This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft File: qxSu-APVDXALuYUq6LsrtAkmFqU.mft (raw, json) Hash identifier: uULwRVC9KeHeNTNGGVzEh+4LvR/HurHI9oxJJFFDgfA= Subject key identifier: CE:B5:72:AD:CE:0E:9C:54:E2:B9:0D:13:4A:0C:92:29:4B:A8:C1:F6 Authority key identifier: AB:14:AE:F8:03:D5:0D:70:0B:B9:85:2A:E8:BB:2B:B4:09:26:16:A5 Certificate issuer: /CN=ab14aef803d50d700bb9852ae8bb2bb4092616a5 Certificate serial: 019C43901117E4DBCEA3E98064A4AC9363D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft Manifest number: 0F28 Signing time: Mon 09 Feb 2026 18:00:40 +0000 Manifest this update: Mon 09 Feb 2026 18:00:40 +0000 Manifest next update: Tue 10 Feb 2026 18:00:40 +0000 Files and hashes: 1: qxSu-APVDXALuYUq6LsrtAkmFqU.crl (hash: PXVfbCyFzeUhdwrwEBgdQ4/xZc/MxroQUyB9CNkPFGI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.crl rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:11:17:e4:db:ce:a3:e9:80:64:a4:ac:93:63:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab14aef803d50d700bb9852ae8bb2bb4092616a5 Validity Not Before: Feb 9 18:00:40 2026 GMT Not After : Feb 10 18:00:40 2026 GMT Subject: CN=ceb572adce0e9c54e2b90d134a0c92294ba8c1f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:05:f4:61:d4:43:86:94:f8:6b:73:54:98:aa: 0a:99:b4:94:d9:f3:a6:e3:ce:1d:b3:fd:d2:ee:04: 54:c1:4b:a7:e6:f0:0c:07:45:ff:4b:16:5e:c6:72: 72:31:2b:7c:cf:7e:54:a3:6d:dc:15:25:33:03:c4: 38:bc:bd:ea:ad:2d:23:23:1f:b9:15:9b:0d:ee:e9: a2:8f:02:7d:69:fa:69:a8:65:04:e8:52:c2:b7:30: ee:94:4e:ab:67:4a:41:17:47:96:af:4c:f9:a4:63: 7c:ca:d6:22:65:d0:e0:59:33:23:92:15:af:ec:1a: a0:6b:c2:a8:d9:fb:46:68:92:a8:33:c4:0e:e2:ee: 8a:c8:e2:e6:a2:dd:ba:79:e3:28:d0:ea:f6:50:b5: ea:88:b7:61:58:a7:48:73:02:fd:43:a4:d8:0d:81: 05:bf:73:04:7f:19:3b:b4:7c:61:b9:80:d0:25:40: 0d:b8:e0:78:4d:8b:0b:75:fa:a2:20:18:17:01:2e: ca:7e:e8:d1:f7:9d:6a:33:b9:95:8f:58:de:e6:2e: 8c:24:33:8b:d1:2e:82:8b:16:a2:b0:19:a9:e9:c3: 5b:35:04:d7:6a:16:9c:ed:c6:fa:f7:61:56:43:b6: c7:a6:1e:b6:26:d0:ab:9a:46:b3:c9:0a:95:7b:5b: ec:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B5:72:AD:CE:0E:9C:54:E2:B9:0D:13:4A:0C:92:29:4B:A8:C1:F6 X509v3 Authority Key Identifier: keyid:AB:14:AE:F8:03:D5:0D:70:0B:B9:85:2A:E8:BB:2B:B4:09:26:16:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:7a:fe:62:c8:3b:0d:aa:2f:8c:70:58:cf:00:e8:1f:91:3e: 78:43:36:5e:68:d5:df:7b:11:6d:d9:4d:79:73:54:49:2b:ea: 