This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json) Hash identifier: hdF953EY6rkNEsi2YHGx7Cts+Ur0zbbxpkEJWoXnp/o= Subject key identifier: 68:02:34:C8:65:EF:35:F0:B7:D9:11:95:57:82:21:E4:DA:47:4B:6F Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9 Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9 Certificate serial: 019BF83FAAC1E5554F1332401A150F3E24D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft Manifest number: 0FDD Signing time: Mon 26 Jan 2026 03:01:20 +0000 Manifest this update: Mon 26 Jan 2026 03:01:20 +0000 Manifest next update: Tue 27 Jan 2026 03:01:20 +0000 Files and hashes: 1: eutBwstQCFRzhm35XTnNphMWByQ.roa (hash: RdOW4ekiWsJoF7BZmUsggiXem+HWt5D8Hbfh8/B+px8=) 2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: LrZKB8pSx0tnzif3FHSTmU8epDbu66PTmhM5CnLn4wk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:3f:aa:c1:e5:55:4f:13:32:40:1a:15:0f:3e:24:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9 Validity Not Before: Jan 26 03:01:20 2026 GMT Not After : Jan 27 03:01:20 2026 GMT Subject: CN=680234c865ef35f0b7d91195578221e4da474b6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6f:c8:fb:3d:1c:77:43:07:58:75:47:20:13: a5:1b:e4:f8:f6:d3:44:3f:22:50:04:77:bb:eb:3b: 24:ec:bb:1f:f3:a0:d1:a0:45:e0:6b:d6:50:9e:e0: 67:e2:97:af:30:76:6e:ec:4b:8b:2d:34:02:4e:c9: fa:3f:b5:f9:f7:3a:cf:8e:7e:7e:bd:8f:87:a8:e6: 85:5c:2b:c4:83:35:62:2c:2b:e3:f9:27:48:86:b4: fc:0f:8d:b6:57:ae:b1:3f:47:21:5a:a9:1d:e1:1f: dc:0d:1a:2e:03:7a:11:da:65:47:41:b2:3b:2c:59: 07:23:3e:1a:6d:ee:8d:60:65:f3:f6:31:e0:a6:75: 75:cd:7e:62:a7:47:d9:53:ed:57:2e:01:6e:33:c6: e4:d2:f3:7d:34:e5:a0:a0:ab:74:d6:cd:93:87:26: b4:2f:82:fc:98:8a:8e:e8:26:59:b8:08:81:f9:48: 3b:06:7b:fe:d1:10:03:09:2f:5a:4e:c4:22:90:a2: b0:32:1f:15:3f:5c:77:b5:de:fb:60:4e:52:21:f0: eb:8a:26:09:0c:f7:7c:60:61:d3:eb:be:13:3d:4f: f6:b8:0e:b9:0a:f9:bb:20:bb:fb:0c:cb:8d:42:b5: e9:f9:ed:e9:35:f7:43:9e:d2:a6:5f:66:cf:59:20: 62:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:02:34:C8:65:EF:35:F0:B7:D9:11:95:57:82:21:E4:DA:47:4B:6F X509v3 Authority Key Identifier: keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:fe:9f:f0:64:91:d9:d4:05:e5:09:41:60:a9:7d:20:1e:ae: 95:a7:42:82:65:4f:f4:02:d4:39:68:9d:f0:90:cb:6c:e0:41: 8d:a0:e6:36:02:75:bf:31:2d:f0:bd:15:b9:3e:bb:4e:a1:94: f3:69:a3:66:8c:c5:f8:10:ce:51:50:92:a7:7e:c5:61:09:93: 12:07:be:7c:29:09:bf:ba:f5:80:c3:73:b9:09:d2:09:a5:38: c5:e7:94:d3:fe:bf:a7:63:bd:7d:f2:a5:eb:66:b9:16:b4:0f: 78:9a:b1:fe:c4:dc:30:1d:45:91:8d:5d:e6:d8:58:d6:d3:d6: eb:7d:fb:d8:12:fe:88:dd:71:74:99:d1:55:23:0b:52:65:c9: 2b:61:f4:31:56:4b:4d:4c:42:84:d4:8a:ab:bb:da:03:4c:eb: 0d:bf:57:af:90:90:ee:82:14:38:22:a7:24:e9:4f:0c:65:a9: 12:b0:2f:f3:a2:67:07:a9:59:83:4d:d2:af:29:1c:76:96:0f: 49:4b:b4:5c:e2:8c:21:4d:38:f7:18:6d:5c:d3:00:6a:63:1d: 68:9f:52:3b:d9:78:53:72:f3:16:8f:43:f1:d4:0b:bd:4b:af: 24:f6:8f:01:6c:85:5d:91:b7:29:e5:69:50:3f:f0:4d:18:c2: 2f:cb:4b:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4P6rB5VVPEzJAGhUPPiTVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiNjg0ZTUwZTMzZjNhMDAxNWM4Zjg5OWM4OGJjYjEzN2Jj ZmI1ZjkwHhcNMjYwMTI2MDMwMTIwWhcNMjYwMTI3MDMwMTIwWjAzMTEwLwYDVQQD Eyg2ODAyMzRjODY1ZWYzNWYwYjdkOTExOTU1NzgyMjFlNGRhNDc0YjZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsW/I+z0cd0MHWHVHIBOlG+T49tNE PyJQBHe76zsk7Lsf86DRoEXga9ZQnuBn4pevMHZu7EuLLTQCTsn6P7X59zrPjn5+ vY+HqOaFXCvEgzViLCvj+SdIhrT8D422V66xP0chWqkd4R/cDRouA3oR2mVHQbI7 LFkHIz4abe6NYGXz9jHgpnV1zX5ip0fZU+1XLgFuM8bk0vN9NOWgoKt01s2Thya0 L4L8mIqO6CZZuAiB+Ug7Bnv+0RADCS9aTsQikKKwMh8VP1x3td77YE5SIfDriiYJ DPd8YGHT674TPU/2uA65Cvm7ILv7DMuNQrXp+e3pNfdDntKmX2bPWSBi7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGgCNMhl7zXwt9kRlVeCIeTaR0tvMB8GA1UdIwQY MBaAFKtoTlDjPzoAFcj4mciLyxN7z7X5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC85NDcyYTYtZDAyMi00M2NlLWIzNjIt ODBlNWQ1M2VkYjQxLzEvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC85NDcyYTYtZDAyMi00M2NlLWIzNjItODBlNWQ1M2VkYjQx LzEvcTJoT1VPTV9PZ0FWeVBpWnlJdkxFM3ZQdGZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG/6f8GSR 2dQF5QlBYKl9IB6uladCgmVP9ALUOWid8JDLbOBBjaDmNgJ1vzEt8L0VuT67TqGU 82mjZozF+BDOUVCSp37FYQmTEge+fCkJv7r1gMNzuQnSCaU4xeeU0/6/p2O9ffKl 62a5FrQPeJqx/sTcMB1FkY1d5thY1tPW63372BL+iN1xdJnRVSMLUmXJK2H0MVZL TUxChNSKq7vaA0zrDb9Xr5CQ7oIUOCKnJOlPDGWpErAv86JnB6lZg03SrykcdpYP SUu0XOKMIU049xhtXNMAamMdaJ9SO9l4U3LzFo9D8dQLvUuvJPaPAWyFXZG3KeVp UD/wTRjCL8tLsQ== -----END CERTIFICATE-----Generated at Mon Jan 26 06:23:06 2026 by rpki-client