This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft File: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft (raw, json) Hash identifier: EwdDgKqRu3Y0X/SVWT7uKvEU888t+QTNXN78KCiQ9bw= Subject key identifier: 1B:41:BD:AE:D4:8B:30:C6:00:B9:1E:AE:01:24:0F:B5:21:BB:6C:8B Authority key identifier: 43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD Certificate issuer: /CN=4368330bea2dfe880ffa62f67b566aeae2d287fd Certificate serial: 019C432280DF795B70172E04E1ABE81CA65E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft Manifest number: 153C Signing time: Mon 09 Feb 2026 16:01:00 +0000 Manifest this update: Mon 09 Feb 2026 16:01:00 +0000 Manifest next update: Tue 10 Feb 2026 16:01:00 +0000 Files and hashes: 1: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl (hash: 76h/KL8flXJtrSvNUfZMqhJdISMVpn4HtdPaLzmZHbs=) 2: TQWvkAi8bonEzYNgt0Kx7jD-EqQ.roa (hash: 4l9r6gsisRPOUrwiMnNC/ZEB32QweKRJ3pss8gUXvAk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:80:df:79:5b:70:17:2e:04:e1:ab:e8:1c:a6:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4368330bea2dfe880ffa62f67b566aeae2d287fd Validity Not Before: Feb 9 16:01:00 2026 GMT Not After : Feb 10 16:01:00 2026 GMT Subject: CN=1b41bdaed48b30c600b91eae01240fb521bb6c8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:03:29:4a:bb:fe:05:76:b6:e0:aa:f7:5b:43: bf:18:61:5b:1f:ce:aa:3a:ad:ce:1e:73:f7:aa:88: 1e:ee:1e:fa:17:48:0b:68:a9:4f:43:b6:41:c1:74: d8:97:e6:dd:90:a8:d4:0f:5f:e6:f4:3e:d1:3a:dc: 24:b6:66:01:d1:e2:18:4b:56:b4:d4:80:84:6f:87: 5d:8f:75:52:e7:88:72:14:31:d9:34:c5:42:cb:cd: aa:ec:4f:2d:ae:0f:cd:59:ae:d1:a9:79:f3:7d:a2: 2d:be:8f:b4:43:4c:40:1d:a2:3e:0b:dc:2a:bf:82: b3:fa:5b:61:9c:c7:43:bd:30:01:35:17:93:a2:c5: 7c:dd:92:20:cd:28:3d:5a:5a:8b:20:78:c4:df:21: 35:d9:15:67:03:31:30:4e:75:43:28:fd:9a:19:8e: 00:16:ea:4a:cb:37:b4:33:97:af:ea:9a:5b:dd:9e: 06:01:2f:92:9a:17:ac:fe:1b:7f:55:7d:2d:ff:a1: 90:16:ad:68:9e:2c:a3:c9:59:cb:9c:c7:46:98:84: 72:48:d8:ae:ce:a1:f3:f8:86:3e:61:09:e6:ad:1a: d9:96:56:2e:d5:8c:7f:ed:5b:4b:3b:f8:96:2b:96: 5a:fe:71:76:49:ea:0f:e9:fb:a0:6a:8d:2b:b3:d4: be:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:41:BD:AE:D4:8B:30:C6:00:B9:1E:AE:01:24:0F:B5:21:BB:6C:8B X509v3 Authority Key Identifier: keyid:43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:da:88:96:b2:97:7a:a7:f6:fd:f6:d8:89:e7:42:6d:59:e1: e3:89:a4:21:63:e6:0f:9c:fe:ce:b4:0e:19:b5:ff:56:7b:54: cc:a4:0f:9e:b0:47:bd:e1:fa:e6:da:c0:4b:51:b8:99:5c:57: 6b:a5:30:e0:c6:b2:9a:59:39:1c:99:f3:51:3d:37:c4:8e:0b: 9a:b9:9f:7a:49:1a:53:de:19:7e:de:21:0f:0c:43:fa:bf:96: 57:7d:05:86:15:14:1c:b7:e3:e7:94:eb:01:a7:08:d3:b6:bf: e7:c1:2a:b2:7e:05:bd:80:c7:85:f6:10:4d:52:d8:73:c1:20: d2:40:fc:d2:95:98:21:09:80:74:f3:97:7b:e9:b7:bb:d6:a0: 57:ba:58:19:59:99:43:67:ab:4f:8e:c2:0d:26:1c:98:b4:09: 5c:d8:5f:b1:e1:de:4c:e9:a5:f9:bf:8f:90:a9:b6:26:41:35: 0c:d6:ce:09:f9:4e:e8:01:e4:fb:8b:88:09:c8:45:40:54:d2: d4:0d:bf:78:1c:b6:0c:82:73:76:ce:8e:b6:9f:60:9e:b5:9c: 76:4d:be:76:b4:b9:d6:1c:54:93:32:b7:3b:08:a2:e8:e8:75: 6f:85:33:0d:c2:ff:40:ad:df:89:00:a2:0d:50:d4:af:03:8c: 85:d9:f2:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoDfeVtwFy4E4avoHKZeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNjgzMzBiZWEyZGZlODgwZmZhNjJmNjdiNTY2YWVhZTJk Mjg3ZmQwHhcNMjYwMjA5MTYwMTAwWhcNMjYwMjEwMTYwMTAwWjAzMTEwLwYDVQQD EygxYjQxYmRhZWQ0OGIzMGM2MDBiOTFlYWUwMTI0MGZiNTIxYmI2YzhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwMpSrv+BXa24Kr3W0O/GGFbH86q Oq3OHnP3qoge7h76F0gLaKlPQ7ZBwXTYl+bdkKjUD1/m9D7ROtwktmYB0eIYS1a0 1ICEb4ddj3VS54hyFDHZNMVCy82q7E8trg/NWa7RqXnzfaItvo+0Q0xAHaI+C9wq v4Kz+lthnMdDvTABNReTosV83ZIgzSg9WlqLIHjE3yE12RVnAzEwTnVDKP2aGY4A FupKyze0M5ev6ppb3Z4GAS+Smhes/ht/VX0t/6GQFq1oniyjyVnLnMdGmIRySNiu zqHz+IY+YQnmrRrZllYu1Yx/7VtLO/iWK5Za/nF2SeoP6fugao0rs9S+/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBtBva7UizDGALkergEkD7Uhu2yLMB8GA1UdIwQY MBaAFENoMwvqLf6ID/pi9ntWauri0of9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTJnekMtb3Rfb2dQLW1MMmUxWnE2dUxTaF8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS84ZmMzYjAtOTcwNC00NzUxLWIxNDkt NWEzN2Y2YTFiY2E5LzEvUTJnekMtb3Rfb2dQLW1MMmUxWnE2dUxTaF8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS84ZmMzYjAtOTcwNC00NzUxLWIxNDktNWEzN2Y2YTFiY2E5 LzEvUTJnekMtb3Rfb2dQLW1MMmUxWnE2dUxTaF8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqNqIlrKX eqf2/fbYiedCbVnh44mkIWPmD5z+zrQOGbX/VntUzKQPnrBHveH65trAS1G4mVxX a6Uw4Maymlk5HJnzUT03xI4LmrmfekkaU94Zft4hDwxD+r+WV30FhhUUHLfj55Tr AacI07a/58Eqsn4FvYDHhfYQTVLYc8Eg0kD80pWYIQmAdPOXe+m3u9agV7pYGVmZ Q2erT47CDSYcmLQJXNhfseHeTOml+b+PkKm2JkE1DNbOCflO6AHk+4uICchFQFTS 1A2/eBy2DIJzds6Otp9gnrWcdk2+drS51hxUkzK3Owii6Oh1b4UzDcL/QK3fiQCi DVDUrwOMhdnyhQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:46 2026 by rpki-client