This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft File: Q94YPxSj8k-bhtBE-HcphoC1Ers.mft (raw, json) Hash identifier: fV1GQWyC6TlaRDOmX6EPBeCs9JeGtQw7wuuOmI+9yRI= Subject key identifier: 8B:9E:94:25:D5:3D:40:CA:69:1A:63:81:3D:7B:F7:49:E6:5E:16:83 Authority key identifier: 43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB Certificate issuer: /CN=43de183f14a3f24f9b86d044f877298680b512bb Certificate serial: 019C1B38D34B836A41A0026F4DC6734298C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft Manifest number: 0665 Signing time: Sun 01 Feb 2026 22:00:34 +0000 Manifest this update: Sun 01 Feb 2026 22:00:34 +0000 Manifest next update: Mon 02 Feb 2026 22:00:34 +0000 Files and hashes: 1: Q94YPxSj8k-bhtBE-HcphoC1Ers.crl (hash: DIGCQ02Fo0N/y2vMeLFNJ0JhOSfvAaE2Cl+Pl5aUzRE=) 2: Ry5ogaq6xel6bb_wfpnNMOgHoYY.asa (hash: bj382q+fQvCb8yK5gj2+0feyLhrIoXjHwjxqqTWqDdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1b:38:d3:4b:83:6a:41:a0:02:6f:4d:c6:73:42:98:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43de183f14a3f24f9b86d044f877298680b512bb Validity Not Before: Feb 1 22:00:34 2026 GMT Not After : Feb 2 22:00:34 2026 GMT Subject: CN=8b9e9425d53d40ca691a63813d7bf749e65e1683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9c:a6:f6:90:ef:f7:31:11:60:b0:44:fb:d4: a7:90:bc:8e:e0:71:a5:86:86:a3:38:b8:29:e9:a8: 89:5a:03:87:22:22:d5:72:ad:97:09:3c:e2:d9:4a: 83:69:9f:15:fb:ac:e3:71:bf:bb:81:c3:8b:3c:48: cc:f2:c8:76:e1:f3:a5:ae:42:dc:0f:36:b0:4e:b2: 45:78:12:c4:bf:48:fe:b0:c8:ed:92:6e:2a:d9:26: 32:eb:be:ab:eb:e9:60:58:71:be:d3:22:8a:54:f1: 60:3c:0e:7a:75:3f:26:a2:a9:0c:af:08:b5:e2:40: d2:ad:4a:39:34:b5:a4:8a:2c:c7:4b:35:08:9c:c3: 4e:2e:52:3b:df:16:c8:24:b2:4f:4e:fb:ca:d5:01: cb:f3:14:17:8a:6b:fb:01:d0:1c:e2:02:7d:53:8f: a4:c8:a5:93:21:12:02:49:2e:9a:cd:a9:25:78:ca: 7a:82:7f:60:ae:ae:7e:3a:e0:d2:2e:84:83:a7:a3: 00:b2:ae:80:c5:0e:ce:13:7a:1d:ce:96:18:fe:45: 56:03:94:c4:08:d4:a0:38:b7:75:0f:de:7b:6e:72: b7:24:4d:63:13:5f:22:be:c3:c3:fb:1d:88:fd:58: d4:ec:64:46:9c:61:4a:66:30:c1:18:8f:2f:dc:2c: 83:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:9E:94:25:D5:3D:40:CA:69:1A:63:81:3D:7B:F7:49:E6:5E:16:83 X509v3 Authority Key Identifier: keyid:43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:1e:36:1c:8a:88:03:bb:c1:cb:3d:e9:85:b8:8c:5f:f2:0f: 1c:09:87:20:5c:b6:6b:9b:48:1d:92:14:25:2c:ef:26:9e:fd: 