This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft File: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft (raw, json) Hash identifier: Q2u2JmBTQ5cuWBN52QFbAq+Qp8Z/h2VRXI16IgTnmfY= Subject key identifier: 79:29:9B:31:BC:DA:F8:57:6F:A3:47:01:57:B3:5F:0C:D1:29:7F:5F Authority key identifier: 41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44 Certificate issuer: /CN=418df868f7d9e98d4fd41e6da597a283c9141b44 Certificate serial: 019BF83F45D9C6952F981C9CD0F5EBF40F30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft Manifest number: 17EE Signing time: Mon 26 Jan 2026 03:00:54 +0000 Manifest this update: Mon 26 Jan 2026 03:00:54 +0000 Manifest next update: Tue 27 Jan 2026 03:00:54 +0000 Files and hashes: 1: 16Of3nkjMP8UdSS9id5ZJPl_uic.roa (hash: 3kAPeMDB74ONzDFPUBPrWjZx5ADHmGueRoPekMbbEgg=) 2: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl (hash: 7ECHgRn0+ukc4X4tg+0QWTd1GA2YgpYlabZblpWc48U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:3f:45:d9:c6:95:2f:98:1c:9c:d0:f5:eb:f4:0f:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=418df868f7d9e98d4fd41e6da597a283c9141b44 Validity Not Before: Jan 26 03:00:54 2026 GMT Not After : Jan 27 03:00:54 2026 GMT Subject: CN=79299b31bcdaf8576fa3470157b35f0cd1297f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:31:f7:b9:69:77:f2:90:73:41:02:6b:4c:a1: bb:91:2f:39:dd:fe:51:76:5b:23:33:51:ad:32:04: 8a:3d:b6:67:f6:ed:2a:48:2b:bd:70:6e:c3:19:6c: c9:23:53:eb:07:56:f6:a6:d2:bd:c9:29:81:fc:19: 27:dd:02:3d:95:85:ec:50:9b:d8:f0:cd:6f:30:91: 20:72:91:e8:e1:90:4e:c8:47:14:25:e2:7b:77:67: 71:85:a0:04:ae:54:8b:64:75:6e:36:f5:cd:41:f5: 37:aa:eb:bd:1f:94:ed:ca:12:03:23:68:97:33:a1: da:85:1c:0a:e0:9f:20:8a:e7:ac:d1:72:b5:b3:a1: 43:f8:52:d7:5e:8f:09:da:58:c3:79:11:f9:b2:58: 4e:a6:ad:d9:0f:59:ff:8e:3c:dd:51:8f:d1:6c:87: b0:81:c2:e6:86:c4:47:a3:d7:9e:0f:50:78:5f:79: a2:03:c1:fd:cb:68:04:a4:b3:8c:b9:cd:2b:07:c8: 47:c6:94:31:18:1d:1e:b7:37:55:ef:fb:d4:16:37: 25:88:7f:78:9c:6f:e2:de:bd:74:1f:7e:b1:b3:cb: 09:08:0a:0d:d0:75:62:64:20:18:ab:f9:aa:91:0c: f0:85:9a:fa:a1:73:ca:d8:4e:92:69:96:1f:f8:fe: b3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:29:9B:31:BC:DA:F8:57:6F:A3:47:01:57:B3:5F:0C:D1:29:7F:5F X509v3 Authority Key Identifier: keyid:41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:6f:ae:76:f0:cb:a4:00:4a:fe:71:8a:5d:37:ee:fb:6a:b8: 52:e9:b8:a8:11:4f:33:a6:b3:9b:8f:70:71:28:0d:38:f7:8f: fb:ec:57:b8:f5:f2:2f:f3:1a:28:fe:10:af:04:2d:c9:9e:f8: 25:fe:6d:e2:53:2d:07:95:77:d4:22:12:d5:da:2f:17:70:82: ae:67:cd:b7:d2:2f:09:88:df:85:e6:66:35:0a:9e:df:f0:02: 1b:20:95:1a:90:6f:d4:3e:4a:46:ab:a4:70:55:1d:39:99:fe: ad:86:9c:33:81:fd:07:bf:3f:60:de:4e:93:a1:78:2e:59:b5: 0f:98:40:ec:b9:bf:6e:3a:ab:b5:d6:56:01:fb:a9:ea:f5:11: 7e:fb:46:5e:ff:cd:84:4e:11:27:43:c7:e5:92:3e:7b:ec:c4: 53:9c:b9:4d:1a:c0:fa:63:99:79:30:ff:0b:79:c0:d4:16:b2: 42:3b:2a:61:66:b5:cf:65:93:c4:04:91:1a:88:5d:c7:cf:be: 1e:24:72:fd:af:b5:fe:df:b7:91:b3:9b:ad:5f:23:70:a4:fb: 39:b7:be:ec:72:d0:4e:a8:9a:ce:9b:14:32:b2:fe:25:b6:9f: 27:ae:c0:a3:cf:47:83:65:15:1c:21:4f:da:a3:66:ad:89:71: 73:e3:9c:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4P0XZxpUvmByc0PXr9A8wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxOGRmODY4ZjdkOWU5OGQ0ZmQ0MWU2ZGE1OTdhMjgzYzkx NDFiNDQwHhcNMjYwMTI2MDMwMDU0WhcNMjYwMTI3MDMwMDU0WjAzMTEwLwYDVQQD Eyg3OTI5OWIzMWJjZGFmODU3NmZhMzQ3MDE1N2IzNWYwY2QxMjk3ZjVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDH3uWl38pBzQQJrTKG7kS853f5R dlsjM1GtMgSKPbZn9u0qSCu9cG7DGWzJI1PrB1b2ptK9ySmB/Bkn3QI9lYXsUJvY 8M1vMJEgcpHo4ZBOyEcUJeJ7d2dxhaAErlSLZHVuNvXNQfU3quu9H5TtyhIDI2iX M6HahRwK4J8giues0XK1s6FD+FLXXo8J2ljDeRH5slhOpq3ZD1n/jjzdUY/RbIew gcLmhsRHo9eeD1B4X3miA8H9y2gEpLOMuc0rB8hHxpQxGB0etzdV7/vUFjcliH94 nG/i3r10H36xs8sJCAoN0HViZCAYq/mqkQzwhZr6oXPK2E6SaZYf+P6znwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHkpmzG82vhXb6NHAVezXwzRKX9fMB8GA1UdIwQY MBaAFEGN+Gj32emNT9QebaWXooPJFBtEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9jNmY4NmQtZjc5NS00MTlmLWFkMzEt ZWU5YzM0NTJjYmFmLzEvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9jNmY4NmQtZjc5NS00MTlmLWFkMzEtZWU5YzM0NTJjYmFm LzEvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYW+udvDL pABK/nGKXTfu+2q4Uum4qBFPM6azm49wcSgNOPeP++xXuPXyL/MaKP4QrwQtyZ74 Jf5t4lMtB5V31CIS1dovF3CCrmfNt9IvCYjfheZmNQqe3/ACGyCVGpBv1D5KRquk cFUdOZn+rYacM4H9B78/YN5Ok6F4Llm1D5hA7Lm/bjqrtdZWAfup6vURfvtGXv/N hE4RJ0PH5ZI+e+zEU5y5TRrA+mOZeTD/C3nA1BayQjsqYWa1z2WTxASRGohdx8++ HiRy/a+1/t+3kbObrV8jcKT7Obe+7HLQTqiazpsUMrL+JbafJ67Ao89Hg2UVHCFP 2qNmrYlxc+Oc9Q== -----END CERTIFICATE-----Generated at Mon Jan 26 05:13:10 2026 by rpki-client