This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json) Hash identifier: SWQOre2DSMXW18IyUr/WsbaMpnz2UJK07nm+1XA52sw= Subject key identifier: F8:78:B7:D4:12:7E:39:48:87:AD:0C:04:07:B6:B0:09:1F:5E:75:E3 Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18 Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18 Certificate serial: 019BF5AC5AF74D40996350B0248A0DD39835 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft Manifest number: 03D0 Signing time: Sun 25 Jan 2026 15:01:11 +0000 Manifest this update: Sun 25 Jan 2026 15:01:11 +0000 Manifest next update: Mon 26 Jan 2026 15:01:11 +0000 Files and hashes: 1: RRfH67NRANb78QCHIsNktj2AM8M.roa (hash: Kvb0sz/yAiVAWW/vkTFZtCm8iDPULJVC9JDaAm74c0I=) 2: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: cyMGmmCHNsVQmzDpaDOGL2n+Jh4cGLuhHYC/xod4a7s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ac:5a:f7:4d:40:99:63:50:b0:24:8a:0d:d3:98:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18 Validity Not Before: Jan 25 15:01:11 2026 GMT Not After : Jan 26 15:01:11 2026 GMT Subject: CN=f878b7d4127e394887ad0c0407b6b0091f5e75e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:8f:1e:c6:5a:3e:7c:02:70:ff:ac:44:ec:3b: 25:57:05:f4:a0:d9:47:9d:4d:6b:1f:52:07:10:c8: ad:87:30:65:65:5b:38:64:a0:82:0f:fb:78:92:ef: 7f:65:27:4b:ca:1a:68:2e:5b:db:c5:37:c9:ab:a9: f0:13:38:23:75:02:0d:13:6b:90:2b:c4:04:74:df: 33:4e:e2:ab:d1:a3:59:84:c8:14:15:03:b4:96:63: 0a:68:4a:56:25:95:bf:70:5f:90:ce:23:cc:f0:6e: ee:f9:d0:a7:31:ef:3b:18:5b:c2:75:8d:91:f4:3b: 09:8e:26:23:27:d1:14:9b:31:27:c8:04:f6:27:a0: 6d:55:9f:98:d2:ad:1f:80:e1:1f:7a:e3:b8:04:34: d3:29:2b:a8:ae:21:6d:bc:06:e6:38:ba:bb:ba:73: 74:4b:0b:08:cd:c8:13:2d:54:49:da:c8:24:1f:14: 3d:9b:5b:ec:6d:e7:30:13:42:5f:47:0d:9b:a8:b5: 5e:df:33:1b:b3:10:1b:c6:f0:8a:73:61:44:17:7c: a1:c7:0a:f9:1a:3e:dc:b9:84:0f:b9:8f:43:ce:a5: 4a:6f:f0:f8:33:b5:9e:8a:c0:80:13:8d:8d:c7:ea: 22:34:0b:fa:71:57:fb:53:61:d5:30:b8:04:c6:f9: 35:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:78:B7:D4:12:7E:39:48:87:AD:0C:04:07:B6:B0:09:1F:5E:75:E3 X509v3 Authority Key Identifier: keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:38:09:33:9e:22:af:00:0f:b7:79:38:86:ae:8f:86:8d:96: 36:eb:a5:74:1f:3f:c3:72:88:35:44:e4:82:d2:e3:ab:d4:15: df:5f:71:c6:26:5b:47:e4:82:b5:11:c8:e2:ba:13:8e:f2:d6: 62:92:52:5f:a6:df:76:29:ad:4e:00:58:09:e3:84:ea:ea:80: 19:3b:af:61:45:90:bd:e3:a0:8d:e3:92:fa:94:e9:1a:e0:a0: 0d:f4:eb:cc:62:d7:28:da:5e:f9:93:45:44:d7:3c:8e:9f:c1: 83:a3:41:e7:0b:60:70:e5:4d:00:58:02:47:5f:63:56:fe:12: ed:38:e2:6b:04:3c:2e:9d:6c:35:37:39:63:f9:57:37:b2:ef: a5:91:e3:02:35:8a:97:6b:b3:12:c9:72:60:1e:c5:16:8d:87: eb:cc:51:28:30:a2:ea:63:da:62:5f:56:37:e2:6a:9e:72:7d: d4:8f:e4:41:c8:35:bc:46:72:dc:22:12:95:8e:2e:38:5f:0b: 1d:c3:93:f0:da:fe:32:7d:0f:91:d5:ea:d5:0f:e7:0b:2c:e7: ec:6b:98:b0:e3:2a:f8:71:1e:cc:a4:0e:f3:33:b9:a8:d2:b2: 4f:26:94:9c:2d:72:49:42:7a:c8:c2:4d:07:41:73:e8:4b:3b: 03:fa:8c:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1rFr3TUCZY1CwJIoN05g1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyYWQzZGM0MGFjZDE4NTJmYzc0YWNkZDM3ZDhmMDdiYmIw MjVkMTgwHhcNMjYwMTI1MTUwMTExWhcNMjYwMTI2MTUwMTExWjAzMTEwLwYDVQQD EyhmODc4YjdkNDEyN2UzOTQ4ODdhZDBjMDQwN2I2YjAwOTFmNWU3NWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiY8exlo+fAJw/6xE7DslVwX0oNlH nU1rH1IHEMithzBlZVs4ZKCCD/t4ku9/ZSdLyhpoLlvbxTfJq6nwEzgjdQINE2uQ K8QEdN8zTuKr0aNZhMgUFQO0lmMKaEpWJZW/cF+QziPM8G7u+dCnMe87GFvCdY2R 9DsJjiYjJ9EUmzEnyAT2J6BtVZ+Y0q0fgOEfeuO4BDTTKSuoriFtvAbmOLq7unN0 SwsIzcgTLVRJ2sgkHxQ9m1vsbecwE0JfRw2bqLVe3zMbsxAbxvCKc2FEF3yhxwr5 Gj7cuYQPuY9DzqVKb/D4M7WeisCAE42Nx+oiNAv6cVf7U2HVMLgExvk1gQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPh4t9QSfjlIh60MBAe2sAkfXnXjMB8GA1UdIwQY MBaAFIKtPcQKzRhS/HSs3TfY8Hu7Al0YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMt ODQ5YzVjODhkYmZjLzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMtODQ5YzVjODhkYmZj LzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcjgJM54i rwAPt3k4hq6Pho2WNuuldB8/w3KINUTkgtLjq9QV319xxiZbR+SCtRHI4roTjvLW YpJSX6bfdimtTgBYCeOE6uqAGTuvYUWQveOgjeOS+pTpGuCgDfTrzGLXKNpe+ZNF RNc8jp/Bg6NB5wtgcOVNAFgCR19jVv4S7TjiawQ8Lp1sNTc5Y/lXN7LvpZHjAjWK l2uzEslyYB7FFo2H68xRKDCi6mPaYl9WN+JqnnJ91I/kQcg1vEZy3CISlY4uOF8L HcOT8Nr+Mn0PkdXq1Q/nCyzn7GuYsOMq+HEezKQO8zO5qNKyTyaUnC1ySUJ6yMJN B0Fz6Es7A/qMaA== -----END CERTIFICATE-----Generated at Sun Jan 25 23:35:54 2026 by rpki-client