This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft File: Q1w_GpeQPnlikqKsenjUGxwh24U.mft (raw, json) Hash identifier: hvGWQwdph8qr1mQDeTBm3bHYkRi49NctDPHW2x18nBM= Subject key identifier: CC:D9:C7:7A:17:98:40:FD:E7:9B:09:FF:72:85:C3:AB:4D:76:4D:9B Authority key identifier: 43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85 Certificate issuer: /CN=435c3f1a97903e796292a2ac7a78d41b1c21db85 Certificate serial: 019C41342518E05E4807B5B862AA8FFD2D73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft Manifest number: 1138 Signing time: Mon 09 Feb 2026 07:01:02 +0000 Manifest this update: Mon 09 Feb 2026 07:01:02 +0000 Manifest next update: Tue 10 Feb 2026 07:01:02 +0000 Files and hashes: 1: 33dtqLxDvjVwskcvs1eBKxG9qW0.roa (hash: v3Uvvd01xCxk2zOvIWKmnmyUBgwjXDORZn0oG3d1w0A=) 2: Q1w_GpeQPnlikqKsenjUGxwh24U.crl (hash: /lSFeKOCGr44xBIi2B6UbY3SvbAn9qy+bCsBLIEcP68=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:25:18:e0:5e:48:07:b5:b8:62:aa:8f:fd:2d:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=435c3f1a97903e796292a2ac7a78d41b1c21db85 Validity Not Before: Feb 9 07:01:02 2026 GMT Not After : Feb 10 07:01:02 2026 GMT Subject: CN=ccd9c77a179840fde79b09ff7285c3ab4d764d9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cb:6c:8b:ea:66:12:8d:f1:90:44:b1:83:bc: 78:6f:80:2e:e5:06:3e:2a:62:d5:aa:ac:2f:27:34: b2:e9:22:a2:6a:42:26:97:f5:95:4e:c4:c1:0f:68: a7:4b:d0:68:55:6d:57:4f:ea:88:4f:d0:bc:fd:c6: 41:85:77:76:5e:70:2c:2f:09:13:8d:e0:c5:b0:bc: 2f:82:06:7f:c3:97:d5:30:8c:7e:9a:5e:21:9c:68: 5c:25:da:f9:96:4f:e7:0a:fc:3f:b5:d0:a9:15:00: ca:99:b8:44:82:1e:6a:69:cd:23:f9:55:6d:40:1c: 01:6e:54:da:b2:3b:39:e1:1d:1d:63:83:57:08:2d: b8:c1:79:ff:b8:6f:52:e7:5a:45:3b:a8:27:ae:8b: fd:02:c3:74:1d:a4:32:9d:2b:4b:6b:4e:a8:5c:11: a5:0c:a5:5b:9b:a4:bb:26:89:13:e1:e5:92:43:56: 4f:3d:84:b0:3c:b6:11:8b:39:4a:cc:93:b6:73:c5: 7d:ed:ed:06:e2:39:8b:e6:ee:cf:63:7b:91:02:6a: 12:70:40:c1:c1:2a:71:ef:b0:40:1a:4c:52:ff:59: a9:8c:a8:1d:60:1e:12:18:68:bd:c0:52:73:14:62: 3f:9f:24:15:2c:ec:66:50:6f:97:2d:f7:71:09:59: 09:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:D9:C7:7A:17:98:40:FD:E7:9B:09:FF:72:85:C3:AB:4D:76:4D:9B X509v3 Authority Key Identifier: keyid:43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:2f:45:c7:71:ff:18:84:f2:e2:0d:bc:74:a8:19:f1:c5:8f: 79:e2:71:8e:2b:bf:48:df:54:c2:cb:90:ff:46:16:10:eb:aa: 