This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft File: pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft (raw, json) Hash identifier: rN/J/y1jvKzFTQ+spMZPEswdnWUaSaHQGvufTROr+As= Subject key identifier: 4E:1C:CA:30:1F:D9:FD:55:25:D3:D5:95:E5:13:E0:B2:D7:79:AF:46 Authority key identifier: A5:AF:C5:43:5F:CB:BE:34:8D:2B:56:01:6A:7B:C7:BC:AC:F1:B8:66 Certificate issuer: /CN=a5afc5435fcbbe348d2b56016a7bc7bcacf1b866 Certificate serial: 019C41A26ABFCF9818EA0A00D22DAE0CCEC3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft Manifest number: 0BDC Signing time: Mon 09 Feb 2026 09:01:28 +0000 Manifest this update: Mon 09 Feb 2026 09:01:28 +0000 Manifest next update: Tue 10 Feb 2026 09:01:28 +0000 Files and hashes: 1: i8Jkc4pxTLURfEXCzuvgdJ4d5UM.roa (hash: 3Aa3KlSn62IyX7PygJ6vdIXQzOFJ0C/FH3ms8tRbuZk=) 2: pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl (hash: rwaYtVWNTiCB8pGGtZDo39o7G7+1ntuYyOGHaOEaDUo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:6a:bf:cf:98:18:ea:0a:00:d2:2d:ae:0c:ce:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5afc5435fcbbe348d2b56016a7bc7bcacf1b866 Validity Not Before: Feb 9 09:01:28 2026 GMT Not After : Feb 10 09:01:28 2026 GMT Subject: CN=4e1cca301fd9fd5525d3d595e513e0b2d779af46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9b:02:88:3e:f3:fd:33:d9:7c:21:cb:09:3b: 4e:d5:3e:87:03:21:79:2d:71:dd:13:2b:22:1b:a2: 2f:83:10:df:8c:7c:b8:2e:7c:fb:ba:7d:79:4e:5a: 76:a2:e4:a4:16:59:3b:c6:69:b4:fc:4e:7b:21:cc: ee:f9:13:3d:01:e3:f7:77:08:ee:de:1e:37:ec:82: 1a:e9:95:b1:85:4a:cf:cc:63:65:35:70:5a:92:d4: fc:c0:8c:3c:ed:0c:69:7c:b6:05:52:96:80:e5:63: d8:04:32:fd:28:29:89:5d:20:d7:1c:59:1c:1c:28: 94:aa:02:86:06:72:5a:a5:61:f6:74:22:f4:04:f2: 39:71:5d:1b:51:6b:2d:55:58:b5:0a:8f:59:af:96: c8:fe:01:f1:eb:09:80:e7:eb:ab:6d:32:f0:dc:da: 33:66:b7:8f:46:97:6f:46:09:3a:cc:59:42:8a:8d: a2:1d:93:ce:5f:c2:78:bc:3b:1d:4b:3b:72:e7:28: 26:ec:52:e3:f5:84:a4:ff:ce:07:7b:1b:2b:a4:10: 4f:fc:38:7a:fa:02:94:b7:67:9b:07:3b:29:cd:4b: 42:bd:f8:1e:7d:9f:a4:0c:56:51:d8:96:9e:9c:52: 47:ac:c1:3e:15:59:e8:77:bc:c6:7c:31:af:e1:2a: e7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1C:CA:30:1F:D9:FD:55:25:D3:D5:95:E5:13:E0:B2:D7:79:AF:46 X509v3 Authority Key Identifier: keyid:A5:AF:C5:43:5F:CB:BE:34:8D:2B:56:01:6A:7B:C7:BC:AC:F1:B8:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:e1:6c:76:82:a9:a5:f3:c1:7c:38:ca:6d:9c:f7:e9:91:80: 