This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json) Hash identifier: ylANn8kESldV6I1J4JQQd3QI7CP4dXVZ+KGBWz9ceDI= Subject key identifier: C2:5A:0D:E4:02:99:26:71:DD:6D:4A:51:40:12:29:D3:DB:7D:84:1B Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Certificate serial: 019BF5752CFB53CE0BA4BE61229EA676BB51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft Manifest number: 0D49 Signing time: Sun 25 Jan 2026 14:00:55 +0000 Manifest this update: Sun 25 Jan 2026 14:00:55 +0000 Manifest next update: Mon 26 Jan 2026 14:00:55 +0000 Files and hashes: 1: 5pnLPx_2hpy3VygTZwAGCHra7kE.roa (hash: 1oHSHq2YY2wBUKVcldVeO85+GN6kBhjSJ3cQgz8RWLo=) 2: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: EdtTwDKQZAvYcnyAorGftsyQSOfxs57Wgy5+VuBcgek=) 3: KnbEX4UkCWaV7O0wuCkr7A4YupA.roa (hash: LLlXw5GN0fkhrRlbhrlywwISvztA4DkGKjffqRJI8NQ=) 4: ZlWEEzGYFVqbln14VFTl7vY0xlM.roa (hash: 4+sTiTIEM7Q8B0+aFICyPTm4dchReZ/Z4NBsp9md7hs=) 5: hARTp8Mibx8WODEuOIUHpvobncw.roa (hash: xaYjb6X7y2C4MO+aFX5sY8YM6es27SbRjICMp6w4VYw=) 6: yUO-bSyekqEzkSiFcTb4DbKNZ_o.roa (hash: Yz2sZPO7RTS7G2x7CfUC5DUG1B3ygbMjzbaefkWF+54=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:75:2c:fb:53:ce:0b:a4:be:61:22:9e:a6:76:bb:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Validity Not Before: Jan 25 14:00:55 2026 GMT Not After : Jan 26 14:00:55 2026 GMT Subject: CN=c25a0de402992671dd6d4a51401229d3db7d841b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2c:db:30:14:66:45:00:98:68:4b:7e:2d:a3: c6:1e:d5:1e:69:9e:2e:00:5c:c4:d6:04:8a:34:2b: 96:79:d5:ee:99:80:44:3b:12:b0:d1:23:48:11:c2: a8:2e:a0:42:f3:bd:12:66:21:4d:24:7e:d1:02:3b: ac:87:2f:5d:25:50:04:cb:d7:cd:fe:4a:89:82:c2: cd:3f:9c:25:c8:c5:71:97:15:a0:cb:45:79:d9:b5: ad:3a:8e:30:2f:3a:f5:38:d7:ea:19:1c:97:11:26: 25:5e:ed:24:f6:fb:e9:ed:63:69:ce:fc:1c:d7:b7: 3e:15:ca:a8:e1:eb:1f:23:69:8f:22:4e:9e:2f:79: b0:6d:42:48:88:78:66:10:ee:02:09:2b:96:d4:89: 34:e5:85:85:01:c9:33:49:2a:49:a1:a4:80:a7:a2: e7:38:ef:da:62:33:d3:e8:8c:b3:0e:f4:ff:9c:73: 2a:0a:45:dc:0d:27:fe:0f:ca:08:04:51:47:65:34: aa:5f:47:21:fb:99:e3:6c:cf:39:c3:47:dd:4e:1b: 72:56:58:af:dc:dc:6b:3e:06:b1:1e:53:75:48:6a: 96:4f:8a:1d:f4:ac:99:1a:2e:c9:c9:20:99:55:58: 8f:16:61:ea:78:22:48:c8:33:35:7a:ab:1e:4b:0f: 14:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:5A:0D:E4:02:99:26:71:DD:6D:4A:51:40:12:29:D3:DB:7D:84:1B