This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/QnzlcZyqaBrb1JOo2aOKZ11r1jk.mft File: QnzlcZyqaBrb1JOo2aOKZ11r1jk.mft (raw, json) Hash identifier: 71w/txq51kxzA4HUZRHCilAbRc4GytfNKDVdxIpY7C8= Subject key identifier: 8C:E7:F8:3D:34:32:11:A8:AF:C4:A5:67:21:AA:CA:21:B7:AF:64:11 Authority key identifier: 42:7C:E5:71:9C:AA:68:1A:DB:D4:93:A8:D9:A3:8A:67:5D:6B:D6:39 Certificate issuer: /CN=427ce5719caa681adbd493a8d9a38a675d6bd639 Certificate serial: 019B804C87A9B392BB9A95E0DFD3085A8FB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QnzlcZyqaBrb1JOo2aOKZ11r1jk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/QnzlcZyqaBrb1JOo2aOKZ11r1jk.mft Manifest number: 17AD Signing time: Fri 02 Jan 2026 20:00:57 +0000 Manifest this update: Fri 02 Jan 2026 20:00:57 +0000 Manifest next update: Sat 03 Jan 2026 20:00:57 +0000 Files and hashes: 1: 6P9heqcjWC1rgYXIRmhdx-97RQI.roa (hash: Wmt5NIZ7B735D829/2kh7N0lg+ZEmMiQ2DIicb7NPis=) 2: CeZNOwjANN4HMY30DhoMsqh7kc0.roa (hash: Eu0R/pH+qqACExevGNpBWZPYFKUIF3usiZ6pHAqzeUg=) 3: H9vdOoMnNvcj9O3pGR64p1cw7mI.roa (hash: IwVpFDPCmKPKuO6vfa3AZGtMLLchqRt7QtT34xytDoc=) 4: QnzlcZyqaBrb1JOo2aOKZ11r1jk.crl (hash: 5Pc5VG8FzRIDG2eWZOSO6dkNwjLtTIrc1kMEniVvYh4=) 5: lhRrxFX2ddbsLjVa14L7LqCeSk0.roa (hash: VWU2mBVhm/guPrYibtgL6oEOWFxdxHR0S2Eb5+SbI98=) 6: zjfJO2RH5SIxJF2laNjzaWPFUmE.roa (hash: CH64B9ZYUzeZok1rFlTbLuLN/vSRqUxl6QpPK+7D75o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/QnzlcZyqaBrb1JOo2aOKZ11r1jk.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/QnzlcZyqaBrb1JOo2aOKZ11r1jk.mft rsync://rpki.ripe.net/repository/DEFAULT/QnzlcZyqaBrb1JOo2aOKZ11r1jk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:80:4c:87:a9:b3:92:bb:9a:95:e0:df:d3:08:5a:8f:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=427ce5719caa681adbd493a8d9a38a675d6bd639 Validity Not Before: Jan 2 20:00:57 2026 GMT Not After : Jan 3 20:00:57 2026 GMT Subject: CN=8ce7f83d343211a8afc4a56721aaca21b7af6411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:aa:ff:98:84:f5:d1:3b:e6:f1:fa:a7:ee:79: 99:46:a2:dd:3f:37:91:f9:46:f3:45:d7:1e:43:f5: c2:2e:d4:20:98:77:7c:4a:e6:8c:e6:44:be:2f:79: 94:79:db:38:34:26:0c:57:60:9e:e7:6f:d2:9f:c4: 67:df:47:01:67:8a:01:e7:73:cd:da:3b:e9:e5:6f: 70:93:2a:52:88:f0:e6:50:54:66:da:9c:36:e9:dc: 4a:b1:15:fa:0d:23:3d:f9:87:91:ba:34:33:02:21: 7b:f2:10:cc:b4:e3:da:5d:03:0a:96:41:7e:73:95: b7:55:95:13:33:0c:17:6d:a1:63:4a:63:20:6a:2b: 1a:59:ff:60:6a:85:01:0d:38:3b:05:7c:a1:d9:26: 7f:9d:c8:79:0f:ca:19:35:a5:2f:da:f1:6b:fd:3b: bb:38:87:6e:4f:90:fa:8f:6c:21:a8:b1:b6:df:47: 42:14:0e:f1:04:36:10:44:37:b0:11:2b:f0:6f:97: c0:95:db:c1:5d:89:90:1c:89:ba:02:fc:2b:a0:10: f1:6f:4f:72:49:83:d9:79:83:e5:6f:52:88:94:7f: 08:c5:73:4f:b3:44:95:67:f3:08:37:74:ed:4f:ef: 48:c6:0a:87:01:2c:2e:8a:14:c1:59:5f:f6:74:b5: 90:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E7:F8:3D:34:32:11:A8:AF:C4:A5:67:21:AA:CA:21:B7:AF:64:11 