This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft File: QpXD7wDP_s4vcbYZkcbG09pJwRA.mft (raw, json) Hash identifier: Vzxv8pzNLIAp7U9TgP/0pm/E+L1DuPLF16nw4Q+ujN8= Subject key identifier: E7:23:EB:70:2C:5A:D1:1B:50:34:E9:CB:4E:21:89:F6:A1:44:9C:7F Authority key identifier: 42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10 Certificate issuer: /CN=4295c3ef00cffece2f71b61991c6c6d3da49c110 Certificate serial: 019BF79A1F5F77B16E296F08F53ACE7AE8FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft Manifest number: 04D3 Signing time: Mon 26 Jan 2026 00:00:31 +0000 Manifest this update: Mon 26 Jan 2026 00:00:31 +0000 Manifest next update: Tue 27 Jan 2026 00:00:31 +0000 Files and hashes: 1: BIcN5aoAOl1KvHqrpwSgfpe3bKQ.roa (hash: lnNlQg8amQO6kFSvzSOC3nKLC4UQiHYnnxg5VQ58z58=) 2: QpXD7wDP_s4vcbYZkcbG09pJwRA.crl (hash: NqB2WW9fo1cUiYQ4KjDmo/6i7Vlf6BVeXy1+FGSwP8M=) 3: mFfXpLKFugPnpjv01dOdi4FA4Gw.roa (hash: 3g2SXGJpuzV1vU10pMqGPocyoDuCUv6hUHSIZHwoqs4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:1f:5f:77:b1:6e:29:6f:08:f5:3a:ce:7a:e8:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4295c3ef00cffece2f71b61991c6c6d3da49c110 Validity Not Before: Jan 26 00:00:31 2026 GMT Not After : Jan 27 00:00:31 2026 GMT Subject: CN=e723eb702c5ad11b5034e9cb4e2189f6a1449c7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b2:74:ca:dc:a6:94:c3:d1:98:a6:06:13:9d: f0:fb:f3:28:4c:59:5b:cb:37:d3:ae:0d:b2:dc:f7: c8:10:5f:d7:bb:be:6c:fd:1d:81:0c:7e:d2:b1:1c: 6a:6c:9a:f3:2c:0f:57:d9:55:60:ec:d9:c8:cd:f1: f9:90:3d:77:b9:52:91:65:9f:24:c3:3a:39:d8:9e: 30:3c:0e:d5:3d:2f:3f:c9:c9:68:e0:71:8e:c0:e6: da:4a:32:fe:2c:1c:37:e9:fe:7b:13:08:7f:4b:4e: b4:e6:cc:99:62:61:e9:79:81:b6:53:01:73:ff:a3: 5d:df:35:1a:0e:76:c4:b7:9c:28:12:10:1b:7d:8a: 17:66:13:f6:7a:52:98:ef:e7:c4:aa:b3:1d:1b:37: bc:e0:01:ca:cb:cf:e8:90:1b:02:08:8d:5f:cd:28: e2:0e:c3:44:59:a1:b5:21:df:40:d2:93:20:c6:1e: cd:7e:cd:35:3c:82:54:63:f0:9a:1f:5d:4e:c1:dc: 71:ce:57:8c:9f:2d:41:d5:03:a7:3f:19:ce:66:49: 15:15:fd:80:95:26:46:fe:36:f1:0d:ab:70:52:08: 86:d5:1f:79:fb:c1:13:ca:72:b7:9d:62:a9:b3:94: 80:42:93:d7:1f:9f:fb:e9:db:9e:3c:1a:64:9c:fe: 2e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:23:EB:70:2C:5A:D1:1B:50:34:E9:CB:4E:21:89:F6:A1:44:9C:7F X509v3 Authority Key Identifier: keyid:42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:3a:e8:a3:b2:15:4b:04:a7:20:2c:d1:27:ee:d8:6f:26:43: 