This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft File: Q8FllZZq-wus8deTfyRdagUiIaM.mft (raw, json) Hash identifier: MaSgWD24vjgjYakYu7GC7BP9GRFtaA5g3fr0HQ+6uGM= Subject key identifier: 09:64:3C:DF:F3:8A:53:10:79:21:4A:63:2C:5F:D6:3F:59:B3:5C:94 Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3 Certificate issuer: /CN=43c16595966afb0bacf1d7937f245d6a052221a3 Certificate serial: 019BFD9D576AB115B278C640FA898BCA3143 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft Manifest number: 17EF Signing time: Tue 27 Jan 2026 04:01:45 +0000 Manifest this update: Tue 27 Jan 2026 04:01:45 +0000 Manifest next update: Wed 28 Jan 2026 04:01:45 +0000 Files and hashes: 1: 4txRYI484TEAkKZQuGXE7v7kNFE.roa (hash: 0LHuR+m3x801pvrNDlfkYNVRhvh7QTNXeF2avzGdu+o=) 2: 7j99n4d6ANqzBKZIb7AtbN16HNM.roa (hash: rlAo1p9sV9yO7tsi280DXkwJRnsLW38pb6gpoEvvu7w=) 3: Oo3ap3FWMfZFuKT_5X4cPgbvWBY.roa (hash: SClF6a/p5GxrqHhEbYnu5sljGKEXM6UG1fAy0VW6itY=) 4: Q8FllZZq-wus8deTfyRdagUiIaM.crl (hash: 6Zzs4f71LnWNaXlpqOaBcA3klbsVtVhBib5Uc2iBsHg=) 5: ZoLYEk24uuNv33EjJ4m1okSNS6w.roa (hash: aOyue5Aqc/KW4Mnoyy7ahJjLtcQmVKEsi36/Y3I9yHA=) 6: aj9euBKzI3NIH66jZPh8bbmGI6A.roa (hash: 8jTNJ61hr37vcKXTL8TlYqDMnFRq1ith6TwEVeBelwE=) 7: nH1OKpXJbAvAHxN6XWdXMd6gZuY.roa (hash: j3S1I730IB3QQneXnDNotR19hJRoRUA2SbUVmp/YndQ=) 8: ottEKlKze703Xucot2ljZZmoong.roa (hash: 1DtEnDgUDcQi4vqWCrTRW5+Lsqb1kTbcbswrOF8wGaI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:9d:57:6a:b1:15:b2:78:c6:40:fa:89:8b:ca:31:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3 Validity Not Before: Jan 27 04:01:45 2026 GMT Not After : Jan 28 04:01:45 2026 GMT Subject: CN=09643cdff38a531079214a632c5fd63f59b35c94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:50:de:0d:2a:78:cb:f6:81:55:a5:f9:d5:a4: 0b:45:97:81:65:2a:d5:1d:6e:c0:35:6e:28:3c:cd: f3:78:a2:03:df:67:41:8d:61:0b:42:69:de:62:13: 9d:2e:ee:45:16:16:dd:a9:8f:48:3a:27:9f:6d:4c: b7:2e:8d:24:a2:ac:91:ce:bf:7d:e1:40:6d:07:81: ed:3e:96:fe:d5:c6:15:00:ed:7c:25:c5:62:de:67: bb:12:99:aa:5e:2e:68:07:85:64:eb:42:61:b1:c7: b5:14:55:c5:19:e0:d5:7a:a3:a7:aa:76:da:53:c8: e6:d5:de:2d:f6:de:79:fc:36:1c:69:a9:01:a9:74: c2:a7:00:3f:26:d7:31:9d:5a:6b:51:f0:67:e6:3f: 20:e1:cd:d5:c6:a1:63:c5:bd:aa:86:ab:da:4e:b3: c3:1d:9b:77:89:7a:52:da:50:4c:76:28:e0:15:20: 03:9e:2c:12:34:38:94:af:3f:87:de:55:ec:3a:1d: fb:ca:0e:4d:e3:08:23:60:7c:1b:b2:e8:50:e3:eb: 55:22:1c:73:e7:8c:cd:fc:1f:5d:d3:94:e8:af:70: 7f:45:38:63:72:e3:9f:a3:73:1d:35:3e:e4:8a:3d: 