This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft File: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft (raw, json) Hash identifier: VBd2Tqaw3McoUioWWpm9KODQZ2kx7x79vRsJqNIKqk4= Subject key identifier: 85:F9:D7:2F:92:D4:1E:10:9B:78:59:67:44:58:20:87:A5:4A:4D:92 Authority key identifier: 40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7 Certificate issuer: /CN=40d933e82474650c6aa3e9cbf0574d27286592e7 Certificate serial: 019C41D886D3557CAC10C8CB6508C94D919B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft Manifest number: 181B Signing time: Mon 09 Feb 2026 10:00:34 +0000 Manifest this update: Mon 09 Feb 2026 10:00:34 +0000 Manifest next update: Tue 10 Feb 2026 10:00:34 +0000 Files and hashes: 1: 1-ojtBFfG2H1rWqjbXk4N7WD3PpY.roa (hash: 33NVVlGbTWQg3lb1uDpxYt5Pr6SGR6CWL3Kw3mH/dfw=) 2: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl (hash: 0p7rJx3kwP7VpvaBkpjePqghdhOVhO8VEDhehDSxIyA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:86:d3:55:7c:ac:10:c8:cb:65:08:c9:4d:91:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40d933e82474650c6aa3e9cbf0574d27286592e7 Validity Not Before: Feb 9 10:00:34 2026 GMT Not After : Feb 10 10:00:34 2026 GMT Subject: CN=85f9d72f92d41e109b78596744582087a54a4d92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:30:b4:f8:10:02:87:d1:53:b2:aa:12:55:0b: ea:e1:b3:91:a1:bc:f6:fb:95:81:aa:86:ed:29:23: d8:41:c3:80:62:c4:4a:b2:0c:0d:f8:89:df:55:3a: d4:43:99:95:5e:a2:77:f0:71:db:d7:88:14:2f:5a: a6:36:0f:4a:4b:29:53:cd:13:7c:7b:c9:74:e6:2d: 0c:50:0d:7f:f9:6c:c8:ab:92:3c:a7:5d:3f:e3:2d: 46:c4:da:4a:bc:86:04:6b:ce:34:fd:99:1a:76:28: 78:a0:bc:45:2d:9f:b9:42:53:2c:df:4f:87:f0:53: e8:42:b1:0a:10:da:7f:ce:3f:b3:67:ad:a0:5c:b7: 02:44:89:1c:7e:38:46:2e:3c:1c:cd:8a:40:9c:e3: 84:c2:8a:4a:56:a1:b6:6c:ce:4b:a6:8d:5d:06:24: ac:3f:b7:ca:e2:70:23:46:34:2a:26:3a:bc:c3:35: 1a:87:fb:42:37:22:83:f2:36:4a:e0:e4:0b:2b:f5: 67:1d:c4:2c:87:c5:76:49:7d:41:54:69:1a:7c:8a: f0:00:d0:aa:4f:a0:d3:7a:8a:fa:d3:da:db:13:d5: ad:38:c1:bb:6b:5b:f3:41:a1:20:b0:c7:c9:bf:86: b1:f8:cd:b3:44:cd:be:aa:5f:c8:4b:ee:ca:e9:f4: cd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F9:D7:2F:92:D4:1E:10:9B:78:59:67:44:58:20:87:A5:4A:4D:92 X509v3 Authority Key Identifier: keyid:40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:f4:5a:47:db:fc:fb:02:75:9f:5a:34:c8:fe:c2:71:dd:6c: 