This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
File:                     QTe22qILXgYYYrb7meI2rCwuNPg.mft (raw, json)
Hash identifier:          uPXGSSFsjGSFNJqtcljDnTUzk6NsR346yhBXOY+UOHI=
Subject key identifier:   92:0B:9B:0C:74:88:1F:3F:EE:CF:E7:4F:FD:F5:B2:3A:8E:C4:0B:68
Authority key identifier: 41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
Certificate issuer:       /CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Certificate serial:       019BF763C352C069801F41CFA5683E227B8B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
Manifest number:          07B7
Signing time:             Sun 25 Jan 2026 23:01:08 +0000
Manifest this update:     Sun 25 Jan 2026 23:01:08 +0000
Manifest next update:     Mon 26 Jan 2026 23:01:08 +0000
Files and hashes:         1: QTe22qILXgYYYrb7meI2rCwuNPg.crl (hash: UDYejoyrKpjfVaU3aBiAIEo/lDPk+WrzpeYBH5DaMVA=)
                          2: cnMksPM8qHUJS7PE1xwm-IJZIEs.roa (hash: F0Xawui/3p0KQ1PsdF0IPS6D5QX+wIN0HvSrMKPyjOo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 26 Jan 2026 22:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:f7:63:c3:52:c0:69:80:1f:41:cf:a5:68:3e:22:7b:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
        Validity
            Not Before: Jan 25 23:01:08 2026 GMT
            Not After : Jan 26 23:01:08 2026 GMT
        Subject: CN=920b9b0c74881f3feecfe74ffdf5b23a8ec40b68
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:07:6b:7b:44:71:a7:10:05:c1:9b:63:93:34:
                    c9:9f:30:b8:84:6a:26:b8:7d:fc:de:80:be:8c:4a:
                    41:65:7f:3f:0c:90:ed:ba:30:8b:a8:95:00:ff:4a:
                    6a:f4:82:f4:65:24:97:ca:da:6b:a2:a1:67:1c:bd:
                    eb:95:55:99:77:da:f5:72:57:27:44:ab:7b:3c:ee:
                    58:d1:e3:e0:44:79:df:e4:2a:d4:1e:8f:1f:ec:fe:
                    40:b1:d6:b1:53:72:f7:95:b5:97:8b:73:33:53:0a:
                    7e:5c:51:87:ef:5a:fa:c2:61:37:18:5e:06:a1:38:
                    2a:25:5c:e0:f9:41:c8:67:ea:8c:27:a3:31:11:70:
                    58:a1:42:68:b6:1a:da:ae:ef:59:60:3a:6b:0d:57:
                    a4:be:b6:f8:16:ae:53:9a:6d:47:49:82:3b:73:f0:
                    12:33:df:9c:81:39:ee:58:13:8c:68:c6:71:28:34:
                    24:4c:ab:b8:9e:a4:e9:88:3b:7c:f9:49:24:f2:88:
                    de:c1:aa:59:95:f8:76:6d:75:15:20:df:e3:4d:4b:
                    0e:4f:df:ce:b8:ac:8d:dc:6f:e9:5e:f5:cf:38:ba:
                    7e:0e:90:51:33:28:1d:3f:4d:77:11:97:0a:89:39:
                    5b:01:ca:97:56:a7:af:a8:b1:03:eb:3d:af:c5:56:
