This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft File: qlPNLFhKPcFiCLqTsNt0dzs_I74.mft (raw, json) Hash identifier: cSYBPh8FmvsdCzaIdE6NBKQCuARXrvdmfhcWNsfdSAg= Subject key identifier: 61:3D:48:2C:B9:3F:D0:D2:72:F7:96:D4:1E:7C:A3:9E:E9:1A:B4:76 Authority key identifier: AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE Certificate issuer: /CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be Certificate serial: 019BF4629E59AEABB17A463B44077CC0D148 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft Manifest number: 17E8 Signing time: Sun 25 Jan 2026 09:01:02 +0000 Manifest this update: Sun 25 Jan 2026 09:01:02 +0000 Manifest next update: Mon 26 Jan 2026 09:01:02 +0000 Files and hashes: 1: GkaV6j5jPz1mP-Dn9Vke0qIsBRE.roa (hash: D0faA0NAhOg5B8uJp2cs027yC0WcbwJy1xgJBQXojpc=) 2: qlPNLFhKPcFiCLqTsNt0dzs_I74.crl (hash: Vi/c4dnoGcIOGxRJkp0pcRID55QxDab9hIQkSUay7ks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:62:9e:59:ae:ab:b1:7a:46:3b:44:07:7c:c0:d1:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be Validity Not Before: Jan 25 09:01:02 2026 GMT Not After : Jan 26 09:01:02 2026 GMT Subject: CN=613d482cb93fd0d272f796d41e7ca39ee91ab476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:da:2b:66:d4:8e:15:ab:63:22:0d:07:c3:93: 07:2c:ed:2b:73:32:7c:a9:81:fd:e6:b5:6b:10:3c: e3:47:4e:7a:64:61:a4:f3:fa:02:8b:25:4d:69:52: 32:2c:0f:fb:e3:1e:47:f1:ae:d4:91:ec:e3:be:f9: 4b:77:b8:7e:de:70:10:44:23:47:10:ed:80:1d:1e: 12:94:ff:31:f7:14:b8:b8:51:d5:51:4b:25:b4:2e: b5:bc:f9:fc:f8:9b:d3:07:c5:42:67:91:22:f4:55: fd:1b:87:6e:e8:0b:01:10:5d:ac:44:92:8c:8f:1d: 4d:39:c1:fc:dc:f0:2c:69:51:7b:0a:d4:8b:65:47: 72:09:68:cf:68:1f:04:c8:8e:d8:2c:72:00:06:77: d5:d4:47:cc:16:1b:d5:71:94:36:20:01:9e:12:2f: 8c:6c:b0:7c:4c:eb:a6:49:7c:56:fc:b3:fd:cb:b8: b7:e0:29:a3:de:de:73:f9:cf:9b:79:32:3a:89:42: fa:a5:2a:01:d6:36:28:61:1a:61:58:2e:d1:91:f3: b6:20:ff:c1:cb:f1:ed:fd:e6:b6:7d:27:db:4b:30: c9:8e:ec:12:c9:45:b2:ac:f3:ba:c9:f4:59:1e:6f: 9c:22:0e:9b:ef:e2:00:b8:52:36:69:45:ef:98:e7: 1e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:3D:48:2C:B9:3F:D0:D2:72:F7:96:D4:1E:7C:A3:9E:E9:1A:B4:76 X509v3 Authority Key Identifier: keyid:AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:4c:12:04:05:ee:2f:77:77:1f:91:48:43:2c:aa:b4:c7:30: 69:f5:3f:2e:73:8c:57:e8:3b:fb:80:a9:e8:c5:95:ff:8e:54: