This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f90ac9-5367-4232-b137-778873a2726c/1/TqgFrqhgMLrN0Lo-TkJOG67wgk0.mft File: TqgFrqhgMLrN0Lo-TkJOG67wgk0.mft (raw, json) Hash identifier: dde/wvqNM6e0hpn/crHhcS0aj4ksP8KVGKVpTN/TFbI= Subject key identifier: 2C:DB:86:CB:D4:58:1B:4F:F2:EF:C4:0D:E6:E2:80:21:29:A3:46:C2 Authority key identifier: 4E:A8:05:AE:A8:60:30:BA:CD:D0:BA:3E:4E:42:4E:1B:AE:F0:82:4D Certificate issuer: /CN=4ea805aea86030bacdd0ba3e4e424e1baef0824d Certificate serial: 019C43FE614B5EB0ECB803BC1B23A1B1CF93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TqgFrqhgMLrN0Lo-TkJOG67wgk0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f90ac9-5367-4232-b137-778873a2726c/1/TqgFrqhgMLrN0Lo-TkJOG67wgk0.mft Manifest number: 03FF Signing time: Mon 09 Feb 2026 20:01:10 +0000 Manifest this update: Mon 09 Feb 2026 20:01:10 +0000 Manifest next update: Tue 10 Feb 2026 20:01:10 +0000 Files and hashes: 1: TqgFrqhgMLrN0Lo-TkJOG67wgk0.crl (hash: t7FmOYkfmscPUuU8NRI+eGUXkl7WofJwUcJHlkKfCHQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/f90ac9-5367-4232-b137-778873a2726c/1/TqgFrqhgMLrN0Lo-TkJOG67wgk0.crl rsync://rpki.ripe.net/repository/DEFAULT/36/f90ac9-5367-4232-b137-778873a2726c/1/TqgFrqhgMLrN0Lo-TkJOG67wgk0.mft rsync://rpki.ripe.net/repository/DEFAULT/TqgFrqhgMLrN0Lo-TkJOG67wgk0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:61:4b:5e:b0:ec:b8:03:bc:1b:23:a1:b1:cf:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ea805aea86030bacdd0ba3e4e424e1baef0824d Validity Not Before: Feb 9 20:01:10 2026 GMT Not After : Feb 10 20:01:10 2026 GMT Subject: CN=2cdb86cbd4581b4ff2efc40de6e2802129a346c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e8:7a:50:f8:18:ac:37:d4:9c:ac:bd:aa:21: 90:64:54:73:e8:b6:6b:80:a0:7d:87:32:de:4c:7c: 9a:38:0e:33:17:d5:47:50:e9:74:9f:83:d0:ae:a7: f6:84:93:7c:6c:7e:2a:95:4f:5d:fd:8d:ec:03:33: 45:90:e1:b7:79:26:c2:80:47:d0:b6:52:b8:e6:8a: c2:50:87:ed:62:b8:32:cb:bb:28:72:a2:76:b2:9f: 85:2a:57:b0:f3:e4:d6:3c:60:2d:0e:e0:22:9c:be: 15:04:13:fe:b6:99:b4:1d:04:96:ff:11:94:25:53: f4:63:dd:e1:17:87:93:fa:89:ff:1f:00:80:e0:e9: 12:36:e1:40:4d:1c:0f:7a:aa:b0:2a:31:5e:67:e2: 21:d3:c8:45:ff:cd:39:b7:7b:d7:7a:91:27:36:31: 90:0c:5a:e1:bc:69:ca:03:70:1a:18:7c:fd:9f:f3: cc:a1:77:9b:04:b7:4a:17:53:eb:3b:06:48:c3:55: 5c:e4:05:9d:f6:ef:cf:17:fb:3a:81:15:f2:fe:34: 38:4c:2a:69:59:4f:5c:c6:83:c8:3f:ae:f8:65:39: 66:11:90:34:d4:f2:ea:86:f6:7a:e2:a6:13:cc:97: 15:7d:f0:fe:14:a6:63:78:32:b4:7b:eb:4e:6c:09: 84:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:DB:86:CB:D4:58:1B:4F:F2:EF:C4:0D:E6:E2:80:21:29:A3:46:C2 X509v3 Authority Key Identifier: keyid:4E:A8:05:AE:A8:60:30:BA:CD:D0:BA:3E:4E:42:4E:1B:AE:F0:82:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TqgFrqhgMLrN0Lo-TkJOG67wgk0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f90ac9-5367-4232-b137-778873a2726c/1/TqgFrqhgMLrN0Lo-TkJOG67wgk0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f90ac9-5367-4232-b137-778873a2726c/1/TqgFrqhgMLrN0Lo-TkJOG67wgk0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:08:e9:19:a5:ad:af:1c:50:c5:56:51:39:d2:9c:09:53:2d: 84:d2:29:2a:17:ca:77:5b:cd:cf:e0:3b:b3:4a:cb:c8:94:f4: fa:c8:25:b0:a5:dd:2c:b8:54:74:e8:29:4d:e3:e4:8c:50:92: 4d:0e:18:8a:2d:fb:0f:d7:28:64:26:32:9b:e0:70:43:d9:1c: e1:56:a9:e1:0a:cc:ce:24:8f:9d:93:e3:0e:4f:4a:1a:89:b9: e1:5c:56:ad:06:42:76:cf:0c:79:c4:22:ad:0a:b2:53:2c:a8: 98:2c:d3:6c:06:7c:1e:1c:9f:50:f4:c1:0f:29:6d:95:cd:82: c3:ff:55:8f:d6:17:0b:02:bb:50:91:62:80:9c:a0:6d:09:f5: a5:b7:91:ff:26:6d:bd:f3:51:ab:3f:58:ba:74:5b:a6:74:64: 33:bb:6c:3c:99:88:4c:4b:49:e2:70:3f:aa:31:13:0b:6c:81: d2:88:b4:d5:07:78:54:6b:53:2e:88:33:42:ed:d7:c7:db:3e: 5d:07:de:a5:34:f0:08:37:9b:51:8f:29:45:96:ff:4b:70:81: 19:27:25:15:4e:18:33:73:85:c9:16:ac:2f:ac:41:ce:f4:dd: 0a:7a:69:5b:a8:f9:04:0c:a3:2b:7e:34:53:83:06:bc:34:38: 51:33:cc:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/mFLXrDsuAO8GyOhsc+TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlYTgwNWFlYTg2MDMwYmFjZGQwYmEzZTRlNDI0ZTFiYWVm MDgyNGQwHhcNMjYwMjA5MjAwMTEwWhcNMjYwMjEwMjAwMTEwWjAzMTEwLwYDVQQD EygyY2RiODZjYmQ0NTgxYjRmZjJlZmM0MGRlNmUyODAyMTI5YTM0NmMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1eh6UPgYrDfUnKy9qiGQZFRz6LZr gKB9hzLeTHyaOA4zF9VHUOl0n4PQrqf2hJN8bH4qlU9d/Y3sAzNFkOG3eSbCgEfQ tlK45orCUIftYrgyy7socqJ2sp+FKlew8+TWPGAtDuAinL4VBBP+tpm0HQSW/xGU JVP0Y93hF4eT+on/HwCA4OkSNuFATRwPeqqwKjFeZ+Ih08hF/805t3vXepEnNjGQ DFrhvGnKA3AaGHz9n/PMoXebBLdKF1PrOwZIw1Vc5AWd9u/PF/s6gRXy/jQ4TCpp WU9cxoPIP674ZTlmEZA01PLqhvZ64qYTzJcVffD+FKZjeDK0e+tObAmEFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCzbhsvUWBtP8u/EDebigCEpo0bCMB8GA1UdIwQY MBaAFE6oBa6oYDC6zdC6Pk5CThuu8IJNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHFnRnJxaGdNTHJOMExvLVRrSk9HNjd3Z2swLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9mOTBhYzktNTM2Ny00MjMyLWIxMzct Nzc4ODczYTI3MjZjLzEvVHFnRnJxaGdNTHJOMExvLVRrSk9HNjd3Z2swLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9mOTBhYzktNTM2Ny00MjMyLWIxMzctNzc4ODczYTI3MjZj LzEvVHFnRnJxaGdNTHJOMExvLVRrSk9HNjd3Z2swLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABgjpGaWt rxxQxVZROdKcCVMthNIpKhfKd1vNz+A7s0rLyJT0+sglsKXdLLhUdOgpTePkjFCS TQ4Yii37D9coZCYym+BwQ9kc4Vap4QrMziSPnZPjDk9KGom54VxWrQZCds8MecQi rQqyUyyomCzTbAZ8HhyfUPTBDyltlc2Cw/9Vj9YXCwK7UJFigJygbQn1pbeR/yZt vfNRqz9YunRbpnRkM7tsPJmITEtJ4nA/qjETC2yB0oi01Qd4VGtTLogzQu3Xx9s+ XQfepTTwCDebUY8pRZb/S3CBGSclFU4YM3OFyRasL6xBzvTdCnppW6j5BAyjK340 U4MGvDQ4UTPMmQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:08 2026 by rpki-client