00:5d:5f:c8:51:01:1d:7a:77:3a:91:30:be:4d:14:2d:7a:77: 2b:60:42:54:c7:bd:a5:27:40:18:f1:3c:93:48:1d:60:2a:a0: 2f:21:37:f3:29:36:55:46:c0:91:fd:21:d6:26:0d:49:c0:29: 4a:ca:70:96:74:44:99:15:09:b5:41:56:1c:1d:88:b9:ce:33: 29:0b:0f:60:6d:57:32:0c:85:ba:93:a4:44:67:27:c9:e7:39: 72:a5:40:b9:75:b2:e8:40:e2:bb:6d:79:43:c0:49:23:ef:b4: bb:46:c0:ea:f0:d9:06:4a:16:91:47:9a:65:3b:40:4d:39:c2: 2f:b1:e8:f7:70:bd:82:9d:70:91:a3:32:77:ac:6e:e4:4e:60: 2e:96:3e:bd:22:14:13:98:37:9e:7c:97:db:d3:d8:60:8a:57: bc:8c:e9:14:5c:a9:58:c3:0b:e3:21:fb:ea:aa:d9:a0:d5:6f: e8:ef:38:11:3e:b1:91:7b:88:eb:ea:4d:66:ac:f8:8f:62:4b: 5b:48:15:89:9c:5e:dd:40:95:4a:f7:be:7a:b8:ee:8a:32:dd: 77:c0:8b:97:3b:e4:03:31:2f:dd:a2:c3:ec:61:ba:7d:9d:72: 4b:af:7a:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBomq/z5gY6goA0i2uDM7DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1YWZjNTQzNWZjYmJlMzQ4ZDJiNTYwMTZhN2JjN2JjYWNm MWI4NjYwHhcNMjYwMjA5MDkwMTI4WhcNMjYwMjEwMDkwMTI4WjAzMTEwLwYDVQQD Eyg0ZTFjY2EzMDFmZDlmZDU1MjVkM2Q1OTVlNTEzZTBiMmQ3NzlhZjQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5sCiD7z/TPZfCHLCTtO1T6HAyF5 LXHdEysiG6IvgxDfjHy4Lnz7un15Tlp2ouSkFlk7xmm0/E57Iczu+RM9AeP3dwju 3h437IIa6ZWxhUrPzGNlNXBaktT8wIw87QxpfLYFUpaA5WPYBDL9KCmJXSDXHFkc HCiUqgKGBnJapWH2dCL0BPI5cV0bUWstVVi1Co9Zr5bI/gHx6wmA5+urbTLw3Noz ZrePRpdvRgk6zFlCio2iHZPOX8J4vDsdSzty5ygm7FLj9YSk/84HexsrpBBP/Dh6 +gKUt2ebBzspzUtCvfgefZ+kDFZR2JaenFJHrME+FVnod7zGfDGv4SrnGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE4cyjAf2f1VJdPVleUT4LLXea9GMB8GA1UdIwQY MBaAFKWvxUNfy740jStWAWp7x7ys8bhmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGFfRlExX0x2alNOSzFZQmFudkh2S3p4dUdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC80MTlhZjAtY2JkNi00MjMzLWI1MmYt ZDc0ODRiZjljYTJiLzEvcGFfRlExX0x2alNOSzFZQmFudkh2S3p4dUdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC80MTlhZjAtY2JkNi00MjMzLWI1MmYtZDc0ODRiZjljYTJi LzEvcGFfRlExX0x2alNOSzFZQmFudkh2S3p4dUdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATuFsdoKp pfPBfDjKbZz36ZGAAF1fyFEBHXp3OpEwvk0ULXp3K2BCVMe9pSdAGPE8k0gdYCqg LyE38yk2VUbAkf0h1iYNScApSspwlnREmRUJtUFWHB2Iuc4zKQsPYG1XMgyFupOk RGcnyec5cqVAuXWy6EDiu215Q8BJI++0u0bA6vDZBkoWkUeaZTtATTnCL7Ho93C9 gp1wkaMyd6xu5E5gLpY+vSIUE5g3nnyX29PYYIpXvIzpFFypWMML4yH76qrZoNVv 6O84ET6xkXuI6+pNZqz4j2JLW0gViZxe3UCVSve+erjuijLdd8CLlzvkAzEv3aLD 7GG6fZ1yS696xg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:02 2026 by rpki-client