This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft File: tQALgentSypwKh71-FLg52nuEOI.mft (raw, json) Hash identifier: kXUvO2xkthF1K4Mc6GEfmc/ssnN/8U0fhVmiWVcW6ss= Subject key identifier: B8:A5:D0:26:DF:B8:DF:C3:16:10:96:7F:4A:DA:52:99:DD:BE:9C:27 Authority key identifier: B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2 Certificate issuer: /CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2 Certificate serial: 019BF79AA29672A30B3A65B075E32E967C2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft Manifest number: 1087 Signing time: Mon 26 Jan 2026 00:01:04 +0000 Manifest this update: Mon 26 Jan 2026 00:01:04 +0000 Manifest next update: Tue 27 Jan 2026 00:01:04 +0000 Files and hashes: 1: a4A5NDE8Hb_awOZcK1yYV0BdNtA.roa (hash: UhcGtGUN3kq4pMX0CPL4BxWxePj3w7wSJak+OWjA2w4=) 2: tQALgentSypwKh71-FLg52nuEOI.crl (hash: AVduLhAmj9vrakWJ7B2LCohg2J+NQ3PaIpYDJsCTLBg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:a2:96:72:a3:0b:3a:65:b0:75:e3:2e:96:7c:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2 Validity Not Before: Jan 26 00:01:04 2026 GMT Not After : Jan 27 00:01:04 2026 GMT Subject: CN=b8a5d026dfb8dfc31610967f4ada5299ddbe9c27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fe:ae:30:29:b8:fb:39:37:f5:f5:82:b5:57: eb:62:39:fa:f0:b9:d3:58:39:c0:36:85:46:f0:c0: d5:20:14:c8:1f:bd:9a:19:87:73:36:ad:b1:37:2a: 44:ff:cb:fc:25:a3:63:22:c3:ca:cc:92:f4:7f:9b: c5:60:0d:d1:e5:de:95:6d:a1:16:c1:81:13:43:e9: 34:93:b1:a4:77:8e:6f:9a:d2:bd:9c:15:24:bf:b8: 55:06:ea:a4:38:c3:31:88:07:43:b6:1e:9b:d2:31: de:d2:82:17:ed:3e:18:15:35:f7:0b:df:f7:b6:ba: 63:6e:2b:5f:76:67:cf:8a:54:ae:de:a2:ba:d7:34: a4:e6:34:30:3a:f8:6b:ea:96:15:85:2b:cd:9f:d7: e8:3f:ad:36:d1:b3:54:2f:fd:6f:34:df:3c:92:f1: 91:4e:18:da:22:cb:51:bc:43:f3:26:ef:8f:50:26: 01:bc:d3:43:93:95:d4:d7:c6:e6:59:92:d6:ac:d1: da:1f:c9:06:6a:fd:2f:ab:b2:a0:36:cc:de:5d:f8: 3f:c5:6a:a0:49:e8:ab:c8:53:a3:0d:4c:2c:03:e0: f9:a1:77:6e:04:6c:2f:a4:81:04:ed:dc:e3:23:71: ba:9d:19:ff:b0:f7:e4:d6:5b:19:b6:3a:f1:c7:df: a4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A5:D0:26:DF:B8:DF:C3:16:10:96:7F:4A:DA:52:99:DD:BE:9C:27 X509v3 Authority Key Identifier: keyid:B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:4c:b8:3e:ca:59:94:16:17:4c:e1:4c:ea:33:34:1d:15:53: bf:2f:79:d9:5a:b0:d2:54:2d:01:a3:5b:0e:52:de:79:25:20: dd:f6:02:d6:4a:17:d2:05:30:96:81:ae:13:6f:76:9b:b7:a2: 5d:ba:d2:76:92:1c:e9:c0:83:cf:09:5d:0e:1d:f3:58:e5:51: c7:af:88:d6:98:9d:c5:8d:d1:43:90:4c:95:47:bd:b5:35:86: b1:c1:72:8a:53:0f:c8:20:9c:e6:ec:83:cf:0f:32:1b:f2:44: 4e:c9:e3:8c:e5:6b:70:ab:3e:c0:a5:9f:06:62:71:d9:de:87: c0:1f:c0:9a:9e:a0:f7:bc:f6:f3:9c:6f:39:57:01:65:ce:c2: 81:e9:e4:19:e8:5a:49:62:46:8e:9e:38:43:86:d6:aa:5d:5d: 36:1c:37:b7:24:c1:2d:15:dc:dc:c7:af:5b:fa:9e:b2:f7:05: bc:2d:39:f0:24:fb:f1:72:db:18:cb:ac:f9:1e:d9:24:88:4c: 05:f2:47:be:35:9d:65:95:95:3e:db:04:9e:9a:67:cf:08:67: ae:52:77:d5:fb:fe:18:83:2e:08:c0:a3:e1:bb:40:fb:c1:a0: 49:c3:d8:07:7f:19:71:8f:7a:11:6d:fe:39:b0:fd:eb:fc:8d: 61:e2:f8:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mqKWcqMLOmWwdeMulnwrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1MDAwYjgxZTllZDRiMmE3MDJhMWVmNWY4NTJlMGU3Njll ZTEwZTIwHhcNMjYwMTI2MDAwMTA0WhcNMjYwMTI3MDAwMTA0WjAzMTEwLwYDVQQD EyhiOGE1ZDAyNmRmYjhkZmMzMTYxMDk2N2Y0YWRhNTI5OWRkYmU5YzI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0f6uMCm4+zk39fWCtVfrYjn68LnT WDnANoVG8MDVIBTIH72aGYdzNq2xNypE/8v8JaNjIsPKzJL0f5vFYA3R5d6VbaEW wYETQ+k0k7Gkd45vmtK9nBUkv7hVBuqkOMMxiAdDth6b0jHe0oIX7T4YFTX3C9/3 trpjbitfdmfPilSu3qK61zSk5jQwOvhr6pYVhSvNn9foP6020bNUL/1vNN88kvGR ThjaIstRvEPzJu+PUCYBvNNDk5XU18bmWZLWrNHaH8kGav0vq7KgNszeXfg/xWqg SeiryFOjDUwsA+D5oXduBGwvpIEE7dzjI3G6nRn/sPfk1lsZtjrxx9+kUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLil0CbfuN/DFhCWf0raUpndvpwnMB8GA1UdIwQY MBaAFLUAC4Hp7UsqcCoe9fhS4Odp7hDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYt ZDQxZTAzNTkyMzM1LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYtZDQxZTAzNTkyMzM1 LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYky4PspZ lBYXTOFM6jM0HRVTvy952Vqw0lQtAaNbDlLeeSUg3fYC1koX0gUwloGuE292m7ei XbrSdpIc6cCDzwldDh3zWOVRx6+I1pidxY3RQ5BMlUe9tTWGscFyilMPyCCc5uyD zw8yG/JETsnjjOVrcKs+wKWfBmJx2d6HwB/Amp6g97z285xvOVcBZc7CgenkGeha SWJGjp44Q4bWql1dNhw3tyTBLRXc3MevW/qesvcFvC058CT78XLbGMus+R7ZJIhM BfJHvjWdZZWVPtsEnppnzwhnrlJ31fv+GIMuCMCj4btA+8GgScPYB38ZcY96EW3+ ObD96/yNYeL4ng== -----END CERTIFICATE-----Generated at Mon Jan 26 04:01:07 2026 by rpki-client