This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft File: qnD7s9sihDfWBXmaxPRZjSLhPhs.mft (raw, json) Hash identifier: RGH5WJjNMRCOZgMcnl911a/BZcuZa6xg4VCzLH9JTvw= Subject key identifier: 0D:E9:4A:3D:BF:84:C1:7A:B5:F2:3D:24:9D:A2:E3:E8:4C:43:ED:92 Authority key identifier: AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B Certificate issuer: /CN=aa70fbb3db228437d605799ac4f4598d22e13e1b Certificate serial: 019C427E1831A50624DA8650B35BF7822558 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 13:01:25 +0000 Manifest this update: Mon 09 Feb 2026 13:01:25 +0000 Manifest next update: Tue 10 Feb 2026 13:01:25 +0000 Files and hashes: 1: 5zEkxsehYVrSBWS8R6vq4w7gVtY.roa (hash: y9Gfd8AbrZdX5+SsYIumelvvyPK5gzC9wuMjV0Ywdgw=) 2: qnD7s9sihDfWBXmaxPRZjSLhPhs.crl (hash: L4PlH/9+S+vtpx1Jcg5b2XPfCuxGEUHZ/SV3THJ9Pz4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:18:31:a5:06:24:da:86:50:b3:5b:f7:82:25:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa70fbb3db228437d605799ac4f4598d22e13e1b Validity Not Before: Feb 9 13:01:25 2026 GMT Not After : Feb 10 13:01:25 2026 GMT Subject: CN=0de94a3dbf84c17ab5f23d249da2e3e84c43ed92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:48:35:64:38:66:b0:78:58:fd:ee:da:c1:4a: 8d:32:92:5d:9c:cd:69:c0:44:9c:aa:fc:b3:04:55: 21:d2:44:40:bf:5b:5a:13:48:30:94:a7:eb:f4:d2: 84:3e:8e:f0:f5:c9:45:0b:6d:62:90:4d:92:8f:f6: 72:52:2f:06:4b:55:6f:11:45:63:02:81:d8:2e:c2: 6b:af:69:40:d5:05:b6:8e:bc:13:d8:80:2d:db:fc: a7:ae:78:ec:da:e4:d2:91:96:9f:84:cc:d9:4b:38: 02:b4:af:64:8d:a4:c4:f5:7f:f5:1f:7c:a3:55:1f: 1d:be:b0:39:40:da:55:74:4e:5b:6d:20:04:37:62: 2a:5f:db:ec:1d:e5:80:e7:1a:8f:9e:19:76:92:6c: 93:c2:1a:7b:3f:b2:8d:62:cd:86:d0:f8:0a:5f:fe: 9d:06:d8:66:03:b9:95:6f:e4:17:91:9c:72:da:16: 64:26:93:92:1a:f0:f2:2a:c3:cf:00:60:de:33:18: 75:ce:8f:d0:c6:4a:91:a6:3b:5a:da:8f:a3:ee:75: bd:f2:60:71:e6:77:72:74:b0:bb:dd:cb:80:1d:40: 04:9b:8f:42:48:7c:67:e9:ff:b6:49:0e:59:95:5c: 69:31:32:35:10:46:fe:e3:d5:11:a1:09:00:3f:dc: 60:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:E9:4A:3D:BF:84:C1:7A:B5:F2:3D:24:9D:A2:E3:E8:4C:43:ED:92 X509v3 Authority Key Identifier: keyid:AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:4e:d8:32:7a:7a:78:3a:56:cb:29:27:c4:12:53:e1:4f:b8: d5:0e:97:e4:0d:ca:b3:b9:45:9d:1f:6f:e5:9b:d2:51:5d:04: 