6d:11:94:1f:3a:56:ee:eb:be:4c:f9:4a:cf:2a:b6:b6:7a:25: e1:c5:8f:4b:dc:8e:30:86:94:06:a2:4c:31:10:44:38:95:a2: 27:9a:fa:af:a0:23:55:d7:d5:6c:e7:19:bf:d4:1f:b6:10:9d: e6:77:b9:b9:2f:4d:b7:e3:db:ba:22:e2:65:b4:19:d5:74:d4: 25:18:04:b0:47:2f:8d:f8:73:80:24:19:15:4b:bd:46:ff:44: b7:e6:d9:f1:d4:60:39:42:fc:41:36:d3:8f:76:a1:0b:fa:30: 94:e6:52:b1:47:35:ce:74:83:35:d6:18:1c:85:40:e7:0f:1e: 57:29:73:b4:a8:e4:76:ac:3e:5a:be:de:ea:b0:58:30:7d:e4: 54:b8:ef:38:c8:5f:2c:60:b9:be:90:0b:10:c5:d4:de:97:56: 54:8c:af:54:36:bd:8a:69:8a:78:fb:91:0f:89:30:20:8e:c2: dc:af:31:3e:b4:cf:69:d0:4e:ae:bc:65:e1:30:78:0d:20:6c: 23:15:35:1b:b4:87:a5:53:1a:a7:54:66:36:7f:65:52:0d:84: ca:94:e3:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkBEX5NvOo+mAZKSsk2PVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMTRhZWY4MDNkNTBkNzAwYmI5ODUyYWU4YmIyYmI0MDky NjE2YTUwHhcNMjYwMjA5MTgwMDQwWhcNMjYwMjEwMTgwMDQwWjAzMTEwLwYDVQQD EyhjZWI1NzJhZGNlMGU5YzU0ZTJiOTBkMTM0YTBjOTIyOTRiYThjMWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAX0YdRDhpT4a3NUmKoKmbSU2fOm 484ds/3S7gRUwUun5vAMB0X/SxZexnJyMSt8z35Uo23cFSUzA8Q4vL3qrS0jIx+5 FZsN7umijwJ9afppqGUE6FLCtzDulE6rZ0pBF0eWr0z5pGN8ytYiZdDgWTMjkhWv 7Bqga8Ko2ftGaJKoM8QO4u6KyOLmot26eeMo0Or2ULXqiLdhWKdIcwL9Q6TYDYEF v3MEfxk7tHxhuYDQJUANuOB4TYsLdfqiIBgXAS7KfujR951qM7mVj1je5i6MJDOL 0S6CixaisBmp6cNbNQTXahac7cb692FWQ7bHph62JtCrmkazyQqVe1vsGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM61cq3ODpxU4rkNE0oMkilLqMH2MB8GA1UdIwQY MBaAFKsUrvgD1Q1wC7mFKui7K7QJJhalMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXhTdS1BUFZEWEFMdVlVcTZMc3J0QWttRnFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mMzJjMmEtYzA1NC00MTdkLThlMGMt YzAwYmFjZmZmY2U1LzEvcXhTdS1BUFZEWEFMdVlVcTZMc3J0QWttRnFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9mMzJjMmEtYzA1NC00MTdkLThlMGMtYzAwYmFjZmZmY2U1 LzEvcXhTdS1BUFZEWEFMdVlVcTZMc3J0QWttRnFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXXr+Ysg7 DaovjHBYzwDoH5E+eEM2XmjV33sRbdlNeXNUSSvqbRGUHzpW7uu+TPlKzyq2tnol 4cWPS9yOMIaUBqJMMRBEOJWiJ5r6r6AjVdfVbOcZv9QfthCd5ne5uS9Nt+PbuiLi ZbQZ1XTUJRgEsEcvjfhzgCQZFUu9Rv9Et+bZ8dRgOUL8QTbTj3ahC/owlOZSsUc1 znSDNdYYHIVA5w8eVylztKjkdqw+Wr7e6rBYMH3kVLjvOMhfLGC5vpALEMXU3pdW VIyvVDa9immKePuRD4kwII7C3K8xPrTPadBOrrxl4TB4DSBsIxU1G7SHpVMap1Rm Nn9lUg2EypTjoA== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:01 2026 by rpki-client