This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft File: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft (raw, json) Hash identifier: MDKMnqr2rPD4PblwcZoWbab4ZkDYb0MeqN+y5Z69ZYw= Subject key identifier: 0D:E0:31:43:DB:9A:72:24:BE:A1:F0:4D:39:FC:A6:B4:3C:3C:1B:BD Authority key identifier: 42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2 Certificate issuer: /CN=42432a319f54b058372fd32528eae51fc90c15b2 Certificate serial: 019BF5ABD2887699CA6F65CB621A868B6756 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft Manifest number: 0496 Signing time: Sun 25 Jan 2026 15:00:36 +0000 Manifest this update: Sun 25 Jan 2026 15:00:36 +0000 Manifest next update: Mon 26 Jan 2026 15:00:36 +0000 Files and hashes: 1: BMVk-OA-2PhTMA5A-sORM1prfMQ.roa (hash: E5dCIP4UxhH+T0A81jHL6M9IWvcHzJuPi1U0SLcMSqE=) 2: MBMbLrsZWEsBNYoYuyLSlAPF2WE.roa (hash: BixX2lk4Zd4GgNurHhSn7REJ4Le+26ZBWj1SCXORrcE=) 3: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl (hash: xV+cMJmuWby62OK4FaXrlS1wERFX5QeCsywTkZEIunY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ab:d2:88:76:99:ca:6f:65:cb:62:1a:86:8b:67:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42432a319f54b058372fd32528eae51fc90c15b2 Validity Not Before: Jan 25 15:00:36 2026 GMT Not After : Jan 26 15:00:36 2026 GMT Subject: CN=0de03143db9a7224bea1f04d39fca6b43c3c1bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e2:df:d9:0a:23:20:e4:ec:4a:91:ea:87:f3: 2f:92:b8:86:31:50:3c:c3:b3:55:dd:b6:4e:ca:fc: 36:67:57:5f:3f:cc:6c:fe:31:19:22:85:92:51:10: 3c:7a:6a:c5:84:4c:fd:82:8f:a1:5f:54:1d:6e:d2: d4:de:76:c4:95:65:73:72:fb:66:41:b7:ec:a6:05: e2:d7:d2:4d:4a:8b:9d:0c:36:53:43:f0:7d:75:a9: df:c0:fd:17:72:60:04:a6:c0:b6:39:e1:8e:3a:40: a1:a9:12:c9:51:0e:c8:6d:ef:3b:a1:70:a9:5f:af: 97:8f:e6:ae:4a:1a:b1:6d:2f:b0:d9:3f:69:ae:99: 82:10:d9:b1:e8:e0:45:79:e9:10:d1:02:48:7b:a6: f5:50:6b:f3:33:c3:15:e3:9a:8b:40:94:9e:95:38: 80:c5:38:4a:63:8b:da:6d:2b:be:6c:00:01:0c:83: cb:d8:c0:37:67:f4:fa:06:15:fc:1f:f7:af:b7:f4: 18:70:5c:35:a9:3e:c6:03:15:e1:61:b7:a1:49:86: 9e:7c:56:d3:dc:da:80:47:78:4b:dc:19:47:c3:3b: 61:70:2c:ef:f5:67:05:d0:bf:d0:26:c4:bb:3e:91: be:ec:ba:b1:1e:88:a6:b0:5b:5d:a4:90:37:1c:bb: ee:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:E0:31:43:DB:9A:72:24:BE:A1:F0:4D:39:FC:A6:B4:3C:3C:1B:BD X509v3 Authority Key Identifier: keyid:42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:2c:26:56:3b:60:d3:f0:66:94:4d:b5:23:e9:28:1a:20:03: 