This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft File: qiIvVnO4KKeuUvmboMYqzXCXSjg.mft (raw, json) Hash identifier: IFN5N54OebaZrRWy5Y3YlSIwkrcYjCOqZyajDu+vHek= Subject key identifier: 86:D3:E5:39:97:67:8C:6C:5F:16:CC:D0:23:17:4F:46:05:32:A0:75 Authority key identifier: AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38 Certificate issuer: /CN=aa222f5673b828a7ae52f99ba0c62acd70974a38 Certificate serial: 019C42467383F61F5D803A7FCB4382FE1C7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft Manifest number: 050B Signing time: Mon 09 Feb 2026 12:00:39 +0000 Manifest this update: Mon 09 Feb 2026 12:00:39 +0000 Manifest next update: Tue 10 Feb 2026 12:00:39 +0000 Files and hashes: 1: 9AVYlnVDy_5NTBGvlnnPZPWKT8U.roa (hash: N+NhjHfDEfFXjTSJhobVC2Q1bhjazURhKTdBJKZj/zM=) 2: qiIvVnO4KKeuUvmboMYqzXCXSjg.crl (hash: VZ3iyQBhLwEq1J0IwfZBz7YR3iit8kEGEPSY89HPDNk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:73:83:f6:1f:5d:80:3a:7f:cb:43:82:fe:1c:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa222f5673b828a7ae52f99ba0c62acd70974a38 Validity Not Before: Feb 9 12:00:39 2026 GMT Not After : Feb 10 12:00:39 2026 GMT Subject: CN=86d3e53997678c6c5f16ccd023174f460532a075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4f:db:f9:17:be:94:06:92:ed:4d:0a:07:ce: d1:a3:5f:7f:01:d2:7e:2a:bc:db:cb:99:66:51:a6: 47:77:54:31:e4:fd:f8:da:f1:9d:82:e5:4e:1b:89: d8:fc:5c:ff:3c:2d:24:9a:60:57:89:62:31:b9:8b: ed:41:26:a7:bb:77:f0:8b:62:53:3f:a4:86:e0:22: 56:2a:88:6e:cd:cb:a0:42:13:73:6e:4c:5d:7f:60: b6:c1:f0:42:6a:d8:3f:66:a7:58:c0:92:c4:ac:85: 51:28:78:f0:64:ce:5b:af:e9:c5:80:a9:9a:29:c8: b3:c9:b6:54:23:15:7e:44:9b:f0:e1:91:b0:86:f2: 02:cb:95:1e:21:4b:7d:09:90:6f:c3:e1:d3:07:37: 5c:47:94:84:8f:3f:12:88:d8:48:d2:3f:e4:74:b6: ae:eb:90:cb:e6:57:77:3d:e2:7c:47:22:32:0d:d1: b7:be:e5:91:86:a4:83:93:c5:8f:36:b9:09:77:a2: 29:dd:79:f9:a2:38:d3:61:00:a0:98:bd:a5:36:d5: e7:97:45:6b:20:8e:61:80:2e:b3:4c:da:fb:a0:c8: b8:20:06:60:94:bc:a1:e2:7d:41:07:97:d2:0e:75: f8:32:7f:00:4e:78:23:ec:b5:d9:a3:0b:6c:3d:3d: b7:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D3:E5:39:97:67:8C:6C:5F:16:CC:D0:23:17:4F:46:05:32:A0:75 X509v3 Authority Key Identifier: keyid:AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:05:10:14:85:d6:e2:04:26:75:83:c5:72:32:4a:c1:01:85: 2c:5d:51:e8:46:ce:26:1a:84:3e:45:6d:95:a5:bc:99:16:47: 