This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft File: TQiJTKQFMefSApQJEojnetEsKXk.mft (raw, json) Hash identifier: VM5wN61f4Jj6kh/sv83l1qAYUk8YKuZoRPS7HJEhFv8= Subject key identifier: D4:61:DC:21:26:B7:76:4E:EC:72:38:7F:1B:FB:80:78:6B:17:33:97 Authority key identifier: 4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79 Certificate issuer: /CN=4d08894ca40531e7d20294091288e77ad12c2979 Certificate serial: 019C42EB6F32FAF6B099DE2BFF0B9367ACA4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft Manifest number: 08D7 Signing time: Mon 09 Feb 2026 15:00:51 +0000 Manifest this update: Mon 09 Feb 2026 15:00:51 +0000 Manifest next update: Tue 10 Feb 2026 15:00:51 +0000 Files and hashes: 1: 1SYQW-AytRFT8X7H178C63GJxjA.roa (hash: ZzI22LUMgcKDVR6FP27XHCqtHrqNmJBOs8nOGmHXP4g=) 2: TQiJTKQFMefSApQJEojnetEsKXk.crl (hash: 2hOEMv3hy4Bd0PmYmjTivtWCMDWFbDQltKXiCS4AGBA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:6f:32:fa:f6:b0:99:de:2b:ff:0b:93:67:ac:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d08894ca40531e7d20294091288e77ad12c2979 Validity Not Before: Feb 9 15:00:51 2026 GMT Not After : Feb 10 15:00:51 2026 GMT Subject: CN=d461dc2126b7764eec72387f1bfb80786b173397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:16:0c:50:56:ba:9b:eb:a6:d2:27:97:04:7c: 38:4c:bb:5f:14:01:3f:5d:3c:60:53:d3:c5:a6:8b: 9b:ba:57:80:e0:8a:73:fe:b7:95:ad:ab:77:85:2e: f0:54:66:72:3d:ed:97:c5:c7:ba:53:9d:10:17:64: e4:82:80:c5:4e:7f:99:c6:a5:e8:06:d8:45:67:05: c4:53:94:d4:5f:20:f5:a1:b8:13:1e:11:e9:2f:e4: 01:bf:e8:3d:fa:58:0b:19:cb:a9:92:23:86:33:7b: 6d:64:bc:df:c5:66:53:7f:8c:e0:bc:78:0b:d6:16: 27:7a:09:03:b7:f9:f8:43:e6:7e:69:6c:fe:b6:2b: b8:47:b0:5d:c2:1a:d2:f9:21:9c:9c:b0:d0:ef:c4: b0:79:fa:ad:b3:58:78:0c:c2:e2:77:ff:4d:23:79: 2f:c3:eb:cd:ee:b0:3d:82:70:78:5c:0c:41:e0:95: 6b:92:33:e9:c9:25:21:c6:8c:a9:1a:52:10:a3:bc: 82:85:4b:19:d0:de:ee:1b:47:8e:30:fb:f0:65:75: c9:99:92:93:45:a2:b2:9e:7b:7a:e5:d6:0d:e2:c0: 0b:35:0a:86:eb:53:ff:66:49:cd:f9:39:6f:4d:5d: da:58:c5:fb:84:02:aa:29:f9:c1:d9:cf:01:44:f8: 0e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:61:DC:21:26:B7:76:4E:EC:72:38:7F:1B:FB:80:78:6B:17:33:97 X509v3 Authority Key Identifier: keyid:4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:b2:29:e1:29:02:ba:98:a3:6c:36:dc:6e:1c:b0:05:a1:dd: 0c:3e:48:13:b9:ba:1f:a3:40:c4:4f:81:ce:73:1f:c6:65:46: