This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft File: qDOwgB1A0FhJBy4vyBITsCXSorw.mft (raw, json) Hash identifier: 4fieGK7CAOKvfR/GRZV6o8OftODarsJoJ0GzXXQdqW0= Subject key identifier: ED:D7:D8:2F:C0:F6:60:B7:E6:C0:25:24:BD:60:6C:C9:9D:13:D4:74 Authority key identifier: A8:33:B0:80:1D:40:D0:58:49:07:2E:2F:C8:12:13:B0:25:D2:A2:BC Certificate issuer: /CN=a833b0801d40d05849072e2fc81213b025d2a2bc Certificate serial: 019BF46296F6D189A40604C00D9E0C6FA1EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft Manifest number: 019B Signing time: Sun 25 Jan 2026 09:01:00 +0000 Manifest this update: Sun 25 Jan 2026 09:01:00 +0000 Manifest next update: Mon 26 Jan 2026 09:01:00 +0000 Files and hashes: 1: 8dx6CDeeDv1yQZPzxZW_CCsiWuI.roa (hash: d7H5FvAS5k9Xu18WJ58VOwYw00U/ixBu9RyNPrcPus0=) 2: qDOwgB1A0FhJBy4vyBITsCXSorw.crl (hash: TL31w1N4iI0wqnvJDyzlqRSYbLsbDsM8Drpta2GqM3U=) 3: vZtaog6rpuNltteEkdUJlHMVrcw.roa (hash: 7RtaWZDq5AUONnDyPCbjKsuXwOlICNTJNhflkjZkwLY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.crl rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:62:96:f6:d1:89:a4:06:04:c0:0d:9e:0c:6f:a1:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a833b0801d40d05849072e2fc81213b025d2a2bc Validity Not Before: Jan 25 09:01:00 2026 GMT Not After : Jan 26 09:01:00 2026 GMT Subject: CN=edd7d82fc0f660b7e6c02524bd606cc99d13d474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e0:cc:de:56:56:8c:49:81:20:4d:b0:e9:9b: e1:fa:79:d4:6a:be:34:aa:31:54:fa:20:8f:d9:b8: d5:77:4f:ae:e5:04:3b:a2:8b:70:c2:3a:75:6b:fb: 2e:39:5c:5d:99:7d:ba:36:9c:2c:26:98:0e:b3:a6: df:98:5f:7f:b1:37:18:49:39:a6:b6:df:0d:27:d9: fe:e7:5a:4f:c4:7d:9e:bc:98:78:42:55:6b:5e:c0: 35:3c:03:d7:fe:77:b1:34:b7:70:9a:c7:66:ea:9c: ee:2a:ef:41:35:20:dc:ba:0c:99:09:c4:56:e5:55: 02:64:d4:83:40:45:a4:38:d5:37:f6:d3:d3:a8:42: f6:1e:9e:46:73:96:20:19:55:b7:cf:79:14:ad:f5: 96:89:ac:5b:b5:4a:1a:14:37:17:77:ba:27:8b:a2: f1:5c:c4:75:70:b1:e9:5f:27:0e:1e:0b:08:dd:68: fc:a8:39:0e:83:2a:09:1d:ed:ea:02:3a:7e:9d:d2: 77:cb:60:b2:77:9f:eb:9c:b3:33:66:bf:56:ba:8c: 94:82:27:81:7c:47:1c:8c:84:ee:30:c6:1c:03:15: 8b:06:b0:67:01:a8:06:7a:d6:c8:7b:01:ca:52:d5: 77:0d:c4:4f:62:7d:8b:72:2a:fc:a6:be:93:2f:a3: ca:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:D7:D8:2F:C0:F6:60:B7:E6:C0:25:24:BD:60:6C:C9:9D:13:D4:74 X509v3 Authority Key Identifier: keyid:A8:33:B0:80:1D:40:D0:58:49:07:2E:2F:C8:12:13:B0:25:D2:A2:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:e2:54:02:05:5d:86:68:6e:45:e5:bc:8f:c6:51:c0:26:28: 