06:11:3a:dd:c5:a8:2c:0b:23:20:3a:18:ff:d7:4b:30:29:b5: 43:6e:1c:a8:c8:e5:33:5b:47:f5:84:02:cc:af:ce:50:60:ca: b8:9f:7c:e7:24:68:3d:95:b6:e0:d0:21:07:0b:db:d5:59:1e: 5d:48:ac:0d:36:b6:77:13:68:60:c1:d5:3a:52:6b:6d:f5:f0: f5:fd:03:a0:a4:d3:00:0f:a5:4b:c4:ae:15:8a:b6:01:c0:8e: c5:14:5f:4e:76:c5:19:02:4d:43:66:12:b6:be:32:58:ed:5e: ad:00:8c:77:3a:2c:f0:a1:31:2e:9e:08:0e:55:e7:9c:d3:ff: fd:14:95:a4:d5:8f:15:15:78:a4:87:fd:99:83:bc:02:c6:11: 08:6a:43:13:f4:f7:96:ca:9d:9c:a2:87:9b:17:56:b2:ed:71: ed:d6:3d:54:3d:43:c8:e9:1b:15:77:5d:4d:5a:6c:e3:80:2e: 93:68:62:86:90:8b:95:51:ff:98:37:40:ae:4f:84:df:21:14: af:c8:ee:0b:21:73:63:98:79:60:93:a1:87:ea:5c:4b:da:2a: 22:79:20:49:41:58:6d:91:2a:c4:83:0b:a3:0d:10:cd:26:17: 8b:5b:41:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1q9KIdpnKb2XLYhqGi2dWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyNDMyYTMxOWY1NGIwNTgzNzJmZDMyNTI4ZWFlNTFmYzkw YzE1YjIwHhcNMjYwMTI1MTUwMDM2WhcNMjYwMTI2MTUwMDM2WjAzMTEwLwYDVQQD EygwZGUwMzE0M2RiOWE3MjI0YmVhMWYwNGQzOWZjYTZiNDNjM2MxYmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAseLf2QojIOTsSpHqh/MvkriGMVA8 w7NV3bZOyvw2Z1dfP8xs/jEZIoWSURA8emrFhEz9go+hX1QdbtLU3nbElWVzcvtm QbfspgXi19JNSoudDDZTQ/B9danfwP0XcmAEpsC2OeGOOkChqRLJUQ7Ibe87oXCp X6+Xj+auShqxbS+w2T9prpmCENmx6OBFeekQ0QJIe6b1UGvzM8MV45qLQJSelTiA xThKY4vabSu+bAABDIPL2MA3Z/T6BhX8H/evt/QYcFw1qT7GAxXhYbehSYaefFbT 3NqAR3hL3BlHwzthcCzv9WcF0L/QJsS7PpG+7LqxHoimsFtdpJA3HLvubQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA3gMUPbmnIkvqHwTTn8prQ8PBu9MB8GA1UdIwQY MBaAFEJDKjGfVLBYNy/TJSjq5R/JDBWyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWtNcU1aOVVzRmczTDlNbEtPcmxIOGtNRmJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS83YWI3OWMtOWRmZi00YTVkLWFlODMt MTMxZGMyYmEyZWM4LzEvUWtNcU1aOVVzRmczTDlNbEtPcmxIOGtNRmJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS83YWI3OWMtOWRmZi00YTVkLWFlODMtMTMxZGMyYmEyZWM4 LzEvUWtNcU1aOVVzRmczTDlNbEtPcmxIOGtNRmJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGywmVjtg 0/BmlE21I+koGiADBhE63cWoLAsjIDoY/9dLMCm1Q24cqMjlM1tH9YQCzK/OUGDK uJ985yRoPZW24NAhBwvb1VkeXUisDTa2dxNoYMHVOlJrbfXw9f0DoKTTAA+lS8Su FYq2AcCOxRRfTnbFGQJNQ2YStr4yWO1erQCMdzos8KExLp4IDlXnnNP//RSVpNWP FRV4pIf9mYO8AsYRCGpDE/T3lsqdnKKHmxdWsu1x7dY9VD1DyOkbFXddTVps44Au k2hihpCLlVH/mDdArk+E3yEUr8juCyFzY5h5YJOhh+pcS9oqInkgSUFYbZEqxIML ow0QzSYXi1tBng== -----END CERTIFICATE-----Generated at Sun Jan 25 22:34:30 2026 by rpki-client