This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft File: 1QibzgjFXapXtPOjyQcPs5GFPM8.mft (raw, json) Hash identifier: 002hKO/NuvTqPePrIC0KqxObxKv1BYYvDbpe8XhpLdg= Subject key identifier: 3E:E3:16:07:1F:47:A6:ED:6B:E7:17:E0:E2:40:2F:96:4D:4F:11:34 Authority key identifier: D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF Certificate issuer: /CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf Certificate serial: 019BD7A1770D892D73D64FD449949D924F2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft Manifest number: 0CAD Signing time: Mon 19 Jan 2026 19:00:41 +0000 Manifest this update: Mon 19 Jan 2026 19:00:41 +0000 Manifest next update: Tue 20 Jan 2026 19:00:41 +0000 Files and hashes: 1: 1QibzgjFXapXtPOjyQcPs5GFPM8.crl (hash: C6EcerbWNqceYuatCezax9VwDZYILlwXtFc/wih+OAk=) 2: PnfxL11O3EjH9h0EH3Rg7luqnAM.roa (hash: i4lQXSpeif5iY7JiCTfcDMb/7WzWvaV3TLIqruxq13Q=) 3: x6wY1hh1UMR03dRTbKZ1rvUylzo.roa (hash: jSu5cUSFLGmQIwJTQdJ25XCFgFKf8LZSMzXzmSmg5w0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d7:a1:77:0d:89:2d:73:d6:4f:d4:49:94:9d:92:4f:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf Validity Not Before: Jan 19 19:00:41 2026 GMT Not After : Jan 20 19:00:41 2026 GMT Subject: CN=3ee316071f47a6ed6be717e0e2402f964d4f1134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:bf:98:07:2a:99:f7:65:91:9a:92:2a:5b:43: 0a:07:55:ba:bc:e9:f8:5f:36:c9:7b:9d:e9:be:b5: cb:06:5f:5e:9a:03:fb:9d:66:28:2b:fb:79:16:e7: 3b:a0:20:44:95:6c:0c:84:4e:83:82:a9:9a:e5:98: 39:ce:78:62:bf:4d:c6:2e:6a:17:fc:48:b5:7c:1e: 56:75:e9:5a:1d:e7:80:fe:a5:07:a5:9b:87:22:10: ff:57:4a:b5:89:96:12:8e:d0:95:eb:4d:6f:28:a8: 2a:b1:3c:1c:86:c8:db:47:df:f4:15:78:b0:c6:29: e5:e8:51:0d:08:11:85:c4:fa:ae:7b:af:85:f2:8a: 83:fd:91:aa:70:7e:9b:b9:98:43:1e:a4:b4:fc:95: 12:9d:20:69:82:20:25:a3:ab:0f:68:69:6d:19:42: 3d:7e:ed:7c:52:48:8f:3a:45:46:3d:75:9a:1a:d8: f5:fd:25:ff:a9:d1:e1:a9:28:8a:14:0a:ab:21:f3: 09:bc:7d:b4:de:0d:36:99:63:ea:d9:70:ba:41:26: ef:51:55:87:f7:1c:00:9c:f7:b8:76:f4:fb:80:41: c3:22:4d:cd:e0:39:42:90:4e:4f:91:50:b1:b9:55: af:c7:d3:84:83:c2:af:f9:e1:70:ff:7e:0a:a9:f8: e2:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E3:16:07:1F:47:A6:ED:6B:E7:17:E0:E2:40:2F:96:4D:4F:11:34 X509v3 Authority Key Identifier: keyid:D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:88:b5:e6:76:47:d9:72:34:6a:06:e0:a9:b6:ef:77:40:53: 