This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json) Hash identifier: ghfQWEMV1irJQ1MTTnyjij9L7BYufio1VlWHKdylAnY= Subject key identifier: 27:33:D3:70:23:2F:9C:8F:9A:08:4C:C8:4A:B2:31:1C:69:9F:66:09 Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08 Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08 Certificate serial: 019BF42C1DA429E1B629DCCD51CEBBBA2673 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft Manifest number: 075D Signing time: Sun 25 Jan 2026 08:01:30 +0000 Manifest this update: Sun 25 Jan 2026 08:01:30 +0000 Manifest next update: Mon 26 Jan 2026 08:01:30 +0000 Files and hashes: 1: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: kHWTZlUQDe4BjvHVIaZ40lkn1c6Nfzgm6i9w2JkRFoU=) 2: Xz9ZzxndKI0PcrapUKoUCMQ3X_Y.roa (hash: iobEnFpnj2gMfTgfXBWjm230a5l/fYY/rsdkSlzHTBY=) 3: fLAF4G67hv9tPfc_3UKCBvCfSlg.roa (hash: 3BmIz1KJKD3N0MlZqF9hPkHknhq/hRGM3d77oRfIrWk=) 4: zkEDbiGN36tLEUPTADK7tT6KZy4.roa (hash: heFMDQ/ngRlQqjUHbU5e/JEcSh3lbS47ak2zBoYzTAk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:2c:1d:a4:29:e1:b6:29:dc:cd:51:ce:bb:ba:26:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08 Validity Not Before: Jan 25 08:01:30 2026 GMT Not After : Jan 26 08:01:30 2026 GMT Subject: CN=2733d370232f9c8f9a084cc84ab2311c699f6609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c9:0d:d3:f0:7d:24:11:49:6e:e7:ce:82:fc: e1:a9:4b:51:7b:86:34:9f:cc:94:c4:d2:2c:d4:e5: 9a:83:15:84:23:89:a9:95:6b:11:34:57:8c:ea:b1: b8:20:a6:d7:43:ad:b4:a4:95:0f:0c:ef:4a:ff:1d: dd:1a:5d:f3:e2:83:d0:43:57:3f:ca:ea:63:e7:fb: 4c:61:b3:da:69:72:6a:a0:63:c2:ba:80:ae:bf:6e: 8e:c9:83:fb:eb:d4:8c:6d:7b:75:bb:46:8c:7e:55: fe:9f:f6:d3:85:94:20:fb:6e:d0:4c:26:39:3a:1f: 87:2f:02:63:33:e6:50:94:1b:d7:54:29:cf:01:4c: f8:b0:e4:f7:ee:89:0d:48:d6:68:fc:7b:01:cc:57: f2:2b:cc:59:5e:36:9b:92:b8:aa:d3:53:20:71:b0: 4c:12:ce:86:8b:31:e2:95:ea:04:56:49:b0:d0:81: 14:09:02:a9:9c:93:20:d0:45:cf:c7:7f:5d:0b:90: fe:a6:e2:f4:96:f9:0b:58:04:d2:6b:ce:f1:2b:a6: 55:f1:a4:b8:73:2f:26:ad:03:0e:4d:39:55:56:e0: da:6a:a4:31:88:f1:a7:f0:9e:84:fc:c0:4f:4b:c8: 0b:22:4d:a2:cc:d6:21:a6:44:e5:0e:39:0b:0b:ea: 67:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:33:D3:70:23:2F:9C:8F:9A:08:4C:C8:4A:B2:31:1C:69:9F:66:09 X509v3 Authority Key Identifier: keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:0c:43:5c:ae:80:a8:20:26:55:86:e2:f9:58:1e:0d:2e:be: 12:80:01:d6:0c:4a:6c:a9:40:16:ce:89:ee:a9:d4:5c:e8:f9: 74:61:86:5c:8c:9b:bd:1d:c5:19:ce:c8:6f:c6:bb:83:43:f8: 9e:1b:6a:e2:97:36:16:c8:6c:62:7a:ce:5d:b1:58:e4:dc:9b: 00:32:44:22:bc:61:76:26:8f:63:fc:61:2f:68:2c:88:d3:93: 54:58:b8:3b:87:0a:bd:a8:71:20:f5:c1:ed:41:35:65:55:4e: 00:fd:32:d8:2e:2d:7e:e0:36:87:85:12:1c:de:1c:ee:20:f2: c7:5a:a4:c4:aa:d1:e7:d2:21:dc:72:89:ba:d8:dd:59:cb:26: d2:b4:81:f7:dd:f7:c3:9a:71:10:ef:7c:40:5e:3a:83:69:38: 24:2a:6b:a7:4e:fc:69:e9:9f:4f:d0:fb:c4:a5:c9:c6:14:74: 20:0c:84:82:af:df:88:fd:c7:e7:c1:45:78:10:eb:1c:cd:fc: f3:72:db:ae:e9:b6:12:0f:9e:22:c2:30:bb:ed:de:b2:d5:6f: 5f:99:0f:91:3a:44:21:3c:d0:14:5a:4b:a4:26:e4:0f:7d:25: 49:cd:f3:8a:91:40:2e:4e:99:d1:03:f8:dc:df:88:8b:0e:52: 48:30:18:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0LB2kKeG2KdzNUc67uiZzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MDg1ZmM1MzRjMTNlMDg4MmUyNjBhODk1ZjNjZjBjNTU0 M2VmMDgwHhcNMjYwMTI1MDgwMTMwWhcNMjYwMTI2MDgwMTMwWjAzMTEwLwYDVQQD EygyNzMzZDM3MDIzMmY5YzhmOWEwODRjYzg0YWIyMzExYzY5OWY2NjA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMkN0/B9JBFJbufOgvzhqUtRe4Y0 n8yUxNIs1OWagxWEI4mplWsRNFeM6rG4IKbXQ620pJUPDO9K/x3dGl3z4oPQQ1c/ yupj5/tMYbPaaXJqoGPCuoCuv26OyYP769SMbXt1u0aMflX+n/bThZQg+27QTCY5 Oh+HLwJjM+ZQlBvXVCnPAUz4sOT37okNSNZo/HsBzFfyK8xZXjabkriq01MgcbBM Es6GizHileoEVkmw0IEUCQKpnJMg0EXPx39dC5D+puL0lvkLWATSa87xK6ZV8aS4 cy8mrQMOTTlVVuDaaqQxiPGn8J6E/MBPS8gLIk2izNYhpkTlDjkLC+pnOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCcz03AjL5yPmghMyEqyMRxpn2YJMB8GA1UdIwQY MBaAFCkIX8U0wT4IguJgqJXzzwxVQ+8IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWIt YzMyOTcxMjllNGQzLzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWItYzMyOTcxMjllNGQz LzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARQxDXK6A qCAmVYbi+VgeDS6+EoAB1gxKbKlAFs6J7qnUXOj5dGGGXIybvR3FGc7Ib8a7g0P4 nhtq4pc2FshsYnrOXbFY5NybADJEIrxhdiaPY/xhL2gsiNOTVFi4O4cKvahxIPXB 7UE1ZVVOAP0y2C4tfuA2h4USHN4c7iDyx1qkxKrR59Ih3HKJutjdWcsm0rSB9933 w5pxEO98QF46g2k4JCprp078aemfT9D7xKXJxhR0IAyEgq/fiP3H58FFeBDrHM38 83Lbrum2Eg+eIsIwu+3estVvX5kPkTpEITzQFFpLpCbkD30lSc3zipFALk6Z0QP4 3N+Iiw5SSDAYzw== -----END CERTIFICATE-----Generated at Sun Jan 25 12:31:54 2026 by rpki-client