This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/04f9f3-31f6-4366-93a1-1142dfacfccf/1/QEcbNMIaUAj28Jbkj-jjVRnWuEc.mft File: QEcbNMIaUAj28Jbkj-jjVRnWuEc.mft (raw, json) Hash identifier: 11KjieCMV8SLmtiYC1s2oInc4+Sp3DQBrGkbby9LmvM= Subject key identifier: 61:91:03:E7:44:B6:F9:7B:BD:E1:DF:DA:E5:6E:2F:C3:8A:18:BB:CF Authority key identifier: 40:47:1B:34:C2:1A:50:08:F6:F0:96:E4:8F:E8:E3:55:19:D6:B8:47 Certificate issuer: /CN=40471b34c21a5008f6f096e48fe8e35519d6b847 Certificate serial: 019C413442644664A1983D03E99C960C211F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QEcbNMIaUAj28Jbkj-jjVRnWuEc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/04f9f3-31f6-4366-93a1-1142dfacfccf/1/QEcbNMIaUAj28Jbkj-jjVRnWuEc.mft Manifest number: 0FB0 Signing time: Mon 09 Feb 2026 07:01:09 +0000 Manifest this update: Mon 09 Feb 2026 07:01:09 +0000 Manifest next update: Tue 10 Feb 2026 07:01:09 +0000 Files and hashes: 1: QEcbNMIaUAj28Jbkj-jjVRnWuEc.crl (hash: QkSvnEHqMKv1w48vMB2PrhjuJgdCc1UT+ZiHL0ZFrow=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/04f9f3-31f6-4366-93a1-1142dfacfccf/1/QEcbNMIaUAj28Jbkj-jjVRnWuEc.crl rsync://rpki.ripe.net/repository/DEFAULT/23/04f9f3-31f6-4366-93a1-1142dfacfccf/1/QEcbNMIaUAj28Jbkj-jjVRnWuEc.mft rsync://rpki.ripe.net/repository/DEFAULT/QEcbNMIaUAj28Jbkj-jjVRnWuEc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:42:64:46:64:a1:98:3d:03:e9:9c:96:0c:21:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40471b34c21a5008f6f096e48fe8e35519d6b847 Validity Not Before: Feb 9 07:01:09 2026 GMT Not After : Feb 10 07:01:09 2026 GMT Subject: CN=619103e744b6f97bbde1dfdae56e2fc38a18bbcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0e:20:7f:84:1d:e9:5c:4e:81:13:37:1c:90: 86:ca:98:4a:34:47:52:60:ca:25:9c:2a:00:f9:59: 51:29:6b:ea:1a:8a:44:95:e8:1e:1e:cc:a9:11:14: d4:3a:1d:b7:5e:44:52:31:a0:36:4d:d2:cd:7b:e0: 21:7a:09:25:fa:b9:15:16:29:28:23:a6:57:2d:52: e8:64:13:d4:82:c3:4e:fc:cd:ba:44:5e:cf:73:6d: c8:1c:1c:01:22:96:0b:c7:b2:6a:b5:31:56:e0:30: 7c:63:16:a6:14:11:cd:92:1e:14:97:e9:e6:69:ff: 0e:7f:69:0f:c3:73:96:65:d1:a5:8a:8d:23:c7:15: 2b:04:57:9f:50:3c:b2:70:4f:51:8b:5b:f4:95:24: 8c:f0:91:8b:f8:a2:7e:9b:55:5c:a7:ac:47:23:40: 78:18:7a:1b:6d:50:2b:ea:81:bc:2a:af:39:65:2b: 63:b0:1d:d8:46:01:00:c9:7d:ee:d7:c3:90:25:7a: df:35:80:0f:4e:08:08:57:c2:b8:08:97:a6:37:ba: f4:01:65:3b:0b:96:c0:9e:0e:ec:07:98:2b:1b:27: 30:ba:92:11:bd:e5:f7:f8:b0:2c:ce:0c:50:a0:32: e3:96:f3:03:22:33:3b:78:a4:c9:f1:62:73:26:e9: 73:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:91:03:E7:44:B6:F9:7B:BD:E1:DF:DA:E5:6E:2F:C3:8A:18:BB:CF X509v3 Authority Key Identifier: keyid:40:47:1B:34:C2:1A:50:08:F6:F0:96:E4:8F:E8:E3:55:19:D6:B8:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QEcbNMIaUAj28Jbkj-jjVRnWuEc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/04f9f3-31f6-4366-93a1-1142dfacfccf/1/QEcbNMIaUAj28Jbkj-jjVRnWuEc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/04f9f3-31f6-4366-93a1-1142dfacfccf/1/QEcbNMIaUAj28Jbkj-jjVRnWuEc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:fc:74:16:64:7b:e4:87:d3:fc:d3:4a:3f:e7:06:08:9e:88: 56:70:4e:53:7c:8f:30:34:7b:9b:4a:d0:6f:f3:71:8f:11:2a: 4d:4d:fd:5a:9f:d6:22:0b:a1:bb:61:52:80:d5:ed:f8:e0:82: 82:85:84:47:a6:a1:e2:75:9d:ba:5d:38:3a:c1:17:7e:7b:42: 29:78:ec:e5:9d:cd:56:6a:b6:15:dc:31:2c:64:ae:4a:e6:02: 5d:10:ee:98:a6:f1:27:11:1d:a2:0a:46:87:cb:08:9a:2d:aa: 14:e6:6e:40:41:bf:eb:0c:9e:78:61:cb:cd:82:4b:48:9f:e0: 94:1d:bd:0c:ba:b7:b5:11:3e:ae:74:d0:2b:9a:9e:f4:ef:bc: 37:cc:ac:72:95:ec:12:32:d6:a0:43:48:fa:d9:8b:cb:b5:f8: 86:ad:d2:7b:bb:f7:69:cd:0c:77:1e:3f:63:b5:2e:53:4f:d9: f1:84:a3:a3:0f:68:29:3b:e5:bd:ed:eb:d8:a7:c7:a2:1e:18: de:ee:da:6c:63:f1:47:b6:7d:d6:1f:e5:fb:36:00:26:1d:e0: 3c:fc:74:ac:cd:22:2a:35:22:94:1d:ad:66:d4:be:2e:d9:69: e7:52:1c:ae:a2:74:a7:53:cd:df:0e:7c:bb:e8:32:f1:48:08: 29:70:8c:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNEJkRmShmD0D6ZyWDCEfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwNDcxYjM0YzIxYTUwMDhmNmYwOTZlNDhmZThlMzU1MTlk NmI4NDcwHhcNMjYwMjA5MDcwMTA5WhcNMjYwMjEwMDcwMTA5WjAzMTEwLwYDVQQD Eyg2MTkxMDNlNzQ0YjZmOTdiYmRlMWRmZGFlNTZlMmZjMzhhMThiYmNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzQ4gf4Qd6VxOgRM3HJCGyphKNEdS YMolnCoA+VlRKWvqGopElegeHsypERTUOh23XkRSMaA2TdLNe+Ahegkl+rkVFiko I6ZXLVLoZBPUgsNO/M26RF7Pc23IHBwBIpYLx7JqtTFW4DB8YxamFBHNkh4Ul+nm af8Of2kPw3OWZdGlio0jxxUrBFefUDyycE9Ri1v0lSSM8JGL+KJ+m1Vcp6xHI0B4 GHobbVAr6oG8Kq85ZStjsB3YRgEAyX3u18OQJXrfNYAPTggIV8K4CJemN7r0AWU7 C5bAng7sB5grGycwupIRveX3+LAszgxQoDLjlvMDIjM7eKTJ8WJzJulz6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGGRA+dEtvl7veHf2uVuL8OKGLvPMB8GA1UdIwQY MBaAFEBHGzTCGlAI9vCW5I/o41UZ1rhHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUVjYk5NSWFVQWoyOEpia2otampWUm5XdUVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8wNGY5ZjMtMzFmNi00MzY2LTkzYTEt MTE0MmRmYWNmY2NmLzEvUUVjYk5NSWFVQWoyOEpia2otampWUm5XdUVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy8wNGY5ZjMtMzFmNi00MzY2LTkzYTEtMTE0MmRmYWNmY2Nm LzEvUUVjYk5NSWFVQWoyOEpia2otampWUm5XdUVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiPx0FmR7 5IfT/NNKP+cGCJ6IVnBOU3yPMDR7m0rQb/NxjxEqTU39Wp/WIguhu2FSgNXt+OCC goWER6ah4nWdul04OsEXfntCKXjs5Z3NVmq2FdwxLGSuSuYCXRDumKbxJxEdogpG h8sImi2qFOZuQEG/6wyeeGHLzYJLSJ/glB29DLq3tRE+rnTQK5qe9O+8N8yscpXs EjLWoENI+tmLy7X4hq3Se7v3ac0Mdx4/Y7UuU0/Z8YSjow9oKTvlve3r2KfHoh4Y 3u7abGPxR7Z91h/l+zYAJh3gPPx0rM0iKjUilB2tZtS+Ltlp51IcrqJ0p1PN3w58 u+gy8UgIKXCMHA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:50 2026 by rpki-client