3b:f9:81:51:a7:00:df:e2:1b:b9:80:52:31:42:ab:50:9a:32: 99:76:7b:7d:a3:1b:d4:5c:3a:5f:d4:69:f3:05:ef:40:6f:aa: 36:76:3f:89:db:21:c8:20:7f:5a:c5:89:02:52:31:35:c2:fd: 7c:dd:7b:cb:c7:aa:8e:06:84:1b:34:27:d8:f7:79:70:14:af: 2f:cf:c6:26:e2:35:a9:bd:93:c1:93:c3:87:03:27:cf:3d:48: 4a:7e:ea:c7:e4:66:31:48:e6:06:ff:23:9f:33:16:c5:c7:13: b5:6f:95:ea:41:e2:48:56:ed:3e:bc:b3:80:be:39:7b:a8:bf: 01:cf:91:f9:48:24:28:20:b7:a6:51:fd:18:55:f9:62:1e:52: 9b:5e:9f:4d:15:d6:b2:ee:ee:31:f6:4d:dc:d2:23:9a:21:14: 20:92:13:0e:8b:e9:af:33:d1:47:d6:64:63:4d:fb:63:4a:50: ca:b2:97:6e:f1:61:f5:a8:a7:1e:29:1e:52:e1:f6:ee:3b:bd: 96:00:3e:40:df:15:45:e9:44:5f:9b:f2:08:5a:2b:56:92:c8: b8:85:06:f7:2f:7c:b9:5c:ea:96:7d:db:20:6c:f1:8e:e6:ba: 44:4a:65:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvXoXcNiS1z1k/USZSdkk8rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MDg5YmNlMDhjNTVkYWE1N2I0ZjNhM2M5MDcwZmIzOTE4 NTNjY2YwHhcNMjYwMTE5MTkwMDQxWhcNMjYwMTIwMTkwMDQxWjAzMTEwLwYDVQQD EygzZWUzMTYwNzFmNDdhNmVkNmJlNzE3ZTBlMjQwMmY5NjRkNGYxMTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlb+YByqZ92WRmpIqW0MKB1W6vOn4 XzbJe53pvrXLBl9emgP7nWYoK/t5Fuc7oCBElWwMhE6Dgqma5Zg5znhiv03GLmoX /Ei1fB5WdelaHeeA/qUHpZuHIhD/V0q1iZYSjtCV601vKKgqsTwchsjbR9/0FXiw xinl6FENCBGFxPque6+F8oqD/ZGqcH6buZhDHqS0/JUSnSBpgiAlo6sPaGltGUI9 fu18UkiPOkVGPXWaGtj1/SX/qdHhqSiKFAqrIfMJvH203g02mWPq2XC6QSbvUVWH 9xwAnPe4dvT7gEHDIk3N4DlCkE5PkVCxuVWvx9OEg8Kv+eFw/34KqfjidQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD7jFgcfR6bta+cX4OJAL5ZNTxE0MB8GA1UdIwQY MBaAFNUIm84IxV2qV7Tzo8kHD7ORhTzPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVFpYnpnakZYYXBYdFBPanlRY1BzNUdGUE04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8wMmZkZTctZDMyNi00M2RlLTg1MjAt NmQ3MWZlMTNkNjFkLzEvMVFpYnpnakZYYXBYdFBPanlRY1BzNUdGUE04Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy8wMmZkZTctZDMyNi00M2RlLTg1MjAtNmQ3MWZlMTNkNjFk LzEvMVFpYnpnakZYYXBYdFBPanlRY1BzNUdGUE04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYIi15nZH 2XI0agbgqbbvd0BTO/mBUacA3+IbuYBSMUKrUJoymXZ7faMb1Fw6X9Rp8wXvQG+q NnY/idshyCB/WsWJAlIxNcL9fN17y8eqjgaEGzQn2Pd5cBSvL8/GJuI1qb2TwZPD hwMnzz1ISn7qx+RmMUjmBv8jnzMWxccTtW+V6kHiSFbtPryzgL45e6i/Ac+R+Ugk KCC3plH9GFX5Yh5Sm16fTRXWsu7uMfZN3NIjmiEUIJITDovprzPRR9ZkY037Y0pQ yrKXbvFh9ainHikeUuH27ju9lgA+QN8VRelEX5vyCForVpLIuIUG9y98uVzqln3b IGzxjua6REplPw== -----END CERTIFICATE-----Generated at Tue Jan 20 03:00:45 2026 by rpki-client