ff:b9:66:67:36:55:d2:36:fa:e9:ef:9c:3d:b3:28:2c:df:93: 37:9d:6b:b8:91:b9:f0:f8:d8:4b:21:48:45:d6:d9:b1:67:47: b1:56:70:81:c4:d0:3e:10:75:7c:e2:88:51:9e:24:bf:37:d3: 03:b0:9f:93:05:35:b0:1c:fe:14:e5:e0:3d:39:12:fc:80:8c: c3:43:77:9e:c6:82:25:10:3d:f8:95:55:46:21:1a:79:b2:20: 0d:d4:e7:18:35:54:dc:ca:69:86:06:12:05:0f:f0:fa:eb:49: 84:ea:60:8e:9e:44:c5:dc:60:fe:ce:aa:de:54:ff:22:76:5a: 4f:b6:4c:f3:61:8e:ff:c1:27:99:98:6d:ec:27:64:0f:7c:b6: 67:33:06:89:44:57:0e:a5:5d:9f:ec:ff:95:c2:b7:de:5a:51: 8e:2d:c9:96:2b:b0:be:81:67:90:9e:db:d2:05:c1:30:14:d1: 04:e6:7a:d6:be:0e:c7:09:be:60:f1:67:28:fd:e5:96:4a:19: e6:f8:e1:9b:f7:ef:dd:4e:ff:8e:1c:a5:84:81:aa:33:f5:67: de:8c:97:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0Yp5ZrquxekY7RAd8wNFIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNTNjZDJjNTg0YTNkYzE2MjA4YmE5M2IwZGI3NDc3M2Iz ZjIzYmUwHhcNMjYwMTI1MDkwMTAyWhcNMjYwMTI2MDkwMTAyWjAzMTEwLwYDVQQD Eyg2MTNkNDgyY2I5M2ZkMGQyNzJmNzk2ZDQxZTdjYTM5ZWU5MWFiNDc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNorZtSOFatjIg0Hw5MHLO0rczJ8 qYH95rVrEDzjR056ZGGk8/oCiyVNaVIyLA/74x5H8a7UkezjvvlLd7h+3nAQRCNH EO2AHR4SlP8x9xS4uFHVUUsltC61vPn8+JvTB8VCZ5Ei9FX9G4du6AsBEF2sRJKM jx1NOcH83PAsaVF7CtSLZUdyCWjPaB8EyI7YLHIABnfV1EfMFhvVcZQ2IAGeEi+M bLB8TOumSXxW/LP9y7i34Cmj3t5z+c+beTI6iUL6pSoB1jYoYRphWC7RkfO2IP/B y/Ht/ea2fSfbSzDJjuwSyUWyrPO6yfRZHm+cIg6b7+IAuFI2aUXvmOcejQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGE9SCy5P9DScveW1B58o57pGrR2MB8GA1UdIwQY MBaAFKpTzSxYSj3BYgi6k7DbdHc7PyO+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWxQTkxGaEtQY0ZpQ0xxVHNOdDBkenNfSTc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9lNjcwYTctYWQ3OC00NTdlLWFkODAt MDA3OTc4YmRiMDUyLzEvcWxQTkxGaEtQY0ZpQ0xxVHNOdDBkenNfSTc0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy9lNjcwYTctYWQ3OC00NTdlLWFkODAtMDA3OTc4YmRiMDUy LzEvcWxQTkxGaEtQY0ZpQ0xxVHNOdDBkenNfSTc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYEwSBAXu L3d3H5FIQyyqtMcwafU/LnOMV+g7+4Cp6MWV/45U/7lmZzZV0jb66e+cPbMoLN+T N51ruJG58PjYSyFIRdbZsWdHsVZwgcTQPhB1fOKIUZ4kvzfTA7CfkwU1sBz+FOXg PTkS/ICMw0N3nsaCJRA9+JVVRiEaebIgDdTnGDVU3MpphgYSBQ/w+utJhOpgjp5E xdxg/s6q3lT/InZaT7ZM82GO/8EnmZht7CdkD3y2ZzMGiURXDqVdn+z/lcK33lpR ji3JliuwvoFnkJ7b0gXBMBTRBOZ61r4Oxwm+YPFnKP3llkoZ5vjhm/fv3U7/jhyl hIGqM/Vn3oyXKQ== -----END CERTIFICATE-----Generated at Sun Jan 25 20:11:12 2026 by rpki-client