This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft File: Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft (raw, json) Hash identifier: Ex0W2pxuqcTsS/kwTPV0RRl2WmEBbjOUlQX9sCehzco= Subject key identifier: E4:70:E4:C3:6D:05:9F:EB:56:38:95:4C:E0:25:A0:A5:E7:66:78:F4 Authority key identifier: 43:B9:2E:C2:B0:E3:2C:B7:B2:DB:13:E3:76:52:98:D6:D2:E5:85:CD Certificate issuer: /CN=43b92ec2b0e32cb7b2db13e3765298d6d2e585cd Certificate serial: 019C420F737692CE8927C6074CB3A912F775 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft Manifest number: 0824 Signing time: Mon 09 Feb 2026 11:00:34 +0000 Manifest this update: Mon 09 Feb 2026 11:00:34 +0000 Manifest next update: Tue 10 Feb 2026 11:00:34 +0000 Files and hashes: 1: Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl (hash: L4q4T4RERz7cLFsDwjoXf7lZKtwgCYUs/BStCFNwgK8=) 2: q92f6dR-iX4C-CVcHHlSJfjRbjA.roa (hash: 5e9T1SkG/kIEUC1gZXSHnISGiuKNuBXnH3Nj4yFHRek=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:73:76:92:ce:89:27:c6:07:4c:b3:a9:12:f7:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43b92ec2b0e32cb7b2db13e3765298d6d2e585cd Validity Not Before: Feb 9 11:00:34 2026 GMT Not After : Feb 10 11:00:34 2026 GMT Subject: CN=e470e4c36d059feb5638954ce025a0a5e76678f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:71:be:ab:fe:0c:35:09:d2:7a:49:af:84:ec: c7:e8:fd:b8:ef:e8:b3:ef:73:57:4b:d7:52:e1:69: 21:a8:bd:c0:13:2e:70:85:aa:00:76:84:00:8b:de: b6:47:c9:53:1d:d6:d0:98:86:13:66:71:61:f5:af: f5:89:94:f5:d7:30:0a:1c:02:0a:59:fa:64:8b:eb: 9f:03:ac:45:44:a9:b7:9a:a8:52:e2:58:71:e5:2e: ec:44:31:a7:90:ed:9e:f2:76:dc:5b:fe:c0:34:ed: 7c:cc:ee:58:f2:b0:a3:95:e0:48:e8:b6:4d:46:0e: 8f:b9:14:c7:53:2c:69:09:4d:a8:70:1a:83:bb:86: 2b:28:ee:c3:5b:7f:ee:39:35:02:58:6c:11:ca:b5: 22:87:74:23:5d:53:ad:e8:2a:1f:50:59:dc:2d:f8: c1:40:3a:64:6a:24:b3:98:06:f5:e4:ff:60:75:fa: 9d:20:e3:cb:c5:61:e3:00:54:84:2a:63:e5:e2:02: 38:ed:63:36:f4:3a:73:30:4a:f4:79:86:68:eb:f8: 88:8c:63:29:54:52:c4:6d:a8:74:da:49:e0:6c:d3: c0:a8:59:91:a8:6d:03:64:59:bd:ab:e2:c0:3b:eb: f7:49:6c:de:3b:6f:7e:a1:f7:65:44:47:42:37:bd: e7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:70:E4:C3:6D:05:9F:EB:56:38:95:4C:E0:25:A0:A5:E7:66:78:F4 X509v3 Authority Key Identifier: keyid:43:B9:2E:C2:B0:E3:2C:B7:B2:DB:13:E3:76:52:98:D6:D2:E5:85:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7kuwrDjLLey2xPjdlKY1tLlhc0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/89286f-0e59-4626-a617-602151522a09/1/Q7kuwrDjLLey2xPjdlKY1tLlhc0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:24:a1:d6:1c:cd:dc:24:03:f9:a8:ce:27:10:f4:fd:a1:fa: 