1c:e3:21:ad:df:1e:72:f6:86:87:9b:f1:0f:35:8d: 02:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:64:3C:DF:F3:8A:53:10:79:21:4A:63:2C:5F:D6:3F:59:B3:5C:94 X509v3 Authority Key Identifier: keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:ec:6b:80:98:81:d3:73:51:ca:31:98:33:fe:20:a5:7c:f7: ea:4f:f3:fb:f9:ca:24:97:8c:7c:3f:3b:f3:be:eb:eb:82:8f: 8f:66:5c:50:7c:b8:98:78:30:e0:e1:bb:52:9f:9a:12:68:c4: d6:b8:14:11:d5:b5:28:eb:a0:ad:56:2b:dd:ce:9d:29:e4:86: 02:5e:02:0f:00:c3:af:3a:7a:9a:76:a2:d9:dd:e0:c7:b2:79: c8:ae:33:51:61:c1:73:8f:76:10:dd:e3:07:9e:23:7d:d3:00: ed:5c:f6:b2:7e:0f:da:b6:99:76:de:be:a1:8d:90:1f:6a:e6: f7:a2:20:82:3d:2e:02:41:01:a4:07:76:11:6a:89:0d:83:4f: c6:39:18:b2:50:91:1a:78:22:8d:a4:1f:14:ed:2c:bb:17:5c: 95:03:fb:8b:56:45:76:1c:34:dc:21:02:bb:8c:ae:a6:9f:88: 84:8d:cc:ba:b5:4a:8c:d0:33:b5:05:36:8c:26:3d:1b:c7:19: 77:78:27:6a:ca:50:27:96:5e:97:da:dc:19:71:8e:f1:a6:20: 52:7f:9d:45:0c:05:fe:68:b5:dc:8c:8b:f5:20:1d:a1:52:ae: 42:2b:12:99:c7:de:09:8a:33:73:3d:79:46:92:41:4b:2e:d3: 12:d3:11:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9nVdqsRWyeMZA+omLyjFDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzYzE2NTk1OTY2YWZiMGJhY2YxZDc5MzdmMjQ1ZDZhMDUy MjIxYTMwHhcNMjYwMTI3MDQwMTQ1WhcNMjYwMTI4MDQwMTQ1WjAzMTEwLwYDVQQD EygwOTY0M2NkZmYzOGE1MzEwNzkyMTRhNjMyYzVmZDYzZjU5YjM1Yzk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4VDeDSp4y/aBVaX51aQLRZeBZSrV HW7ANW4oPM3zeKID32dBjWELQmneYhOdLu5FFhbdqY9IOiefbUy3Lo0koqyRzr99 4UBtB4HtPpb+1cYVAO18JcVi3me7EpmqXi5oB4Vk60Jhsce1FFXFGeDVeqOnqnba U8jm1d4t9t55/DYcaakBqXTCpwA/JtcxnVprUfBn5j8g4c3VxqFjxb2qhqvaTrPD HZt3iXpS2lBMdijgFSADniwSNDiUrz+H3lXsOh37yg5N4wgjYHwbsuhQ4+tVIhxz 54zN/B9d05Tor3B/RThjcuOfo3MdNT7kij0c4yGt3x5y9oaHm/EPNY0CSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAlkPN/zilMQeSFKYyxf1j9Zs1yUMB8GA1UdIwQY MBaAFEPBZZWWavsLrPHXk38kXWoFIiGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGIt NTk5MGVhNThlMDMwLzEvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGItNTk5MGVhNThlMDMw LzEvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxexrgJiB 03NRyjGYM/4gpXz36k/z+/nKJJeMfD87877r64KPj2ZcUHy4mHgw4OG7Up+aEmjE 1rgUEdW1KOugrVYr3c6dKeSGAl4CDwDDrzp6mnai2d3gx7J5yK4zUWHBc492EN3j B54jfdMA7Vz2sn4P2raZdt6+oY2QH2rm96Iggj0uAkEBpAd2EWqJDYNPxjkYslCR GngijaQfFO0suxdclQP7i1ZFdhw03CECu4yupp+IhI3MurVKjNAztQU2jCY9G8cZ d3gnaspQJ5Zel9rcGXGO8aYgUn+dRQwF/mi13IyL9SAdoVKuQisSmcfeCYozcz15 RpJBSy7TEtMRHw== -----END CERTIFICATE-----Generated at Tue Jan 27 06:42:38 2026 by rpki-client