X509v3 Authority Key Identifier: keyid:42:7C:E5:71:9C:AA:68:1A:DB:D4:93:A8:D9:A3:8A:67:5D:6B:D6:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QnzlcZyqaBrb1JOo2aOKZ11r1jk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/QnzlcZyqaBrb1JOo2aOKZ11r1jk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/QnzlcZyqaBrb1JOo2aOKZ11r1jk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ea:11:5e:05:27:9c:c7:31:78:c7:bb:7c:dd:22:4f:20:71: 44:26:f1:7b:16:71:41:af:a8:6a:d1:6a:db:23:3c:01:18:73: 10:aa:c6:7e:9f:c1:1a:ac:73:32:02:e7:de:ca:b5:20:91:b6: f7:19:87:20:44:bb:f6:f4:74:53:94:3a:87:92:66:21:2f:8d: b7:85:1e:99:e5:e8:2d:55:8a:3c:52:55:82:3b:2f:23:6c:93: a8:65:28:0f:33:60:e4:e8:47:dd:b3:16:8b:60:ec:52:f5:81: 06:11:67:98:8f:72:5b:2b:c2:da:6e:92:fd:31:10:ad:0f:80: f5:f3:11:9c:db:cc:4c:b4:97:93:06:44:33:c9:03:97:7d:eb: 04:5f:12:77:64:d0:07:f4:af:2f:58:9b:0e:fe:06:c2:9a:76: 39:c9:4e:39:d3:9b:f6:9b:61:ab:0e:71:59:6e:b9:f2:01:79: e5:e5:9e:ba:b6:c2:08:2a:cc:eb:41:ff:f7:5c:88:39:78:4e: 03:23:3f:c6:47:7a:cc:2d:c6:af:02:30:12:27:8f:2c:9d:00: 1a:35:7c:8d:3c:8a:ee:3f:71:21:21:1c:c6:3f:88:8d:4e:8a: ca:a3:d1:77:9c:03:3a:2d:1f:87:23:3b:05:e7:30:d9:75:2a: 72:3a:6a:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuATIeps5K7mpXg39MIWo+wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyN2NlNTcxOWNhYTY4MWFkYmQ0OTNhOGQ5YTM4YTY3NWQ2 YmQ2MzkwHhcNMjYwMTAyMjAwMDU3WhcNMjYwMTAzMjAwMDU3WjAzMTEwLwYDVQQD Eyg4Y2U3ZjgzZDM0MzIxMWE4YWZjNGE1NjcyMWFhY2EyMWI3YWY2NDExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA36r/mIT10Tvm8fqn7nmZRqLdPzeR +UbzRdceQ/XCLtQgmHd8SuaM5kS+L3mUeds4NCYMV2Ce52/Sn8Rn30cBZ4oB53PN 2jvp5W9wkypSiPDmUFRm2pw26dxKsRX6DSM9+YeRujQzAiF78hDMtOPaXQMKlkF+ c5W3VZUTMwwXbaFjSmMgaisaWf9gaoUBDTg7BXyh2SZ/nch5D8oZNaUv2vFr/Tu7 OIduT5D6j2whqLG230dCFA7xBDYQRDewESvwb5fAldvBXYmQHIm6AvwroBDxb09y SYPZeYPlb1KIlH8IxXNPs0SVZ/MIN3TtT+9IxgqHASwuihTBWV/2dLWQJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIzn+D00MhGor8SlZyGqyiG3r2QRMB8GA1UdIwQY MBaAFEJ85XGcqmga29STqNmjimdda9Y5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUW56bGNaeXFhQnJiMUpPbzJhT0taMTFyMWprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8zZTM1NDgtZmRiNS00ZGVkLWJhNTkt MDkxYzJkMzAzZmU4LzEvUW56bGNaeXFhQnJiMUpPbzJhT0taMTFyMWprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8zZTM1NDgtZmRiNS00ZGVkLWJhNTktMDkxYzJkMzAzZmU4 LzEvUW56bGNaeXFhQnJiMUpPbzJhT0taMTFyMWprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeuoRXgUn nMcxeMe7fN0iTyBxRCbxexZxQa+oatFq2yM8ARhzEKrGfp/BGqxzMgLn3sq1IJG2 9xmHIES79vR0U5Q6h5JmIS+Nt4UemeXoLVWKPFJVgjsvI2yTqGUoDzNg5OhH3bMW i2DsUvWBBhFnmI9yWyvC2m6S/TEQrQ+A9fMRnNvMTLSXkwZEM8kDl33rBF8Sd2TQ B/SvL1ibDv4Gwpp2OclOOdOb9pthqw5xWW658gF55eWeurbCCCrM60H/91yIOXhO AyM/xkd6zC3GrwIwEiePLJ0AGjV8jTyK7j9xISEcxj+IjU6KyqPRd5wDOi0fhyM7 Becw2XUqcjpqng== -----END CERTIFICATE-----Generated at Fri Jan 2 23:52:27 2026 by rpki-client