70:05:8c:63:a4:b3:50:f9:c2:fa:31:cb:a4:7a:aa:31:73:c9: 16:bb:27:ee:bd:b7:49:17:df:b9:68:f0:4c:8a:e2:3b:ef:e9: bc:1a:7d:94:a7:75:c5:db:16:d9:80:44:75:27:13:b4:eb:24: 3c:3a:9c:93:20:8c:08:eb:66:0b:c5:14:c3:6b:06:02:62:f6: 4f:38:f5:7b:86:98:15:06:4a:d6:95:5f:8d:bf:47:f9:04:df: 01:1a:91:84:75:d7:b7:62:b7:9f:72:17:32:72:e3:02:8e:8c: 7d:ed:9d:a1:0e:a6:de:ce:c5:03:7d:59:44:69:8e:eb:fc:6a: a2:7c:fa:0c:23:95:06:b5:f1:5c:0f:3c:3d:1f:2c:18:6d:46: 1a:a6:49:6a:36:1c:fe:3d:f7:a1:d1:01:72:9e:4e:6a:13:72: ec:88:52:4b:a8:3e:1b:04:b5:2a:44:e5:29:8e:93:ad:d8:20: cb:d0:02:01:70:4b:5b:55:a7:8f:27:dd:74:88:01:98:f6:f2: b7:06:ca:4e:9d:21:a7:f0:b9:c1:e3:90:ad:ba:28:d7:c4:58: a4:9b:e2:94:97:17:a3:91:d5:ae:ea:00:fb:a4:e7:fa:0f:a8: f3:4d:e9:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mh9fd7FuKW8I9TrOeuj8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyOTVjM2VmMDBjZmZlY2UyZjcxYjYxOTkxYzZjNmQzZGE0 OWMxMTAwHhcNMjYwMTI2MDAwMDMxWhcNMjYwMTI3MDAwMDMxWjAzMTEwLwYDVQQD EyhlNzIzZWI3MDJjNWFkMTFiNTAzNGU5Y2I0ZTIxODlmNmExNDQ5YzdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLJ0ytymlMPRmKYGE53w+/MoTFlb yzfTrg2y3PfIEF/Xu75s/R2BDH7SsRxqbJrzLA9X2VVg7NnIzfH5kD13uVKRZZ8k wzo52J4wPA7VPS8/yclo4HGOwObaSjL+LBw36f57Ewh/S0605syZYmHpeYG2UwFz /6Nd3zUaDnbEt5woEhAbfYoXZhP2elKY7+fEqrMdGze84AHKy8/okBsCCI1fzSji DsNEWaG1Id9A0pMgxh7Nfs01PIJUY/CaH11OwdxxzleMny1B1QOnPxnOZkkVFf2A lSZG/jbxDatwUgiG1R95+8ETynK3nWKps5SAQpPXH5/76duePBpknP4ukwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOcj63AsWtEbUDTpy04hifahRJx/MB8GA1UdIwQY MBaAFEKVw+8Az/7OL3G2GZHGxtPaScEQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXBYRDd3RFBfczR2Y2JZWmtjYkcwOXBKd1JBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8zYzdmODMtYmMyOC00MjgyLWFhMDIt OTY5ZjJhMDBlZGUwLzEvUXBYRDd3RFBfczR2Y2JZWmtjYkcwOXBKd1JBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8zYzdmODMtYmMyOC00MjgyLWFhMDItOTY5ZjJhMDBlZGUw LzEvUXBYRDd3RFBfczR2Y2JZWmtjYkcwOXBKd1JBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVjroo7IV SwSnICzRJ+7YbyZDcAWMY6SzUPnC+jHLpHqqMXPJFrsn7r23SRffuWjwTIriO+/p vBp9lKd1xdsW2YBEdScTtOskPDqckyCMCOtmC8UUw2sGAmL2Tzj1e4aYFQZK1pVf jb9H+QTfARqRhHXXt2K3n3IXMnLjAo6Mfe2doQ6m3s7FA31ZRGmO6/xqonz6DCOV BrXxXA88PR8sGG1GGqZJajYc/j33odEBcp5OahNy7IhSS6g+GwS1KkTlKY6Trdgg y9ACAXBLW1WnjyfddIgBmPbytwbKTp0hp/C5weOQrboo18RYpJvilJcXo5HVruoA +6Tn+g+o803pSA== -----END CERTIFICATE-----Generated at Mon Jan 26 05:13:25 2026 by rpki-client