4d:5a:8d:5d:40:3f:1c:f7:b9:9a:ed:b0:71:66:5c:db:7d:5f: c6:ce:89:64:ba:91:d4:42:fb:f6:3a:7d:a0:af:51:78:df:62: 00:b9:93:0b:e7:eb:2b:fa:49:a1:b1:7e:89:fb:8c:93:64:f4: 4d:39:8b:9a:b3:f9:d0:b9:3b:49:a9:88:f7:53:6e:a0:4f:71: 45:ff:fe:44:dc:54:4c:0c:8a:4f:de:63:93:8b:40:09:b9:63: 49:7b:5f:d8:3e:d9:83:93:c4:79:c9:63:db:7d:ff:52:7c:fa: 9b:31:cd:56:dd:78:e6:d3:83:b1:81:a8:32:81:ee:bc:6d:8a: 7c:4e:15:f0:a6:8f:9c:fc:27:7f:c0:c7:ef:cd:f8:dd:22:c9: 8c:26:39:c1:ce:75:4f:69:25:72:39:1d:7a:c8:1f:cd:16:89: 62:4f:c6:00:2e:a7:04:e5:63:39:b5:73:46:a3:10:39:8d:83: 46:76:86:83:67:8e:7f:23:72:12:3f:32:a5:f2:4e:81:39:6f: fb:73:44:e8:d0:4d:76:3e:76:eb:c9:e7:c6:27:72:fe:18:10: 1c:4a:4b:ed:24:3a:3c:2c:28:21:45:9d:c8:e8:c4:de:28:e2: a4:f4:98:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2IbTVXysEMjLZQjJTZGbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZDkzM2U4MjQ3NDY1MGM2YWEzZTljYmYwNTc0ZDI3Mjg2 NTkyZTcwHhcNMjYwMjA5MTAwMDM0WhcNMjYwMjEwMTAwMDM0WjAzMTEwLwYDVQQD Eyg4NWY5ZDcyZjkyZDQxZTEwOWI3ODU5Njc0NDU4MjA4N2E1NGE0ZDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzC0+BACh9FTsqoSVQvq4bORobz2 +5WBqobtKSPYQcOAYsRKsgwN+InfVTrUQ5mVXqJ38HHb14gUL1qmNg9KSylTzRN8 e8l05i0MUA1/+WzIq5I8p10/4y1GxNpKvIYEa840/Zkadih4oLxFLZ+5QlMs30+H 8FPoQrEKENp/zj+zZ62gXLcCRIkcfjhGLjwczYpAnOOEwopKVqG2bM5Lpo1dBiSs P7fK4nAjRjQqJjq8wzUah/tCNyKD8jZK4OQLK/VnHcQsh8V2SX1BVGkafIrwANCq T6DTeor609rbE9WtOMG7a1vzQaEgsMfJv4ax+M2zRM2+ql/IS+7K6fTNWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIX51y+S1B4Qm3hZZ0RYIIelSk2SMB8GA1UdIwQY MBaAFEDZM+gkdGUMaqPpy/BXTScoZZLnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU5rejZDUjBaUXhxby1uTDhGZE5KeWhsa3VjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8zODc5ZGQtZWY5NS00NWU2LTg3Njct ZTY4MWViYmE0YTRhLzEvUU5rejZDUjBaUXhxby1uTDhGZE5KeWhsa3VjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8zODc5ZGQtZWY5NS00NWU2LTg3NjctZTY4MWViYmE0YTRh LzEvUU5rejZDUjBaUXhxby1uTDhGZE5KeWhsa3VjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH/RaR9v8 +wJ1n1o0yP7Ccd1sTVqNXUA/HPe5mu2wcWZc231fxs6JZLqR1EL79jp9oK9ReN9i ALmTC+frK/pJobF+ifuMk2T0TTmLmrP50Lk7SamI91NuoE9xRf/+RNxUTAyKT95j k4tACbljSXtf2D7Zg5PEeclj233/Unz6mzHNVt145tODsYGoMoHuvG2KfE4V8KaP nPwnf8DH78343SLJjCY5wc51T2klcjkdesgfzRaJYk/GAC6nBOVjObVzRqMQOY2D RnaGg2eOfyNyEj8ypfJOgTlv+3NE6NBNdj5268nnxidy/hgQHEpL7SQ6PCwoIUWd yOjE3ijipPSYBw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:43 2026 by rpki-client