This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft File: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft (raw, json) Hash identifier: EG/ExEbL2EYjdB+b5IVZwRNrdeHgBbF4k76bTPn0TNc= Subject key identifier: 0F:9E:55:BD:76:A4:CB:D7:03:54:2A:76:A5:3A:17:5C:F5:DA:CF:E4 Authority key identifier: 41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC Certificate issuer: /CN=41d6451b923a07e365b2f190faa55a572dd0fafc Certificate serial: 019C42464D989C9EAD13041A9B7BDE0C4625 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft Manifest number: 0AD9 Signing time: Mon 09 Feb 2026 12:00:29 +0000 Manifest this update: Mon 09 Feb 2026 12:00:29 +0000 Manifest next update: Tue 10 Feb 2026 12:00:29 +0000 Files and hashes: 1: M2qWTH73NkMquwfzQJVxK2FVK8I.roa (hash: 5PswSRa1E9ITddc7NsFeNUg4nkAmj5HsnCX0ziwfNao=) 2: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl (hash: mBA7lTAOpeF4KefE8qvw39hjsFrIqjoGAJWt6+wMdyw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:4d:98:9c:9e:ad:13:04:1a:9b:7b:de:0c:46:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41d6451b923a07e365b2f190faa55a572dd0fafc Validity Not Before: Feb 9 12:00:29 2026 GMT Not After : Feb 10 12:00:29 2026 GMT Subject: CN=0f9e55bd76a4cbd703542a76a53a175cf5dacfe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ce:4f:7a:f3:21:4e:3b:2f:a5:16:47:c1:8b: b8:53:5d:1d:fe:ba:d1:35:20:cc:b2:3f:81:31:31: 02:0e:35:13:bb:57:61:a1:8f:95:56:75:df:06:6c: 79:6a:d2:96:a3:ba:cf:48:48:d5:6d:86:d5:44:98: b0:18:6f:85:7f:d5:b2:c0:2f:a4:38:74:8a:dc:dd: 1f:d8:b3:b5:70:f6:00:ad:61:c2:68:dd:d4:c7:66: cf:f6:79:60:e4:4b:6c:ef:77:5e:74:3f:4d:09:b7: 82:9a:e8:4b:4f:cf:d8:a0:aa:37:9b:73:34:29:c7: a2:6f:96:04:54:04:9e:00:a4:7d:d2:c2:df:cc:a5: b5:ad:9c:1f:ae:c0:ec:14:3f:bc:7b:1a:19:fc:9f: 91:a9:85:f9:91:d3:cc:4f:08:63:34:02:8d:41:99: 13:d3:12:78:14:41:8a:f1:d1:65:ad:bb:aa:53:aa: 9f:a8:e2:e9:e5:0b:2f:a2:ce:9b:27:3c:27:9f:91: 7c:d4:e2:c3:d3:21:9a:49:ab:5b:a0:bc:b1:06:3c: b0:17:c9:49:20:21:7a:5e:26:aa:bd:9c:1d:6d:be: 18:6d:96:1d:77:d6:87:39:cd:d9:a5:f4:51:f9:e2: f6:1f:57:16:f7:6e:39:51:e3:25:39:50:8d:2f:d2: e1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:9E:55:BD:76:A4:CB:D7:03:54:2A:76:A5:3A:17:5C:F5:DA:CF:E4 X509v3 Authority Key Identifier: keyid:41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:c2:f3:1d:21:c4:eb:66:64:18:a1:0f:f4:43:2a:85:f0:58: ae:92:89:c8:0b:9d:0b:e0:6c:33:c1:06:e2:3e:da:51:88:4a: f3:30:a1:f4:0f:a8:63:ca:8c:a5:9c:4e:b9:37:9e:bc:ca:ce: f1:f4:00:aa:54:9d:3f:71:10:e9:9d:09:50:d9:20:de:2c:9d: 6b:b9:6d:22:14:55:ef:f7:b2:10:90:ed:88:ac:c2:70:76:27: 81:ab:85:50:64:52:10:c7:df:78:49:19:f1:7d:a5:af:41:76: 62:23:c1:a2:4c:bf:93:62:79:c7:a0:f9:6d:d5:40:d7:36:a7: e6:6d:80:22:90:ca:9a:16:64:26:5f:85:33:ec:8c:9f:9e:a2: a9:01:72:ba:22:c7:b4:74:dd:ba:3c:b9:c4:a1:ca:6a:7b:3e: 54:56:fe:a3:6e:07:78:d9:5b:0e:0e:c2:0f:3f:58:08:a4:05: da:59:eb:2a:76:69:59:fc:e0:cf:97:48:8c:84:d0:d8:90:c6: b6:37:b1:d8:84:64:e1:73:65:e7:74:10:98:78:fb:0d:75:33: ed:a0:44:82:e2:bf:f6:80:73:46:88:c6:cf:26:76:91:93:45: 09:80:26:f2:44:08:b8:da:d2:b6:fd:ae:82:57:54:e4:2a:ac: 6b:41:07:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRk2YnJ6tEwQam3veDEYlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxZDY0NTFiOTIzYTA3ZTM2NWIyZjE5MGZhYTU1YTU3MmRk MGZhZmMwHhcNMjYwMjA5MTIwMDI5WhcNMjYwMjEwMTIwMDI5WjAzMTEwLwYDVQQD EygwZjllNTViZDc2YTRjYmQ3MDM1NDJhNzZhNTNhMTc1Y2Y1ZGFjZmU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0s5PevMhTjsvpRZHwYu4U10d/rrR NSDMsj+BMTECDjUTu1dhoY+VVnXfBmx5atKWo7rPSEjVbYbVRJiwGG+Ff9WywC+k OHSK3N0f2LO1cPYArWHCaN3Ux2bP9nlg5Ets73dedD9NCbeCmuhLT8/YoKo3m3M0 Kceib5YEVASeAKR90sLfzKW1rZwfrsDsFD+8exoZ/J+RqYX5kdPMTwhjNAKNQZkT 0xJ4FEGK8dFlrbuqU6qfqOLp5Qsvos6bJzwnn5F81OLD0yGaSatboLyxBjywF8lJ ICF6XiaqvZwdbb4YbZYdd9aHOc3ZpfRR+eL2H1cW9245UeMlOVCNL9LhYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA+eVb12pMvXA1QqdqU6F1z12s/kMB8GA1UdIwQY MBaAFEHWRRuSOgfjZbLxkPqlWlct0Pr8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWRaRkc1STZCLU5sc3ZHUS1xVmFWeTNRLXZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9kZWU3NDQtMDg1NC00Y2YxLWFmNmEt ZjU2Yzg0OTQzYTdkLzEvUWRaRkc1STZCLU5sc3ZHUS1xVmFWeTNRLXZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9kZWU3NDQtMDg1NC00Y2YxLWFmNmEtZjU2Yzg0OTQzYTdk LzEvUWRaRkc1STZCLU5sc3ZHUS1xVmFWeTNRLXZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYMLzHSHE 62ZkGKEP9EMqhfBYrpKJyAudC+BsM8EG4j7aUYhK8zCh9A+oY8qMpZxOuTeevMrO 8fQAqlSdP3EQ6Z0JUNkg3iyda7ltIhRV7/eyEJDtiKzCcHYngauFUGRSEMffeEkZ 8X2lr0F2YiPBoky/k2J5x6D5bdVA1zan5m2AIpDKmhZkJl+FM+yMn56iqQFyuiLH tHTdujy5xKHKans+VFb+o24HeNlbDg7CDz9YCKQF2lnrKnZpWfzgz5dIjITQ2JDG tjex2IRk4XNl53QQmHj7DXUz7aBEguK/9oBzRojGzyZ2kZNFCYAm8kQIuNrStv2u gldU5Cqsa0EH4Q== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:58 2026 by rpki-client