d8:b1:a1:d0:a4:c6:dc:a3:c1:bd:13:8a:1e:de:16:4a:77:4d: 79:f4:a5:2d:ac:31:d7:92:5d:1c:e4:5b:1a:10:a0:28:9e:87: 2a:06:71:82:cb:3b:ce:0c:e6:92:02:0a:12:24:7a:38:23:2c: f9:35:08:6f:94:15:09:d9:a1:c4:6a:62:b2:e4:28:9b:59:e3: 25:a5:18:69:07:43:6f:59:65:44:7b:44:73:c1:7b:38:ca:1f: ef:ba:2f:56:b1:ad:b6:95:cb:d7:da:3e:81:58:f5:3e:7e:d5: 95:40:fb:c5:50:ab:cc:a7:ba:c9:4d:da:e7:0c:0b:ea:9b:92: b8:ac:4e:28:86:6d:cd:89:ce:0f:aa:16:7d:c8:9a:2b:90:4a: 01:e7:9c:b6:d6:22:ac:fc:a9:7d:90:6d:12:bf:43:13:cc:e3: 0b:b3:e3:29:06:80:54:78:f5:2b:3c:65:95:ab:0b:16:77:d3: 0b:ed:94:20:00:f9:27:71:f0:a4:f1:be:6f:f7:9a:b4:67:16: b6:68:01:08:02:0b:1f:72:89:3d:ae:bf:b8:d9:40:a0:89:91: 0f:1e:06:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC628y+vawmd4r/wuTZ6ykMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMDg4OTRjYTQwNTMxZTdkMjAyOTQwOTEyODhlNzdhZDEy YzI5NzkwHhcNMjYwMjA5MTUwMDUxWhcNMjYwMjEwMTUwMDUxWjAzMTEwLwYDVQQD EyhkNDYxZGMyMTI2Yjc3NjRlZWM3MjM4N2YxYmZiODA3ODZiMTczMzk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgBYMUFa6m+um0ieXBHw4TLtfFAE/ XTxgU9PFpoubuleA4Ipz/reVrat3hS7wVGZyPe2Xxce6U50QF2TkgoDFTn+ZxqXo BthFZwXEU5TUXyD1obgTHhHpL+QBv+g9+lgLGcupkiOGM3ttZLzfxWZTf4zgvHgL 1hYnegkDt/n4Q+Z+aWz+tiu4R7BdwhrS+SGcnLDQ78Swefqts1h4DMLid/9NI3kv w+vN7rA9gnB4XAxB4JVrkjPpySUhxoypGlIQo7yChUsZ0N7uG0eOMPvwZXXJmZKT RaKynnt65dYN4sALNQqG61P/ZknN+TlvTV3aWMX7hAKqKfnB2c8BRPgORwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNRh3CEmt3ZO7HI4fxv7gHhrFzOXMB8GA1UdIwQY MBaAFE0IiUykBTHn0gKUCRKI53rRLCl5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFFpSlRLUUZNZWZTQXBRSkVvam5ldEVzS1hrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85YTA4YjAtY2ZlYy00YzkxLWI4ZWIt NGFiYWRiNWFlYTlhLzEvVFFpSlRLUUZNZWZTQXBRSkVvam5ldEVzS1hrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85YTA4YjAtY2ZlYy00YzkxLWI4ZWItNGFiYWRiNWFlYTlh LzEvVFFpSlRLUUZNZWZTQXBRSkVvam5ldEVzS1hrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO7Ip4SkC upijbDbcbhywBaHdDD5IE7m6H6NAxE+BznMfxmVG2LGh0KTG3KPBvROKHt4WSndN efSlLawx15JdHORbGhCgKJ6HKgZxgss7zgzmkgIKEiR6OCMs+TUIb5QVCdmhxGpi suQom1njJaUYaQdDb1llRHtEc8F7OMof77ovVrGttpXL19o+gVj1Pn7VlUD7xVCr zKe6yU3a5wwL6puSuKxOKIZtzYnOD6oWfciaK5BKAeecttYirPypfZBtEr9DE8zj C7PjKQaAVHj1KzxllasLFnfTC+2UIAD5J3HwpPG+b/eatGcWtmgBCAILH3KJPa6/ uNlAoImRDx4Gug== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:15 2026 by rpki-client