This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json) Hash identifier: h84zBRXtGtzdtj2631jZYpn43HaSMeQszSP0ELnibGo= Subject key identifier: 9B:5C:44:51:EE:3A:E7:37:3C:D5:EF:A3:74:B8:24:21:7C:F9:AC:4D Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Certificate serial: 019BF951F077C629BDBE1DFC62E310137EE2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft Manifest number: 0D4B Signing time: Mon 26 Jan 2026 08:00:55 +0000 Manifest this update: Mon 26 Jan 2026 08:00:55 +0000 Manifest next update: Tue 27 Jan 2026 08:00:55 +0000 Files and hashes: 1: 5pnLPx_2hpy3VygTZwAGCHra7kE.roa (hash: 1oHSHq2YY2wBUKVcldVeO85+GN6kBhjSJ3cQgz8RWLo=) 2: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: /3ffGIHcMN8Pr95bS9Qhe7rZ/xsaDQbpsmaxDz6XkfY=) 3: KnbEX4UkCWaV7O0wuCkr7A4YupA.roa (hash: LLlXw5GN0fkhrRlbhrlywwISvztA4DkGKjffqRJI8NQ=) 4: ZlWEEzGYFVqbln14VFTl7vY0xlM.roa (hash: 4+sTiTIEM7Q8B0+aFICyPTm4dchReZ/Z4NBsp9md7hs=) 5: hARTp8Mibx8WODEuOIUHpvobncw.roa (hash: xaYjb6X7y2C4MO+aFX5sY8YM6es27SbRjICMp6w4VYw=) 6: yUO-bSyekqEzkSiFcTb4DbKNZ_o.roa (hash: Yz2sZPO7RTS7G2x7CfUC5DUG1B3ygbMjzbaefkWF+54=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:51:f0:77:c6:29:bd:be:1d:fc:62:e3:10:13:7e:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Validity Not Before: Jan 26 08:00:55 2026 GMT Not After : Jan 27 08:00:55 2026 GMT Subject: CN=9b5c4451ee3ae7373cd5efa374b824217cf9ac4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:51:7a:a4:8b:c3:83:34:1a:10:60:44:6d:4e: 0e:02:c6:32:32:7a:71:aa:4a:75:9c:6d:30:5d:1e: 62:b9:a0:03:8e:da:2e:9e:c4:15:12:e9:5e:11:b7: 2a:3b:68:59:73:f3:23:2d:25:25:6d:56:2b:5a:57: 6c:d4:47:b8:97:a2:30:6f:ca:46:47:7e:ff:c8:44: 01:a0:4c:6b:17:b1:fb:14:7f:09:be:d2:e1:58:7c: 7c:0b:11:f2:3c:66:29:17:43:78:cc:34:e6:b1:6a: e9:cc:cd:dd:ff:f3:08:82:14:83:c0:77:fb:c3:1a: 16:a5:92:73:97:49:da:35:52:a9:0c:8c:df:f0:5b: 4b:d8:79:64:21:b9:a6:d8:bf:7a:27:23:ef:2a:3a: da:ef:88:b9:c0:42:34:c5:f7:fb:72:f8:78:e9:66: ad:ca:f8:6a:fc:fa:14:4d:89:eb:33:cf:25:4c:bb: b1:02:76:73:ec:62:82:18:7d:2f:3a:3b:bd:7b:85: 2e:05:79:5b:68:07:ac:0b:f5:0b:87:84:55:3e:af: e5:61:f5:f5:d2:b7:53:11:37:68:34:fd:5a:6f:b7: e0:49:0f:93:72:05:1f:4f:bb:d5:07:69:89:d5:3f: ee:b2:13:31:75:a6:79:92:66:e6:04:7d:f6:59:c9: 4d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:5C:44:51:EE:3A:E7:37:3C:D5:EF:A3:74:B8:24:21:7C:F9:AC:4D