This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json) Hash identifier: mPxk1fAaziVREtUDtVS5TcgsGZs3ESEF5ZypoCl7dc0= Subject key identifier: 3B:F4:A3:47:8D:26:79:5E:C3:42:6C:DB:92:E2:7A:5B:21:D6:E0:C7 Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Certificate serial: 019BF57567BBA34079D66B56F75D035AC81A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft Manifest number: 17FC Signing time: Sun 25 Jan 2026 14:01:10 +0000 Manifest this update: Sun 25 Jan 2026 14:01:10 +0000 Manifest next update: Mon 26 Jan 2026 14:01:10 +0000 Files and hashes: 1: GlqGr2JXY3PhL5VUlM1NVcQhR0w.roa (hash: eNE9wH9uFmshNKZCXrztw6ppTkQy/INcRXUojDA/i0Q=) 2: MNCcfOf0YS36WqFOiIyVG7kT7lw.roa (hash: xDxtOXtE08yNKWuVaze/oNgNsHgsu08VrPvfwX+Etss=) 3: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: 2Ir2VP/fR/pGMQ0cYNwtxlJp9yTdDc+xqb7/ForC2kk=) 4: WjEJKBNSHVEcN3ymO9d7rBHNhsg.roa (hash: /ukNM+uY+q4nZGfneifUiM0pEWc8ClpbPhjLj7YvUSQ=) 5: ZkpkKq6oEr-_I6JVpG2CjygiNpU.roa (hash: iZ1/Xaqf4kk2t//5gAR8BRoA23b+RGLpyfieDXD6saI=) 6: fh7S3k35orygy_NxNIqp6F0-sJI.roa (hash: XfQHhVDUDcNs2QAWWCjGzgrFd34jfifMCK0Ay/ulRf8=) 7: uNc9xxeMsmhjoPp_AoWS-X6p82U.roa (hash: Ic5jIOaYkijIZKE1wsb+bGe4vb/8GZ2qRJh6Qu5nzIs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:75:67:bb:a3:40:79:d6:6b:56:f7:5d:03:5a:c8:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Validity Not Before: Jan 25 14:01:10 2026 GMT Not After : Jan 26 14:01:10 2026 GMT Subject: CN=3bf4a3478d26795ec3426cdb92e27a5b21d6e0c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:da:2f:15:46:68:bb:37:d8:99:44:bb:7c:1b: 84:56:85:ce:1f:e9:02:f9:af:b3:2f:37:e4:ee:dc: f9:a2:5c:da:70:95:2b:89:b4:02:89:af:dc:b7:9d: 5c:4c:2b:2d:41:a0:af:4a:90:c1:1d:3c:1c:aa:16: a6:58:5c:60:2f:c3:49:24:02:47:c9:86:29:e5:30: 7a:3e:f8:4c:72:a3:4f:c1:6e:0f:57:d5:80:26:f5: 5c:21:10:19:dc:2f:3f:0e:62:a0:de:94:fd:a5:6e: c9:ec:df:83:a2:d2:9c:11:ea:dd:58:96:6d:43:ce: b8:de:a2:e0:74:6f:be:8c:71:fe:0f:2b:df:3e:9c: 53:71:c0:83:72:52:02:80:42:50:a9:24:e7:13:28: 89:f4:1a:a1:9f:cf:8b:e9:e1:c7:73:c5:e4:b9:71: 36:96:a4:de:97:3a:5d:fe:c5:5b:f6:11:6c:9c:80: 77:ae:d2:d8:82:91:ba:72:40:76:90:07:5c:4e:da: 56:20:2e:38:d0:ac:0e:02:eb:dc:58:85:76:70:82: b3:67:e2:9a:63:10:06:3a:d2:e2:3c:57:09:1c:d4: 64:72:52:29:7e:25:a8:6a:4b:85:b9:3d:c9:51:0f: 96:1c:73:87:2f:55:6d:62:fc:b3:1b:69:d9:52:e2: c3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F4:A3:47:8D:26:79:5E:C3:42:6C:DB:92:E2:7A:5B:21:D6:E0:C7 