This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft File: QYHCLrezLZAdElcA4UDrYAncxto.mft (raw, json) Hash identifier: 8cpVzWF5hwyeet1sOi7MMQguG6XhD0YikfyM3jtiBJI= Subject key identifier: 20:44:42:C9:CF:31:14:2D:03:D3:2D:79:5F:CD:08:04:A7:47:CB:96 Authority key identifier: 41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA Certificate issuer: /CN=4181c22eb7b32d901d125700e140eb6009dcc6da Certificate serial: 019BFA64376B810C9E60BC5B95541242A96A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft Manifest number: 17EF Signing time: Mon 26 Jan 2026 13:00:30 +0000 Manifest this update: Mon 26 Jan 2026 13:00:30 +0000 Manifest next update: Tue 27 Jan 2026 13:00:30 +0000 Files and hashes: 1: QYHCLrezLZAdElcA4UDrYAncxto.crl (hash: i/O1Xz/JG18g+N5ifAtI3RVSb341fdnUKpqA+whGMV0=) 2: amR_0Ln3b6oWcaZ7obIng9Z_o0U.roa (hash: tbRCRQaFz7cg1epOgNM5Qx0T+ZaSIikRXHm5/Cmw7WQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:64:37:6b:81:0c:9e:60:bc:5b:95:54:12:42:a9:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4181c22eb7b32d901d125700e140eb6009dcc6da Validity Not Before: Jan 26 13:00:30 2026 GMT Not After : Jan 27 13:00:30 2026 GMT Subject: CN=204442c9cf31142d03d32d795fcd0804a747cb96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b2:77:dc:a1:d9:92:7e:f5:f0:12:bd:bd:f9: 1b:a2:f1:0f:c6:75:ff:f0:27:53:f0:01:cb:b7:22: 39:5e:55:5e:12:87:f3:1c:b3:af:5a:98:b8:6b:5d: 78:f2:63:48:69:07:b2:12:1b:2c:49:e3:ba:fd:d8: 1c:76:43:dc:04:9f:cb:0c:aa:cd:a7:92:56:cc:ba: 71:8a:dd:a5:9d:88:9a:25:b9:86:b7:35:04:ab:75: fd:be:66:e3:f7:b4:0d:5e:30:f3:da:44:e7:37:d5: 62:a2:00:6e:50:d3:9c:99:1f:e4:bd:7e:a3:5d:a9: b6:84:ed:7b:45:a1:dc:02:0a:27:5e:1f:63:78:40: b2:3b:aa:63:ae:9f:04:cd:f8:4c:50:42:dd:0d:ef: 08:6b:bb:8e:df:a3:f0:81:79:44:1a:c1:27:eb:29: b3:80:dc:b3:fc:a6:c6:b7:31:ed:d0:ec:cc:7f:50: d4:18:29:9b:b5:32:af:90:cd:19:b6:93:d3:1e:90: 07:3a:e2:26:94:5a:98:c1:07:50:98:63:40:0c:c6: c3:00:6d:87:86:2d:f9:2b:bd:9f:dc:e8:e8:e7:41: 12:e8:6e:90:ff:13:85:aa:85:b7:2a:5d:83:de:3a: 2a:7a:7a:c1:03:48:f3:e6:74:7a:d5:e7:90:a5:d0: 75:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:44:42:C9:CF:31:14:2D:03:D3:2D:79:5F:CD:08:04:A7:47:CB:96 X509v3 Authority Key Identifier: keyid:41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:55:7b:0a:6f:89:08:ba:c8:e9:4d:d9:45:6b:5f:e2:2e:dd: 