This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft File: qvNQYhzAHooe03KB3zKwlxy95Vc.mft (raw, json) Hash identifier: 0gOFF68xJhFhLYcCFzjSTfRjKQq3iMXrGQ96fToyuM0= Subject key identifier: C1:F3:36:1C:2C:ED:D3:99:10:30:A6:3F:8B:00:11:6F:E9:98:B4:49 Authority key identifier: AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57 Certificate issuer: /CN=aaf350621cc01e8a1ed37281df32b0971cbde557 Certificate serial: 019C41A1A911C7AFDB3E51B4C1AF682D55E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 09:00:39 +0000 Manifest this update: Mon 09 Feb 2026 09:00:39 +0000 Manifest next update: Tue 10 Feb 2026 09:00:39 +0000 Files and hashes: 1: qvNQYhzAHooe03KB3zKwlxy95Vc.crl (hash: iXh/EPay2HjieurxHaqZJsQcPCOHXFLrdZybcNUG8PY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:a9:11:c7:af:db:3e:51:b4:c1:af:68:2d:55:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aaf350621cc01e8a1ed37281df32b0971cbde557 Validity Not Before: Feb 9 09:00:39 2026 GMT Not After : Feb 10 09:00:39 2026 GMT Subject: CN=c1f3361c2cedd3991030a63f8b00116fe998b449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2f:bb:b1:c1:28:4e:f6:a6:40:41:98:e0:20: 13:eb:e8:18:bc:aa:b9:a9:aa:7b:07:1b:01:41:84: b1:02:5d:fc:b0:24:ac:28:84:90:76:7a:29:23:81: 9c:c7:be:70:3d:f4:b5:67:a6:5b:95:1d:e4:8c:8b: 53:c4:a4:fd:75:e1:3a:8f:cf:80:d5:9a:05:a9:cf: 47:5b:ce:dd:43:02:eb:06:90:23:97:ab:1a:07:6b: 2b:66:73:5e:e8:a4:47:7b:a8:23:34:80:07:79:13: a6:25:5c:33:f1:c1:b8:06:e6:34:f7:4c:3c:8d:53: c0:d6:c5:91:b5:cb:dd:ad:36:ce:64:af:5a:58:c1: 73:49:9a:43:f1:c7:32:2e:39:0d:5a:8b:67:48:0a: bc:61:ba:b6:87:c5:d0:e0:50:a7:68:17:53:dd:55: 9a:ea:1d:56:32:4d:20:a1:b1:9e:e8:15:0a:da:3e: 6e:2f:46:61:23:46:7c:5f:12:34:64:5f:ff:9e:dc: 14:1b:39:bf:d5:0f:e2:5b:f7:94:1a:40:ed:b4:da: e4:5f:38:bc:96:09:d2:1a:5c:db:50:fa:f0:da:69: 78:76:52:2f:51:6c:e5:2a:6c:14:d9:e4:02:33:b1: 9f:f0:9a:0a:eb:c8:33:b6:55:43:f8:ec:10:19:a1: 02:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F3:36:1C:2C:ED:D3:99:10:30:A6:3F:8B:00:11:6F:E9:98:B4:49 X509v3 Authority Key Identifier: keyid:AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:13:25:c9:ff:70:fb:1a:f1:77:0c:5c:88:00:d4:c7:fe:70: dc:a7:0a:d5:d9:20:61:d4:3c:48:0a:c9:49:15:66:5e:ae:7a: 45:ea:9c:a4:18:ed:03:88:96:70:1a:2d:ec:fc:19:3a:15:27: 98:32:af:1b:4c:fc:49:d4:09:55:d2:f3:a6:d9:c1:e5:5a:54: c6:4b:34:ee:aa:43:9e:d5:05:bb:ec:d3:98:5e:f5:7e:c2:e9: f2:95:07:d0:56:35:18:80:45:22:c5:f9:57:72:5c:2b:32:63: d6:73:15:5b:70:25:25:1b:bb:01:b8:4f:0a:7d:f9:00:ee:67: 67:20:ef:9a:79:33:e7:2e:aa:96:d3:78:2e:ba:c5:e0:d0:ba: b2:e8:67:9b:5d:50:5d:9d:4f:89:c2:ce:9c:36:3e:80:b0:b5: 49:d0:63:60:d9:2c:0e:3c:49:52:cd:63:da:94:21:ab:78:74: b7:2b:1e:16:d9:29:b4:ca:4d:2d:3c:ed:b2:3e:7f:66:5d:de: 19:af:75:30:f1:44:c0:bc:5f:81:7d:93:9c:d5:01:6a:6b:33: fc:c0:0c:a6:ae:72:ad:d8:a6:04:b7:37:73:1c:a6:39:e1:e8: 65:9a:72:e5:2c:b7:62:66:da:42:55:fa:a4:7b:43:82:4c:20: bb:67:de:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoakRx6/bPlG0wa9oLVXiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhZjM1MDYyMWNjMDFlOGExZWQzNzI4MWRmMzJiMDk3MWNi ZGU1NTcwHhcNMjYwMjA5MDkwMDM5WhcNMjYwMjEwMDkwMDM5WjAzMTEwLwYDVQQD EyhjMWYzMzYxYzJjZWRkMzk5MTAzMGE2M2Y4YjAwMTE2ZmU5OThiNDQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6C+7scEoTvamQEGY4CAT6+gYvKq5 qap7BxsBQYSxAl38sCSsKISQdnopI4Gcx75wPfS1Z6ZblR3kjItTxKT9deE6j8+A 1ZoFqc9HW87dQwLrBpAjl6saB2srZnNe6KRHe6gjNIAHeROmJVwz8cG4BuY090w8 jVPA1sWRtcvdrTbOZK9aWMFzSZpD8ccyLjkNWotnSAq8Ybq2h8XQ4FCnaBdT3VWa 6h1WMk0gobGe6BUK2j5uL0ZhI0Z8XxI0ZF//ntwUGzm/1Q/iW/eUGkDttNrkXzi8 lgnSGlzbUPrw2ml4dlIvUWzlKmwU2eQCM7Gf8JoK68gztlVD+OwQGaECkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMHzNhws7dOZEDCmP4sAEW/pmLRJMB8GA1UdIwQY MBaAFKrzUGIcwB6KHtNygd8ysJccveVXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9mODEyYzctYTg1ZC00MDQwLThiOTkt NzVhOGIwOTc0ZTIwLzEvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9mODEyYzctYTg1ZC00MDQwLThiOTktNzVhOGIwOTc0ZTIw LzEvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoRMlyf9w +xrxdwxciADUx/5w3KcK1dkgYdQ8SArJSRVmXq56ReqcpBjtA4iWcBot7PwZOhUn mDKvG0z8SdQJVdLzptnB5VpUxks07qpDntUFu+zTmF71fsLp8pUH0FY1GIBFIsX5 V3JcKzJj1nMVW3AlJRu7AbhPCn35AO5nZyDvmnkz5y6qltN4LrrF4NC6suhnm11Q XZ1PicLOnDY+gLC1SdBjYNksDjxJUs1j2pQhq3h0tyseFtkptMpNLTztsj5/Zl3e Ga91MPFEwLxfgX2TnNUBamsz/MAMpq5yrdimBLc3cxymOeHoZZpy5Sy3YmbaQlX6 pHtDgkwgu2feMQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:24 2026 by rpki-client