This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft File: QTe22qILXgYYYrb7meI2rCwuNPg.mft (raw, json) Hash identifier: uPXGSSFsjGSFNJqtcljDnTUzk6NsR346yhBXOY+UOHI= Subject key identifier: 92:0B:9B:0C:74:88:1F:3F:EE:CF:E7:4F:FD:F5:B2:3A:8E:C4:0B:68 Authority key identifier: 41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8 Certificate issuer: /CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8 Certificate serial: 019BF763C352C069801F41CFA5683E227B8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft Manifest number: 07B7 Signing time: Sun 25 Jan 2026 23:01:08 +0000 Manifest this update: Sun 25 Jan 2026 23:01:08 +0000 Manifest next update: Mon 26 Jan 2026 23:01:08 +0000 Files and hashes: 1: QTe22qILXgYYYrb7meI2rCwuNPg.crl (hash: UDYejoyrKpjfVaU3aBiAIEo/lDPk+WrzpeYBH5DaMVA=) 2: cnMksPM8qHUJS7PE1xwm-IJZIEs.roa (hash: F0Xawui/3p0KQ1PsdF0IPS6D5QX+wIN0HvSrMKPyjOo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:63:c3:52:c0:69:80:1f:41:cf:a5:68:3e:22:7b:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8 Validity Not Before: Jan 25 23:01:08 2026 GMT Not After : Jan 26 23:01:08 2026 GMT Subject: CN=920b9b0c74881f3feecfe74ffdf5b23a8ec40b68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:07:6b:7b:44:71:a7:10:05:c1:9b:63:93:34: c9:9f:30:b8:84:6a:26:b8:7d:fc:de:80:be:8c:4a: 41:65:7f:3f:0c:90:ed:ba:30:8b:a8:95:00:ff:4a: 6a:f4:82:f4:65:24:97:ca:da:6b:a2:a1:67:1c:bd: eb:95:55:99:77:da:f5:72:57:27:44:ab:7b:3c:ee: 58:d1:e3:e0:44:79:df:e4:2a:d4:1e:8f:1f:ec:fe: 40:b1:d6:b1:53:72:f7:95:b5:97:8b:73:33:53:0a: 7e:5c:51:87:ef:5a:fa:c2:61:37:18:5e:06:a1:38: 2a:25:5c:e0:f9:41:c8:67:ea:8c:27:a3:31:11:70: 58:a1:42:68:b6:1a:da:ae:ef:59:60:3a:6b:0d:57: a4:be:b6:f8:16:ae:53:9a:6d:47:49:82:3b:73:f0: 12:33:df:9c:81:39:ee:58:13:8c:68:c6:71:28:34: 24:4c:ab:b8:9e:a4:e9:88:3b:7c:f9:49:24:f2:88: de:c1:aa:59:95:f8:76:6d:75:15:20:df:e3:4d:4b: 0e:4f:df:ce:b8:ac:8d:dc:6f:e9:5e:f5:cf:38:ba: 7e:0e:90:51:33:28:1d:3f:4d:77:11:97:0a:89:39: 5b:01:ca:97:56:a7:af:a8:b1:03:eb:3d:af:c5:56: af:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:0B:9B:0C:74:88:1F:3F:EE:CF:E7:4F:FD:F5:B2:3A:8E:C4:0B:68 X509v3 Authority Key Identifier: keyid:41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:e6:e5:5a:a8:f6:6e:4b:04:32:c7:57:f6:22:3a:66:40:36: 6b:1d:a0:7d:65:49:73:ed:f7:7e:16:82:40:1a:54:d2:d8:b7: f2:46:4a:a3:23:2a:00:13:68:bc:ee:37:88:b2:8d:56:a9:fe: 57:50:82:c5:f0:be:02:b4:79:2e:52:77:ef:1e:9b:51:a8:6b: de:6a:ca:66:95:88:9f:b1:16:b7:16:43:12:d3:a9:35:c9:a7: c6:b5:81:7b:a7:4b:43:38:96:f8:91:7a:9f:65:c0:16:d9:0f: 70:6f:36:76:fd:69:ef:dc:a5:d5:27:05:39:c9:2e:b9:4a:7b: e2:6d:b0:cd:58:5d:50:9d:89:c4:6e:da:84:d0:80:80:ff:04: e4:27:83:ca:75:46:3d:ad:e9:cc:1a:39:a1:e6:31:b9:84:f6: 13:26:98:8b:c6:5a:24:0c:ff:d9:06:5f:f3:01:96:e6:f4:ce: 1c:71:8d:2a:d5:cf:50:86:ac:e8:ce:52:7c:f9:d8:7a:dc:9f: 29:d5:c3:59:bd:d7:70:29:7b:30:7a:ac:bf:d1:cc:f1:b4:71: 77:b4:ba:3c:8d:0a:4e:84:70:9b:87:ba:b5:23:40:23:ef:7f: 40:a2:70:9c:87:5b:a5:37:b9:c5:6d:f0:24:5d:9f:50:49:a6: 6e:85:9f:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3Y8NSwGmAH0HPpWg+InuLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxMzdiNmRhYTIwYjVlMDYxODYyYjZmYjk5ZTIzNmFjMmMy ZTM0ZjgwHhcNMjYwMTI1MjMwMTA4WhcNMjYwMTI2MjMwMTA4WjAzMTEwLwYDVQQD Eyg5MjBiOWIwYzc0ODgxZjNmZWVjZmU3NGZmZGY1YjIzYThlYzQwYjY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwdre0RxpxAFwZtjkzTJnzC4hGom uH383oC+jEpBZX8/DJDtujCLqJUA/0pq9IL0ZSSXytproqFnHL3rlVWZd9r1clcn RKt7PO5Y0ePgRHnf5CrUHo8f7P5AsdaxU3L3lbWXi3MzUwp+XFGH71r6wmE3GF4G oTgqJVzg+UHIZ+qMJ6MxEXBYoUJothraru9ZYDprDVekvrb4Fq5Tmm1HSYI7c/AS M9+cgTnuWBOMaMZxKDQkTKu4nqTpiDt8+Ukk8ojewapZlfh2bXUVIN/jTUsOT9/O uKyN3G/pXvXPOLp+DpBRMygdP013EZcKiTlbAcqXVqevqLED6z2vxVavzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJILmwx0iB8/7s/nT/31sjqOxAtoMB8GA1UdIwQY MBaAFEE3ttqiC14GGGK2+5niNqwsLjT4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8wM2ZkNDItNjU4OS00NmJhLWE2NzMt MGIwMmE0NzMyNDc5LzEvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS8wM2ZkNDItNjU4OS00NmJhLWE2NzMtMGIwMmE0NzMyNDc5 LzEvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZeblWqj2 bksEMsdX9iI6ZkA2ax2gfWVJc+33fhaCQBpU0ti38kZKoyMqABNovO43iLKNVqn+ V1CCxfC+ArR5LlJ37x6bUahr3mrKZpWIn7EWtxZDEtOpNcmnxrWBe6dLQziW+JF6 n2XAFtkPcG82dv1p79yl1ScFOckuuUp74m2wzVhdUJ2JxG7ahNCAgP8E5CeDynVG Pa3pzBo5oeYxuYT2EyaYi8ZaJAz/2QZf8wGW5vTOHHGNKtXPUIas6M5SfPnYetyf KdXDWb3XcCl7MHqsv9HM8bRxd7S6PI0KToRwm4e6tSNAI+9/QKJwnIdbpTe5xW3w JF2fUEmmboWfCA== -----END CERTIFICATE-----Generated at Mon Jan 26 03:11:33 2026 by rpki-client