This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft File: qF7VXxRNceZz5j9LdnDEE0TAlYA.mft (raw, json) Hash identifier: 1v32k1BdRtb25P7PQcnT5tX4p/Lf7iAtEQTYaVAfqSI= Subject key identifier: 38:DE:9F:0E:0A:7C:5C:E3:68:1C:D2:D3:70:F8:DF:5C:43:F5:7F:71 Authority key identifier: A8:5E:D5:5F:14:4D:71:E6:73:E6:3F:4B:76:70:C4:13:44:C0:95:80 Certificate issuer: /CN=a85ed55f144d71e673e63f4b7670c41344c09580 Certificate serial: 019C4358DE01023D7E411EBF3C3D1835416B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft Manifest number: 039E Signing time: Mon 09 Feb 2026 17:00:23 +0000 Manifest this update: Mon 09 Feb 2026 17:00:23 +0000 Manifest next update: Tue 10 Feb 2026 17:00:23 +0000 Files and hashes: 1: lc54bO2qpbEp6ZuINe9U374Bnw0.roa (hash: KvWJl722IjNTPYxbQCA4iUQ0TYdemSL5ZuAeqRqaebU=) 2: qF7VXxRNceZz5j9LdnDEE0TAlYA.crl (hash: j3HYdwU4jo+V2XvQ69CfeaPEJ1vik/v5vZMtNRxNhrE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.crl rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:de:01:02:3d:7e:41:1e:bf:3c:3d:18:35:41:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a85ed55f144d71e673e63f4b7670c41344c09580 Validity Not Before: Feb 9 17:00:23 2026 GMT Not After : Feb 10 17:00:23 2026 GMT Subject: CN=38de9f0e0a7c5ce3681cd2d370f8df5c43f57f71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:53:53:4f:8e:13:bb:5a:46:2b:63:e9:18:fd: bf:b0:11:67:98:6c:34:b5:d9:3c:18:dc:b8:ff:aa: 12:82:2c:a0:b4:d3:39:f9:b4:26:03:09:9e:78:1b: f2:1b:75:e1:09:9f:15:c3:8c:98:ef:99:61:9f:3f: 2e:9c:2f:aa:af:2f:21:c6:83:93:00:f6:5b:29:06: de:ca:20:67:a6:a9:6b:16:e3:92:b5:fe:4b:be:b2: f5:86:85:41:a0:c0:b1:2a:a4:34:3c:e3:61:ed:91: a8:a0:5a:b8:f1:fa:5e:d1:ca:5e:29:90:f3:11:1d: 4f:11:d9:51:6e:66:ad:03:94:c3:25:2f:9d:39:2a: fb:53:7c:a1:9f:9a:3f:b5:6b:2d:e6:f2:da:ad:c2: f6:d7:7c:37:4d:d1:75:b0:e3:f4:f1:dd:b3:85:db: 5b:96:a1:b0:b5:d5:c5:9b:9b:73:5d:1a:b1:4f:3b: a4:12:84:b9:7d:11:a0:7b:65:8c:d5:04:a9:b8:8e: db:96:a0:4a:24:b3:04:5d:53:9a:68:ea:72:40:85: 90:82:ed:96:c2:82:02:8a:37:da:f9:1f:51:2d:35: ab:6c:62:89:b5:62:13:ed:df:cf:aa:9b:8b:59:d4: b1:82:09:1d:59:18:6b:ab:d2:56:e9:5f:30:ef:3d: 6f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DE:9F:0E:0A:7C:5C:E3:68:1C:D2:D3:70:F8:DF:5C:43:F5:7F:71 X509v3 Authority Key Identifier: keyid:A8:5E:D5:5F:14:4D:71:E6:73:E6:3F:4B:76:70:C4:13:44:C0:95:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:e1:3e:62:0e:3f:47:d3:df:41:13:3e:25:29:54:44:3d:37: 4e:9b:7d:f5:03:da:dc:b8:c4:26:f9:67:1c:98:bd:e2:d2:99: f0:d0:cb:84:53:8b:e3:53:db:83:b0:43:d8:14:27:75:97:08: 67:ac:2c:f4:a4:90:eb:49:a6:c4:36:67:1a:c8:85:12:2b:ce: cc:b9:ba:36:62:36:9d:75:ca:be:ef:e7:dc:28:c5:94:1b:84: bd:3f:f8:1a:65:93:55:f9:73:2b:b2:24:00:e5:ed:96:ca:a0: e6:9b:be:06:79:31:43:7d:47:a6:bb:28:17:23:da:51:30:21: cf:14:af:ee:2e:db:eb:93:8e:57:34:fb:d6:52:40:e3:1b:f8: 98:dc:2f:55:b7:38:63:4d:28:cd:0e:3a:cc:9e:d0:09:fb:10: 74:57:9a:0f:ac:b9:75:da:a8:a3:5c:e5:bc:f0:f3:66:9c:71: b4:4f:35:17:cc:ca:b2:a9:9a:0c:cf:27:aa:f9:9e:bb:41:8f: 8b:c0:a8:24:79:91:6b:1c:f8:96:6f:b4:7c:ff:ac:3f:cd:05: 0c:ce:4b:1d:75:ef:06:f2:7d:0e:e3:c7:e6:33:19:27:b6:40: 77:4d:06:a3:ae:dd:b0:a6:d4:ab:af:b8:dd:34:d7:b4:0a:af: 08:3e:5e:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWN4BAj1+QR6/PD0YNUFrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NWVkNTVmMTQ0ZDcxZTY3M2U2M2Y0Yjc2NzBjNDEzNDRj MDk1ODAwHhcNMjYwMjA5MTcwMDIzWhcNMjYwMjEwMTcwMDIzWjAzMTEwLwYDVQQD EygzOGRlOWYwZTBhN2M1Y2UzNjgxY2QyZDM3MGY4ZGY1YzQzZjU3ZjcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtVNTT44Tu1pGK2PpGP2/sBFnmGw0 tdk8GNy4/6oSgiygtNM5+bQmAwmeeBvyG3XhCZ8Vw4yY75lhnz8unC+qry8hxoOT APZbKQbeyiBnpqlrFuOStf5LvrL1hoVBoMCxKqQ0PONh7ZGooFq48fpe0cpeKZDz ER1PEdlRbmatA5TDJS+dOSr7U3yhn5o/tWst5vLarcL213w3TdF1sOP08d2zhdtb lqGwtdXFm5tzXRqxTzukEoS5fRGge2WM1QSpuI7blqBKJLMEXVOaaOpyQIWQgu2W woICijfa+R9RLTWrbGKJtWIT7d/PqpuLWdSxggkdWRhrq9JW6V8w7z1vZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDjenw4KfFzjaBzS03D431xD9X9xMB8GA1UdIwQY MBaAFKhe1V8UTXHmc+Y/S3ZwxBNEwJWAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC83NDlkNzctZTk5NS00ODlhLTg3ZTAt ZDAwYTEzYWFlNTQwLzEvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC83NDlkNzctZTk5NS00ODlhLTg3ZTAtZDAwYTEzYWFlNTQw LzEvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYuE+Yg4/ R9PfQRM+JSlURD03Tpt99QPa3LjEJvlnHJi94tKZ8NDLhFOL41Pbg7BD2BQndZcI Z6ws9KSQ60mmxDZnGsiFEivOzLm6NmI2nXXKvu/n3CjFlBuEvT/4GmWTVflzK7Ik AOXtlsqg5pu+BnkxQ31HprsoFyPaUTAhzxSv7i7b65OOVzT71lJA4xv4mNwvVbc4 Y00ozQ46zJ7QCfsQdFeaD6y5ddqoo1zlvPDzZpxxtE81F8zKsqmaDM8nqvmeu0GP i8CoJHmRaxz4lm+0fP+sP80FDM5LHXXvBvJ9DuPH5jMZJ7ZAd00Go67dsKbUq6+4 3TTXtAqvCD5exA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:02 2026 by rpki-client