This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft File: QPwHKZcRrfoiLiexKLdtHZdFBYI.mft (raw, json) Hash identifier: /BmafMmNniNAWCNE0jY7e5F9jkECT8JdUOzhOUaJxDE= Subject key identifier: 75:11:9E:15:8D:E2:B6:A2:48:0C:98:B6:39:A1:AA:AC:67:C7:09:98 Authority key identifier: 40:FC:07:29:97:11:AD:FA:22:2E:27:B1:28:B7:6D:1D:97:45:05:82 Certificate issuer: /CN=40fc07299711adfa222e27b128b76d1d97450582 Certificate serial: 019C424620E1F52ED01DE3B4D2EE735E1FAA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft Manifest number: 14BE Signing time: Mon 09 Feb 2026 12:00:18 +0000 Manifest this update: Mon 09 Feb 2026 12:00:18 +0000 Manifest next update: Tue 10 Feb 2026 12:00:18 +0000 Files and hashes: 1: QPwHKZcRrfoiLiexKLdtHZdFBYI.crl (hash: cyhLP6/0STEpYqgXID+jr7pBRSQnaEhFnm4i0MOHSwM=) 2: n3unGkFIp8-n-TNUkOQRjOKqebU.roa (hash: CIWlXFkIaFdHtn2kvnhoUCJuy+xps7328gEToUVe6jM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:20:e1:f5:2e:d0:1d:e3:b4:d2:ee:73:5e:1f:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40fc07299711adfa222e27b128b76d1d97450582 Validity Not Before: Feb 9 12:00:18 2026 GMT Not After : Feb 10 12:00:18 2026 GMT Subject: CN=75119e158de2b6a2480c98b639a1aaac67c70998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5e:58:50:5e:c6:c7:fa:c2:ba:59:97:0f:41: e0:2b:32:52:2a:99:95:c7:a0:3d:87:50:b8:33:69: 83:f9:3a:ba:d5:36:2b:98:b2:c4:f7:63:a6:81:a7: 69:cd:21:18:df:ff:3f:e4:93:1b:cf:a8:7c:22:bf: 9e:f0:8d:f4:d2:40:ad:b7:96:5d:c6:83:32:f2:fc: 1b:14:a8:00:e8:81:17:2c:6b:b2:8c:91:85:e3:a3: 05:af:c3:62:29:d2:9e:57:17:49:a1:83:d7:3b:8c: 85:96:62:26:07:0d:94:0e:76:79:9a:3d:22:3b:36: 4e:61:99:99:33:36:34:f2:d0:87:df:61:ce:33:12: 1d:67:6b:b6:23:24:40:42:11:b9:29:fc:71:b2:88: fc:9c:53:42:ac:e5:03:df:f7:53:fa:5a:a9:63:48: 6c:a4:07:27:b9:25:c3:df:89:7b:4f:45:fd:02:91: ad:40:cf:51:99:3f:ce:3d:db:88:31:66:f6:42:9b: 23:01:7e:4f:68:63:61:f2:46:d1:52:a9:8e:d5:ba: 3c:21:bf:f3:2b:0d:d3:ed:5c:c3:4a:ba:2d:27:e9: e3:7e:a9:73:57:20:3d:8f:94:7a:02:50:06:8c:03: 4b:4b:49:44:2e:56:ae:c1:96:a9:81:23:3b:37:11: 02:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:11:9E:15:8D:E2:B6:A2:48:0C:98:B6:39:A1:AA:AC:67:C7:09:98 X509v3 Authority Key Identifier: keyid:40:FC:07:29:97:11:AD:FA:22:2E:27:B1:28:B7:6D:1D:97:45:05:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QPwHKZcRrfoiLiexKLdtHZdFBYI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5dc87a-f329-4c44-8235-77e3beab61eb/1/QPwHKZcRrfoiLiexKLdtHZdFBYI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:c6:59:f9:ab:78:34:66:4d:07:c7:ef:3c:f3:ea:37:b3:95: 