This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft File: q53IX5TKZH3g22TXTTE5lHzESbo.mft (raw, json) Hash identifier: 9h+c1cvzadJaYhMcZxB/SX6ZSGIfrCpyvxf7rx4uci0= Subject key identifier: 51:12:E3:E9:EF:CE:72:C1:14:EF:18:76:67:76:D6:D2:5C:88:94:17 Authority key identifier: AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA Certificate issuer: /CN=ab9dc85f94ca647de0db64d74d3139947cc449ba Certificate serial: 019C41A1601655BD09DD5D20ADA6D0669A2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft Manifest number: 14FD Signing time: Mon 09 Feb 2026 09:00:20 +0000 Manifest this update: Mon 09 Feb 2026 09:00:20 +0000 Manifest next update: Tue 10 Feb 2026 09:00:20 +0000 Files and hashes: 1: 479ZV3Yo2azoMThPuEqrM6qYhP8.roa (hash: iH7bjfyw/FV+kXgRaALQRgdoNp0fV7bf6CUsJ1nPg+k=) 2: q53IX5TKZH3g22TXTTE5lHzESbo.crl (hash: bRmv1RbkxJsFJgN+cMnfQQ0cB+96cL1rZe1YBaIOaB4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:60:16:55:bd:09:dd:5d:20:ad:a6:d0:66:9a:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab9dc85f94ca647de0db64d74d3139947cc449ba Validity Not Before: Feb 9 09:00:20 2026 GMT Not After : Feb 10 09:00:20 2026 GMT Subject: CN=5112e3e9efce72c114ef18766776d6d25c889417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:56:09:a9:1f:95:70:f5:d0:9c:17:13:0e:ba: c4:f6:4c:08:2c:a5:c3:88:5b:96:73:13:0a:b3:64: ea:5f:ba:c5:c8:9a:6c:f2:91:8a:d8:00:6d:77:fe: 90:84:37:5d:af:09:d3:f9:80:71:f2:54:40:79:bc: 41:39:ad:3d:aa:e7:2e:67:ef:fe:f6:c9:3d:4c:9d: 56:41:b6:a4:03:15:fa:8f:63:41:0d:c1:63:60:15: 2d:26:ea:b5:88:02:ee:9b:14:c4:7b:ab:d7:fb:77: 1c:0d:df:dd:ba:8f:48:45:2c:e2:a5:d9:24:57:eb: 6e:c6:83:d1:ee:31:26:a9:32:04:ae:31:48:53:ec: b4:fd:78:9e:bb:bc:1c:52:29:85:a1:1a:76:88:c1: 2a:9d:9b:5c:7e:f6:8a:15:eb:88:b5:83:b5:c9:0c: df:13:de:0d:a3:b7:ca:b0:1e:0c:70:e7:3f:56:51: c9:b9:56:fe:44:5a:e2:e9:68:71:b2:a9:ed:f4:e9: 4a:b9:a4:8b:c5:fa:c4:81:c7:48:72:cd:7b:04:65: b6:a6:0e:2f:95:17:43:c4:6c:ca:c7:cb:0f:76:e6: 0a:60:ce:cc:aa:0d:ef:de:53:26:c8:41:c8:c2:4b: 77:b8:ad:02:09:1b:af:7f:d6:f1:41:6f:26:7e:24: 5d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:12:E3:E9:EF:CE:72:C1:14:EF:18:76:67:76:D6:D2:5C:88:94:17 X509v3 Authority Key Identifier: keyid:AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:2b:87:4b:10:6b:17:f9:ea:bd:6f:44:78:27:e3:85:c7:af: 53:f9:21:81:c0:2c:c6:b0:63:37:e7:53:f9:21:bc:8c:c5:8a: 