X509v3 Authority Key Identifier: keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:a1:69:b4:53:2b:91:74:9e:47:ab:2b:c7:02:85:71:86:ec: d5:a2:ad:71:2c:79:5e:ef:44:7e:c5:f5:85:08:a4:ef:10:70: ba:28:1b:90:58:39:05:df:96:5b:66:c4:85:56:20:d3:8a:ee: 26:18:8b:29:7a:b3:3c:08:6e:ba:8d:d5:8b:7a:6c:5b:85:dd: 29:75:3d:10:48:49:e4:d0:46:0b:3e:6f:41:63:df:28:9e:53: 1e:5c:e2:9a:50:91:86:41:44:9d:50:7e:5d:9d:fb:a6:0e:8e: c3:b1:6e:82:64:c8:ac:21:ea:0f:95:4b:f4:99:8a:76:79:0d: df:d7:2f:e8:2d:88:6b:b4:f4:09:d8:59:a9:a4:9a:8e:ab:fe: 84:12:6c:b4:a6:cf:4a:43:0f:81:86:97:80:4c:d3:7b:65:84: 42:9e:e2:c9:d5:ec:ff:10:fb:0d:8c:3c:14:68:08:31:db:70: e8:9b:18:80:b4:95:d9:90:28:69:a6:a9:d7:69:1c:0e:ab:eb: 39:f2:ee:69:52:12:83:51:a0:e7:78:b5:c1:d7:5c:77:d0:47: d3:c3:8a:69:ae:97:14:27:ac:a1:ac:28:34:ce:64:c8:3a:fd: ab:82:90:63:df:3c:70:b9:48:0f:94:52:3a:36:13:06:19:cb: 08:06:eb:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5UfB3xim9vh38YuMQE37iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MGJjYzUwYTlhMzNiYTU2NTFlZmQxYWZlNDBiNmZkYjAy NTU2ZjAwHhcNMjYwMTI2MDgwMDU1WhcNMjYwMTI3MDgwMDU1WjAzMTEwLwYDVQQD Eyg5YjVjNDQ1MWVlM2FlNzM3M2NkNWVmYTM3NGI4MjQyMTdjZjlhYzRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnFF6pIvDgzQaEGBEbU4OAsYyMnpx qkp1nG0wXR5iuaADjtounsQVEuleEbcqO2hZc/MjLSUlbVYrWlds1Ee4l6Iwb8pG R37/yEQBoExrF7H7FH8JvtLhWHx8CxHyPGYpF0N4zDTmsWrpzM3d//MIghSDwHf7 wxoWpZJzl0naNVKpDIzf8FtL2HlkIbmm2L96JyPvKjra74i5wEI0xff7cvh46Wat yvhq/PoUTYnrM88lTLuxAnZz7GKCGH0vOju9e4UuBXlbaAesC/ULh4RVPq/lYfX1 0rdTETdoNP1ab7fgSQ+TcgUfT7vVB2mJ1T/ushMxdaZ5kmbmBH32WclNhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJtcRFHuOuc3PNXvo3S4JCF8+axNMB8GA1UdIwQY MBaAFCkLzFCpozulZR79Gv5Atv2wJVbwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYt NzY5ODI0OTNlYTFhLzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYtNzY5ODI0OTNlYTFh LzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeaFptFMr kXSeR6srxwKFcYbs1aKtcSx5Xu9EfsX1hQik7xBwuigbkFg5Bd+WW2bEhVYg04ru JhiLKXqzPAhuuo3Vi3psW4XdKXU9EEhJ5NBGCz5vQWPfKJ5THlzimlCRhkFEnVB+ XZ37pg6Ow7FugmTIrCHqD5VL9JmKdnkN39cv6C2Ia7T0CdhZqaSajqv+hBJstKbP SkMPgYaXgEzTe2WEQp7iydXs/xD7DYw8FGgIMdtw6JsYgLSV2ZAoaaap12kcDqvr OfLuaVISg1Gg53i1wddcd9BH08OKaa6XFCesoawoNM5kyDr9q4KQY988cLlID5RS OjYTBhnLCAbrUA== -----END CERTIFICATE-----Generated at Mon Jan 26 15:05:02 2026 by rpki-client