X509v3 Authority Key Identifier: keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:d2:69:fe:e8:2b:da:14:f8:26:2a:dc:61:f0:81:4d:df:3a: 37:a4:35:fe:8f:09:52:6a:59:8f:90:7e:c0:e6:a5:21:c5:b2: 8f:7d:e6:ba:21:74:be:2a:de:71:8c:52:c5:9e:03:cc:4d:24: 56:f1:a7:5a:69:bb:e3:a0:47:5e:8c:b1:dc:49:0f:91:a8:24: 38:eb:11:c0:f8:ef:ff:0b:91:31:99:d3:0f:a6:7b:69:dc:99: 49:cc:b0:f8:98:86:9e:c3:ab:ee:6a:6d:fe:50:83:42:ba:a0: 32:00:de:1c:9f:0e:b3:87:63:7d:4b:e2:46:c5:69:c5:08:3f: 16:a8:4c:d8:b9:bd:d0:2a:f3:83:bd:38:1e:e5:34:ac:c4:35: 0e:7c:a6:7c:74:b7:be:9c:dc:3f:3e:7f:47:e4:cb:1f:6e:3b: 73:8e:62:69:25:9a:23:93:f1:c8:27:71:79:b3:73:1a:e6:75: ca:ba:84:37:48:39:4a:56:f6:bc:ea:40:79:03:b7:3f:39:b0: d4:b1:f8:43:45:2a:6c:be:ed:0d:30:c6:79:86:e3:b7:60:54: 86:17:cb:7e:75:ec:8a:36:69:be:41:77:03:24:6a:01:fa:4b: 3d:6d:98:47:31:88:0f:4b:d2:63:72:8d:38:0d:17:dc:19:ba: 64:a8:85:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1dSz7U84LpL5hIp6mdrtRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MGJjYzUwYTlhMzNiYTU2NTFlZmQxYWZlNDBiNmZkYjAy NTU2ZjAwHhcNMjYwMTI1MTQwMDU1WhcNMjYwMTI2MTQwMDU1WjAzMTEwLwYDVQQD EyhjMjVhMGRlNDAyOTkyNjcxZGQ2ZDRhNTE0MDEyMjlkM2RiN2Q4NDFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApyzbMBRmRQCYaEt+LaPGHtUeaZ4u AFzE1gSKNCuWedXumYBEOxKw0SNIEcKoLqBC870SZiFNJH7RAjushy9dJVAEy9fN /kqJgsLNP5wlyMVxlxWgy0V52bWtOo4wLzr1ONfqGRyXESYlXu0k9vvp7WNpzvwc 17c+Fcqo4esfI2mPIk6eL3mwbUJIiHhmEO4CCSuW1Ik05YWFAckzSSpJoaSAp6Ln OO/aYjPT6IyzDvT/nHMqCkXcDSf+D8oIBFFHZTSqX0ch+5njbM85w0fdThtyVliv 3NxrPgaxHlN1SGqWT4od9KyZGi7JySCZVViPFmHqeCJIyDM1eqseSw8U6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMJaDeQCmSZx3W1KUUASKdPbfYQbMB8GA1UdIwQY MBaAFCkLzFCpozulZR79Gv5Atv2wJVbwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYt NzY5ODI0OTNlYTFhLzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYtNzY5ODI0OTNlYTFh LzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPtJp/ugr 2hT4JircYfCBTd86N6Q1/o8JUmpZj5B+wOalIcWyj33muiF0virecYxSxZ4DzE0k VvGnWmm746BHXoyx3EkPkagkOOsRwPjv/wuRMZnTD6Z7adyZScyw+JiGnsOr7mpt /lCDQrqgMgDeHJ8Os4djfUviRsVpxQg/FqhM2Lm90Crzg704HuU0rMQ1DnymfHS3 vpzcPz5/R+TLH247c45iaSWaI5PxyCdxebNzGuZ1yrqEN0g5Slb2vOpAeQO3Pzmw 1LH4Q0UqbL7tDTDGeYbjt2BUhhfLfnXsijZpvkF3AyRqAfpLPW2YRzGID0vSY3KN OA0X3Bm6ZKiFGQ== -----END CERTIFICATE-----Generated at Sun Jan 25 21:11:40 2026 by rpki-client