This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft File: qvHI3UCIS0nwiAZNPBANKhiahHQ.mft (raw, json) Hash identifier: OUaYW1ZcCk7cPFP98sPtpx0+7Pnvr2l89LtIx/IqVTk= Subject key identifier: 17:61:98:81:AC:9C:27:8C:15:BF:FD:47:C8:CB:83:AD:20:35:E0:70 Authority key identifier: AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74 Certificate issuer: /CN=aaf1c8dd40884b49f088064d3c100d2a189a8474 Certificate serial: 019BF98907754FEC86F159CCFF43E29B709F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft Manifest number: 0447 Signing time: Mon 26 Jan 2026 09:01:05 +0000 Manifest this update: Mon 26 Jan 2026 09:01:05 +0000 Manifest next update: Tue 27 Jan 2026 09:01:05 +0000 Files and hashes: 1: TPinzjQGStjo9WplkE5Cz7wKV1E.roa (hash: PHy3g+7P0F5Q3MN1sN50m0Ft2cJh+htWlf3pquiUF5Y=) 2: qvHI3UCIS0nwiAZNPBANKhiahHQ.crl (hash: 3ypb6sYyM4iLj2MS8CYOUP0KNhXdbhBHidf5Mc+pDZg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:89:07:75:4f:ec:86:f1:59:cc:ff:43:e2:9b:70:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aaf1c8dd40884b49f088064d3c100d2a189a8474 Validity Not Before: Jan 26 09:01:05 2026 GMT Not After : Jan 27 09:01:05 2026 GMT Subject: CN=17619881ac9c278c15bffd47c8cb83ad2035e070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:17:de:0e:ef:74:7e:f8:8e:3c:2a:7b:f7:a9: 42:52:82:7d:64:a1:91:a2:29:cc:83:45:f7:0c:57: 41:56:78:99:8b:82:26:ca:3f:d7:f6:ef:43:bd:9e: 7a:c1:8f:88:69:b1:69:43:4e:35:93:d1:95:08:c5: 40:fd:46:63:96:64:7d:b3:a8:0a:e0:8e:63:11:3f: 8c:e7:f2:5f:35:df:22:77:9e:95:93:0c:59:0e:ac: 51:a2:d4:11:de:5f:1b:b1:07:42:5d:68:5d:63:35: 3e:66:db:84:15:9a:9f:85:83:cd:36:04:dd:58:6c: 88:5b:23:d5:85:a9:eb:68:af:08:d2:21:45:e6:a1: 7f:4c:c8:e8:68:80:c7:ac:7e:14:47:be:92:fd:30: e0:de:5a:fe:2d:82:80:59:b7:68:2c:a8:0e:ab:e2: 02:5b:43:df:b2:83:1e:6c:5d:6d:1c:1b:f6:1c:fb: 40:2b:81:b7:8b:38:dc:bc:00:01:e3:22:c8:37:c2: d4:9a:55:77:db:30:47:25:3b:61:6e:62:94:9c:53: 84:89:c7:de:ab:2b:af:83:76:4c:aa:e0:f5:4d:d4: 39:be:f2:7f:bf:a8:1e:bd:67:41:31:69:6f:85:d8: 47:1d:59:3e:91:60:58:9b:09:92:25:cb:8e:fc:c7: f7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:61:98:81:AC:9C:27:8C:15:BF:FD:47:C8:CB:83:AD:20:35:E0:70 X509v3 Authority Key Identifier: keyid:AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:66:c3:e3:0b:2e:68:5a:35:d3:6a:ca:9d:17:27:7c:c3:ce: bf:ed:04:00:ca:52:db:d7:6f:8c:82:39:4b:de:ee:ae:c8:af: d4:ff:b4:df:d4:a7:cf:f3:8f:f8:47:2c:77:a0:e3:ec:35:3b: 24:0e:51:84:c8:ad:69:e7:2d:a3:9f:80:66:f4:14:70:7c:36: 50:e5:6a:7d:ae:05:7c:de:55:8f:77:29:02:5e:d6:cf:0d:03: d3:a5:d0:a0:bb:ca:09:85:42:be:fe:f0:89:cd:50:e4:77:ba: ff:c3:96:43:22:28:72:a9:a0:a4:f5:49:0d:c3:71:f7:63:b6: 54:d5:aa:63:37:f9:85:11:72:34:62:8b:e8:00:3b:59:79:fe: bf:26:49:6a:15:38:5e:f2:f1:19:15:2b:a7:2d:a8:42:37:39: d2:aa:15:ec:3f:93:78:54:be:ae:d2:60:cc:31:72:fc:26:82: 57:d2:0c:a8:f1:0f:91:bf:ad:c7:51:e3:29:de:9e:77:84:6d: 7c:99:14:5b:3f:f2:ee:ac:93:21:64:c9:ae:53:87:d0:23:7f: fb:ce:41:f8:88:c6:35:8d:ef:b0:89:d6:84:6e:69:dd:6e:a7: e1:4c:d6:01:07:d8:9e:6b:62:3d:c5:49:c2:3a:3d:7f:1e:95: fa:37:f6:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5iQd1T+yG8VnM/0Pim3CfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhZjFjOGRkNDA4ODRiNDlmMDg4MDY0ZDNjMTAwZDJhMTg5 YTg0NzQwHhcNMjYwMTI2MDkwMTA1WhcNMjYwMTI3MDkwMTA1WjAzMTEwLwYDVQQD EygxNzYxOTg4MWFjOWMyNzhjMTViZmZkNDdjOGNiODNhZDIwMzVlMDcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4hfeDu90fviOPCp796lCUoJ9ZKGR oinMg0X3DFdBVniZi4Imyj/X9u9DvZ56wY+IabFpQ041k9GVCMVA/UZjlmR9s6gK 4I5jET+M5/JfNd8id56VkwxZDqxRotQR3l8bsQdCXWhdYzU+ZtuEFZqfhYPNNgTd WGyIWyPVhanraK8I0iFF5qF/TMjoaIDHrH4UR76S/TDg3lr+LYKAWbdoLKgOq+IC W0PfsoMebF1tHBv2HPtAK4G3izjcvAAB4yLIN8LUmlV32zBHJTthbmKUnFOEicfe qyuvg3ZMquD1TdQ5vvJ/v6gevWdBMWlvhdhHHVk+kWBYmwmSJcuO/Mf38QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBdhmIGsnCeMFb/9R8jLg60gNeBwMB8GA1UdIwQY MBaAFKrxyN1AiEtJ8IgGTTwQDSoYmoR0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXZISTNVQ0lTMG53aUFaTlBCQU5LaGlhaEhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8zMzkwMGMtZTZjZS00NDRlLWJjOTYt M2IzMzlkMDgxZjgzLzEvcXZISTNVQ0lTMG53aUFaTlBCQU5LaGlhaEhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi8zMzkwMGMtZTZjZS00NDRlLWJjOTYtM2IzMzlkMDgxZjgz LzEvcXZISTNVQ0lTMG53aUFaTlBCQU5LaGlhaEhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUGbD4wsu aFo102rKnRcnfMPOv+0EAMpS29dvjII5S97ursiv1P+039Snz/OP+Ecsd6Dj7DU7 JA5RhMitaecto5+AZvQUcHw2UOVqfa4FfN5Vj3cpAl7Wzw0D06XQoLvKCYVCvv7w ic1Q5He6/8OWQyIocqmgpPVJDcNx92O2VNWqYzf5hRFyNGKL6AA7WXn+vyZJahU4 XvLxGRUrpy2oQjc50qoV7D+TeFS+rtJgzDFy/CaCV9IMqPEPkb+tx1HjKd6ed4Rt fJkUWz/y7qyTIWTJrlOH0CN/+85B+IjGNY3vsInWhG5p3W6n4UzWAQfYnmtiPcVJ wjo9fx6V+jf2qA== -----END CERTIFICATE-----Generated at Mon Jan 26 15:04:57 2026 by rpki-client