7b:11:59:b5:92:dc:6c:c7:08:2d:ee:c0:54:a9:9e:b2:4e:0a: e1:a9:30:44:34:f7:61:80:56:14:dc:f6:4d:eb:67:ce:54:83: 10:b5:b3:95:18:53:d7:f7:c5:4c:b5:92:b4:a3:80:77:f3:c2: c6:ed:19:c1:76:0b:58:f5:f3:20:e0:58:f2:dd:37:e3:03:64: e6:1f:76:e6:bf:39:2c:81:d4:05:79:33:23:34:70:db:56:31: ac:b4:28:16:ef:ea:4e:6d:06:c9:a3:08:fb:0a:a3:63:20:bf: a3:c3:00:33:05:2e:2f:6f:84:6c:98:d9:e1:09:d6:bd:79:a0: 31:61:24:9d:ce:67:83:12:eb:6e:ee:44:cb:52:0e:c0:57:c7: b6:b6:bd:9a:5e:0e:7a:cc:c4:09:41:f1:82:0b:81:b3:a5:95: 69:a2:8a:1a:60:34:8f:ec:23:f4:5b:69:5c:7b:50:3e:c4:6e: 6a:e3:26:c0:0f:11:39:ac:85:77:cf:1c:85:6c:94:7e:3b:84: 7f:34:6d:de:91:d4:1f:b3:55:e3:16:db:f3:42:16:ef:93:6a: 6f:0a:12:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoWAWVb0J3V0grabQZporMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiOWRjODVmOTRjYTY0N2RlMGRiNjRkNzRkMzEzOTk0N2Nj NDQ5YmEwHhcNMjYwMjA5MDkwMDIwWhcNMjYwMjEwMDkwMDIwWjAzMTEwLwYDVQQD Eyg1MTEyZTNlOWVmY2U3MmMxMTRlZjE4NzY2Nzc2ZDZkMjVjODg5NDE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFYJqR+VcPXQnBcTDrrE9kwILKXD iFuWcxMKs2TqX7rFyJps8pGK2ABtd/6QhDddrwnT+YBx8lRAebxBOa09qucuZ+/+ 9sk9TJ1WQbakAxX6j2NBDcFjYBUtJuq1iALumxTEe6vX+3ccDd/duo9IRSzipdkk V+tuxoPR7jEmqTIErjFIU+y0/Xieu7wcUimFoRp2iMEqnZtcfvaKFeuItYO1yQzf E94No7fKsB4McOc/VlHJuVb+RFri6Whxsqnt9OlKuaSLxfrEgcdIcs17BGW2pg4v lRdDxGzKx8sPduYKYM7Mqg3v3lMmyEHIwkt3uK0CCRuvf9bxQW8mfiRdWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFES4+nvznLBFO8Ydmd21tJciJQXMB8GA1UdIwQY MBaAFKudyF+UymR94Ntk100xOZR8xEm6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTUzSVg1VEtaSDNnMjJUWFRURTVsSHpFU2JvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy85YzgzYTUtM2E5YS00NzE1LTliMTYt NDA0NjMyNDk3MGFmLzEvcTUzSVg1VEtaSDNnMjJUWFRURTVsSHpFU2JvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy85YzgzYTUtM2E5YS00NzE1LTliMTYtNDA0NjMyNDk3MGFm LzEvcTUzSVg1VEtaSDNnMjJUWFRURTVsSHpFU2JvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXyuHSxBr F/nqvW9EeCfjhcevU/khgcAsxrBjN+dT+SG8jMWKexFZtZLcbMcILe7AVKmesk4K 4akwRDT3YYBWFNz2TetnzlSDELWzlRhT1/fFTLWStKOAd/PCxu0ZwXYLWPXzIOBY 8t034wNk5h925r85LIHUBXkzIzRw21YxrLQoFu/qTm0GyaMI+wqjYyC/o8MAMwUu L2+EbJjZ4QnWvXmgMWEknc5ngxLrbu5Ey1IOwFfHtra9ml4OeszECUHxgguBs6WV aaKKGmA0j+wj9FtpXHtQPsRuauMmwA8ROayFd88chWyUfjuEfzRt3pHUH7NV4xbb 80IW75NqbwoS5w== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:29 2026 by rpki-client