN=aa5b471d0ba089d9e9f46c291319674fac8128d0 Certificate serial: 019BF72CAE82D6AF1B56DB8472F12836DFFE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft Manifest number: 0E3B Signing time: Sun 25 Jan 2026 22:00:59 +0000 Manifest this update: Sun 25 Jan 2026 22:00:59 +0000 Manifest next update: Mon 26 Jan 2026 22:00:59 +0000 Files and hashes: 1: RGHMhabHZkPW5wXprVh6WUeUNEU.roa (hash: aWxpktwD4HwK4DqUq/i3jSDZlGsjYGbb6rrk+6zxpz0=) 2: hW9pmZmoOAPv4EQxUHQXTXDJr6s.roa (hash: mjwhxdNEgH8aH/IfZWkqyz4fW356i+YVNu/YE2e6m8A=) 3: qltHHQugidnp9GwpExlnT6yBKNA.crl (hash: tWcaiz/3V+c834DGZh2WisAOZz9e93PcPG/ZIuriRF4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:ae:82:d6:af:1b:56:db:84:72:f1:28:36:df:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa5b471d0ba089d9e9f46c291319674fac8128d0 Validity Not Before: Jan 25 22:00:59 2026 GMT Not After : Jan 26 22:00:59 2026 GMT Subject: CN=4e8c4c586a33b1c11f1a7a5b3c262a648656e514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f4:ed:47:d3:0e:14:3f:cc:1b:74:5d:37:05: f0:a7:eb:d6:65:2e:74:3b:a3:16:fc:02:9a:18:15: bc:7c:33:06:7d:99:69:3b:b1:15:c5:54:47:65:b6: 66:19:dc:a3:32:48:fb:88:84:66:c9:9f:07:33:ed: bb:55:11:dd:f7:9c:de:84:57:c6:21:d8:ac:f6:c5: a1:51:d3:df:e9:ec:8f:9f:fa:f7:18:01:fa:c3:33: a4:63:fc:ab:6f:8b:f9:ef:3c:f6:ce:3a:58:2d:b2: fa:9a:fc:3d:e0:da:85:39:db:65:d4:11:1b:8e:db: 93:14:85:dc:18:f0:bf:81:05:9b:3a:ca:10:f2:a5: 51:af:b0:18:4b:f4:f7:44:41:8d:97:a8:16:8b:0c: a0:d2:a1:eb:2a:10:41:90:ce:3b:b4:cf:4d:28:08: 28:53:4b:1e:50:71:a4:cc:d7:01:0d:8d:43:ef:66: 92:f9:21:36:96:a8:f9:6f:a0:78:e7:df:19:c6:a9: 84:3b:29:2d:5c:4c:1b:e1:66:60:28:b6:31:ed:3b: 62:7a:d5:da:6b:e9:69:9a:ad:a9:4e:64:b8:32:f7: a2:6b:b3:fc:3b:02:ab:ee:be:e9:3c:33:08:ee:69: 87:c8:77:d9:31:b5:5b:8a:0a:5a:b2:aa:0c:90:8a: f1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:8C:4C:58:6A:33:B1:C1:1F:1A:7A:5B:3C:26:2A:64:86:56:E5:14 X509v3 Authority Key Identifier: keyid:AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:63:b9:56:d6:cb:a3:53:b3:84:55:e8:eb:ca:61:5a:b6:4c: 6e:ac:de:77:78:04:42:ac:2a:d9:dc:33:80:49:2b:dd:a4:03: 8a:7d:75:a0:6f:e6:f2:0f:37:19:e3:d3:a9:03:4d:4a:2e:6c: a9:1c:43:f7:e4:a6:e7:bd:64:8d:bf:22:0f:ea:df:ba:7f:0e: ef:50:c8:42:41:d5:13:ff:2f:76:3c:5b:f2:59:09:69:7a:2a: 3e:3c:07:d7:a5:9f:24:9f:45:3a:f8:d1:42:b1:4f:ad:c3:b4: 8c:8e:60:6b:9f:e1:4d:c2:be:02:07:f9:1e:b6:bd:74:1d:16: ba:c8:ef:47:cb:ca:74:72:62:c6:b8:87:3a:af:90:b0:0d:8a: 0a:76:57:8e:66:da:31:86:2d:9d:10:47:ea:6b:da:8d:81:9f: fe:72:13:05:cb:27:56:3c:dd:4c:56:19:ee:7d:f5:8d:40:8b: 43:92:dd:67:7d:c4:4c:17:be:3b:f0:b1:e5:9b:be:ab:9b:7b: fb:5b:cb:cd:ff:e0:27:9a:b7:d4:09:03:80:ff:3d:bc:f5:3f: 83:40:e9:f8:1a:93:d0:72:b9:c3:a5:3a:ca:84:c7:0a:35:93: 4b:be:a0:65:49:9c:7f:96:95:a9:75:25:a4:0e:c0:75:d8:8a: ec:80:a8:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LK6C1q8bVtuEcvEoNt/+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNWI0NzFkMGJhMDg5ZDllOWY0NmMyOTEzMTk2NzRmYWM4 MTI4ZDAwHhcNMjYwMTI1MjIwMDU5WhcNMjYwMTI2MjIwMDU5WjAzMTEwLwYDVQQD Eyg0ZThjNGM1ODZhMzNiMWMxMWYxYTdhNWIzYzI2MmE2NDg2NTZlNTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1fTtR9MOFD/MG3RdNwXwp+vWZS50 O6MW/AKaGBW8fDMGfZlpO7EVxVRHZbZmGdyjMkj7iIRmyZ8HM+27VRHd95zehFfG Idis9sWhUdPf6eyPn/r3GAH6wzOkY/yrb4v57zz2zjpYLbL6mvw94NqFOdtl1BEb jtuTFIXcGPC/gQWbOsoQ8qVRr7AYS/T3REGNl6gWiwyg0qHrKhBBkM47tM9NKAgo U0seUHGkzNcBDY1D72aS+SE2lqj5b6B4598ZxqmEOyktXEwb4WZgKLYx7TtietXa a+lpmq2pTmS4Mveia7P8OwKr7r7pPDMI7mmHyHfZMbVbigpasqoMkIrxsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE6MTFhqM7HBHxp6WzwmKmSGVuUUMB8GA1UdIwQY MBaAFKpbRx0LoInZ6fRsKRMZZ0+sgSjQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS80YmUwMjctODhlOS00N2UzLWJiODgt NmYyZTI1MjliZTgyLzEvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS80YmUwMjctODhlOS00N2UzLWJiODgtNmYyZTI1MjliZTgy LzEvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgWO5VtbL o1OzhFXo68phWrZMbqzed3gEQqwq2dwzgEkr3aQDin11oG/m8g83GePTqQNNSi5s qRxD9+Sm571kjb8iD+rfun8O71DIQkHVE/8vdjxb8lkJaXoqPjwH16WfJJ9FOvjR QrFPrcO0jI5ga5/hTcK+Agf5Hra9dB0WusjvR8vKdHJixriHOq+QsA2KCnZXjmba MYYtnRBH6mvajYGf/nITBcsnVjzdTFYZ7n31jUCLQ5LdZ33ETBe+O/Cx5Zu+q5t7 +1vLzf/gJ5q31AkDgP89vPU/g0Dp+BqT0HK5w6U6yoTHCjWTS76gZUmcf5aVqXUl pA7AddiK7IConA== -----END CERTIFICATE-----Generated at Mon Jan 26 04:24:54 2026 by rpki-client