92:fe:3a:f0:3d:8b:fb:b3:7a:34:80:66:c4:8e:42:2e:97:96: 06:06:2a:a4:b8:84:a6:42:e1:63:b5:5d:c3:96:b4:e3:39:c1: bb:94:f9:4c:33:a9:b8:c3:eb:14:e8:b4:f5:ba:26:34:28:90: 4e:fe:88:29:6c:9b:ce:ba:f2:b3:4f:ee:79:fc:56:03:fa:b2: 01:2f:a0:a6:ad:13:76:4a:69:20:cd:02:92:27:aa:ed:31:2a: 8a:13:32:43:04:17:bf:d8:61:b1:7e:c8:8f:36:7c:64:36:96: 1f:a7:4f:28:46:f4:63:a8:b0:81:5d:51:8e:58:c0:af:ae:3a: 26:62:9d:23:f2:bb:9c:05:01:c6:f2:a6:62:69:91:5c:de:a4: 4e:f5:0a:e0:eb:bf:eb:52:65:b0:48:21:d6:01:57:52:e3:90: de:9e:a5:2b:86:76:d8:22:8e:5b:7a:7b:ae:14:5e:11:01:f7: 2c:1a:c8:b4:33:5c:a6:ac:12:70:d9:ef:fe:22:eb:3e:bc:e0: c8:6d:3a:db:e4:79:1c:9f:2a:ca:89:30:f6:72:d2:89:aa:c9: 58:9d:6e:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNCUY4F5IB7W4YqqP/S1zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNWMzZjFhOTc5MDNlNzk2MjkyYTJhYzdhNzhkNDFiMWMy MWRiODUwHhcNMjYwMjA5MDcwMTAyWhcNMjYwMjEwMDcwMTAyWjAzMTEwLwYDVQQD EyhjY2Q5Yzc3YTE3OTg0MGZkZTc5YjA5ZmY3Mjg1YzNhYjRkNzY0ZDliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMtsi+pmEo3xkESxg7x4b4Au5QY+ KmLVqqwvJzSy6SKiakIml/WVTsTBD2inS9BoVW1XT+qIT9C8/cZBhXd2XnAsLwkT jeDFsLwvggZ/w5fVMIx+ml4hnGhcJdr5lk/nCvw/tdCpFQDKmbhEgh5qac0j+VVt QBwBblTasjs54R0dY4NXCC24wXn/uG9S51pFO6gnrov9AsN0HaQynStLa06oXBGl DKVbm6S7JokT4eWSQ1ZPPYSwPLYRizlKzJO2c8V97e0G4jmL5u7PY3uRAmoScEDB wSpx77BAGkxS/1mpjKgdYB4SGGi9wFJzFGI/nyQVLOxmUG+XLfdxCVkJgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMzZx3oXmED955sJ/3KFw6tNdk2bMB8GA1UdIwQY MBaAFENcPxqXkD55YpKirHp41BscIduFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTF3X0dwZVFQbmxpa3FLc2VualVHeHdoMjRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9kOGFkYmUtZGNiZS00YzI3LTk2NzEt ZGJkZWIzZDUzNjBiLzEvUTF3X0dwZVFQbmxpa3FLc2VualVHeHdoMjRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy9kOGFkYmUtZGNiZS00YzI3LTk2NzEtZGJkZWIzZDUzNjBi LzEvUTF3X0dwZVFQbmxpa3FLc2VualVHeHdoMjRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIS9Fx3H/ GITy4g28dKgZ8cWPeeJxjiu/SN9UwsuQ/0YWEOuqkv468D2L+7N6NIBmxI5CLpeW BgYqpLiEpkLhY7Vdw5a04znBu5T5TDOpuMPrFOi09bomNCiQTv6IKWybzrrys0/u efxWA/qyAS+gpq0TdkppIM0Ckieq7TEqihMyQwQXv9hhsX7IjzZ8ZDaWH6dPKEb0 Y6iwgV1RjljAr646JmKdI/K7nAUBxvKmYmmRXN6kTvUK4Ou/61JlsEgh1gFXUuOQ 3p6lK4Z22CKOW3p7rhReEQH3LBrItDNcpqwScNnv/iLrPrzgyG062+R5HJ8qyokw 9nLSiarJWJ1utQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:36 2026 by rpki-client