9f:51:c7:f4:92:65:c7:6c:00:8f:6e:0f:d2:b5:8a:78:34:32: 78:7e:2f:41:b5:b7:59:75:aa:6d:db:be:ff:cd:33:0a:3e:ca: 67:8a:07:0e:26:94:e2:63:ee:f9:7e:42:a2:c9:1c:42:f7:57: 6b:ca:1e:69:95:0f:cf:6e:c7:fb:b4:62:72:3e:dc:92:b3:73: 36:99:13:40:93:6a:6a:b6:a8:e4:4a:d1:fa:47:db:ee:87:05: 44:3c:e7:bf:6c:26:65:1e:00:cd:6e:9b:ca:fb:37:ec:5a:54: 4e:6c:ec:c8:ca:37:f6:62:7d:17:1a:c4:d7:14:14:1b:d5:03: 14:18:01:7a:78:43:2d:ac:08:0a:74:a3:81:84:a9:8c:b6:98: 0d:04:3a:5b:90:1c:c4:36:7d:dc:34:01:bf:8d:39:ff:e5:e9: 9e:6a:57:9e:2a:53:3d:de:90:44:62:52:73:38:f5:b0:41:04: 15:90:7c:ed:98:05:73:0c:43:01:b2:45:59:a9:87:b9:3f:fc: 8b:62:dc:f5:a4:ed:91:01:a8:ce:aa:09:6f:6b:9b:ea:9c:19: a4:1e:c1:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfhgxpQYk2oZQs1v3giVYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNzBmYmIzZGIyMjg0MzdkNjA1Nzk5YWM0ZjQ1OThkMjJl MTNlMWIwHhcNMjYwMjA5MTMwMTI1WhcNMjYwMjEwMTMwMTI1WjAzMTEwLwYDVQQD EygwZGU5NGEzZGJmODRjMTdhYjVmMjNkMjQ5ZGEyZTNlODRjNDNlZDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA50g1ZDhmsHhY/e7awUqNMpJdnM1p wEScqvyzBFUh0kRAv1taE0gwlKfr9NKEPo7w9clFC21ikE2Sj/ZyUi8GS1VvEUVj AoHYLsJrr2lA1QW2jrwT2IAt2/ynrnjs2uTSkZafhMzZSzgCtK9kjaTE9X/1H3yj VR8dvrA5QNpVdE5bbSAEN2IqX9vsHeWA5xqPnhl2kmyTwhp7P7KNYs2G0PgKX/6d BthmA7mVb+QXkZxy2hZkJpOSGvDyKsPPAGDeMxh1zo/QxkqRpjta2o+j7nW98mBx 5ndydLC73cuAHUAEm49CSHxn6f+2SQ5ZlVxpMTI1EEb+49URoQkAP9xgpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA3pSj2/hMF6tfI9JJ2i4+hMQ+2SMB8GA1UdIwQY MBaAFKpw+7PbIoQ31gV5msT0WY0i4T4bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcW5EN3M5c2loRGZXQlhtYXhQUlpqU0xoUGhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9kOGUxODQtZTc5Yi00N2ZlLTk2ZGMt NWJhNDIzNWNlNjE5LzEvcW5EN3M5c2loRGZXQlhtYXhQUlpqU0xoUGhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9kOGUxODQtZTc5Yi00N2ZlLTk2ZGMtNWJhNDIzNWNlNjE5 LzEvcW5EN3M5c2loRGZXQlhtYXhQUlpqU0xoUGhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAok7YMnp6 eDpWyyknxBJT4U+41Q6X5A3Ks7lFnR9v5ZvSUV0En1HH9JJlx2wAj24P0rWKeDQy eH4vQbW3WXWqbdu+/80zCj7KZ4oHDiaU4mPu+X5CoskcQvdXa8oeaZUPz27H+7Ri cj7ckrNzNpkTQJNqarao5ErR+kfb7ocFRDznv2wmZR4AzW6byvs37FpUTmzsyMo3 9mJ9FxrE1xQUG9UDFBgBenhDLawICnSjgYSpjLaYDQQ6W5AcxDZ93DQBv405/+Xp nmpXnipTPd6QRGJSczj1sEEEFZB87ZgFcwxDAbJFWamHuT/8i2Lc9aTtkQGozqoJ b2ub6pwZpB7BmQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:47:20 2026 by rpki-client