This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft File: cqpTdXQ1Dyam82tD3DA7njOefuw.mft (raw, json) Hash identifier: O8ETzrQyytyeV6yIZynnxMFeS9V1ZHMLa8YvwS7YjDQ= Subject key identifier: 2D:88:05:5D:1C:E5:6F:7E:61:7A:BF:4B:7A:01:9A:F0:D5:84:10:B2 Authority key identifier: 72:AA:53:75:74:35:0F:26:A6:F3:6B:43:DC:30:3B:9E:33:9E:7E:EC Certificate issuer: /CN=72aa537574350f26a6f36b43dc303b9e339e7eec Certificate serial: 019BFC1C9F2D6AB54E5FAFA5321E561CB5C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cqpTdXQ1Dyam82tD3DA7njOefuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft Manifest number: 0161 Signing time: Mon 26 Jan 2026 21:01:32 +0000 Manifest this update: Mon 26 Jan 2026 21:01:32 +0000 Manifest next update: Tue 27 Jan 2026 21:01:32 +0000 Files and hashes: 1: LB897dXLBM36a7U6SkP9ZIBRp0U.roa (hash: syt+8t+IbVJ3QRitmZH6LwQ2EF86AutEdjHbzKfuLYY=) 2: cqpTdXQ1Dyam82tD3DA7njOefuw.crl (hash: vmnZ9A/oWvhAY5i6WPKpHuAK8p/7t4sIG8Lsot24uUw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft rsync://rpki.ripe.net/repository/DEFAULT/cqpTdXQ1Dyam82tD3DA7njOefuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:1c:9f:2d:6a:b5:4e:5f:af:a5:32:1e:56:1c:b5:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72aa537574350f26a6f36b43dc303b9e339e7eec Validity Not Before: Jan 26 21:01:32 2026 GMT Not After : Jan 27 21:01:32 2026 GMT Subject: CN=2d88055d1ce56f7e617abf4b7a019af0d58410b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:79:7f:6f:db:b9:ff:9b:48:f6:7d:3a:02:e7: 24:dd:62:e3:e9:47:59:01:8d:72:15:fc:a8:be:62: 35:43:53:d4:6f:ca:48:b3:76:aa:f4:c9:52:97:44: 0c:c3:1a:b2:4e:27:12:92:5b:3a:52:d6:bc:0f:da: 6a:dd:a5:4f:5e:f3:04:bf:04:3b:8b:e1:33:9f:9f: 64:fd:97:dd:ba:48:1c:41:af:e6:99:fa:02:7a:cd: 52:0a:6d:81:2c:6c:22:f6:41:79:c4:43:d3:ed:bd: 97:09:96:cb:81:e2:f1:99:7e:f2:54:ce:93:28:50: 18:4b:b8:bf:1c:97:fb:9d:fe:ac:d5:ff:2e:30:ca: 87:c7:a2:05:91:2f:c5:ff:8b:08:26:36:5c:0e:30: 09:d5:6f:a1:da:71:8a:e6:7b:d6:1c:3d:8b:e1:38: 00:45:00:2a:06:b1:6f:e1:14:72:83:ea:ff:26:84: 71:ae:3c:7b:85:a2:7a:07:3f:86:78:3d:bc:8f:c5: 77:22:87:c4:a8:06:ea:67:97:5a:c7:29:97:9b:89: 16:7d:8d:7c:12:4a:9d:1f:51:9e:f5:68:9d:a4:65: df:15:b3:78:9e:2d:c4:d4:cb:1b:1d:ec:42:b7:0b: 61:0a:86:3b:12:db:83:e1:58:48:ef:5b:19:98:03: 1f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:88:05:5D:1C:E5:6F:7E:61:7A:BF:4B:7A:01:9A:F0:D5:84:10:B2 X509v3 Authority Key Identifier: keyid:72:AA:53:75:74:35:0F:26:A6:F3:6B:43:DC:30:3B:9E:33:9E:7E:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cqpTdXQ1Dyam82tD3DA7njOefuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:80:3c:64:70:0a:93:1e:b3:2d:c9:c2:99:ec:3e:00:76:45: 