55:f5:1e:3f:eb:f9:71:79:0f:19:d3:02:37:7a:94:7d:44:54: 0a:3d:28:a2:ce:1d:1e:4b:96:0a:02:ed:42:5f:69:a1:41:97: db:cf:be:bf:8e:67:2b:bc:c2:a1:48:93:a4:56:1e:79:7e:e5: 90:d4:c7:70:27:91:8d:da:b0:37:45:5a:8b:27:a6:09:44:be: 8c:0c:6d:e6:2f:0e:eb:bf:fe:03:27:12:f5:c3:a2:fb:4e:32: fd:25:aa:d4:e8:01:b8:50:ba:6d:24:2c:d4:23:e6:22:fc:58: d8:68:c0:9c:64:6d:d7:01:9d:71:4b:99:aa:a4:44:27:eb:ea: 5d:df:b5:5c:e3:a3:a6:a3:ce:ce:55:4b:16:c8:82:c3:28:7b: 81:d3:d3:d8:3c:8c:2a:49:c4:de:4d:96:13:23:f6:e4:0f:eb: dd:bd:95:09:50:60:e7:78:63:a2:4b:1b:4d:fc:ee:d1:16:1c: db:a0:d4:a9:e2:ce:a0:f3:d8:60:94:cc:a3:29:f1:ac:60:49: f2:bd:c2:46:58:bc:77:d2:a4:55:3a:4b:44:8c:15:82:6f:de: bf:65:ee:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwbONNLg2pBoAJvTcZzQpjEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzZGUxODNmMTRhM2YyNGY5Yjg2ZDA0NGY4NzcyOTg2ODBi NTEyYmIwHhcNMjYwMjAxMjIwMDM0WhcNMjYwMjAyMjIwMDM0WjAzMTEwLwYDVQQD Eyg4YjllOTQyNWQ1M2Q0MGNhNjkxYTYzODEzZDdiZjc0OWU2NWUxNjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5ym9pDv9zERYLBE+9SnkLyO4HGl hoajOLgp6aiJWgOHIiLVcq2XCTzi2UqDaZ8V+6zjcb+7gcOLPEjM8sh24fOlrkLc DzawTrJFeBLEv0j+sMjtkm4q2SYy676r6+lgWHG+0yKKVPFgPA56dT8moqkMrwi1 4kDSrUo5NLWkiizHSzUInMNOLlI73xbIJLJPTvvK1QHL8xQXimv7AdAc4gJ9U4+k yKWTIRICSS6azakleMp6gn9grq5+OuDSLoSDp6MAsq6AxQ7OE3odzpYY/kVWA5TE CNSgOLd1D957bnK3JE1jE18ivsPD+x2I/VjU7GRGnGFKZjDBGI8v3CyDQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIuelCXVPUDKaRpjgT1790nmXhaDMB8GA1UdIwQY MBaAFEPeGD8Uo/JPm4bQRPh3KYaAtRK7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTk0WVB4U2o4ay1iaHRCRS1IY3Bob0MxRXJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9lMmQ4ZmUtMDFmMS00YzU2LTkxZjgt ZGVkNzQzMTQ3ZDU4LzEvUTk0WVB4U2o4ay1iaHRCRS1IY3Bob0MxRXJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9lMmQ4ZmUtMDFmMS00YzU2LTkxZjgtZGVkNzQzMTQ3ZDU4 LzEvUTk0WVB4U2o4ay1iaHRCRS1IY3Bob0MxRXJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATh42HIqI A7vByz3phbiMX/IPHAmHIFy2a5tIHZIUJSzvJp79VfUeP+v5cXkPGdMCN3qUfURU Cj0oos4dHkuWCgLtQl9poUGX28++v45nK7zCoUiTpFYeeX7lkNTHcCeRjdqwN0Va iyemCUS+jAxt5i8O67/+AycS9cOi+04y/SWq1OgBuFC6bSQs1CPmIvxY2GjAnGRt 1wGdcUuZqqREJ+vqXd+1XOOjpqPOzlVLFsiCwyh7gdPT2DyMKknE3k2WEyP25A/r 3b2VCVBg53hjoksbTfzu0RYc26DUqeLOoPPYYJTMoynxrGBJ8r3CRli8d9KkVTpL RIwVgm/ev2XudQ== -----END CERTIFICATE-----Generated at Mon Feb 2 08:16:06 2026 by rpki-client