This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft File: q3rQAuSQheSApRIaeaJvztr_oZs.mft (raw, json) Hash identifier: imx1B/GIdATnJ4f98EbXlZREde49LH7nr+dx/oyoRzo= Subject key identifier: CC:4C:2A:11:3E:E7:09:5E:02:52:BD:EF:0D:0D:EB:6F:D6:EE:59:A8 Authority key identifier: AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B Certificate issuer: /CN=ab7ad002e49085e480a5121a79a26fcedaffa19b Certificate serial: 019C42EB93AA816D34122E0E3A53046DA749 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft Manifest number: 150C Signing time: Mon 09 Feb 2026 15:01:00 +0000 Manifest this update: Mon 09 Feb 2026 15:01:00 +0000 Manifest next update: Tue 10 Feb 2026 15:01:00 +0000 Files and hashes: 1: q3rQAuSQheSApRIaeaJvztr_oZs.crl (hash: 4YJuxfjXN+2GLCSgXZojWBQ9uMf7jpGzwRC5/cZHNsI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.crl rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:93:aa:81:6d:34:12:2e:0e:3a:53:04:6d:a7:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab7ad002e49085e480a5121a79a26fcedaffa19b Validity Not Before: Feb 9 15:01:00 2026 GMT Not After : Feb 10 15:01:00 2026 GMT Subject: CN=cc4c2a113ee7095e0252bdef0d0deb6fd6ee59a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:43:e1:be:49:d8:34:f9:c4:50:e0:75:99:7c: 70:84:38:40:b0:85:6f:6e:67:7d:a3:37:82:a8:44: 9a:a3:c8:83:a1:8c:f1:da:f1:9e:a7:7a:2e:bc:a6: 9a:b4:45:58:3a:81:8a:27:8c:1e:8a:ed:a2:3f:ca: 11:e3:7e:89:c2:be:2e:6b:f8:03:3b:d0:94:8f:ec: d0:57:a1:0e:3d:e7:91:d9:68:5a:20:5f:4d:7b:25: e4:59:d8:6c:08:b0:d5:21:95:37:c4:10:a2:d2:29: 83:67:a8:63:0d:ec:79:57:76:b2:41:47:10:e1:d2: 84:2f:9d:80:fa:b4:f4:19:1c:9d:0e:16:04:72:fc: 68:72:b6:0b:62:00:59:7e:ce:04:6a:94:37:dc:88: 8e:2f:45:75:c5:2a:4e:0f:5c:b6:f9:f5:6b:de:e4: 7e:57:33:32:1c:a3:45:9d:6e:ec:54:99:9a:50:21: a7:c3:16:d7:9f:94:7c:51:fc:d1:c3:90:9d:a0:86: 16:b2:bc:6b:ad:f1:1d:24:13:d7:21:1c:ac:ba:12: 62:f9:62:34:ee:6c:dd:e2:8b:40:43:c9:9b:cf:cf: 44:a9:39:52:18:a2:04:31:be:c7:fb:37:36:5b:38: 4b:31:27:19:13:ce:4b:4f:57:a4:6d:71:5f:da:d4: 70:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:4C:2A:11:3E:E7:09:5E:02:52:BD:EF:0D:0D:EB:6F:D6:EE:59:A8 X509v3 Authority Key Identifier: keyid:AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:64:12:83:6d:cd:c1:ba:2c:ee:d6:7d:70:7c:fc:82:8b:b8: 70:57:1f:22:b2:9a:9e:79:17:5c:94:2d:84:c5:fd:4a:47:08: d9:c1:bb:a9:5c:6a:39:fa:93:12:59:1b:01:14:aa:93:d4:bf: a7:69:8c:e4:dc:eb:21:84:8b:25:d5:bf:d9:57:d4:4a:fc:a9: fc:01:b6:01:d8:67:72:a2:10:96:e1:ba:15:fb:d6:8d:96:0a: 3d:76:d2:1d:d9:b2:61:83:17:c1:67:8b:ce:c7:71:c2:78:a2: 49:5a:ea:9d:90:7c:2a:5c:0e:0a:80:67:8b:45:2b:b4:cd:42: e3:66:34:02:ce:1f:b6:48:34:5e:22:5c:32:e9:ad:c9:73:14: 68:69:a9:67:54:25:6b:5b:e0:e2:0b:76:5b:e9:44:2b:a4:9f: f3:d1:7f:27:2a:80:d1:69:d5:61:6d:1b:69:79:3d:e1:3e:0a: c0:a6:45:f5:d5:99:22:ed:de:cc:ab:50:fa:2f:85:d7:af:8c: ea:e0:d0:1e:37:99:ec:6e:7f:c8:0b:c9:34:cd:4b:78:b3:ab: 3f:31:0c:b3:e5:4b:a1:dc:53:06:db:38:28:69:d6:09:25:ea: 25:dd:dc:f0:15:bf:ee:1e:75:83:1b:a7:25:2e:0d:23:d5:f3: 1c:89:55:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC65OqgW00Ei4OOlMEbadJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiN2FkMDAyZTQ5MDg1ZTQ4MGE1MTIxYTc5YTI2ZmNlZGFm ZmExOWIwHhcNMjYwMjA5MTUwMTAwWhcNMjYwMjEwMTUwMTAwWjAzMTEwLwYDVQQD EyhjYzRjMmExMTNlZTcwOTVlMDI1MmJkZWYwZDBkZWI2ZmQ2ZWU1OWE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUPhvknYNPnEUOB1mXxwhDhAsIVv bmd9ozeCqESao8iDoYzx2vGep3ouvKaatEVYOoGKJ4weiu2iP8oR436Jwr4ua/gD O9CUj+zQV6EOPeeR2WhaIF9NeyXkWdhsCLDVIZU3xBCi0imDZ6hjDex5V3ayQUcQ 4dKEL52A+rT0GRydDhYEcvxocrYLYgBZfs4EapQ33IiOL0V1xSpOD1y2+fVr3uR+ VzMyHKNFnW7sVJmaUCGnwxbXn5R8UfzRw5CdoIYWsrxrrfEdJBPXIRysuhJi+WI0 7mzd4otAQ8mbz89EqTlSGKIEMb7H+zc2WzhLMScZE85LT1ekbXFf2tRwNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMxMKhE+5wleAlK97w0N62/W7lmoMB8GA1UdIwQY MBaAFKt60ALkkIXkgKUSGnmib87a/6GbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yNGZiYjYtODZiYy00NmNiLTg4ZTUt YjU4NzNiYThmZTQ3LzEvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8yNGZiYjYtODZiYy00NmNiLTg4ZTUtYjU4NzNiYThmZTQ3 LzEvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEGQSg23N wbos7tZ9cHz8gou4cFcfIrKannkXXJQthMX9SkcI2cG7qVxqOfqTElkbARSqk9S/ p2mM5NzrIYSLJdW/2VfUSvyp/AG2AdhncqIQluG6FfvWjZYKPXbSHdmyYYMXwWeL zsdxwniiSVrqnZB8KlwOCoBni0UrtM1C42Y0As4ftkg0XiJcMumtyXMUaGmpZ1Ql a1vg4gt2W+lEK6Sf89F/JyqA0WnVYW0baXk94T4KwKZF9dWZIu3ezKtQ+i+F16+M 6uDQHjeZ7G5/yAvJNM1LeLOrPzEMs+VLodxTBts4KGnWCSXqJd3c8BW/7h51gxun JS4NI9XzHIlV+A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:25 2026 by rpki-client