This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft File: q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft (raw, json) Hash identifier: fMsIEotplq6DeJSL1SONW6tKYs9Gaat2oTposf7EsjU= Subject key identifier: 52:77:A4:71:CA:E9:B5:E2:70:D0:CF:99:90:B9:8E:12:17:E9:AE:FF Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac Certificate serial: 019BE00027A13512D62862B38A77018B9380 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft Manifest number: 1821 Signing time: Wed 21 Jan 2026 10:01:04 +0000 Manifest this update: Wed 21 Jan 2026 10:01:04 +0000 Manifest next update: Thu 22 Jan 2026 10:01:04 +0000 Files and hashes: 1: 7QXSQMVR5e3PA33Tbe1jUFBiBtU.roa (hash: Fu/x5ydAHbzxjRuQ9kPsYtD1frLQkvc1el/MBrSoppE=) 2: KrNmRR4hrk8plssZBHDOJNr9Ryg.roa (hash: HDzmGWPUIRpUxMQHSK5rxjukfcM5P9MYRi+LIu0onOw=) 3: NIWJ9b544URGWTLtmkZjvf2kxIA.roa (hash: DSfziWB0uqzODbT1D3jvb0WNAfepSpfXbax16O29J9U=) 4: dj4ZXghPaYir6X7JgZe9YTcMpRo.roa (hash: BucX8mubJ6q4sMyFgYhHUWCEzv7hjSRMk62tlks0oX4=) 5: imKnlCbG82nv79I7GIs-Cf3bI6Y.roa (hash: eCcCj1ficBtOTcxFVWC/9P3nMu8rE+7UYMnKQ2Ga9Os=) 6: q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl (hash: Prc87J8T9B2G/NybUF0zwlfv7glj0VMuuKVWERPnvZw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 10:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:00:27:a1:35:12:d6:28:62:b3:8a:77:01:8b:93:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac Validity Not Before: Jan 21 10:01:04 2026 GMT Not After : Jan 22 10:01:04 2026 GMT Subject: CN=5277a471cae9b5e270d0cf9990b98e1217e9aeff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3d:0e:d4:b6:17:d4:8d:8c:eb:21:f7:46:25: a2:42:64:a7:ce:12:af:ad:f3:28:21:0f:8f:f0:4e: 48:98:24:cb:df:ae:70:4a:90:3c:4d:91:c8:e4:22: 8c:5a:9a:3b:49:81:d7:60:fc:8d:1e:b7:23:6f:de: 76:70:91:ae:ee:16:7c:73:6c:ee:eb:87:31:ab:2b: 03:d7:de:f7:72:63:a8:e2:25:dd:51:3c:de:6a:c4: 32:69:9f:9d:87:7c:0b:71:22:8a:64:91:f2:a4:92: ac:7c:50:06:78:ab:38:43:96:00:89:8c:bd:5a:da: a6:f3:f5:d3:71:37:44:af:3c:15:06:f4:16:e4:6d: ee:9d:fa:e1:2d:82:9a:cd:59:a0:30:67:4e:79:2e: f8:13:8d:75:94:f2:7a:41:bf:87:f6:4d:aa:f1:03: 33:5a:c8:25:dd:6f:5b:89:08:80:ca:3b:13:67:c4: de:6c:4c:9e:48:11:1c:0e:6d:14:2d:55:ab:6a:99: d1:cd:b7:f2:27:b0:4a:89:31:e9:ae:20:61:53:34: 4a:ff:2b:f4:ad:29:88:68:63:a1:c9:66:66:67:d6: c9:81:23:cc:b8:d2:b6:4d:b3:b1:3e:f7:f7:7d:36: 64:75:aa:c4:3c:5a:7d:55:3b:c9:b7:a3:d1:a5:9c: 5e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:77:A4:71:CA:E9:B5:E2:70:D0:CF:99:90:B9:8E:12:17:E9:AE:FF X509v3 Authority Key