This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft File: qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft (raw, json) Hash identifier: rjI6gxwr2XHIsD1B23W6Xt3NvByUm+sVOyk1E65Igjs= Subject key identifier: 0C:ED:73:34:53:F5:3D:70:43:26:81:C3:AC:AA:FA:76:36:72:27:64 Authority key identifier: A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D Certificate issuer: /CN=a9a073b31d888e4439e272e007c9532fc305c80d Certificate serial: 019BF83F01ABEFF8BDB3B14B88DD5168B1EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft Manifest number: 0EAC Signing time: Mon 26 Jan 2026 03:00:37 +0000 Manifest this update: Mon 26 Jan 2026 03:00:37 +0000 Manifest next update: Tue 27 Jan 2026 03:00:37 +0000 Files and hashes: 1: fVTksWbnATqXaCHSg3-Hyam5vM4.roa (hash: aKoDF8WcVN36RBOxnQH2HKKv2Xv+gPNSTtzRz6i4sY8=) 2: qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl (hash: LS/6ucOEI/Nn650yEv2cxYP/HRTmzbqqhrX7fI6WISQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 03:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:3f:01:ab:ef:f8:bd:b3:b1:4b:88:dd:51:68:b1:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a9a073b31d888e4439e272e007c9532fc305c80d Validity Not Before: Jan 26 03:00:37 2026 GMT Not After : Jan 27 03:00:37 2026 GMT Subject: CN=0ced733453f53d70432681c3acaafa7636722764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:85:1e:03:d4:d6:97:55:7f:57:40:a5:a5:02: 27:20:3c:36:56:c9:4e:3b:6a:09:69:46:b2:02:f5: 02:c3:c1:69:ac:e6:04:4d:63:f4:8f:96:23:1d:6a: 98:f6:67:8c:14:40:96:41:64:de:62:bd:e2:9b:8e: f7:d4:97:4b:d5:31:4c:3e:3b:da:f8:bf:57:6f:9a: 09:06:93:7e:ac:d2:08:c5:87:fd:2e:1d:6d:d9:b0: 4e:26:18:4d:19:ec:75:bc:84:75:7a:78:fa:e6:d7: 69:6c:6f:86:36:21:bb:eb:a2:a7:84:df:b4:29:4c: 6c:4d:13:aa:2e:5b:ea:1a:c9:78:3e:ff:fd:12:09: 52:b1:65:2c:1e:3c:72:5f:b5:77:ec:c5:a2:da:46: 9c:e6:9d:11:6f:20:a2:00:c3:03:3a:db:8f:61:13: 41:b5:a4:68:9d:a6:da:0b:54:53:02:fe:30:31:2f: 6d:30:8e:45:d4:d7:97:41:61:f3:df:8d:f4:5a:aa: 60:3d:6a:77:dd:5a:00:b8:a9:5b:7f:31:0e:19:c0: cb:9a:84:04:ef:e7:10:84:79:c3:71:af:bd:5a:2a: 61:36:9b:5b:02:52:4c:ce:55:c1:0a:3f:be:7a:9c: 20:2c:c9:39:e0:c1:44:25:51:6e:23:ee:2e:c8:7d: fd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:ED:73:34:53:F5:3D:70:43:26:81:C3:AC:AA:FA:76:36:72:27:64 X509v3 Authority Key Identifier: keyid:A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:fc:1c:9c:3d:1f:64:34:e1:f2:15:90:82:f6:77:5a:06:fd: 