This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft File: Q8FllZZq-wus8deTfyRdagUiIaM.mft (raw, json) Hash identifier: X+Nnjt7pl2FnJIJ/uVfn6S4B4vy16KdWBRm7JOf0CmI= Subject key identifier: A5:1A:AB:4B:05:62:44:F0:B3:88:C9:AC:35:72:30:D7:CE:F3:FC:7E Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3 Certificate issuer: /CN=43c16595966afb0bacf1d7937f245d6a052221a3 Certificate serial: 019BFBAE58EAE966A7EAE21BC71F6E314CB2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft Manifest number: 17EE Signing time: Mon 26 Jan 2026 19:01:05 +0000 Manifest this update: Mon 26 Jan 2026 19:01:05 +0000 Manifest next update: Tue 27 Jan 2026 19:01:05 +0000 Files and hashes: 1: 4txRYI484TEAkKZQuGXE7v7kNFE.roa (hash: 0LHuR+m3x801pvrNDlfkYNVRhvh7QTNXeF2avzGdu+o=) 2: 7j99n4d6ANqzBKZIb7AtbN16HNM.roa (hash: rlAo1p9sV9yO7tsi280DXkwJRnsLW38pb6gpoEvvu7w=) 3: Oo3ap3FWMfZFuKT_5X4cPgbvWBY.roa (hash: SClF6a/p5GxrqHhEbYnu5sljGKEXM6UG1fAy0VW6itY=) 4: Q8FllZZq-wus8deTfyRdagUiIaM.crl (hash: zrhZMoHqKE8B0C7qd7clGFIbp/xq6dAOfQsJIR1yPOw=) 5: ZoLYEk24uuNv33EjJ4m1okSNS6w.roa (hash: aOyue5Aqc/KW4Mnoyy7ahJjLtcQmVKEsi36/Y3I9yHA=) 6: aj9euBKzI3NIH66jZPh8bbmGI6A.roa (hash: 8jTNJ61hr37vcKXTL8TlYqDMnFRq1ith6TwEVeBelwE=) 7: nH1OKpXJbAvAHxN6XWdXMd6gZuY.roa (hash: j3S1I730IB3QQneXnDNotR19hJRoRUA2SbUVmp/YndQ=) 8: ottEKlKze703Xucot2ljZZmoong.roa (hash: 1DtEnDgUDcQi4vqWCrTRW5+Lsqb1kTbcbswrOF8wGaI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 19:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:ae:58:ea:e9:66:a7:ea:e2:1b:c7:1f:6e:31:4c:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3 Validity Not Before: Jan 26 19:01:05 2026 GMT Not After : Jan 27 19:01:05 2026 GMT Subject: CN=a51aab4b056244f0b388c9ac357230d7cef3fc7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b4:3c:78:6c:e8:02:7b:fd:e8:be:66:73:13: 2a:24:6c:91:dd:fc:10:71:d8:61:07:19:9b:9a:23: ad:1c:63:11:77:1d:08:7b:73:30:97:4e:ee:14:25: 7d:cc:95:a5:2d:64:d5:5f:69:1f:de:cd:fa:90:db: 14:b3:40:fd:90:91:80:96:95:34:5f:bc:fa:d6:d4: 40:17:ca:7e:32:95:a8:0f:8f:c6:82:8a:99:4f:aa: 9c:d4:c0:b6:37:90:b6:ce:8a:a6:a3:05:00:56:ee: 4f:a5:fd:15:5d:ce:f8:b0:b9:98:6d:85:4d:49:aa: 62:dc:af:03:ac:b9:07:fb:51:02:ef:ec:ff:45:06: c6:1f:a2:dc:f4:7d:37:a8:d4:6c:ff:54:83:0a:8c: 28:9f:1b:9f:bf:e5:44:b9:9f:b9:77:8c:b5:d0:f5: e0:47:6d:70:6e:14:22:8c:7b:e2:5b:0a:48:16:1e: 32:2d:1e:93:00:6b:ab:44:f0:78:e4:33:b0:cf:a3: e1:4d:74:db:dd:71:99:33:40:7c:0b:76:fc:95:65: f8:28:5a:55:ac:6e:7e:d8:39:c2:c9:25:a9:2e:3c: 03:dc:02:1d:a3:13:5a:d8:c9:3d:d2:f4:17:dc:1a: 