Identifier: keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:75:ce:4b:95:09:e2:40:55:b5:76:f7:62:37:c6:0f:c8:96: ad:13:44:f5:10:31:d9:8b:d0:bb:02:d9:24:e3:7e:cb:d1:e4: 5d:b1:f0:b8:8c:ee:d7:a6:ab:4f:86:ed:27:98:22:15:fb:d7: 80:b5:3a:d2:4d:a8:59:66:6b:57:2e:d3:27:95:e7:c0:b2:c2: 60:67:e8:de:32:d8:ce:5b:89:44:d5:1c:de:37:aa:c9:65:4e: bb:49:74:c5:89:8e:49:ed:0e:31:29:62:3a:df:24:fe:51:ff: ef:d7:50:4e:46:a1:23:77:6c:bc:e6:75:cf:cc:67:51:b2:c5: c5:7f:de:da:14:77:4a:c8:43:75:15:52:7e:cf:12:1e:7c:42: 10:bc:c6:b4:1e:9a:c2:be:ba:33:f7:5b:76:0f:49:1e:bf:24: c2:5f:24:9f:67:98:1e:4c:45:02:8f:69:c7:0b:38:70:0e:aa: 17:c5:96:ef:87:a0:dc:29:ec:0f:c0:63:3d:c0:f0:18:ad:c4: 61:c2:06:3b:91:96:ab:02:75:06:d2:a8:93:56:5d:0f:94:6c: f4:f3:78:d8:08:1e:17:68:36:96:f1:c1:31:2f:5b:98:bc:e7: 30:3c:9a:f7:8e:43:79:50:db:60:e5:ca:40:eb:db:c7:da:8f: 95:92:f4:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvgACehNRLWKGKzincBi5OAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiYmFkM2RlODMxZGE5NDIyMmMxYWRkMTA0Y2FmNGMzMjQ3 Njg5YWMwHhcNMjYwMTIxMTAwMTA0WhcNMjYwMTIyMTAwMTA0WjAzMTEwLwYDVQQD Eyg1Mjc3YTQ3MWNhZTliNWUyNzBkMGNmOTk5MGI5OGUxMjE3ZTlhZWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvD0O1LYX1I2M6yH3RiWiQmSnzhKv rfMoIQ+P8E5ImCTL365wSpA8TZHI5CKMWpo7SYHXYPyNHrcjb952cJGu7hZ8c2zu 64cxqysD1973cmOo4iXdUTzeasQyaZ+dh3wLcSKKZJHypJKsfFAGeKs4Q5YAiYy9 Wtqm8/XTcTdErzwVBvQW5G3unfrhLYKazVmgMGdOeS74E411lPJ6Qb+H9k2q8QMz Wsgl3W9biQiAyjsTZ8TebEyeSBEcDm0ULVWrapnRzbfyJ7BKiTHpriBhUzRK/yv0 rSmIaGOhyWZmZ9bJgSPMuNK2TbOxPvf3fTZkdarEPFp9VTvJt6PRpZxetQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFJ3pHHK6bXicNDPmZC5jhIX6a7/MB8GA1UdIwQY MBaAFKu6096DHalCIsGt0QTK9MMkdomsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTdyVDNvTWRxVUlpd2EzUkJNcjB3eVIyaWF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZTgxNDktZDUzYy00OTkyLWJkMDct NTVjNDM0ZWVjOTZjLzEvcTdyVDNvTWRxVUlpd2EzUkJNcjB3eVIyaWF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy84ZTgxNDktZDUzYy00OTkyLWJkMDctNTVjNDM0ZWVjOTZj LzEvcTdyVDNvTWRxVUlpd2EzUkJNcjB3eVIyaWF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL3XOS5UJ 4kBVtXb3YjfGD8iWrRNE9RAx2YvQuwLZJON+y9HkXbHwuIzu16arT4btJ5giFfvX gLU60k2oWWZrVy7TJ5XnwLLCYGfo3jLYzluJRNUc3jeqyWVOu0l0xYmOSe0OMSli Ot8k/lH/79dQTkahI3dsvOZ1z8xnUbLFxX/e2hR3SshDdRVSfs8SHnxCELzGtB6a wr66M/dbdg9JHr8kwl8kn2eYHkxFAo9pxws4cA6qF8WW74eg3CnsD8BjPcDwGK3E YcIGO5GWqwJ1BtKok1ZdD5Rs9PN42AgeF2g2lvHBMS9bmLznMDya945DeVDbYOXK QOvbx9qPlZL04g== -----END CERTIFICATE-----Generated at Wed Jan 21 17:01:17 2026 by rpki-client