This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json) Hash identifier: +bWh5ma4QXxYRzOwxff6Z1nrZehfFXeWmoG0xgFDvnM= Subject key identifier: A1:48:9A:07:20:2E:D1:C5:B3:C9:47:EB:CA:3E:47:8A:E6:C7:8D:67 Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e Certificate serial: 019C41A190489BA6DF4194124C3AE777BDC0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 09:00:33 +0000 Manifest this update: Mon 09 Feb 2026 09:00:33 +0000 Manifest next update: Tue 10 Feb 2026 09:00:33 +0000 Files and hashes: 1: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: 9blI7OyLmF89ce2POv0ZALIrmTHZeiO2mdY29BlGGTc=) 2: tu8pFAR-lfRJrRr8DnEqag_8PIg.roa (hash: W8jBg2aJkkt/Cbf9tH1JvG4N3IVjC0bK1ORLH4MYXDI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:90:48:9b:a6:df:41:94:12:4c:3a:e7:77:bd:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e Validity Not Before: Feb 9 09:00:33 2026 GMT Not After : Feb 10 09:00:33 2026 GMT Subject: CN=a1489a07202ed1c5b3c947ebca3e478ae6c78d67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9f:af:9c:70:f7:d8:ea:b0:c0:20:90:db:bd: 07:3f:31:d8:40:63:a1:0c:9b:25:f6:97:8f:db:34: c2:d4:71:80:3b:93:5a:b0:a5:6f:7b:b3:81:fa:02: 56:46:0b:8e:5e:28:d3:f2:54:62:b5:da:0b:15:81: 8a:b3:7a:13:91:8c:8a:8f:05:58:71:8a:8d:7d:59: 2c:3d:a4:fb:c8:bb:2a:65:3e:13:2b:1f:11:05:11: 3a:2d:3c:a2:63:c5:83:ce:3a:e9:b9:86:69:0d:ce: 68:c1:31:66:57:66:da:0b:97:74:8e:9f:fc:4d:32: 3f:64:61:3d:0e:7d:b6:93:6a:5b:62:4b:6a:68:d4: de:a2:a4:1e:b5:91:da:9b:8a:6c:66:a0:76:3d:e5: 76:1b:6b:94:14:6e:22:c7:6b:10:15:bf:25:f6:90: 12:3b:06:9b:43:f8:7a:0a:c0:66:da:7e:ca:ef:8b: 8c:b4:5a:34:53:b2:d9:4f:a8:c0:4a:7f:63:74:aa: e7:a6:c5:83:11:3a:0d:03:0a:9d:0b:27:ec:43:70: 4f:be:27:75:74:fa:e9:52:f4:75:6a:f7:51:31:68: 22:2b:fe:42:dd:a3:32:9c:65:a5:45:11:c8:ad:af: e2:e1:c4:ac:53:14:80:a3:c5:68:75:ea:a8:c3:91: b6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:48:9A:07:20:2E:D1:C5:B3:C9:47:EB:CA:3E:47:8A:E6:C7:8D:67 X509v3 Authority Key Identifier: keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:3f:e6:da:dc:16:f6:ac:e4:cb:35:22:fe:36:0b:14:e8:56: a3:c0:15:09:0e:8b:22:0e:e7:ff:cf:b5:f2:20:63:ae:4c:ca: e8:1e:da:66:10:a3:f3:f2:50:b6:b0:27:95:c2:af:7d:0b:34: 4f:77:4b:f2:50:1f:01:89:ea:e1:b3:f4:c8:a2:a8:73:63:a1: c7:0e:ee:c7:b7:f6:79:54:b4:6b:46:99:27:a0:98:a4:e4:d5: 70:64:2a:27:e7:f6:7c:a5:38:81:eb:02:22:34:fa:09:a4:b3: 8e:a6:b2:14:95:cf:5f:e2:59:ec:96:e5:96:01:9b:fe:75:20: a6:c2:ea:47:41:c4:39:cc:b6:63:2c:36:25:3b:e7:80:ca:0f: 95:d4:68:30:1c:b3:d9:aa:1d:60:a2:d6:e2:98:62:a2:e9:c6: d2:b9:70:c1:16:67:8e:13:9f:bf:b4:da:9a:c9:04:2f:4f:4d: 80:a7:24:d7:5f:aa:d2:0d:73:0d:27:dd:42:6c:27:2b:de:bd: 96:9a:43:de:36:f3:93:47:0a:46:9b:f9:75:b7:34:50:21:db: 40:31:fe:a2:47:05:83:2f:eb:09:63:87:fc:72:c4:8f:a5:37: bb:07:59:a3:a0:d4:2b:14:7a:dc:9d:10:38:87:1c:e0:ce:ac: 7f:20:86:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoZBIm6bfQZQSTDrnd73AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MDFmNTAxOWE5NzBiYTViZTBjNzU0ZDIwZjc4NjcxODE4 ZjRhMmUwHhcNMjYwMjA5MDkwMDMzWhcNMjYwMjEwMDkwMDMzWjAzMTEwLwYDVQQD EyhhMTQ4OWEwNzIwMmVkMWM1YjNjOTQ3ZWJjYTNlNDc4YWU2Yzc4ZDY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZ+vnHD32OqwwCCQ270HPzHYQGOh DJsl9peP2zTC1HGAO5NasKVve7OB+gJWRguOXijT8lRitdoLFYGKs3oTkYyKjwVY cYqNfVksPaT7yLsqZT4TKx8RBRE6LTyiY8WDzjrpuYZpDc5owTFmV2baC5d0jp/8 TTI/ZGE9Dn22k2pbYktqaNTeoqQetZHam4psZqB2PeV2G2uUFG4ix2sQFb8l9pAS OwabQ/h6CsBm2n7K74uMtFo0U7LZT6jASn9jdKrnpsWDEToNAwqdCyfsQ3BPvid1 dPrpUvR1avdRMWgiK/5C3aMynGWlRRHIra/i4cSsUxSAo8Vodeqow5G2FQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKFImgcgLtHFs8lH68o+R4rmx41nMB8GA1UdIwQY MBaAFCkB9QGalwulvgx1TSD3hnGBj0ouMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUt MmIyZjJiODkwOGNjLzEvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUtMmIyZjJiODkwOGNj LzEvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtD/m2twW 9qzkyzUi/jYLFOhWo8AVCQ6LIg7n/8+18iBjrkzK6B7aZhCj8/JQtrAnlcKvfQs0 T3dL8lAfAYnq4bP0yKKoc2Ohxw7ux7f2eVS0a0aZJ6CYpOTVcGQqJ+f2fKU4gesC IjT6CaSzjqayFJXPX+JZ7JbllgGb/nUgpsLqR0HEOcy2Yyw2JTvngMoPldRoMByz 2aodYKLW4phiounG0rlwwRZnjhOfv7TamskEL09NgKck11+q0g1zDSfdQmwnK969 lppD3jbzk0cKRpv5dbc0UCHbQDH+okcFgy/rCWOH/HLEj6U3uwdZo6DUKxR63J0Q OIcc4M6sfyCG7g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:44 2026 by rpki-client