This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft File: QM_TpJvHHnSg0L9-NGyomylZehI.mft (raw, json) Hash identifier: ydK9k3VBG+cYX/xKAtFi2SCdykkfDnTY+PLl5eIHtnY= Subject key identifier: FE:30:1F:12:F9:43:07:53:73:96:A2:0B:73:48:8D:A2:DD:30:14:7B Authority key identifier: 40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12 Certificate issuer: /CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12 Certificate serial: 019BFB092270FF094EF549F74A1BD3122C17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft Manifest number: 17EB Signing time: Mon 26 Jan 2026 16:00:38 +0000 Manifest this update: Mon 26 Jan 2026 16:00:38 +0000 Manifest next update: Tue 27 Jan 2026 16:00:38 +0000 Files and hashes: 1: QM_TpJvHHnSg0L9-NGyomylZehI.crl (hash: kyPNRUZcBBozMmUhbZZH284Z6kVEMhkvyeV14iK+Y0A=) 2: wt3Ui80OQ2RXah5MDzF8MWqly2Q.roa (hash: J67sJRmcaTP47jMbuSDSqG6+LX3lK8JypZ67sDFFc/U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:09:22:70:ff:09:4e:f5:49:f7:4a:1b:d3:12:2c:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12 Validity Not Before: Jan 26 16:00:38 2026 GMT Not After : Jan 27 16:00:38 2026 GMT Subject: CN=fe301f12f94307537396a20b73488da2dd30147b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:75:c2:54:f9:1b:6a:cb:9c:9a:04:84:52:f9: 79:97:da:c3:d9:47:fb:3f:65:da:06:bc:ea:26:c0: ca:68:e4:fd:0a:76:7e:4a:f7:4c:6b:64:f4:84:c9: 28:75:30:01:12:67:04:ef:20:ff:4f:19:5e:af:87: 64:30:01:1e:98:bf:cd:6c:8b:66:3e:3b:25:5a:2e: 56:ec:f7:fa:73:e5:81:c7:63:d8:26:3d:74:1e:dc: 0e:a8:e9:ec:8b:44:0f:4d:17:d2:b3:27:41:09:6d: 18:eb:03:c9:18:61:9a:c9:7b:7f:6c:33:5d:25:47: f2:5c:17:fe:51:34:4d:4c:01:95:0f:ab:b8:f2:bb: d5:46:fd:f1:b2:29:9b:59:39:38:87:57:f7:c1:b6: c3:9d:cb:88:4d:ea:27:c7:96:88:89:1e:ce:7e:c4: ce:72:46:24:d7:3e:3c:6d:14:b3:5b:9b:f1:fa:85: 5d:fd:18:ec:e8:18:ae:d4:cd:77:50:95:2c:a0:ba: 4f:c3:dc:36:28:43:9f:4b:a4:73:d1:e6:fc:79:99: f5:f3:1b:d3:7d:84:fe:68:28:2d:00:15:dd:8f:ad: e6:85:be:53:79:db:63:99:29:78:3f:7d:f9:81:5a: c3:59:ef:be:58:54:dc:43:3e:a7:16:d1:8f:d2:4c: e8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:30:1F:12:F9:43:07:53:73:96:A2:0B:73:48:8D:A2:DD:30:14:7B X509v3 Authority Key Identifier: keyid:40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:14:06:23:9b:5d:bd:41:de:db:8b:84:a8:58:69:67:51:12: ba:c7:f1:9b:f6:38:88:6d:38:b0:29:de:e2:68:29:63:f0:77: 