This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft File: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft (raw, json) Hash identifier: qmGQOMF4OBUoUSb8J/aEbeWtD+wy3Hpb85CPO/yOnIQ= Subject key identifier: B5:57:A0:C8:2C:B7:7B:B2:9D:54:8F:04:A6:57:8F:FE:E1:B5:2E:C8 Authority key identifier: 74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07 Certificate issuer: /CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907 Certificate serial: 019BF91BFC416489048FE36DABB4F80ADA9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft Manifest number: 17E8 Signing time: Mon 26 Jan 2026 07:01:59 +0000 Manifest this update: Mon 26 Jan 2026 07:01:59 +0000 Manifest next update: Tue 27 Jan 2026 07:01:59 +0000 Files and hashes: 1: T4BJnDBfE6AyBSAWAjPZ1GzLlMM.roa (hash: SXBhd3/vnyIoPB/kDRi62FVnMbysfno7J5T9Eftc8tY=) 2: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl (hash: WU/tWwGYT07BCZqPwFfircGR27/VIIpauPZUzmAn97E=) 3: tSpDrZGtdp0mH1aXKivR6nDrhuY.roa (hash: xkSEr+C7WhhCLocSo1zhSLhZi6gcFYi1jnV4sR3gnUE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:fc:41:64:89:04:8f:e3:6d:ab:b4:f8:0a:da:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907 Validity Not Before: Jan 26 07:01:59 2026 GMT Not After : Jan 27 07:01:59 2026 GMT Subject: CN=b557a0c82cb77bb29d548f04a6578ffee1b52ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:15:51:ff:30:20:0f:88:36:e5:9c:0b:e5:45: 2e:3e:20:c4:f6:cd:b9:6c:ed:9f:21:ff:63:45:56: de:fd:a2:27:24:74:df:c0:18:eb:2d:f6:e4:59:b8: 84:d4:92:a9:4e:9f:c0:9c:55:8a:e7:4d:66:a7:d8: 06:ef:cf:4c:8a:6b:ab:fd:36:80:81:2b:64:98:7a: 65:c7:ed:01:65:47:b3:e5:03:14:fa:ce:4b:5c:b6: 99:60:d3:d3:44:90:33:88:b4:84:20:07:5d:00:3b: 82:fd:e9:db:6c:d2:52:ba:45:0e:77:ab:fb:23:d6: 46:cb:c7:b6:84:f3:09:67:49:2e:05:5a:29:85:d1: 93:79:5e:2d:4f:22:12:2f:e1:94:c9:00:ee:9d:da: 00:db:ff:8b:20:5e:1e:8f:77:c8:65:ca:23:37:38: 9f:07:93:7e:95:bb:ea:73:92:a8:4c:ee:f0:23:e3: de:40:c9:a1:26:6a:45:79:a1:ca:2a:6c:8f:8b:0a: d5:bd:c7:77:7c:2c:28:a7:f4:75:b2:14:da:1f:83: a1:b2:43:2f:23:45:1a:b8:d1:b9:2a:5c:ca:3c:97: fb:d4:f8:e4:de:ec:ed:88:6d:15:f6:46:41:93:94: 87:7b:1f:ac:6b:bb:09:0f:73:68:f0:aa:1c:4d:f0: e9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:57:A0:C8:2C:B7:7B:B2:9D:54:8F:04:A6:57:8F:FE:E1:B5:2E:C8 X509v3 Authority Key Identifier: keyid:74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:09:9f:18:2b:a9:5f:89:b6:84:9a:7e:b5:cc:ea:4f:31:85: 