75:39:fa:d0:26:cc:ec:7e:9c:fe:0f:3b:56:44:50:79:d4:74: a9:db:7b:48:6c:03:44:2c:b3:cc:0b:35:fe:f3:7e:f6:ea:28: e4:3b:9d:59:b4:62:cd:c4:a8:72:73:3d:94:51:f8:8f:9a:80: 84:21:fb:f9:22:6b:57:95:11:58:ae:02:d9:49:32:64:26:dd: 7c:0f:e8:93:0b:f7:68:09:29:39:79:f8:1e:db:e9:19:0e:3d: 36:12:4c:7f:09:6b:fe:63:cb:f2:52:3b:58:13:3f:45:45:41: 2a:22:07:05:2d:7a:c6:2d:b1:c0:8b:0c:19:5c:b9:73:c2:27: 16:17:9a:11:c7:5f:6e:f0:2f:12:a6:f8:71:7f:84:db:c0:ed: 4b:fc:50:0d:1e:ac:10:9f:e1:98:44:41:8e:33:68:e9:1b:ec: 5d:34:8c:7a:cd:35:90:4a:46:d2:48:3a:db:1c:36:e1:de:86: a6:4d:1d:c7:92:30:f9:2e:c0:52:f4:e1:23:2f:e2:31:3f:b4: f2:b3:b4:79:69:54:a6:1a:ac:c7:05:6f:84:8e:0f:23:ca:73: fe:e3:4e:af:f7:81:2c:11:8b:85:09:41:69:60:dc:dc:be:78: a6:12:56:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6ZDdrgQyeYLxblVQSQqlqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxODFjMjJlYjdiMzJkOTAxZDEyNTcwMGUxNDBlYjYwMDlk Y2M2ZGEwHhcNMjYwMTI2MTMwMDMwWhcNMjYwMTI3MTMwMDMwWjAzMTEwLwYDVQQD EygyMDQ0NDJjOWNmMzExNDJkMDNkMzJkNzk1ZmNkMDgwNGE3NDdjYjk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoLJ33KHZkn718BK9vfkbovEPxnX/ 8CdT8AHLtyI5XlVeEofzHLOvWpi4a1148mNIaQeyEhssSeO6/dgcdkPcBJ/LDKrN p5JWzLpxit2lnYiaJbmGtzUEq3X9vmbj97QNXjDz2kTnN9ViogBuUNOcmR/kvX6j Xam2hO17RaHcAgonXh9jeECyO6pjrp8EzfhMUELdDe8Ia7uO36PwgXlEGsEn6ymz gNyz/KbGtzHt0OzMf1DUGCmbtTKvkM0ZtpPTHpAHOuImlFqYwQdQmGNADMbDAG2H hi35K72f3Ojo50ES6G6Q/xOFqoW3Kl2D3joqenrBA0jz5nR61eeQpdB1cwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCBEQsnPMRQtA9MteV/NCASnR8uWMB8GA1UdIwQY MBaAFEGBwi63sy2QHRJXAOFA62AJ3MbaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9mZmRhZjUtYWNhYS00ZGYzLTllNmMt YzIxNDA5NDQyZmFjLzEvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9mZmRhZjUtYWNhYS00ZGYzLTllNmMtYzIxNDA5NDQyZmFj LzEvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOFV7Cm+J CLrI6U3ZRWtf4i7ddTn60CbM7H6c/g87VkRQedR0qdt7SGwDRCyzzAs1/vN+9uoo 5DudWbRizcSocnM9lFH4j5qAhCH7+SJrV5URWK4C2UkyZCbdfA/okwv3aAkpOXn4 HtvpGQ49NhJMfwlr/mPL8lI7WBM/RUVBKiIHBS16xi2xwIsMGVy5c8InFheaEcdf bvAvEqb4cX+E28DtS/xQDR6sEJ/hmERBjjNo6RvsXTSMes01kEpG0kg62xw24d6G pk0dx5Iw+S7AUvThIy/iMT+08rO0eWlUphqsxwVvhI4PI8pz/uNOr/eBLBGLhQlB aWDc3L54phJWKw== -----END CERTIFICATE-----Generated at Mon Jan 26 21:52:39 2026 by rpki-client