6e:e1:6e:b3:dc:eb:2d:f1:63:f8:3d:46:be:7a:71:57:2a:90: 62:4d:3a:b1:4b:eb:fb:52:7a:c4:c2:27:30:54:39:0d:fa:f3: 72:c9:de:44:37:ea:a3:e8:b6:d1:34:df:8c:9f:14:f8:bd:28: c6:18:83:1c:a5:e2:b8:29:7b:a5:e1:4a:23:a6:6e:68:77:77: 07:c6:d5:40:78:e4:07:4d:a0:ce:d8:7d:7c:1e:a2:51:5d:6b: ac:75:97:ec:76:b3:b3:93:b7:35:6c:ed:90:24:67:63:a0:ac: 37:93:9f:17:2a:8c:ce:40:53:a8:48:f1:bc:4c:5f:c2:e4:14: f5:88:f2:7a:2d:30:fd:46:c4:28:dc:bb:13:98:0d:09:9c:45: bc:c2:ee:42:26:28:38:37:2c:15:5a:3c:fa:37:13:86:be:3b: a3:ee:f3:de:6c:e9:8a:c6:37:97:11:19:2a:a6:5f:db:88:cb: 86:32:ff:56:36:6b:44:34:72:b1:88:6b:e9:f8:9d:41:69:af: 76:b6:d7:aa:d2:6f:c4:aa:1b:4e:a0:25:d3:ae:e2:02:13:76: 25:6e:7d:66:cf:37:74:1d:e5:63:79:3b:0e:10:11:82:d4:65: 37:f2:4b:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8HJ8tarVOX6+lMh5WHLXJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyYWE1Mzc1NzQzNTBmMjZhNmYzNmI0M2RjMzAzYjllMzM5 ZTdlZWMwHhcNMjYwMTI2MjEwMTMyWhcNMjYwMTI3MjEwMTMyWjAzMTEwLwYDVQQD EygyZDg4MDU1ZDFjZTU2ZjdlNjE3YWJmNGI3YTAxOWFmMGQ1ODQxMGIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnl/b9u5/5tI9n06Auck3WLj6UdZ AY1yFfyovmI1Q1PUb8pIs3aq9MlSl0QMwxqyTicSkls6Uta8D9pq3aVPXvMEvwQ7 i+Ezn59k/ZfdukgcQa/mmfoCes1SCm2BLGwi9kF5xEPT7b2XCZbLgeLxmX7yVM6T KFAYS7i/HJf7nf6s1f8uMMqHx6IFkS/F/4sIJjZcDjAJ1W+h2nGK5nvWHD2L4TgA RQAqBrFv4RRyg+r/JoRxrjx7haJ6Bz+GeD28j8V3IofEqAbqZ5daxymXm4kWfY18 EkqdH1Ge9WidpGXfFbN4ni3E1MsbHexCtwthCoY7EtuD4VhI71sZmAMfIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC2IBV0c5W9+YXq/S3oBmvDVhBCyMB8GA1UdIwQY MBaAFHKqU3V0NQ8mpvNrQ9wwO54znn7sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3FwVGRYUTFEeWFtODJ0RDNEQTduak9lZnV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wZjQzODMtNzI2Yy00YWI4LTliMjUt OTZmZDAyYmNlNzY0LzEvY3FwVGRYUTFEeWFtODJ0RDNEQTduak9lZnV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS8wZjQzODMtNzI2Yy00YWI4LTliMjUtOTZmZDAyYmNlNzY0 LzEvY3FwVGRYUTFEeWFtODJ0RDNEQTduak9lZnV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS4A8ZHAK kx6zLcnCmew+AHZFbuFus9zrLfFj+D1GvnpxVyqQYk06sUvr+1J6xMInMFQ5Dfrz csneRDfqo+i20TTfjJ8U+L0oxhiDHKXiuCl7peFKI6ZuaHd3B8bVQHjkB02gzth9 fB6iUV1rrHWX7Hazs5O3NWztkCRnY6CsN5OfFyqMzkBTqEjxvExfwuQU9Yjyei0w /UbEKNy7E5gNCZxFvMLuQiYoODcsFVo8+jcThr47o+7z3mzpisY3lxEZKqZf24jL hjL/VjZrRDRysYhr6fidQWmvdrbXqtJvxKobTqAl067iAhN2JW59Zs83dB3lY3k7 DhARgtRlN/JLsg== -----END CERTIFICATE-----Generated at Tue Jan 27 01:46:10 2026 by rpki-client