2a:a0:17:f8:c8:a3:23:e1:5e:4d:b7:d7:10:ce:eb:0c:fa:76: 6a:c6:ee:ec:de:77:5f:0a:aa:b6:ee:de:43:63:55:22:41:0b: 88:55:06:1f:49:ae:97:d9:5b:81:bf:6f:8d:dc:0e:de:f2:ad: 3b:22:d5:79:74:3e:8b:d4:6f:83:75:d8:37:3f:7a:e1:66:96: 28:e7:c6:19:b2:9c:4e:e0:7c:58:fe:c2:d0:06:b5:e9:ef:e5: 9d:26:28:86:d0:b4:00:2a:c4:9d:41:b1:d5:7f:ce:32:7d:7f: 19:d0:fe:f6:25:a1:fa:78:bc:03:98:23:24:a8:ad:14:bf:9c: 9c:3f:a3:ac:c4:67:6b:06:28:b8:23:69:db:43:d0:41:d0:0b: 58:85:3a:e7:9b:1a:1d:34:12:4f:80:ce:6b:df:44:f2:fd:d4: 25:11:a1:ca:52:7b:c9:e7:32:cb:cd:0d:92:da:67:1c:b4:7f: 54:c7:d0:1d:ae:6e:ab:7f:5a:e4:8c:f4:05:dd:5e:06:ee:bd: 9c:af:65:45:1c:17:e2:00:b9:7b:8b:ac:ed:fd:51:b5:4f:62: 94:55:42:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7CSJw/wlO9Un3ShvTEiwXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwY2ZkM2E0OWJjNzFlNzRhMGQwYmY3ZTM0NmNhODliMjk1 OTdhMTIwHhcNMjYwMTI2MTYwMDM4WhcNMjYwMTI3MTYwMDM4WjAzMTEwLwYDVQQD EyhmZTMwMWYxMmY5NDMwNzUzNzM5NmEyMGI3MzQ4OGRhMmRkMzAxNDdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnXCVPkbasucmgSEUvl5l9rD2Uf7 P2XaBrzqJsDKaOT9CnZ+SvdMa2T0hMkodTABEmcE7yD/Txler4dkMAEemL/NbItm PjslWi5W7Pf6c+WBx2PYJj10HtwOqOnsi0QPTRfSsydBCW0Y6wPJGGGayXt/bDNd JUfyXBf+UTRNTAGVD6u48rvVRv3xsimbWTk4h1f3wbbDncuITeonx5aIiR7OfsTO ckYk1z48bRSzW5vx+oVd/Rjs6Biu1M13UJUsoLpPw9w2KEOfS6Rz0eb8eZn18xvT fYT+aCgtABXdj63mhb5TedtjmSl4P335gVrDWe++WFTcQz6nFtGP0kzoqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP4wHxL5QwdTc5aiC3NIjaLdMBR7MB8GA1UdIwQY MBaAFEDP06Sbxx50oNC/fjRsqJspWXoSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU1fVHBKdkhIblNnMEw5LU5HeW9teWxaZWhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wYjlmMDctZjE2Ni00Njc1LWIxODUt NjBiNmViYmI3ZTZmLzEvUU1fVHBKdkhIblNnMEw5LU5HeW9teWxaZWhJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS8wYjlmMDctZjE2Ni00Njc1LWIxODUtNjBiNmViYmI3ZTZm LzEvUU1fVHBKdkhIblNnMEw5LU5HeW9teWxaZWhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAExQGI5td vUHe24uEqFhpZ1ESusfxm/Y4iG04sCne4mgpY/B3KqAX+MijI+FeTbfXEM7rDPp2 asbu7N53Xwqqtu7eQ2NVIkELiFUGH0mul9lbgb9vjdwO3vKtOyLVeXQ+i9Rvg3XY Nz964WaWKOfGGbKcTuB8WP7C0Aa16e/lnSYohtC0ACrEnUGx1X/OMn1/GdD+9iWh +ni8A5gjJKitFL+cnD+jrMRnawYouCNp20PQQdALWIU655saHTQST4DOa99E8v3U JRGhylJ7yecyy80NktpnHLR/VMfQHa5uq39a5Iz0Bd1eBu69nK9lRRwX4gC5e4us 7f1RtU9ilFVCxQ== -----END CERTIFICATE-----Generated at Mon Jan 26 19:15:20 2026 by rpki-client