X509v3 Authority Key Identifier: keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:08:2f:fc:33:49:7f:2c:37:00:a2:80:05:d9:a7:54:2f:84: ee:73:17:23:f1:7d:3c:cf:29:c6:06:81:dd:4c:e6:95:cd:09: 4b:8f:9a:c0:2a:a6:17:04:16:4b:ec:ff:24:33:ef:b8:50:6f: d8:97:10:6c:30:45:f7:4a:55:0d:4c:df:28:af:1e:cd:df:35: dd:4d:03:3c:ad:15:f4:33:27:67:48:0b:11:9e:ce:0a:13:3c: c5:f9:29:c6:f8:32:75:cd:92:e3:5a:b2:ff:eb:ad:e4:8f:eb: 0d:a1:74:e2:a2:1c:02:67:9c:3c:76:85:b8:e2:cb:d0:20:02: b2:93:ba:1e:24:9e:59:bb:09:1b:f5:9b:ec:d0:0b:07:e9:08: dc:5e:e8:73:2c:83:fb:33:39:0c:10:1b:1f:35:c6:31:f8:0e: 7e:79:82:4a:e3:67:9e:96:f8:3e:a4:cc:81:45:ac:0c:df:3a: 85:b8:01:94:0e:be:07:8d:fa:8a:99:5c:32:ad:03:9c:41:32: 64:db:a7:08:3d:f9:82:10:04:55:6e:e4:56:ea:5f:17:c9:5f: 17:a2:f3:c9:fc:2a:10:2f:c1:9b:62:5a:3a:f6:12:e8:8d:0f: c2:33:4c:6b:05:2d:6d:f1:52:60:38:14:8a:38:1c:aa:4d:42: f9:e2:53:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1dWe7o0B51mtW910DWsgaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzODRmNmZhNmRlY2NlZDU1NzhhODVhNTFlMGJkNjU3MDFl YTM0ZWMwHhcNMjYwMTI1MTQwMTEwWhcNMjYwMTI2MTQwMTEwWjAzMTEwLwYDVQQD EygzYmY0YTM0NzhkMjY3OTVlYzM0MjZjZGI5MmUyN2E1YjIxZDZlMGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3dovFUZouzfYmUS7fBuEVoXOH+kC +a+zLzfk7tz5olzacJUribQCia/ct51cTCstQaCvSpDBHTwcqhamWFxgL8NJJAJH yYYp5TB6PvhMcqNPwW4PV9WAJvVcIRAZ3C8/DmKg3pT9pW7J7N+DotKcEerdWJZt Q8643qLgdG++jHH+DyvfPpxTccCDclICgEJQqSTnEyiJ9Bqhn8+L6eHHc8XkuXE2 lqTelzpd/sVb9hFsnIB3rtLYgpG6ckB2kAdcTtpWIC440KwOAuvcWIV2cIKzZ+Ka YxAGOtLiPFcJHNRkclIpfiWoakuFuT3JUQ+WHHOHL1VtYvyzG2nZUuLD6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDv0o0eNJnlew0Js25Lielsh1uDHMB8GA1UdIwQY MBaAFEOE9vpt7M7VV4qFpR4L1lcB6jTsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMt MWIxM2JkNDU2NmE1LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMtMWIxM2JkNDU2NmE1 LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJggv/DNJ fyw3AKKABdmnVC+E7nMXI/F9PM8pxgaB3Uzmlc0JS4+awCqmFwQWS+z/JDPvuFBv 2JcQbDBF90pVDUzfKK8ezd813U0DPK0V9DMnZ0gLEZ7OChM8xfkpxvgydc2S41qy /+ut5I/rDaF04qIcAmecPHaFuOLL0CACspO6HiSeWbsJG/Wb7NALB+kI3F7ocyyD +zM5DBAbHzXGMfgOfnmCSuNnnpb4PqTMgUWsDN86hbgBlA6+B436iplcMq0DnEEy ZNunCD35ghAEVW7kVupfF8lfF6LzyfwqEC/Bm2JaOvYS6I0PwjNMawUtbfFSYDgU ijgcqk1C+eJTkw== -----END CERTIFICATE-----Generated at Sun Jan 25 20:39:57 2026 by rpki-client