25:a6:c0:f6:3c:7f:5a:fe:50:bc:fa:34:d5:03:5f:36:01:53: 4d:a3:cb:46:24:05:d4:89:7e:99:a3:b6:70:e0:94:5f:31:d9: 24:3b:62:e4:45:6a:8f:d4:1e:d5:74:68:ad:d0:2a:48:46:c2: cd:15:e1:db:8c:f2:01:2e:ca:50:1b:68:96:48:8e:02:48:0d: 3e:d9:b0:20:e2:66:69:46:cc:ab:bc:83:1b:2e:64:5a:86:a3: 7e:39:44:5a:8a:e2:83:87:7a:d9:96:4a:7e:f0:ea:d6:b5:8e: b2:fb:a6:18:f4:05:57:b8:94:f7:2d:11:b2:a3:d6:07:5a:81: db:71:2d:8a:b6:27:ec:58:be:74:3c:f0:52:cb:bb:f8:2f:0c: 3a:36:fb:02:1d:13:9d:ac:5f:8b:e0:9d:01:a5:9f:9f:b9:71: 3d:76:2d:2e:92:b0:81:9e:08:a7:74:9a:8a:7e:04:f6:f8:02: ec:49:28:34:8c:1f:80:b8:03:03:62:e2:54:89:98:2e:2e:9a: c8:d4:ec:d3:be:13:b8:16:9d:c9:7a:82:e8:c3:60:5f:5f:4d: 28:bb:6d:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRnOD9h9dgDp/y0OC/hx9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhMjIyZjU2NzNiODI4YTdhZTUyZjk5YmEwYzYyYWNkNzA5 NzRhMzgwHhcNMjYwMjA5MTIwMDM5WhcNMjYwMjEwMTIwMDM5WjAzMTEwLwYDVQQD Eyg4NmQzZTUzOTk3Njc4YzZjNWYxNmNjZDAyMzE3NGY0NjA1MzJhMDc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyU/b+Re+lAaS7U0KB87Ro19/AdJ+ Krzby5lmUaZHd1Qx5P342vGdguVOG4nY/Fz/PC0kmmBXiWIxuYvtQSanu3fwi2JT P6SG4CJWKohuzcugQhNzbkxdf2C2wfBCatg/ZqdYwJLErIVRKHjwZM5br+nFgKma KcizybZUIxV+RJvw4ZGwhvICy5UeIUt9CZBvw+HTBzdcR5SEjz8SiNhI0j/kdLau 65DL5ld3PeJ8RyIyDdG3vuWRhqSDk8WPNrkJd6Ip3Xn5ojjTYQCgmL2lNtXnl0Vr II5hgC6zTNr7oMi4IAZglLyh4n1BB5fSDnX4Mn8ATngj7LXZowtsPT23uQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIbT5TmXZ4xsXxbM0CMXT0YFMqB1MB8GA1UdIwQY MBaAFKoiL1ZzuCinrlL5m6DGKs1wl0o4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWlJdlZuTzRLS2V1VXZtYm9NWXF6WENYU2pnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lNTQ2MzYtYzk5OC00MDlhLTg5YmIt MmI3YjgyN2U3MThjLzEvcWlJdlZuTzRLS2V1VXZtYm9NWXF6WENYU2pnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9lNTQ2MzYtYzk5OC00MDlhLTg5YmItMmI3YjgyN2U3MThj LzEvcWlJdlZuTzRLS2V1VXZtYm9NWXF6WENYU2pnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkQUQFIXW 4gQmdYPFcjJKwQGFLF1R6EbOJhqEPkVtlaW8mRZHJabA9jx/Wv5QvPo01QNfNgFT TaPLRiQF1Il+maO2cOCUXzHZJDti5EVqj9Qe1XRordAqSEbCzRXh24zyAS7KUBto lkiOAkgNPtmwIOJmaUbMq7yDGy5kWoajfjlEWorig4d62ZZKfvDq1rWOsvumGPQF V7iU9y0RsqPWB1qB23EtirYn7Fi+dDzwUsu7+C8MOjb7Ah0Tnaxfi+CdAaWfn7lx PXYtLpKwgZ4Ip3Sain4E9vgC7EkoNIwfgLgDA2LiVImYLi6ayNTs074TuBadyXqC 6MNgX19NKLttQw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:30 2026 by rpki-client