96:0b:50:ac:fa:fa:83:55:a1:ae:a5:27:22:8c:dd:79:e2:b7: 11:47:f6:fe:9c:71:c8:cc:3d:4d:77:de:65:66:e5:82:4f:e4: a5:b8:67:f7:f5:cc:b0:15:de:9c:2f:ca:9a:65:61:33:40:69: 7b:e6:85:f7:d8:97:0e:37:94:6a:a8:1c:29:4f:6f:1b:81:50: 21:7f:b7:f4:02:12:a8:2f:15:c6:62:3a:58:33:29:2a:26:7c: 57:ac:94:72:5b:7b:0c:09:c6:b2:c4:cf:34:ce:7d:f4:50:36: ad:30:f3:e4:68:f5:19:c9:fb:29:b3:05:ce:86:d1:02:bb:0b: 61:c4:11:bf:07:75:88:46:0c:1e:78:20:50:d7:6f:06:22:cb: 4f:40:22:79:12:0e:ae:91:68:27:31:93:23:d9:30:6d:2a:3b: 13:c3:d3:6e:a9:41:e1:be:de:54:d7:b0:a0:c5:56:65:1a:db: 31:3c:1d:50:d2:b8:ba:50:f9:6b:62:53:f7:3b:e8:28:93:5c: e9:19:6a:4c:f5:9f:7d:6b:8e:e6:0f:1d:43:ea:fc:d1:0d:25: 61:d2:fd:01:7a:b8:88:32:0a:9b:21:00:4f:ee:d9:ba:66:d0: 35:c3:7e:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD3N2ks6JJ8YHTLOpEvd1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzYjkyZWMyYjBlMzJjYjdiMmRiMTNlMzc2NTI5OGQ2ZDJl NTg1Y2QwHhcNMjYwMjA5MTEwMDM0WhcNMjYwMjEwMTEwMDM0WjAzMTEwLwYDVQQD EyhlNDcwZTRjMzZkMDU5ZmViNTYzODk1NGNlMDI1YTBhNWU3NjY3OGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3nG+q/4MNQnSekmvhOzH6P247+iz 73NXS9dS4WkhqL3AEy5whaoAdoQAi962R8lTHdbQmIYTZnFh9a/1iZT11zAKHAIK Wfpki+ufA6xFRKm3mqhS4lhx5S7sRDGnkO2e8nbcW/7ANO18zO5Y8rCjleBI6LZN Rg6PuRTHUyxpCU2ocBqDu4YrKO7DW3/uOTUCWGwRyrUih3QjXVOt6CofUFncLfjB QDpkaiSzmAb15P9gdfqdIOPLxWHjAFSEKmPl4gI47WM29DpzMEr0eYZo6/iIjGMp VFLEbah02kngbNPAqFmRqG0DZFm9q+LAO+v3SWzeO29+ofdlREdCN73nKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFORw5MNtBZ/rVjiVTOAloKXnZnj0MB8GA1UdIwQY MBaAFEO5LsKw4yy3stsT43ZSmNbS5YXNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTdrdXdyRGpMTGV5MnhQamRsS1kxdExsaGMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy84OTI4NmYtMGU1OS00NjI2LWE2MTct NjAyMTUxNTIyYTA5LzEvUTdrdXdyRGpMTGV5MnhQamRsS1kxdExsaGMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy84OTI4NmYtMGU1OS00NjI2LWE2MTctNjAyMTUxNTIyYTA5 LzEvUTdrdXdyRGpMTGV5MnhQamRsS1kxdExsaGMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMiSh1hzN 3CQD+ajOJxD0/aH6lgtQrPr6g1WhrqUnIozdeeK3EUf2/pxxyMw9TXfeZWblgk/k pbhn9/XMsBXenC/KmmVhM0Bpe+aF99iXDjeUaqgcKU9vG4FQIX+39AISqC8VxmI6 WDMpKiZ8V6yUclt7DAnGssTPNM599FA2rTDz5Gj1Gcn7KbMFzobRArsLYcQRvwd1 iEYMHnggUNdvBiLLT0AieRIOrpFoJzGTI9kwbSo7E8PTbqlB4b7eVNewoMVWZRrb MTwdUNK4ulD5a2JT9zvoKJNc6RlqTPWffWuO5g8dQ+r80Q0lYdL9AXq4iDIKmyEA T+7ZumbQNcN+ZA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:41 2026 by rpki-client