3b:65:ce:d2:fe:d6:7e:cf:57:45:3b:b1:8f:d3:94: 33:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:1A:AB:4B:05:62:44:F0:B3:88:C9:AC:35:72:30:D7:CE:F3:FC:7E X509v3 Authority Key Identifier: keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:e1:a5:9d:ae:d6:40:77:22:27:9f:ed:d1:f2:4c:9c:79:27: 8c:c6:c0:79:5e:1b:15:ca:44:64:73:c4:08:ab:88:a9:c5:ef: 1e:f0:40:eb:f8:49:1a:0f:05:28:50:98:08:14:4d:14:c6:9b: 3e:01:77:e9:f3:59:41:47:51:fc:6d:59:b9:1b:14:7f:dc:bb: 7e:b9:f9:1f:e7:d1:09:64:51:0d:33:70:53:d2:5d:20:28:ad: d7:e4:ef:43:58:13:14:6d:e5:8d:b1:a1:18:95:e4:92:dc:ba: 22:70:d2:87:45:2e:3f:f1:17:10:f0:e3:22:77:05:52:48:12: 08:cd:e6:f5:dd:02:d6:73:93:d1:7e:09:33:0f:52:ce:7e:eb: 84:80:67:2d:4e:50:4d:d6:93:dc:a7:00:80:8c:33:ea:67:d0: 6b:70:29:ff:0a:a5:7f:c8:0b:5f:81:de:35:a7:89:9a:84:ef: 0b:5a:f7:11:ec:4f:a0:4a:f3:d9:ce:6e:bd:c3:ce:ad:d0:3d: 5a:c1:0d:34:aa:e3:85:af:85:09:13:f6:d2:ab:cf:5d:72:ae: f8:d3:fc:b9:38:2f:80:18:39:3c:22:53:82:57:85:80:94:28: 7a:d9:a4:b2:ea:4f:9c:e9:95:f1:5a:08:0b:6e:96:67:c4:ba: 7b:4f:59:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7rljq6Wan6uIbxx9uMUyyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzYzE2NTk1OTY2YWZiMGJhY2YxZDc5MzdmMjQ1ZDZhMDUy MjIxYTMwHhcNMjYwMTI2MTkwMTA1WhcNMjYwMTI3MTkwMTA1WjAzMTEwLwYDVQQD EyhhNTFhYWI0YjA1NjI0NGYwYjM4OGM5YWMzNTcyMzBkN2NlZjNmYzdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLQ8eGzoAnv96L5mcxMqJGyR3fwQ cdhhBxmbmiOtHGMRdx0Ie3Mwl07uFCV9zJWlLWTVX2kf3s36kNsUs0D9kJGAlpU0 X7z61tRAF8p+MpWoD4/GgoqZT6qc1MC2N5C2zoqmowUAVu5Ppf0VXc74sLmYbYVN Sapi3K8DrLkH+1EC7+z/RQbGH6Lc9H03qNRs/1SDCowonxufv+VEuZ+5d4y10PXg R21wbhQijHviWwpIFh4yLR6TAGurRPB45DOwz6PhTXTb3XGZM0B8C3b8lWX4KFpV rG5+2DnCySWpLjwD3AIdoxNa2Mk90vQX3Bo7Zc7S/tZ+z1dFO7GP05QzawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKUaq0sFYkTws4jJrDVyMNfO8/x+MB8GA1UdIwQY MBaAFEPBZZWWavsLrPHXk38kXWoFIiGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGIt NTk5MGVhNThlMDMwLzEvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGItNTk5MGVhNThlMDMw LzEvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAeGlna7W QHciJ5/t0fJMnHknjMbAeV4bFcpEZHPECKuIqcXvHvBA6/hJGg8FKFCYCBRNFMab PgF36fNZQUdR/G1ZuRsUf9y7frn5H+fRCWRRDTNwU9JdICit1+TvQ1gTFG3ljbGh GJXkkty6InDSh0UuP/EXEPDjIncFUkgSCM3m9d0C1nOT0X4JMw9Szn7rhIBnLU5Q TdaT3KcAgIwz6mfQa3Ap/wqlf8gLX4HeNaeJmoTvC1r3EexPoErz2c5uvcPOrdA9 WsENNKrjha+FCRP20qvPXXKu+NP8uTgvgBg5PCJTgleFgJQoetmksupPnOmV8VoI C26WZ8S6e09ZJA== -----END CERTIFICATE-----Generated at Tue Jan 27 06:06:51 2026 by rpki-client