This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/5cc4b7-867d-452a-8902-e87932c555f3/1/QcSlZE8EKVIdH9xbuyM6BBsgCIc.mft File: QcSlZE8EKVIdH9xbuyM6BBsgCIc.mft (raw, json) Hash identifier: i6/narSMi373V953YKpxRI2oUog6DuLufNuFjP2/FM4= Subject key identifier: A7:9D:5B:7D:E3:4F:4D:4E:7D:BA:F9:A4:F2:C0:7A:89:B7:E7:BF:0C Authority key identifier: 41:C4:A5:64:4F:04:29:52:1D:1F:DC:5B:BB:23:3A:04:1B:20:08:87 Certificate issuer: /CN=41c4a5644f0429521d1fdc5bbb233a041b200887 Certificate serial: 019C4390A786138A801D6F98E4EDAE6AF9C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QcSlZE8EKVIdH9xbuyM6BBsgCIc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/5cc4b7-867d-452a-8902-e87932c555f3/1/QcSlZE8EKVIdH9xbuyM6BBsgCIc.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 18:01:19 +0000 Manifest this update: Mon 09 Feb 2026 18:01:19 +0000 Manifest next update: Tue 10 Feb 2026 18:01:19 +0000 Files and hashes: 1: QcSlZE8EKVIdH9xbuyM6BBsgCIc.crl (hash: +1NAZ0xKnsGKPDpn0iq02P5VmC9hLX+AM+KzpXcAN/Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/5cc4b7-867d-452a-8902-e87932c555f3/1/QcSlZE8EKVIdH9xbuyM6BBsgCIc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/5cc4b7-867d-452a-8902-e87932c555f3/1/QcSlZE8EKVIdH9xbuyM6BBsgCIc.mft rsync://rpki.ripe.net/repository/DEFAULT/QcSlZE8EKVIdH9xbuyM6BBsgCIc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:a7:86:13:8a:80:1d:6f:98:e4:ed:ae:6a:f9:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41c4a5644f0429521d1fdc5bbb233a041b200887 Validity Not Before: Feb 9 18:01:19 2026 GMT Not After : Feb 10 18:01:19 2026 GMT Subject: CN=a79d5b7de34f4d4e7dbaf9a4f2c07a89b7e7bf0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8c:b9:dc:e0:b1:6a:47:3f:7b:a0:fa:09:6b: 4d:c5:e9:57:aa:ac:02:7a:f1:fd:ab:90:96:07:07: f3:5a:14:40:ac:4d:13:64:6e:e8:bb:97:28:fc:e4: ed:0b:5e:39:18:b0:67:0a:79:6a:95:ce:07:62:81: 94:d9:37:10:27:87:3a:89:38:69:36:98:01:1d:f2: 18:f0:23:27:e9:83:6e:7a:77:89:c6:0b:07:91:55: b5:c5:a6:30:00:aa:5b:b4:01:44:12:bb:51:e9:f3: 56:2d:f5:d3:b1:39:51:0b:2a:9e:41:b2:70:04:79: 0c:76:44:37:8d:fd:2d:60:3d:d3:ed:af:63:0a:56: e3:9a:6d:6c:b3:56:de:5b:68:d6:fb:ac:81:f5:86: db:9a:5c:42:a7:7a:a5:17:57:69:f7:01:4a:07:45: f1:02:a1:9e:24:c3:d0:60:be:e3:49:6c:01:62:61: b7:61:49:38:4e:a4:3b:41:2e:c1:c6:0b:43:ea:72: 72:6d:9f:63:2a:84:a5:e3:64:72:d3:56:77:d9:91: 7a:08:05:bd:f1:c9:cc:4a:d7:de:9e:6b:1c:51:a3: 82:00:7e:44:15:aa:eb:2f:01:c5:a8:0c:2b:6c:20: 0a:e2:de:94:cf:69:6f:bc:b0:28:03:09:ee:0a:75: 59:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:9D:5B:7D:E3:4F:4D:4E:7D:BA:F9:A4:F2:C0:7A:89:B7:E7:BF:0C X509v3 Authority Key Identifier: keyid:41:C4:A5:64:4F:04:29:52:1D:1F:DC:5B:BB:23:3A:04:1B:20:08:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QcSlZE8EKVIdH9xbuyM6BBsgCIc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5cc4b7-867d-452a-8902-e87932c555f3/1/QcSlZE8EKVIdH9xbuyM6BBsgCIc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5cc4b7-867d-452a-8902-e87932c555f3/1/QcSlZE8EKVIdH9xbuyM6BBsgCIc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:79:cc:74:fa:d6:63:38:d0:37:5a:20:05:b2:16:4d:6c:fe: 38:3b:cc:5c:2f:22:6e:c7:93:cc:2f:0e:b4:2e:a2:33:1f:dd: 33:6d:8f:bd:99:88:85:9f:bc:eb:9f:86:06:31:05:11:06:f5: 33:ad:44:14:24:17:8b:26:b8:70:d1:90:96:39:cf:6e:bf:3e: 4a:dc:bd:ac:a4:cc:3a:53:53:85:cf:3d:26:52:0e:87:6a:89: 0b:5d:59:81:53:1a:9d:df:08:68:40:b6:db:2f:9c:c4:51:01: 20:70:1b:da:b6:5a:da:4c:33:81:56:a3:11:3d:a5:20:ea:a2: b2:16:15:84:60:de:77:7f:89:3d:4b:33:16:90:6e:22:ab:d3: 99:37:04:61:2b:a2:e3:ed:08:8d:11:c4:5d:26:b0:c1:07:84: d3:25:b7:c4:75:d7:0c:ce:56:9b:38:57:c3:75:cf:9a:4f:67: 7a:45:72:7e:32:51:c8:20:45:e7:a2:db:1c:a8:3f:99:9b:19: ca:f3:46:75:8a:76:89:44:ee:f7:84:c4:87:92:56:0e:84:ed: bf:31:6c:39:c0:05:1d:f6:72:c8:7d:1e:28:12:b6:3e:73:c9: 60:67:cb:76:59:a2:b9:f2:1d:0e:af:1a:42:c9:24:62:2e:4b: 4e:33:9d:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkKeGE4qAHW+Y5O2uavnHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxYzRhNTY0NGYwNDI5NTIxZDFmZGM1YmJiMjMzYTA0MWIy MDA4ODcwHhcNMjYwMjA5MTgwMTE5WhcNMjYwMjEwMTgwMTE5WjAzMTEwLwYDVQQD EyhhNzlkNWI3ZGUzNGY0ZDRlN2RiYWY5YTRmMmMwN2E4OWI3ZTdiZjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14y53OCxakc/e6D6CWtNxelXqqwC evH9q5CWBwfzWhRArE0TZG7ou5co/OTtC145GLBnCnlqlc4HYoGU2TcQJ4c6iThp NpgBHfIY8CMn6YNueneJxgsHkVW1xaYwAKpbtAFEErtR6fNWLfXTsTlRCyqeQbJw BHkMdkQ3jf0tYD3T7a9jClbjmm1ss1beW2jW+6yB9YbbmlxCp3qlF1dp9wFKB0Xx AqGeJMPQYL7jSWwBYmG3YUk4TqQ7QS7BxgtD6nJybZ9jKoSl42Ry01Z32ZF6CAW9 8cnMStfenmscUaOCAH5EFarrLwHFqAwrbCAK4t6Uz2lvvLAoAwnuCnVZywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKedW33jT01Ofbr5pPLAeom3578MMB8GA1UdIwQY MBaAFEHEpWRPBClSHR/cW7sjOgQbIAiHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWNTbFpFOEVLVklkSDl4YnV5TTZCQnNnQ0ljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS81Y2M0YjctODY3ZC00NTJhLTg5MDIt ZTg3OTMyYzU1NWYzLzEvUWNTbFpFOEVLVklkSDl4YnV5TTZCQnNnQ0ljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS81Y2M0YjctODY3ZC00NTJhLTg5MDItZTg3OTMyYzU1NWYz LzEvUWNTbFpFOEVLVklkSDl4YnV5TTZCQnNnQ0ljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbHnMdPrW YzjQN1ogBbIWTWz+ODvMXC8ibseTzC8OtC6iMx/dM22PvZmIhZ+865+GBjEFEQb1 M61EFCQXiya4cNGQljnPbr8+Sty9rKTMOlNThc89JlIOh2qJC11ZgVMand8IaEC2 2y+cxFEBIHAb2rZa2kwzgVajET2lIOqishYVhGDed3+JPUszFpBuIqvTmTcEYSui 4+0IjRHEXSawwQeE0yW3xHXXDM5WmzhXw3XPmk9nekVyfjJRyCBF56LbHKg/mZsZ yvNGdYp2iUTu94TEh5JWDoTtvzFsOcAFHfZyyH0eKBK2PnPJYGfLdlmiufIdDq8a QskkYi5LTjOd1A== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:33 2026 by rpki-client