This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json) Hash identifier: P+AVHAlitEpc4CS5PaNE93ENX/GKlrXJXVk4HzNut8Q= Subject key identifier: 8C:D8:14:CD:6E:DA:63:0D:ED:3F:97:3D:E6:FF:AF:A2:C0:F9:0B:35 Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a Certificate serial: 019C427DAECB8093CF301EB2BB9CC8112D36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft Manifest number: 0F31 Signing time: Mon 09 Feb 2026 13:00:58 +0000 Manifest this update: Mon 09 Feb 2026 13:00:58 +0000 Manifest next update: Tue 10 Feb 2026 13:00:58 +0000 Files and hashes: 1: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: np0UWmhpPq0dVobp1qEKLM9zkEfAClxQrtHbxzZPlqo=) 2: vk5Y2YJ09rjiWROVoHQwodUn4yU.roa (hash: vpQeQxzEnsV7qHV8y9P4IV2nzoCx88/TOJF++oD3hVE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:ae:cb:80:93:cf:30:1e:b2:bb:9c:c8:11:2d:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a Validity Not Before: Feb 9 13:00:58 2026 GMT Not After : Feb 10 13:00:58 2026 GMT Subject: CN=8cd814cd6eda630ded3f973de6ffafa2c0f90b35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c4:22:5a:de:ba:0f:7a:a5:c1:de:2a:0c:78: 0b:a5:04:48:b7:47:17:ea:18:75:cc:99:fa:84:e7: e2:9c:59:52:fc:83:04:76:9e:b2:0a:61:c0:81:49: 28:f6:e2:c3:83:a9:71:43:05:61:74:43:42:28:68: e8:29:47:38:e4:41:ad:f9:ed:df:4f:1b:48:a0:dd: 32:40:1c:1f:99:5b:b0:35:26:7f:c0:3f:df:31:e6: bf:97:e7:60:17:e6:94:c0:57:3a:e1:bb:88:ac:09: b2:65:ee:6e:40:55:15:7c:30:6a:6b:cb:80:a9:bb: 05:07:db:5f:cb:14:2c:17:ae:1b:72:da:6c:6c:51: e1:3d:f0:b5:dc:1c:e0:84:78:8c:b9:dc:e5:9b:66: 9b:a3:e2:9c:57:ef:6d:df:69:a6:c7:47:d4:7f:58: 96:8b:d4:b7:eb:86:56:c3:27:48:9b:6c:96:91:1f: 4d:87:9f:64:67:5a:91:d0:d9:e7:9a:c9:e3:f9:99: d3:73:93:6d:72:dc:45:80:19:e8:36:6e:92:e7:d1: c5:d6:3b:38:42:71:d4:08:3f:5e:84:e0:30:4e:8c: 2b:dc:1d:f1:ea:f6:7a:2d:78:b8:e8:91:23:74:49: 55:4e:ff:92:41:06:7f:68:c6:ff:32:33:1a:26:99: d3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D8:14:CD:6E:DA:63:0D:ED:3F:97:3D:E6:FF:AF:A2:C0:F9:0B:35 X509v3 Authority Key Identifier: keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:3b:a6:8f:38:1c:be:3c:d8:12:0f:07:6b:f7:f8:4a:67:db: e7:8d:7f:48:4c:2a:9b:a2:ab:08:d2:11:64:f6:1c:ca:9b:f4: b8:8d:a4:92:5e:09:c2:9d:8d:74:23:6a:54:6a:60:e1:f8:43: 30:ef:c2:0e:05:ee:bd:22:d5:41:b4:b2:54:0b:b3:99:c9:11: 78:13:d3:c3:b8:c3:16:0f:89:65:4b:af:61:be:c3:e3:b9:5f: 39:a5:d1:77:81:20:de:79:e2:d0:90:93:f5:c4:86:de:d8:f3: 45:12:9a:18:79:94:de:ad:08:0b:ef:32:85:d8:17:0c:58:99: 83:61:8c:b6:43:b6:26:55:fa:ea:ca:ab:cd:ae:ab:30:a1:54: 1a:61:66:df:df:e5:b1:13:97:80:8c:dc:ec:38:cb:46:69:55: 12:33:20:94:e3:d2:bd:fd:af:e2:94:69:5d:14:e1:b5:44:4d: e8:92:22:52:53:36:88:01:0e:de:7a:6f:e6:31:c0:81:c4:67: 0a:19:a4:69:6e:0d:6a:63:38:f3:01:88:b8:a9:b0:ab:1f:69: e3:7d:96:de:a8:9d:e4:02:6d:4d:55:6f:a1:b5:eb:68:ea:f9: fb:a9:6f:fd:fe:6b:06:9e:79:a0:39:2f:96:80:cd:0f:43:1d: 39:a4:40:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfa7LgJPPMB6yu5zIES02MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwYWE5NDlkMzFjNjY4ODhjYjQ3NThmMjNkZDVmMzEyMTQx ZGVjNGEwHhcNMjYwMjA5MTMwMDU4WhcNMjYwMjEwMTMwMDU4WjAzMTEwLwYDVQQD Eyg4Y2Q4MTRjZDZlZGE2MzBkZWQzZjk3M2RlNmZmYWZhMmMwZjkwYjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3sQiWt66D3qlwd4qDHgLpQRIt0cX 6hh1zJn6hOfinFlS/IMEdp6yCmHAgUko9uLDg6lxQwVhdENCKGjoKUc45EGt+e3f TxtIoN0yQBwfmVuwNSZ/wD/fMea/l+dgF+aUwFc64buIrAmyZe5uQFUVfDBqa8uA qbsFB9tfyxQsF64bctpsbFHhPfC13BzghHiMudzlm2abo+KcV+9t32mmx0fUf1iW i9S364ZWwydIm2yWkR9Nh59kZ1qR0Nnnmsnj+ZnTc5NtctxFgBnoNm6S59HF1js4 QnHUCD9ehOAwTowr3B3x6vZ6LXi46JEjdElVTv+SQQZ/aMb/MjMaJpnTswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIzYFM1u2mMN7T+XPeb/r6LA+Qs1MB8GA1UdIwQY MBaAFECqlJ0xxmiIy0dY8j3V8xIUHexKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9kZTk0MDEtNTZiYi00ODEzLThmODgt ZmQxMWJiMWNjODJkLzEvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC9kZTk0MDEtNTZiYi00ODEzLThmODgtZmQxMWJiMWNjODJk LzEvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYzumjzgc vjzYEg8Ha/f4Smfb541/SEwqm6KrCNIRZPYcypv0uI2kkl4Jwp2NdCNqVGpg4fhD MO/CDgXuvSLVQbSyVAuzmckReBPTw7jDFg+JZUuvYb7D47lfOaXRd4Eg3nni0JCT 9cSG3tjzRRKaGHmU3q0IC+8yhdgXDFiZg2GMtkO2JlX66sqrza6rMKFUGmFm39/l sROXgIzc7DjLRmlVEjMglOPSvf2v4pRpXRThtURN6JIiUlM2iAEO3npv5jHAgcRn ChmkaW4NamM48wGIuKmwqx9p432W3qid5AJtTVVvobXraOr5+6lv/f5rBp55oDkv loDND0MdOaRAmg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:59 2026 by rpki-client