This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft File: qDOwgB1A0FhJBy4vyBITsCXSorw.mft (raw, json) Hash identifier: FAX/ZQmuLCBzz95idG2TeiPoAKAxNTBWaptWHQBLw5o= Subject key identifier: 7F:3D:ED:BF:6E:8F:CD:66:CF:7B:3F:65:83:16:1C:40:1D:77:CC:E7 Authority key identifier: A8:33:B0:80:1D:40:D0:58:49:07:2E:2F:C8:12:13:B0:25:D2:A2:BC Certificate issuer: /CN=a833b0801d40d05849072e2fc81213b025d2a2bc Certificate serial: 019BF6517DC5AEAD9BD58F9A78C1E76FC933 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft Manifest number: 019C Signing time: Sun 25 Jan 2026 18:01:34 +0000 Manifest this update: Sun 25 Jan 2026 18:01:34 +0000 Manifest next update: Mon 26 Jan 2026 18:01:34 +0000 Files and hashes: 1: 8dx6CDeeDv1yQZPzxZW_CCsiWuI.roa (hash: d7H5FvAS5k9Xu18WJ58VOwYw00U/ixBu9RyNPrcPus0=) 2: qDOwgB1A0FhJBy4vyBITsCXSorw.crl (hash: UIp5CvTxaszqVx6n15Vu5lagzLDyCL5ctT07Q20Q7e8=) 3: vZtaog6rpuNltteEkdUJlHMVrcw.roa (hash: 7RtaWZDq5AUONnDyPCbjKsuXwOlICNTJNhflkjZkwLY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.crl rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:7d:c5:ae:ad:9b:d5:8f:9a:78:c1:e7:6f:c9:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a833b0801d40d05849072e2fc81213b025d2a2bc Validity Not Before: Jan 25 18:01:34 2026 GMT Not After : Jan 26 18:01:34 2026 GMT Subject: CN=7f3dedbf6e8fcd66cf7b3f6583161c401d77cce7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f1:87:91:80:a1:e3:d8:76:c2:b4:b1:ec:8e: 16:19:77:02:ec:fd:7e:1c:bc:8d:99:c4:3e:58:09: 4a:b9:66:e7:53:d9:27:7b:65:02:b1:96:77:87:a0: 7e:48:a0:b6:17:76:ec:67:44:aa:f0:6e:1b:8c:d7: 00:40:74:67:3d:f6:c7:a5:9e:69:c1:54:df:12:e1: 43:82:09:dd:c1:cf:51:cd:47:8b:94:7f:07:1f:35: 9f:1f:f8:62:8d:6e:8f:7b:fb:69:c8:7d:31:3d:8a: d1:54:04:69:2b:f5:3c:e9:6b:82:5e:7c:8b:a1:d9: 47:97:66:d6:10:d9:1b:37:6e:27:e7:8f:b1:b5:69: 14:74:41:d0:9d:f3:99:33:de:85:4d:99:7e:c3:83: ec:9c:8f:cf:87:69:a7:a0:e3:d2:5a:a3:fc:7a:c4: 16:77:c0:b3:70:e8:a2:c7:8e:12:a0:03:f1:e2:25: 06:a9:02:c1:df:c6:44:ad:47:2e:8b:94:dc:90:56: b8:dc:07:2c:10:a1:65:8c:96:40:68:3f:61:4d:f2: 1e:b0:76:d8:a7:02:0b:87:32:8a:42:94:62:3a:62: 35:b4:2c:da:40:ac:78:68:4f:15:de:94:1f:23:ed: 83:45:01:6b:1b:be:77:57:4b:b0:09:16:63:b9:05: ef:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:3D:ED:BF:6E:8F:CD:66:CF:7B:3F:65:83:16:1C:40:1D:77:CC:E7 X509v3 Authority Key Identifier: keyid:A8:33:B0:80:1D:40:D0:58:49:07:2E:2F:C8:12:13:B0:25:D2:A2:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:35:b6:95:c0:cc:f5:5e:ec:82:f2:f9:8d:38:f6:31:8f:d0: ea:2c:74:26:5b:6c:df:2d:d1:d3:1b:fc:b3:61:eb:61:6d:83: 91:62:58:07:8b:de:56:18:75:14:66:7a:ab:ac:27:22:f2:6b: 16:8b:cd:fe:cc:1e:27:be:99:37:0c:67:30:80:f6:df:27:7c: 3e:b3:88:7f:d2:a0:34:1f:a2:5a:51:8f:9e:ef:2a:ec:0b:9a: 2f:b6:ab:67:0f:98:9c:d2:e1:f1:71:e8:07:a7:a5:58:c0:d2: 7e:95:32:18:3b:f2:4c:fc:14:08:b2:86:b9:a1:22:4d:ee:e6: 28:50:8c:ca:db:5a:07:1e:e9:7a:3e:5a:ee:29:cd:4a:be:d4: ba:7b:69:a9:29:7d:23:6a:71:fd:6a:fe:ad:95:9e:32:eb:76: a4:37:99:27:30:41:7e:e6:e1:58:71:f6:09:eb:d0:ec:40:d3: 6e:43:0d:5e:f0:f4:02:1f:75:eb:52:7d:55:40:ab:47:87:86: de:b4:35:93:0a:59:8c:7c:3b:ba:de:35:64:1c:3e:fe:ab:15: 75:45:2c:76:db:a8:6e:7b:f3:26:cf:c4:c2:23:7c:de:07:a4: 46:fd:6e:2e:1f:9c:5e:50:3e:8e:a5:6d:70:4a:8c:f2:c6:9f: 42:ff:3e:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UX3Frq2b1Y+aeMHnb8kzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MzNiMDgwMWQ0MGQwNTg0OTA3MmUyZmM4MTIxM2IwMjVk MmEyYmMwHhcNMjYwMTI1MTgwMTM0WhcNMjYwMTI2MTgwMTM0WjAzMTEwLwYDVQQD Eyg3ZjNkZWRiZjZlOGZjZDY2Y2Y3YjNmNjU4MzE2MWM0MDFkNzdjY2U3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxPGHkYCh49h2wrSx7I4WGXcC7P1+ HLyNmcQ+WAlKuWbnU9kne2UCsZZ3h6B+SKC2F3bsZ0Sq8G4bjNcAQHRnPfbHpZ5p wVTfEuFDggndwc9RzUeLlH8HHzWfH/hijW6Pe/tpyH0xPYrRVARpK/U86WuCXnyL odlHl2bWENkbN24n54+xtWkUdEHQnfOZM96FTZl+w4PsnI/Ph2mnoOPSWqP8esQW d8CzcOiix44SoAPx4iUGqQLB38ZErUcui5TckFa43AcsEKFljJZAaD9hTfIesHbY pwILhzKKQpRiOmI1tCzaQKx4aE8V3pQfI+2DRQFrG753V0uwCRZjuQXvwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH897b9uj81mz3s/ZYMWHEAdd8znMB8GA1UdIwQY MBaAFKgzsIAdQNBYSQcuL8gSE7Al0qK8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcURPd2dCMUEwRmhKQnk0dnlCSVRzQ1hTb3J3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9mNDJhYjEtMTA4OS00YjE0LWIyZjkt MTdiZjA2NmRhNGM1LzEvcURPd2dCMUEwRmhKQnk0dnlCSVRzQ1hTb3J3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9mNDJhYjEtMTA4OS00YjE0LWIyZjktMTdiZjA2NmRhNGM1 LzEvcURPd2dCMUEwRmhKQnk0dnlCSVRzQ1hTb3J3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWjW2lcDM 9V7sgvL5jTj2MY/Q6ix0Jlts3y3R0xv8s2HrYW2DkWJYB4veVhh1FGZ6q6wnIvJr FovN/sweJ76ZNwxnMID23yd8PrOIf9KgNB+iWlGPnu8q7AuaL7arZw+YnNLh8XHo B6elWMDSfpUyGDvyTPwUCLKGuaEiTe7mKFCMyttaBx7pej5a7inNSr7UuntpqSl9 I2px/Wr+rZWeMut2pDeZJzBBfubhWHH2CevQ7EDTbkMNXvD0Ah9161J9VUCrR4eG 3rQ1kwpZjHw7ut41ZBw+/qsVdUUsdtuobnvzJs/EwiN83gekRv1uLh+cXlA+jqVt cEqM8safQv8+MA== -----END CERTIFICATE-----Generated at Sun Jan 25 21:48:01 2026 by rpki-client