This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft File: pQHIn0SCnHLyqVPSorpK4Le1DYo.mft (raw, json) Hash identifier: 0Oy1L+JJZYJlWXgbYCnsoR1F8AJc62uWc8C2g2DRtN8= Subject key identifier: 43:F6:6C:9B:13:27:AD:D5:37:A4:DC:66:25:EE:3B:6B:EA:0D:B6:A0 Authority key identifier: A5:01:C8:9F:44:82:9C:72:F2:A9:53:D2:A2:BA:4A:E0:B7:B5:0D:8A Certificate issuer: /CN=a501c89f44829c72f2a953d2a2ba4ae0b7b50d8a Certificate serial: 019C43FDB910AEED47477FB89E45BA6BF25E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 20:00:27 +0000 Manifest this update: Mon 09 Feb 2026 20:00:27 +0000 Manifest next update: Tue 10 Feb 2026 20:00:27 +0000 Files and hashes: 1: a1cD9EYlmG13NxBr90ciEvptuWA.roa (hash: v81TOP+ZC2LYKrsgbz1s/Hzy51XQ6ECnroV1P/ElVCU=) 2: pQHIn0SCnHLyqVPSorpK4Le1DYo.crl (hash: cck4wvW/YTRNxQkaQ4677Q/+HyBZ14wTx/2aeRuqRj4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:b9:10:ae:ed:47:47:7f:b8:9e:45:ba:6b:f2:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a501c89f44829c72f2a953d2a2ba4ae0b7b50d8a Validity Not Before: Feb 9 20:00:27 2026 GMT Not After : Feb 10 20:00:27 2026 GMT Subject: CN=43f66c9b1327add537a4dc6625ee3b6bea0db6a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:62:8f:cd:24:4f:b4:41:e3:42:61:32:ec:e7: 63:54:f5:37:b6:5a:94:91:a8:fa:c1:1a:00:47:e4: e7:9e:e5:df:61:4c:63:9f:92:b9:1e:6d:73:52:f9: 83:86:8b:ea:d4:6d:ca:54:47:a6:ac:e0:09:2a:51: 29:fa:20:3c:01:60:0c:3b:f2:70:d5:f5:df:c1:6c: d7:82:a0:f4:a1:86:59:f7:92:55:f0:96:1c:83:fc: f4:cb:f0:47:5e:23:da:08:0d:41:bd:1c:f8:b3:ee: 03:14:c0:d6:d0:e9:31:ef:d9:9c:5e:e9:ea:c7:30: da:06:38:11:66:4c:45:3b:6f:70:68:89:8e:c9:c5: 70:1e:bb:f8:a1:82:e6:5f:32:e2:ad:7f:a3:53:14: 8e:5d:9b:09:0c:04:7b:05:6d:c7:09:30:dc:96:48: d1:0b:a8:36:ff:d6:71:b5:40:af:25:6b:98:00:5d: 21:42:7d:56:93:b5:7f:67:46:8f:ec:31:3a:38:a4: 94:0c:e5:61:f7:03:e7:df:80:38:e7:84:04:03:c9: 7d:f6:ce:e5:a2:99:64:ae:dd:59:b9:9d:37:5e:1f: 48:a3:ee:94:ac:d4:bd:4b:68:81:3c:69:6f:2d:65: db:bf:fe:9a:41:a6:07:aa:f9:8c:d8:5a:4d:7e:00: 5b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F6:6C:9B:13:27:AD:D5:37:A4:DC:66:25:EE:3B:6B:EA:0D:B6:A0 X509v3 Authority Key Identifier: keyid:A5:01:C8:9F:44:82:9C:72:F2:A9:53:D2:A2:BA:4A:E0:B7:B5:0D:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:2e:23:38:ca:fb:0b:c9:20:35:d0:c2:b1:e2:90:0d:2c:92: eb:81:e8:db:a8:27:64:81:d7:60:3a:65:d6:e6:3e:67:ef:8e: 