                    af:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:0B:9B:0C:74:88:1F:3F:EE:CF:E7:4F:FD:F5:B2:3A:8E:C4:0B:68
            X509v3 Authority Key Identifier:
                keyid:41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:e6:e5:5a:a8:f6:6e:4b:04:32:c7:57:f6:22:3a:66:40:36:
         6b:1d:a0:7d:65:49:73:ed:f7:7e:16:82:40:1a:54:d2:d8:b7:
         f2:46:4a:a3:23:2a:00:13:68:bc:ee:37:88:b2:8d:56:a9:fe:
         57:50:82:c5:f0:be:02:b4:79:2e:52:77:ef:1e:9b:51:a8:6b:
         de:6a:ca:66:95:88:9f:b1:16:b7:16:43:12:d3:a9:35:c9:a7:
         c6:b5:81:7b:a7:4b:43:38:96:f8:91:7a:9f:65:c0:16:d9:0f:
         70:6f:36:76:fd:69:ef:dc:a5:d5:27:05:39:c9:2e:b9:4a:7b:
         e2:6d:b0:cd:58:5d:50:9d:89:c4:6e:da:84:d0:80:80:ff:04:
         e4:27:83:ca:75:46:3d:ad:e9:cc:1a:39:a1:e6:31:b9:84:f6:
         13:26:98:8b:c6:5a:24:0c:ff:d9:06:5f:f3:01:96:e6:f4:ce:
         1c:71:8d:2a:d5:cf:50:86:ac:e8:ce:52:7c:f9:d8:7a:dc:9f:
         29:d5:c3:59:bd:d7:70:29:7b:30:7a:ac:bf:d1:cc:f1:b4:71:
         77:b4:ba:3c:8d:0a:4e:84:70:9b:87:ba:b5:23:40:23:ef:7f:
         40:a2:70:9c:87:5b:a5:37:b9:c5:6d:f0:24:5d:9f:50:49:a6:
         6e:85:9f:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZv3Y8NSwGmAH0HPpWg+InuLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMzdiNmRhYTIwYjVlMDYxODYyYjZmYjk5ZTIzNmFjMmMy
ZTM0ZjgwHhcNMjYwMTI1MjMwMTA4WhcNMjYwMTI2MjMwMTA4WjAzMTEwLwYDVQQD
Eyg5MjBiOWIwYzc0ODgxZjNmZWVjZmU3NGZmZGY1YjIzYThlYzQwYjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwdre0RxpxAFwZtjkzTJnzC4hGom
uH383oC+jEpBZX8/DJDtujCLqJUA/0pq9IL0ZSSXytproqFnHL3rlVWZd9r1clcn
RKt7PO5Y0ePgRHnf5CrUHo8f7P5AsdaxU3L3lbWXi3MzUwp+XFGH71r6wmE3GF4G
oTgqJVzg+UHIZ+qMJ6MxEXBYoUJothraru9ZYDprDVekvrb4Fq5Tmm1HSYI7c/AS
M9+cgTnuWBOMaMZxKDQkTKu4nqTpiDt8+Ukk8ojewapZlfh2bXUVIN/jTUsOT9/O
uKyN3G/pXvXPOLp+DpBRMygdP013EZcKiTlbAcqXVqevqLED6z2vxVavzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJILmwx0iB8/7s/nT/31sjqOxAtoMB8GA1UdIwQY
MBaAFEE3ttqiC14GGGK2+5niNqwsLjT4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8wM2ZkNDItNjU4OS00NmJhLWE2NzMt
MGIwMmE0NzMyNDc5LzEvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS8wM2ZkNDItNjU4OS00NmJhLWE2NzMtMGIwMmE0NzMyNDc5
LzEvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZeblWqj2
bksEMsdX9iI6ZkA2ax2gfWVJc+33fhaCQBpU0ti38kZKoyMqABNovO43iLKNVqn+
V1CCxfC+ArR5LlJ37x6bUahr3mrKZpWIn7EWtxZDEtOpNcmnxrWBe6dLQziW+JF6
n2XAFtkPcG82dv1p79yl1ScFOckuuUp74m2wzVhdUJ2JxG7ahNCAgP8E5CeDynVG
Pa3pzBo5oeYxuYT2EyaYi8ZaJAz/2QZf8wGW5vTOHHGNKtXPUIas6M5SfPnYetyf
KdXDWb3XcCl7MHqsv9HM8bRxd7S6PI0KToRwm4e6tSNAI+9/QKJwnIdbpTe5xW3w
JF2fUEmmboWfCA==
-----END CERTIFICATE-----
Generated at Mon Jan 26 03:11:33 2026 by rpki-client