This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.mft File: qUjQEe24zTPmZ2eIDKSrMGHZxSM.mft (raw, json) Hash identifier: aHDlvhXYC6n4mICyI4jU1u90V0h3xX2eY/e3uppSFCs= Subject key identifier: C9:17:CF:63:A9:EE:F4:E8:6E:A5:D9:FA:BF:96:F6:ED:9C:3F:4F:25 Authority key identifier: A9:48:D0:11:ED:B8:CD:33:E6:67:67:88:0C:A4:AB:30:61:D9:C5:23 Certificate issuer: /CN=a948d011edb8cd33e66767880ca4ab3061d9c523 Certificate serial: 019C4434FFB0ABE33C5AA10FF885A2B7696E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUjQEe24zTPmZ2eIDKSrMGHZxSM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.mft Manifest number: 0528 Signing time: Mon 09 Feb 2026 21:00:49 +0000 Manifest this update: Mon 09 Feb 2026 21:00:49 +0000 Manifest next update: Tue 10 Feb 2026 21:00:49 +0000 Files and hashes: 1: qUjQEe24zTPmZ2eIDKSrMGHZxSM.crl (hash: 7oQXBjOqOqGiADRYJ7pWPxZjNyW41gP0VkekUza2fR4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.crl rsync://rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.mft rsync://rpki.ripe.net/repository/DEFAULT/qUjQEe24zTPmZ2eIDKSrMGHZxSM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:ff:b0:ab:e3:3c:5a:a1:0f:f8:85:a2:b7:69:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a948d011edb8cd33e66767880ca4ab3061d9c523 Validity Not Before: Feb 9 21:00:49 2026 GMT Not After : Feb 10 21:00:49 2026 GMT Subject: CN=c917cf63a9eef4e86ea5d9fabf96f6ed9c3f4f25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bc:07:91:13:97:67:cc:5b:28:c2:2a:65:47: 82:10:35:62:03:98:66:2b:c7:f5:55:90:a0:d9:6f: 16:1a:f3:47:d0:bf:6d:89:a3:4c:d5:28:b1:f5:7e: 3c:2b:fa:75:d2:b5:da:ee:3d:ff:09:2c:27:fa:d9: 58:c1:95:0c:f3:f2:55:aa:8d:ac:d5:6a:b6:a5:ba: e7:7c:ea:65:30:3f:fc:ab:a7:18:cf:ca:86:e1:70: 24:1f:7c:13:28:a7:75:6d:5b:9b:f0:70:0f:a3:5e: df:33:dd:29:7d:98:bb:51:7d:91:b2:5b:83:ad:3a: bb:72:3a:83:0b:55:cc:59:27:e1:07:9b:ad:87:96: 3d:b5:07:be:53:a3:44:80:a4:a9:22:47:aa:c4:d7: 4b:4c:40:b0:0f:e1:58:51:77:20:c2:b6:59:b3:75: a8:f2:ea:8d:05:37:04:54:46:16:bd:35:04:7b:4a: 36:2b:5e:19:e0:21:27:f1:ba:28:e9:be:4b:37:09: 66:52:01:a8:98:53:60:cc:c9:be:33:1c:3f:27:43: 91:cb:b7:37:74:bb:25:ec:ba:31:14:1c:71:31:51: e2:60:ee:64:25:a3:ed:9f:de:81:9e:f8:87:84:ec: 0c:a6:66:2f:50:2a:a5:90:13:a1:75:a0:d6:db:ee: cf:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:17:CF:63:A9:EE:F4:E8:6E:A5:D9:FA:BF:96:F6:ED:9C:3F:4F:25 X509v3 Authority Key Identifier: keyid:A9:48:D0:11:ED:B8:CD:33:E6:67:67:88:0C:A4:AB:30:61:D9:C5:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUjQEe24zTPmZ2eIDKSrMGHZxSM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:7e:a5:05:61:31:f0:b5:19:f2:51:74:57:6d:de:f8:bc:89: ff:66:22:3e:e7:78:8b:e1:48:e0:72:5d:2b:cd:e3:76:06:ac: 91:15:9c:90:c3:3b:c9:96:76:1b:5e:fc:70:ae:2c:9a:11:be: 04:a3:50:87:d9:02:ec:8f:fe:51:4f:68:1d:d6:5e:a6:68:02: f3:8e:3a:3c:69:0d:41:27:ad:c4:41:d8:40:7e:88:79:4c:36: d3:dc:95:82:8a:3b:0f:2d:f4:c1:95:40:e3:22:14:3a:b6:60: 81:61:0b:82:48:d1:5b:67:f8:36:b7:e2:56:42:0c:c4:d4:4b: ad:a1:46:1a:21:1f:e0:e7:bd:3f:37:30:cf:02:fe:e3:9f:81: 32:cb:00:52:6b:02:69:d9:a0:83:f5:6f:00:36:63:bd:67:35: 61:17:02:54:e3:77:a7:08:9a:f0:3c:b5:5c:e3:66:f8:19:09: ef:d1:c1:fd:10:01:d3:80:f8:0d:ea:ee:ed:a0:42:22:37:ea: 18:46:42:1c:04:1d:4e:00:1e:72:88:9e:71:f5:63:54:7f:73: 0d:da:f8:36:6f:76:42:b6:d5:40:41:94:26:46:01:9b:3d:89: 8c:08:0d:29:16:82:6c:6b:02:f3:3a:7b:1a:fe:22:7b:79:77: a9:9b:4b:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENP+wq+M8WqEP+IWit2luMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5NDhkMDExZWRiOGNkMzNlNjY3Njc4ODBjYTRhYjMwNjFk OWM1MjMwHhcNMjYwMjA5MjEwMDQ5WhcNMjYwMjEwMjEwMDQ5WjAzMTEwLwYDVQQD EyhjOTE3Y2Y2M2E5ZWVmNGU4NmVhNWQ5ZmFiZjk2ZjZlZDljM2Y0ZjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7wHkROXZ8xbKMIqZUeCEDViA5hm K8f1VZCg2W8WGvNH0L9tiaNM1Six9X48K/p10rXa7j3/CSwn+tlYwZUM8/JVqo2s 1Wq2pbrnfOplMD/8q6cYz8qG4XAkH3wTKKd1bVub8HAPo17fM90pfZi7UX2RsluD rTq7cjqDC1XMWSfhB5uth5Y9tQe+U6NEgKSpIkeqxNdLTECwD+FYUXcgwrZZs3Wo 8uqNBTcEVEYWvTUEe0o2K14Z4CEn8boo6b5LNwlmUgGomFNgzMm+Mxw/J0ORy7c3 dLsl7LoxFBxxMVHiYO5kJaPtn96BnviHhOwMpmYvUCqlkBOhdaDW2+7PlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMkXz2Op7vTobqXZ+r+W9u2cP08lMB8GA1UdIwQY MBaAFKlI0BHtuM0z5mdniAykqzBh2cUjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVVqUUVlMjR6VFBtWjJlSURLU3JNR0haeFNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC85ZWIzZWItNTEwOS00Nzk4LTg4Mjgt M2Q1NDlmYmI4MzdmLzEvcVVqUUVlMjR6VFBtWjJlSURLU3JNR0haeFNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC85ZWIzZWItNTEwOS00Nzk4LTg4MjgtM2Q1NDlmYmI4Mzdm LzEvcVVqUUVlMjR6VFBtWjJlSURLU3JNR0haeFNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXH6lBWEx 8LUZ8lF0V23e+LyJ/2YiPud4i+FI4HJdK83jdgaskRWckMM7yZZ2G178cK4smhG+ BKNQh9kC7I/+UU9oHdZepmgC8446PGkNQSetxEHYQH6IeUw209yVgoo7Dy30wZVA 4yIUOrZggWELgkjRW2f4NrfiVkIMxNRLraFGGiEf4Oe9PzcwzwL+45+BMssAUmsC admgg/VvADZjvWc1YRcCVON3pwia8Dy1XONm+BkJ79HB/RAB04D4Deru7aBCIjfq GEZCHAQdTgAecoiecfVjVH9zDdr4Nm92QrbVQEGUJkYBmz2JjAgNKRaCbGsC8zp7 Gv4ie3l3qZtLBA== -----END CERTIFICATE-----Generated at Mon Feb 9 23:53:28 2026 by rpki-client