7b:01:56:c0:05:29:de:7b:0d:50:d3:e3:2c:7a:71:27:dd:6d: 06:bd:e2:77:09:6a:7f:4c:2a:31:5e:ac:b6:f5:37:d3:ae:23: ae:68:b8:5d:5f:f5:da:e2:5b:eb:40:ca:b5:9e:08:ae:ac:2f: 4f:51:38:90:c3:46:1d:ef:70:2c:d1:ea:94:6a:0f:83:32:56: 21:ec:ed:a9:17:6f:cd:28:2d:4c:f1:0f:ef:2d:f0:98:ad:8a: a6:c2:90:e1:f9:b6:e4:b3:6b:14:13:e2:f4:b0:34:08:e0:02: e1:29:c0:28:94:a0:97:72:82:17:9a:d0:7d:99:15:71:67:78: a8:e2:96:74:39:5a:f2:73:35:46:ab:09:e1:d5:43:e0:e9:d9: 4d:46:b5:76:60:ee:61:60:43:fb:68:91:97:07:af:8b:72:ab: bd:bc:35:f7:1e:b0:b5:5e:69:65:0b:70:c7:f5:ed:13:4f:67: e0:db:71:4b:19:29:50:c5:ac:06:ee:46:f1:aa:50:be:11:94: 2b:69:a5:cd:c5:39:49:9b:d9:8a:15:3d:35:2a:fc:ca:73:b9: 78:9b:f7:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/bkQru1HR3+4nkW6a/JeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1MDFjODlmNDQ4MjljNzJmMmE5NTNkMmEyYmE0YWUwYjdi NTBkOGEwHhcNMjYwMjA5MjAwMDI3WhcNMjYwMjEwMjAwMDI3WjAzMTEwLwYDVQQD Eyg0M2Y2NmM5YjEzMjdhZGQ1MzdhNGRjNjYyNWVlM2I2YmVhMGRiNmEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWKPzSRPtEHjQmEy7OdjVPU3tlqU kaj6wRoAR+TnnuXfYUxjn5K5Hm1zUvmDhovq1G3KVEemrOAJKlEp+iA8AWAMO/Jw 1fXfwWzXgqD0oYZZ95JV8JYcg/z0y/BHXiPaCA1BvRz4s+4DFMDW0Okx79mcXunq xzDaBjgRZkxFO29waImOycVwHrv4oYLmXzLirX+jUxSOXZsJDAR7BW3HCTDclkjR C6g2/9ZxtUCvJWuYAF0hQn1Wk7V/Z0aP7DE6OKSUDOVh9wPn34A454QEA8l99s7l oplkrt1ZuZ03Xh9Io+6UrNS9S2iBPGlvLWXbv/6aQaYHqvmM2FpNfgBbAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEP2bJsTJ63VN6TcZiXuO2vqDbagMB8GA1UdIwQY MBaAFKUByJ9Egpxy8qlT0qK6SuC3tQ2KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFFISW4wU0NuSEx5cVZQU29ycEs0TGUxRFlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9kNWUxMDMtOTBiNS00NGYxLWI4NjQt MTRhMWViNTUxMmQ2LzEvcFFISW4wU0NuSEx5cVZQU29ycEs0TGUxRFlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9kNWUxMDMtOTBiNS00NGYxLWI4NjQtMTRhMWViNTUxMmQ2 LzEvcFFISW4wU0NuSEx5cVZQU29ycEs0TGUxRFlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIC4jOMr7 C8kgNdDCseKQDSyS64Ho26gnZIHXYDpl1uY+Z++OewFWwAUp3nsNUNPjLHpxJ91t Br3idwlqf0wqMV6stvU3064jrmi4XV/12uJb60DKtZ4IrqwvT1E4kMNGHe9wLNHq lGoPgzJWIeztqRdvzSgtTPEP7y3wmK2KpsKQ4fm25LNrFBPi9LA0COAC4SnAKJSg l3KCF5rQfZkVcWd4qOKWdDla8nM1RqsJ4dVD4OnZTUa1dmDuYWBD+2iRlwevi3Kr vbw19x6wtV5pZQtwx/XtE09n4NtxSxkpUMWsBu5G8apQvhGUK2mlzcU5SZvZihU9 NSr8ynO5eJv3Bg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:45 2026 by rpki-client