18:66:c7:f3:86:d4:bf:8f:5d:9c:97:7c:a7:15:56:07:e0:b7: 78:b1:a6:90:94:3d:cd:ef:68:86:83:04:67:07:76:8e:d3:17: 55:64:1f:46:43:13:54:ac:f6:20:e1:9d:72:a7:bf:16:5f:eb: a5:bd:bc:7c:b2:3b:7f:61:a5:3f:7c:e8:17:8b:c5:1e:09:6e: 90:80:07:65:28:a4:8f:56:ac:e4:50:ad:e2:e7:bc:6d:97:ab: a6:73:aa:84:0e:b0:94:6f:d2:7a:7d:91:bb:ae:19:2a:5f:86: cd:a7:b5:39:bb:59:96:05:2d:28:b4:db:11:f7:64:0b:b7:cb: 3f:ef:64:ca:de:e0:37:e3:e6:dc:4a:99:ba:37:d3:f8:47:3c: c9:27:5f:b7:04:72:4a:5d:64:05:28:2b:d4:05:6a:7c:6c:eb: 9b:12:42:b5:e6:26:14:7b:0a:9e:88:8b:b9:ee:10:cb:a9:37: 11:b8:60:df:08:1b:a4:8b:90:03:6e:8c:64:5d:8d:f3:e6:95: ab:64:be:34:20:66:e5:48:11:d0:14:3c:d8:c6:9c:52:5c:df: f7:9b:ec:4f:eb:5b:a6:1a:eb:34:e6:72:13:be:8b:df:0e:e1: 81:63:21:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRiDh9S7QHeO00u5zXh+qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZmMwNzI5OTcxMWFkZmEyMjJlMjdiMTI4Yjc2ZDFkOTc0 NTA1ODIwHhcNMjYwMjA5MTIwMDE4WhcNMjYwMjEwMTIwMDE4WjAzMTEwLwYDVQQD Eyg3NTExOWUxNThkZTJiNmEyNDgwYzk4YjYzOWExYWFhYzY3YzcwOTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq15YUF7Gx/rCulmXD0HgKzJSKpmV x6A9h1C4M2mD+Tq61TYrmLLE92OmgadpzSEY3/8/5JMbz6h8Ir+e8I300kCtt5Zd xoMy8vwbFKgA6IEXLGuyjJGF46MFr8NiKdKeVxdJoYPXO4yFlmImBw2UDnZ5mj0i OzZOYZmZMzY08tCH32HOMxIdZ2u2IyRAQhG5Kfxxsoj8nFNCrOUD3/dT+lqpY0hs pAcnuSXD34l7T0X9ApGtQM9RmT/OPduIMWb2QpsjAX5PaGNh8kbRUqmO1bo8Ib/z Kw3T7VzDSrotJ+njfqlzVyA9j5R6AlAGjANLS0lELlauwZapgSM7NxECWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHURnhWN4raiSAyYtjmhqqxnxwmYMB8GA1UdIwQY MBaAFED8BymXEa36Ii4nsSi3bR2XRQWCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVB3SEtaY1JyZm9pTGlleEtMZHRIWmRGQllJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi81ZGM4N2EtZjMyOS00YzQ0LTgyMzUt NzdlM2JlYWI2MWViLzEvUVB3SEtaY1JyZm9pTGlleEtMZHRIWmRGQllJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi81ZGM4N2EtZjMyOS00YzQ0LTgyMzUtNzdlM2JlYWI2MWVi LzEvUVB3SEtaY1JyZm9pTGlleEtMZHRIWmRGQllJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAccZZ+at4 NGZNB8fvPPPqN7OVGGbH84bUv49dnJd8pxVWB+C3eLGmkJQ9ze9ohoMEZwd2jtMX VWQfRkMTVKz2IOGdcqe/Fl/rpb28fLI7f2GlP3zoF4vFHglukIAHZSikj1as5FCt 4ue8bZerpnOqhA6wlG/Sen2Ru64ZKl+Gzae1ObtZlgUtKLTbEfdkC7fLP+9kyt7g N+Pm3EqZujfT+Ec8ySdftwRySl1kBSgr1AVqfGzrmxJCteYmFHsKnoiLue4Qy6k3 Ebhg3wgbpIuQA26MZF2N8+aVq2S+NCBm5UgR0BQ82MacUlzf95vsT+tbphrrNOZy E76L3w7hgWMhSQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:23 2026 by rpki-client