This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft File: qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft (raw, json) Hash identifier: GvtVmVM6BmEv3FQTDh4IDOQrHJDqN8ZmYDN8vBZZKPg= Subject key identifier: 52:75:72:8E:E2:0E:CA:DF:A7:2B:9E:20:89:0E:1F:4A:10:99:47:17 Authority key identifier: A8:22:07:FD:50:C4:5E:96:F2:82:5E:C7:72:CF:6B:8D:EA:3D:FC:B0 Certificate issuer: /CN=a82207fd50c45e96f2825ec772cf6b8dea3dfcb0 Certificate serial: 019C1E71F64395F9EE05A022210E3113180E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft Manifest number: 0739 Signing time: Mon 02 Feb 2026 13:01:50 +0000 Manifest this update: Mon 02 Feb 2026 13:01:50 +0000 Manifest next update: Tue 03 Feb 2026 13:01:50 +0000 Files and hashes: 1: 1-8RpzQOO8MH_8tY_8CiuesNU5kw.roa (hash: NwZ58UxGQif1qZHSYOqbsi4+8X/Tbr0yxp1KYuyKjAA=) 2: qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl (hash: g2J7c/1SJQxuFTHxwhzx81gBKWaO4iqgULs6GawCRJw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 13:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1e:71:f6:43:95:f9:ee:05:a0:22:21:0e:31:13:18:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a82207fd50c45e96f2825ec772cf6b8dea3dfcb0 Validity Not Before: Feb 2 13:01:50 2026 GMT Not After : Feb 3 13:01:50 2026 GMT Subject: CN=5275728ee20ecadfa72b9e20890e1f4a10994717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:1a:a7:e6:9a:bc:ce:f0:5f:43:76:80:eb:d2: 11:a2:ad:e2:9f:fc:11:5d:68:4e:71:cb:49:c3:6d: 59:99:b9:8a:cc:01:5e:80:99:68:da:b4:3f:1d:a5: 39:38:a0:46:b8:06:27:61:a1:76:5a:95:9d:2e:4e: ee:f3:5f:71:f6:87:c5:8e:5c:e7:9a:bb:92:5a:f3: 67:04:aa:81:98:9e:7f:ba:27:6c:02:0b:77:79:e6: 8c:2a:50:b3:de:2f:ed:f4:5b:5f:43:d3:10:33:23: 46:52:28:f9:09:f8:61:71:79:20:95:2d:29:4f:40: a4:f1:36:46:87:8a:d0:f3:56:9a:d2:fd:37:c4:9e: 23:a1:ef:45:1c:d5:29:d0:e2:41:ce:96:be:47:49: 08:09:2b:cb:30:9b:0a:43:a7:70:9a:4b:ff:c5:75: 5f:fd:43:47:60:9e:c6:ca:b9:70:79:af:f6:fd:cf: cc:30:b8:f3:5a:9d:44:43:f1:c7:c7:72:36:b5:69: 90:2c:1f:f8:f1:67:b6:99:6a:3d:de:87:97:4b:7a: 6e:c8:c2:d2:db:cd:1f:6e:ce:95:92:37:23:2f:5e: ed:f8:43:a0:92:7c:34:33:ad:be:ab:2b:86:43:0e: b3:67:b2:2d:82:7b:be:8e:bd:07:67:9c:0c:8e:1b: 02:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:75:72:8E:E2:0E:CA:DF:A7:2B:9E:20:89:0E:1F:4A:10:99:47:17 X509v3 Authority Key Identifier: keyid:A8:22:07:FD:50:C4:5E:96:F2:82:5E:C7:72:CF:6B:8D:EA:3D:FC:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:85:12:d9:40:2d:f1:81:5c:ac:82:73:5c:7a:e8:46:6c:68: 