18:b5:fd:84:3f:51:83:b4:cb:08:9c:5a:e0:a2:a1:9b:42:89: 09:1c:0d:f8:90:d2:6d:f3:59:1e:0e:e0:a4:44:89:1a:9a:41: f2:2d:68:7d:5c:cf:3a:43:b7:48:c2:08:3e:fc:8c:96:19:3d: c1:32:90:ab:d7:26:47:dd:7e:4b:fa:8f:2f:7a:99:9b:b7:86: 90:8a:0c:68:65:e9:06:92:b3:dc:7c:a7:7f:42:cc:9c:fd:61: c8:67:03:59:a5:ce:ba:28:fd:41:0f:62:a9:b9:ed:43:19:85: 8f:60:23:55:ec:7d:79:99:6c:c0:b8:3d:42:48:fa:53:e8:a4: 2e:a9:99:eb:a5:ba:2c:4e:42:af:38:9b:0d:df:fe:93:43:fe: 8a:28:61:c4:c1:a5:1b:85:7a:8a:a7:4a:9a:1d:91:8e:6b:4b: e3:f9:cf:fd:76:a4:6e:0b:20:15:16:01:2e:d7:cf:84:f1:9d: fc:6b:57:38:f1:ef:29:19:7c:af:b9:26:45:aa:47:0d:24:02: 0a:4b:d2:04:58:e8:2f:49:72:4d:2b:c0:38:a8:e6:46:0b:06: b9:a0:32:7a:72:5a:c7:c0:34:3d:01:5a:0b:2b:0c:8f:cc:58: 64:f3:9b:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0Ypb20YmkBgTADZ4Mb6HqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MzNiMDgwMWQ0MGQwNTg0OTA3MmUyZmM4MTIxM2IwMjVk MmEyYmMwHhcNMjYwMTI1MDkwMTAwWhcNMjYwMTI2MDkwMTAwWjAzMTEwLwYDVQQD EyhlZGQ3ZDgyZmMwZjY2MGI3ZTZjMDI1MjRiZDYwNmNjOTlkMTNkNDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+DM3lZWjEmBIE2w6Zvh+nnUar40 qjFU+iCP2bjVd0+u5QQ7ootwwjp1a/suOVxdmX26NpwsJpgOs6bfmF9/sTcYSTmm tt8NJ9n+51pPxH2evJh4QlVrXsA1PAPX/nexNLdwmsdm6pzuKu9BNSDcugyZCcRW 5VUCZNSDQEWkONU39tPTqEL2Hp5Gc5YgGVW3z3kUrfWWiaxbtUoaFDcXd7oni6Lx XMR1cLHpXycOHgsI3Wj8qDkOgyoJHe3qAjp+ndJ3y2Cyd5/rnLMzZr9WuoyUgieB fEccjITuMMYcAxWLBrBnAagGetbIewHKUtV3DcRPYn2Lcir8pr6TL6PKfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO3X2C/A9mC35sAlJL1gbMmdE9R0MB8GA1UdIwQY MBaAFKgzsIAdQNBYSQcuL8gSE7Al0qK8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcURPd2dCMUEwRmhKQnk0dnlCSVRzQ1hTb3J3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9mNDJhYjEtMTA4OS00YjE0LWIyZjkt MTdiZjA2NmRhNGM1LzEvcURPd2dCMUEwRmhKQnk0dnlCSVRzQ1hTb3J3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9mNDJhYjEtMTA4OS00YjE0LWIyZjktMTdiZjA2NmRhNGM1 LzEvcURPd2dCMUEwRmhKQnk0dnlCSVRzQ1hTb3J3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhuJUAgVd hmhuReW8j8ZRwCYoGLX9hD9Rg7TLCJxa4KKhm0KJCRwN+JDSbfNZHg7gpESJGppB 8i1ofVzPOkO3SMIIPvyMlhk9wTKQq9cmR91+S/qPL3qZm7eGkIoMaGXpBpKz3Hyn f0LMnP1hyGcDWaXOuij9QQ9iqbntQxmFj2AjVex9eZlswLg9Qkj6U+ikLqmZ66W6 LE5CrzibDd/+k0P+iihhxMGlG4V6iqdKmh2RjmtL4/nP/XakbgsgFRYBLtfPhPGd /GtXOPHvKRl8r7kmRapHDSQCCkvSBFjoL0lyTSvAOKjmRgsGuaAyenJax8A0PQFa CysMj8xYZPObHA== -----END CERTIFICATE-----Generated at Sun Jan 25 18:55:44 2026 by rpki-client