This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/64f999-d26f-4606-a326-ce7a51aa3314/1/QnqV1vkbZ2udcauK4RQZQY3jww4.mft File: QnqV1vkbZ2udcauK4RQZQY3jww4.mft (raw, json) Hash identifier: QzzpXG2pDh+562W9DruFvmAjMjciMvrgn5PX1pvsJ7o= Subject key identifier: 08:D3:C5:9E:9A:8E:0E:89:27:60:5A:A0:1C:38:5D:9F:38:31:10:E2 Authority key identifier: 42:7A:95:D6:F9:1B:67:6B:9D:71:AB:8A:E1:14:19:41:8D:E3:C3:0E Certificate issuer: /CN=427a95d6f91b676b9d71ab8ae11419418de3c30e Certificate serial: 019C1CB9782E1031A6AE9A1B94C04F7255E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QnqV1vkbZ2udcauK4RQZQY3jww4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/64f999-d26f-4606-a326-ce7a51aa3314/1/QnqV1vkbZ2udcauK4RQZQY3jww4.mft Manifest number: 132B Signing time: Mon 02 Feb 2026 05:00:42 +0000 Manifest this update: Mon 02 Feb 2026 05:00:42 +0000 Manifest next update: Tue 03 Feb 2026 05:00:42 +0000 Files and hashes: 1: Ncdi86qG3HQ9DUgWZbEHaW9PcFU.asa (hash: fyniArHiC1WFFBjWeWSZsDgdpxc01uvZWE1DTfuzr84=) 2: QnqV1vkbZ2udcauK4RQZQY3jww4.crl (hash: K916JgkQCLY254dET7qifmU50QZM5+cr7tiICxQnQY0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/64f999-d26f-4606-a326-ce7a51aa3314/1/QnqV1vkbZ2udcauK4RQZQY3jww4.crl rsync://rpki.ripe.net/repository/DEFAULT/97/64f999-d26f-4606-a326-ce7a51aa3314/1/QnqV1vkbZ2udcauK4RQZQY3jww4.mft rsync://rpki.ripe.net/repository/DEFAULT/QnqV1vkbZ2udcauK4RQZQY3jww4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 05:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:b9:78:2e:10:31:a6:ae:9a:1b:94:c0:4f:72:55:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=427a95d6f91b676b9d71ab8ae11419418de3c30e Validity Not Before: Feb 2 05:00:42 2026 GMT Not After : Feb 3 05:00:42 2026 GMT Subject: CN=08d3c59e9a8e0e8927605aa01c385d9f383110e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3b:f2:ce:80:2b:15:74:43:64:45:9b:77:3f: 8e:fa:09:2c:56:2f:05:6c:00:4c:16:08:4b:78:41: 9c:06:a8:94:66:73:91:13:66:2d:26:70:56:46:69: 7b:c0:0c:d2:ca:ee:d5:46:0b:68:42:1a:63:3d:02: 9d:4f:c9:84:7a:9c:8e:a1:ad:c4:3b:a9:e8:52:17: 84:62:0d:d9:eb:9b:67:9c:db:ad:27:cb:21:e6:05: 28:30:62:d1:cf:49:22:48:19:99:ff:99:2e:62:c8: 08:6d:96:dc:55:85:b8:bc:28:e9:41:cd:ae:46:16: 68:57:c2:49:53:ca:18:11:76:9d:e1:1a:2d:21:ff: 8e:87:b9:92:b1:02:4f:ea:32:34:0b:58:73:71:ed: b8:98:d8:24:15:98:ef:4d:02:d0:1e:08:4e:36:f1: a2:f1:7a:95:92:f5:a7:b3:ac:bd:5a:9f:cc:a5:20: 62:d5:df:c0:4a:86:5d:be:e6:81:6a:1b:4f:84:24: a3:04:4b:6d:5e:b5:c4:af:76:12:4d:f8:a0:1c:f3: 4d:35:15:2d:6b:ec:ef:67:74:61:9d:12:2c:0c:51: 43:c2:09:53:cc:42:26:e4:58:08:2f:f4:32:06:b6: 9a:f0:33:5f:92:9b:74:9a:2c:2b:32:c4:57:d9:5e: 56:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:D3:C5:9E:9A:8E:0E:89:27:60:5A:A0:1C:38:5D:9F:38:31:10:E2 X509v3 Authority Key Identifier: keyid:42:7A:95:D6:F9:1B:67:6B:9D:71:AB:8A:E1:14:19:41:8D:E3:C3:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QnqV1vkbZ2udcauK4RQZQY3jww4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/64f999-d26f-4606-a326-ce7a51aa3314/1/QnqV1vkbZ2udcauK4RQZQY3jww4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/64f999-d26f-4606-a326-ce7a51aa3314/1/QnqV1vkbZ2udcauK4RQZQY3jww4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:48:a3:de:33:03:4c:1b:45:1f:3d:27:c2:32:84:3f:6f:60: b7:8c:4a:44:0f:f3:d4:d4:3f:66:63:78:55:a9:d0:66:bf:dd: dd:73:16:e5:a2:eb:34:1f:48:d4:95:12:86:6e:11:0f:51:73: eb:0d:b6:7e:43:c0:4d:e2:73:fb:8e:78:b1:43:b8:d0:66:39: ee:82:59:c5:6a:61:ab:79:16:ac:4b:fc:9e:c0:66:1c:d4:0a: 44:9f:72:61:87:e7:6d:33:cb:57:35:33:57:2a:79:fd:c0:85: 9f:6f:97:d9:6c:76:8c:0d:eb:a6:b8:04:c0:2a:be:8e:a6:fa: 15:4b:cc:2e:ab:75:bb:51:8d:52:9f:dc:a4:4e:bb:c5:9c:01: 26:68:c5:df:37:64:48:42:2f:2a:1d:66:af:f6:3e:fd:ad:cc: c9:40:da:93:be:a8:e9:90:e7:46:25:18:37:07:da:ca:f5:1d: 45:22:63:6d:7d:c6:64:1d:c0:e4:e6:e6:62:bd:5c:dc:b8:3c: e1:cd:ec:5e:83:92:c9:d8:59:9e:87:3f:01:30:c1:a2:cd:63: 3e:e0:8a:e9:4d:d2:99:f4:d0:09:0a:f7:20:2e:50:65:29:07: 5f:a4:d7:2a:52:02:6d:e8:58:c8:35:f6:7d:e3:35:84:a9:5d: 0e:36:25:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwcuXguEDGmrpoblMBPclXkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyN2E5NWQ2ZjkxYjY3NmI5ZDcxYWI4YWUxMTQxOTQxOGRl M2MzMGUwHhcNMjYwMjAyMDUwMDQyWhcNMjYwMjAzMDUwMDQyWjAzMTEwLwYDVQQD EygwOGQzYzU5ZTlhOGUwZTg5Mjc2MDVhYTAxYzM4NWQ5ZjM4MzExMGUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjvyzoArFXRDZEWbdz+O+gksVi8F bABMFghLeEGcBqiUZnORE2YtJnBWRml7wAzSyu7VRgtoQhpjPQKdT8mEepyOoa3E O6noUheEYg3Z65tnnNutJ8sh5gUoMGLRz0kiSBmZ/5kuYsgIbZbcVYW4vCjpQc2u RhZoV8JJU8oYEXad4RotIf+Oh7mSsQJP6jI0C1hzce24mNgkFZjvTQLQHghONvGi 8XqVkvWns6y9Wp/MpSBi1d/ASoZdvuaBahtPhCSjBEttXrXEr3YSTfigHPNNNRUt a+zvZ3RhnRIsDFFDwglTzEIm5FgIL/QyBraa8DNfkpt0miwrMsRX2V5WMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAjTxZ6ajg6JJ2BaoBw4XZ84MRDiMB8GA1UdIwQY MBaAFEJ6ldb5G2drnXGriuEUGUGN48MOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUW5xVjF2a2JaMnVkY2F1SzRSUVpRWTNqd3c0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny82NGY5OTktZDI2Zi00NjA2LWEzMjYt Y2U3YTUxYWEzMzE0LzEvUW5xVjF2a2JaMnVkY2F1SzRSUVpRWTNqd3c0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny82NGY5OTktZDI2Zi00NjA2LWEzMjYtY2U3YTUxYWEzMzE0 LzEvUW5xVjF2a2JaMnVkY2F1SzRSUVpRWTNqd3c0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd0ij3jMD TBtFHz0nwjKEP29gt4xKRA/z1NQ/ZmN4VanQZr/d3XMW5aLrNB9I1JUShm4RD1Fz 6w22fkPATeJz+454sUO40GY57oJZxWphq3kWrEv8nsBmHNQKRJ9yYYfnbTPLVzUz Vyp5/cCFn2+X2Wx2jA3rprgEwCq+jqb6FUvMLqt1u1GNUp/cpE67xZwBJmjF3zdk SEIvKh1mr/Y+/a3MyUDak76o6ZDnRiUYNwfayvUdRSJjbX3GZB3A5ObmYr1c3Lg8 4c3sXoOSydhZnoc/ATDBos1jPuCK6U3SmfTQCQr3IC5QZSkHX6TXKlICbehYyDX2 feM1hKldDjYl0g== -----END CERTIFICATE-----Generated at Mon Feb 2 08:18:01 2026 by rpki-client