4d:38:62:f6:24:2c:95:22:ad:7a:4f:ec:db:8e:ef:8b:e1:18: 29:d3:5d:b9:20:cc:1c:05:56:86:65:1f:8d:3a:83:a5:f8:11: 1e:1b:c5:7c:c7:e7:53:72:ee:a2:8c:df:80:b0:c6:02:15:f7: e4:c8:95:ae:c1:05:a0:e9:c6:be:67:58:4f:2c:1c:13:63:bd: 9d:ad:d0:af:0d:e6:6e:28:08:02:17:09:c4:b3:c6:10:84:4b: 70:a4:fa:ab:d0:fa:2c:97:71:a5:7f:b2:57:52:08:da:2e:79: ba:dd:b4:d0:6d:ee:f2:7f:a1:ac:f8:1d:b4:0a:95:02:d6:9f: 90:e3:1a:70:7a:53:a9:5b:da:5e:df:02:b6:43:45:3a:0a:8d: 62:c6:2f:fa:a7:7b:c2:bd:53:b8:c5:1e:16:0a:a1:ba:24:35: 0f:7e:75:fe:71:1a:9b:de:03:0d:71:f6:ab:4d:3d:06:ed:92: fd:1e:c7:1e:d1:d3:84:02:46:82:45:52:df:99:06:a5:8b:77: 07:7c:c8:5e:78:3d:20:99:7f:d3:3d:71:90:84:ff:9b:a8:be: 4c:23:3a:de:81:e9:db:23:25:a3:3c:7f:c9:c4:38:8c:bc:33: 5e:81:7f:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwecfZDlfnuBaAiIQ4xExgOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MjIwN2ZkNTBjNDVlOTZmMjgyNWVjNzcyY2Y2YjhkZWEz ZGZjYjAwHhcNMjYwMjAyMTMwMTUwWhcNMjYwMjAzMTMwMTUwWjAzMTEwLwYDVQQD Eyg1Mjc1NzI4ZWUyMGVjYWRmYTcyYjllMjA4OTBlMWY0YTEwOTk0NzE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4xqn5pq8zvBfQ3aA69IRoq3in/wR XWhOcctJw21ZmbmKzAFegJlo2rQ/HaU5OKBGuAYnYaF2WpWdLk7u819x9ofFjlzn mruSWvNnBKqBmJ5/uidsAgt3eeaMKlCz3i/t9FtfQ9MQMyNGUij5CfhhcXkglS0p T0Ck8TZGh4rQ81aa0v03xJ4joe9FHNUp0OJBzpa+R0kICSvLMJsKQ6dwmkv/xXVf /UNHYJ7Gyrlwea/2/c/MMLjzWp1EQ/HHx3I2tWmQLB/48We2mWo93oeXS3puyMLS 280fbs6VkjcjL17t+EOgknw0M62+qyuGQw6zZ7Itgnu+jr0HZ5wMjhsCBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFJ1co7iDsrfpyueIIkOH0oQmUcXMB8GA1UdIwQY MBaAFKgiB/1QxF6W8oJex3LPa43qPfywMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUNJSF9WREVYcGJ5Z2w3SGNzOXJqZW85X0xBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9hYThlNDMtNmRmMC00N2VmLWFkYzUt MzBiZGQyZmUwNWIxLzEvcUNJSF9WREVYcGJ5Z2w3SGNzOXJqZW85X0xBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9hYThlNDMtNmRmMC00N2VmLWFkYzUtMzBiZGQyZmUwNWIx LzEvcUNJSF9WREVYcGJ5Z2w3SGNzOXJqZW85X0xBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXIUS2UAt 8YFcrIJzXHroRmxoTThi9iQslSKtek/s247vi+EYKdNduSDMHAVWhmUfjTqDpfgR HhvFfMfnU3LuoozfgLDGAhX35MiVrsEFoOnGvmdYTywcE2O9na3Qrw3mbigIAhcJ xLPGEIRLcKT6q9D6LJdxpX+yV1II2i55ut200G3u8n+hrPgdtAqVAtafkOMacHpT qVvaXt8CtkNFOgqNYsYv+qd7wr1TuMUeFgqhuiQ1D351/nEam94DDXH2q009Bu2S /R7HHtHThAJGgkVS35kGpYt3B3zIXng9IJl/0z1xkIT/m6i+TCM63oHp2yMlozx/ ycQ4jLwzXoF/gA== -----END CERTIFICATE-----Generated at Mon Feb 2 20:55:03 2026 by rpki-client