8c:9e:c2:e3:a7:3b:b1:0e:f2:3f:9a:a8:e3:14:37:4e:eb:21: 72:ac:4b:e2:7a:f8:77:b0:80:0c:2a:3f:d2:11:34:22:7d:4b: c4:64:c1:e2:0b:d6:88:bf:72:0e:c4:5a:03:f0:ef:fc:f5:b2: 08:fa:af:e4:e8:ab:a5:dc:2d:58:e5:9a:0c:2f:5d:6b:18:27: bf:0e:9f:6a:d6:c1:6a:78:57:16:c6:fb:f4:2c:82:36:45:3e: 31:ab:be:e2:be:1e:8e:e3:06:97:93:b0:86:3e:72:70:ef:63: 6d:54:27:65:4e:60:58:c4:28:87:0a:a8:7a:9a:6c:99:ac:5b: 6b:45:e5:75:14:63:03:39:c6:f5:f5:9d:19:81:e3:33:75:b1: 5f:5a:4b:71:d3:ba:88:e4:b8:4d:89:8b:47:42:64:e1:54:b3: 6e:de:63:6c:bf:93:bf:85:73:6b:bf:11:30:8f:7b:ee:49:8b: 79:91:b1:35:e4:c5:d9:0a:25:4c:18:6c:50:8d:cd:94:43:e5: cb:65:f1:be:57:27:4d:bd:5f:30:e6:f4:5c:22:0b:bb:24:49: b4:4d:b7:06:5d:a9:19:2a:5c:4b:08:c3:56:e8:fe:65:3d:4e: bd:43:1a:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4PwGr7/i9s7FLiN1RaLHvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5YTA3M2IzMWQ4ODhlNDQzOWUyNzJlMDA3Yzk1MzJmYzMw NWM4MGQwHhcNMjYwMTI2MDMwMDM3WhcNMjYwMTI3MDMwMDM3WjAzMTEwLwYDVQQD EygwY2VkNzMzNDUzZjUzZDcwNDMyNjgxYzNhY2FhZmE3NjM2NzIyNzY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIUeA9TWl1V/V0ClpQInIDw2VslO O2oJaUayAvUCw8FprOYETWP0j5YjHWqY9meMFECWQWTeYr3im4731JdL1TFMPjva +L9Xb5oJBpN+rNIIxYf9Lh1t2bBOJhhNGex1vIR1enj65tdpbG+GNiG766KnhN+0 KUxsTROqLlvqGsl4Pv/9EglSsWUsHjxyX7V37MWi2kac5p0RbyCiAMMDOtuPYRNB taRonabaC1RTAv4wMS9tMI5F1NeXQWHz3430WqpgPWp33VoAuKlbfzEOGcDLmoQE 7+cQhHnDca+9WiphNptbAlJMzlXBCj++epwgLMk54MFEJVFuI+4uyH39HQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAztczRT9T1wQyaBw6yq+nY2cidkMB8GA1UdIwQY MBaAFKmgc7MdiI5EOeJy4AfJUy/DBcgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWFCenN4Mklqa1E1NG5MZ0I4bFRMOE1GeUEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9iYTNiMmYtYTI4OS00MDRlLWFlZjgt NGU3MzdlMDZkMjkwLzEvcWFCenN4Mklqa1E1NG5MZ0I4bFRMOE1GeUEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS9iYTNiMmYtYTI4OS00MDRlLWFlZjgtNGU3MzdlMDZkMjkw LzEvcWFCenN4Mklqa1E1NG5MZ0I4bFRMOE1GeUEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOvwcnD0f ZDTh8hWQgvZ3Wgb9jJ7C46c7sQ7yP5qo4xQ3TushcqxL4nr4d7CADCo/0hE0In1L xGTB4gvWiL9yDsRaA/Dv/PWyCPqv5OirpdwtWOWaDC9daxgnvw6fatbBanhXFsb7 9CyCNkU+Mau+4r4ejuMGl5Owhj5ycO9jbVQnZU5gWMQohwqoeppsmaxba0XldRRj AznG9fWdGYHjM3WxX1pLcdO6iOS4TYmLR0Jk4VSzbt5jbL+Tv4Vza78RMI977kmL eZGxNeTF2QolTBhsUI3NlEPly2XxvlcnTb1fMOb0XCILuyRJtE23Bl2pGSpcSwjD Vuj+ZT1OvUMaYg== -----END CERTIFICATE-----Generated at Mon Jan 26 13:05:31 2026 by rpki-client