This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft File: Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft (raw, json) Hash identifier: 9QMWQ5zCJ39sVk1HWyIR4qX9yWeXMtSMjCE4E8L+Izs= Subject key identifier: 84:5C:C5:1F:01:55:ED:AF:F5:99:26:2D:F1:53:61:3C:3C:1E:F9:F3 Authority key identifier: 43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7 Certificate issuer: /CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7 Certificate serial: 019C4359652D537233FCF66916BB62FCDDAD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 17:00:57 +0000 Manifest this update: Mon 09 Feb 2026 17:00:57 +0000 Manifest next update: Tue 10 Feb 2026 17:00:57 +0000 Files and hashes: 1: Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl (hash: 1h6aiM1dwpktoOwV+W74q9+YZCJxRUOtjvh9BAeWXko=) 2: QyZa0nXuZdTRYOcamDUuEXlxJrw.roa (hash: fY3crQbaUbhZWemSvo5lCgx+xQL5kp/7I3vPr0MN5Fo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:65:2d:53:72:33:fc:f6:69:16:bb:62:fc:dd:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7 Validity Not Before: Feb 9 17:00:57 2026 GMT Not After : Feb 10 17:00:57 2026 GMT Subject: CN=845cc51f0155edaff599262df153613c3c1ef9f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c3:70:b8:de:94:01:9e:53:90:95:ea:8a:29: 27:12:c2:27:f2:91:a7:57:a7:a3:2e:61:09:0e:06: e8:87:1e:a1:f6:59:02:f1:de:72:37:af:71:df:35: 0e:b5:67:e7:e3:97:c0:9c:1a:61:5f:df:1c:f9:8e: 74:6a:6a:d5:eb:14:3f:f0:a8:6c:19:11:d3:4c:3a: 7d:9e:80:13:0d:47:12:88:92:74:1f:23:f5:35:95: 57:10:f5:37:e3:37:36:4a:7b:20:82:31:a0:f1:64: bb:04:7f:52:5d:7c:98:45:9f:08:b0:fd:da:94:7b: e8:93:1f:20:cb:7e:c3:86:7c:c4:13:6c:a9:bd:1b: b3:e6:84:a2:4c:e0:1d:46:e9:50:44:fb:87:b7:38: 7d:92:03:c4:6a:e8:97:d0:28:02:5a:9b:c2:6e:62: 52:6d:82:5d:1f:f4:fb:79:02:34:84:ee:4c:ab:29: 58:2f:5f:3a:83:9a:85:2b:a7:61:eb:ee:bc:0b:7c: 5e:3d:ba:6b:ca:4e:f9:0a:e0:6b:1a:81:67:1e:87: 79:68:e7:ac:15:d3:0d:76:d1:9d:8b:ad:50:b3:4a: 3a:af:5d:20:60:f9:2d:c9:d3:9c:0a:09:4c:91:ad: b7:7d:ea:90:91:2d:ac:5e:ed:1d:d4:20:b0:16:cb: 1b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:5C:C5:1F:01:55:ED:AF:F5:99:26:2D:F1:53:61:3C:3C:1E:F9:F3 X509v3 Authority Key Identifier: keyid:43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:f0:82:0f:4b:f6:b1:9a:44:54:ca:f5:b0:3d:c9:65:06:e5: 5a:3b:7e:aa:d6:2a:ea:0c:d1:d9:f3:0c:90:91:fe:36:45:81: 8e:5b:97:17:db:0a:a1:92:84:26:8b:a6:cb:6d:72:e0:b4:76: 29:11:1f:6f:0d:b9:10:58:08:1a:5d:36:39:57:d0:a9:04:36: 07:39:b4:43:99:36:17:ce:ce:a6:0e:b2:1f:22:eb:8b:af:41: 0c:0b:85:b1:b8:db:93:f9:41:f2:0d:bd:b3:68:1e:33:6a:79: ea:0b:1a:71:d2:ff:34:dc:5e:6d:5b:91:b7:69:58:80:06:2b: dc:a3:70:d1:07:6c:61:08:44:18:df:fb:47:db:87:37:7a:a5: a4:b8:9e:ed:45:0a:71:62:b5:be:f3:48:22:c4:bc:98:91:42: 76:1d:60:65:fc:5e:25:dc:05:ae:f9:d5:20:7b:ba:e6:72:89: b2:ae:13:1a:45:11:aa:71:3f:7e:55:ef:96:77:86:20:31:fe: 53:6a:cd:14:71:7c:58:2b:c7:a5:50:c8:70:ff:96:5c:91:80: af:cf:d4:ad:92:a9:db:87:02:fc:65:08:77:aa:6c:66:f8:9f: e8:bb:cc:04:19:08:2b:f6:d8:e9:50:2a:22:89:63:d3:37:1e: d2:cc:20:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWWUtU3Iz/PZpFrti/N2tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNDQyMWNmNmEwMmIzOGFmNWI2YmJjYTZkYmQzNzY0NDQ4 YjZjYjcwHhcNMjYwMjA5MTcwMDU3WhcNMjYwMjEwMTcwMDU3WjAzMTEwLwYDVQQD Eyg4NDVjYzUxZjAxNTVlZGFmZjU5OTI2MmRmMTUzNjEzYzNjMWVmOWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMNwuN6UAZ5TkJXqiiknEsIn8pGn V6ejLmEJDgbohx6h9lkC8d5yN69x3zUOtWfn45fAnBphX98c+Y50amrV6xQ/8Khs GRHTTDp9noATDUcSiJJ0HyP1NZVXEPU34zc2SnsggjGg8WS7BH9SXXyYRZ8IsP3a lHvokx8gy37DhnzEE2ypvRuz5oSiTOAdRulQRPuHtzh9kgPEauiX0CgCWpvCbmJS bYJdH/T7eQI0hO5MqylYL186g5qFK6dh6+68C3xePbpryk75CuBrGoFnHod5aOes FdMNdtGdi61Qs0o6r10gYPktydOcCglMka23feqQkS2sXu0d1CCwFssb/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIRcxR8BVe2v9ZkmLfFTYTw8HvnzMB8GA1UdIwQY MBaAFENEIc9qArOK9ba7ym29N2REi2y3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTBRaHoyb0NzNHIxdHJ2S2JiMDNaRVNMYkxjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8zZjE1MWItZmI3MS00ZjFiLWJiMDkt NTM5YjMyOWY5OTVjLzEvUTBRaHoyb0NzNHIxdHJ2S2JiMDNaRVNMYkxjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy8zZjE1MWItZmI3MS00ZjFiLWJiMDktNTM5YjMyOWY5OTVj LzEvUTBRaHoyb0NzNHIxdHJ2S2JiMDNaRVNMYkxjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYfCCD0v2 sZpEVMr1sD3JZQblWjt+qtYq6gzR2fMMkJH+NkWBjluXF9sKoZKEJoumy21y4LR2 KREfbw25EFgIGl02OVfQqQQ2Bzm0Q5k2F87Opg6yHyLri69BDAuFsbjbk/lB8g29 s2geM2p56gsacdL/NNxebVuRt2lYgAYr3KNw0QdsYQhEGN/7R9uHN3qlpLie7UUK cWK1vvNIIsS8mJFCdh1gZfxeJdwFrvnVIHu65nKJsq4TGkURqnE/flXvlneGIDH+ U2rNFHF8WCvHpVDIcP+WXJGAr8/UrZKp24cC/GUId6psZvif6LvMBBkIK/bY6VAq Iolj0zce0swgVw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:53 2026 by rpki-client