07:63:b2:1e:62:2b:61:22:5e:b5:b1:8c:1b:32:05:c0:8d:76: ca:ba:d8:5e:1b:fb:4f:2a:c3:26:08:4d:3c:41:77:25:49:87: 3b:ad:c6:28:06:e7:19:c3:3a:ef:cc:1d:9c:c3:65:3d:9c:3f: 6b:db:61:78:2c:dc:a0:51:b2:12:a9:de:2c:97:53:df:0d:e0: 69:25:fc:2a:6d:c4:a8:30:c5:bf:f2:b0:42:5b:ab:a3:77:25: 61:76:55:64:47:d0:13:72:cd:a4:9d:17:ab:ce:54:12:30:f5: 5d:0f:89:1d:32:b4:1d:d4:27:54:2b:83:a4:cd:58:82:e4:e7: fb:ee:fc:dc:a2:71:c2:18:14:94:a1:20:30:06:e7:68:08:11: ff:07:b4:53:69:49:aa:42:b1:5c:30:cd:60:4f:78:c3:a0:f2: 87:ec:48:11:6b:45:37:ce:17:53:e6:c8:c9:e9:47:32:d1:6f: 30:c3:4b:00:2a:55:07:0e:f4:63:25:69:ec:32:e2:95:48:e5: 29:43:f8:23:d2:24:5f:d3:35:e8:e8:68:78:ee:f9:30:8e:04: 13:72:2e:b9:fc:bc:67:f9:8a:b1:46:03:f4:af:dd:9a:38:e1: e8:30:53:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5G/xBZIkEj+Ntq7T4CtqbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZTQzZjllNWFlM2Y2ZWFmYjUwNjhhZTg4ZjE4YzI5ZTQ0 MzU5MDcwHhcNMjYwMTI2MDcwMTU5WhcNMjYwMTI3MDcwMTU5WjAzMTEwLwYDVQQD EyhiNTU3YTBjODJjYjc3YmIyOWQ1NDhmMDRhNjU3OGZmZWUxYjUyZWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1hVR/zAgD4g25ZwL5UUuPiDE9s25 bO2fIf9jRVbe/aInJHTfwBjrLfbkWbiE1JKpTp/AnFWK501mp9gG789Mimur/TaA gStkmHplx+0BZUez5QMU+s5LXLaZYNPTRJAziLSEIAddADuC/enbbNJSukUOd6v7 I9ZGy8e2hPMJZ0kuBVophdGTeV4tTyISL+GUyQDundoA2/+LIF4ej3fIZcojNzif B5N+lbvqc5KoTO7wI+PeQMmhJmpFeaHKKmyPiwrVvcd3fCwop/R1shTaH4OhskMv I0UauNG5KlzKPJf71Pjk3uztiG0V9kZBk5SHex+sa7sJD3No8KocTfDpHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLVXoMgst3uynVSPBKZXj/7htS7IMB8GA1UdIwQY MBaAFHTkP55a4/bq+1BorojxjCnkQ1kHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE9RX25scmo5dXI3VUdpdWlQR01LZVJEV1FjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9kYTMzYWUtMTZjYy00YzlhLWJmOWMt NzE3OTk4YWEzY2ZmLzEvZE9RX25scmo5dXI3VUdpdWlQR01LZVJEV1FjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS9kYTMzYWUtMTZjYy00YzlhLWJmOWMtNzE3OTk4YWEzY2Zm LzEvZE9RX25scmo5dXI3VUdpdWlQR01LZVJEV1FjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADQmfGCup X4m2hJp+tczqTzGFB2OyHmIrYSJetbGMGzIFwI12yrrYXhv7TyrDJghNPEF3JUmH O63GKAbnGcM678wdnMNlPZw/a9theCzcoFGyEqneLJdT3w3gaSX8Km3EqDDFv/Kw Qluro3clYXZVZEfQE3LNpJ0Xq85UEjD1XQ+JHTK0HdQnVCuDpM1YguTn++783KJx whgUlKEgMAbnaAgR/we0U2lJqkKxXDDNYE94w6Dyh+xIEWtFN84XU+bIyelHMtFv MMNLACpVBw70YyVp7DLilUjlKUP4I9IkX9M16OhoeO75MI4EE3Iuufy8Z/mKsUYD 9K/dmjjh6DBTUg== -----END CERTIFICATE-----Generated at Mon Jan 26 15:04:59 2026 by rpki-client