This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/d60eb6-3bb2-45c0-9daf-9f55b4ae90cc/1/QAnHa7ftKz0UTNhVpewajrfU3pk.mft File: QAnHa7ftKz0UTNhVpewajrfU3pk.mft (raw, json) Hash identifier: ZZkILVDnFa829B268zssbeXnLDpOuDCN+l608XlYtaI= Subject key identifier: AC:17:86:D5:25:E1:81:9D:95:30:26:63:87:A7:A8:81:85:93:22:27 Authority key identifier: 40:09:C7:6B:B7:ED:2B:3D:14:4C:D8:55:A5:EC:1A:8E:B7:D4:DE:99 Certificate issuer: /CN=4009c76bb7ed2b3d144cd855a5ec1a8eb7d4de99 Certificate serial: 019C446B94E7CB6AC4896A453E9FFD1A95B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QAnHa7ftKz0UTNhVpewajrfU3pk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/d60eb6-3bb2-45c0-9daf-9f55b4ae90cc/1/QAnHa7ftKz0UTNhVpewajrfU3pk.mft Manifest number: 16B5 Signing time: Mon 09 Feb 2026 22:00:27 +0000 Manifest this update: Mon 09 Feb 2026 22:00:27 +0000 Manifest next update: Tue 10 Feb 2026 22:00:27 +0000 Files and hashes: 1: QAnHa7ftKz0UTNhVpewajrfU3pk.crl (hash: vYUFv7924H65kjt4frXXU2DwLc63QrZ11ArfYAMd1hk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/d60eb6-3bb2-45c0-9daf-9f55b4ae90cc/1/QAnHa7ftKz0UTNhVpewajrfU3pk.crl rsync://rpki.ripe.net/repository/DEFAULT/45/d60eb6-3bb2-45c0-9daf-9f55b4ae90cc/1/QAnHa7ftKz0UTNhVpewajrfU3pk.mft rsync://rpki.ripe.net/repository/DEFAULT/QAnHa7ftKz0UTNhVpewajrfU3pk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:94:e7:cb:6a:c4:89:6a:45:3e:9f:fd:1a:95:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4009c76bb7ed2b3d144cd855a5ec1a8eb7d4de99 Validity Not Before: Feb 9 22:00:27 2026 GMT Not After : Feb 10 22:00:27 2026 GMT Subject: CN=ac1786d525e1819d9530266387a7a88185932227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b9:f8:3c:1f:1c:0c:8c:24:dc:a5:6a:7d:20: 5d:ed:5b:8b:10:77:c3:06:f1:e4:15:b9:99:1c:1a: f5:0b:a0:22:ec:cc:25:d2:9a:f1:7e:dd:9c:81:6f: fc:cd:a4:17:82:c5:fc:37:92:03:fb:08:5c:73:6c: 0c:e7:65:cb:ff:70:9d:9c:fe:4d:65:1c:a9:39:5e: e6:db:3b:30:38:9d:b7:2e:07:09:26:3d:0d:06:bd: d0:e1:9b:0b:ef:71:50:f3:98:af:ed:b0:d7:1b:54: 21:ca:0b:d6:14:cd:cd:37:6c:87:23:4d:a0:17:16: 52:b8:84:e7:a3:83:9e:fa:c2:52:70:10:2e:c8:c8: 3e:e6:14:c3:4a:4d:99:cb:3d:7c:36:93:08:ac:28: 0b:35:0d:a5:28:46:bc:9c:7b:d6:02:a8:b7:51:79: 2d:6a:88:56:03:18:0a:dd:fe:b1:97:10:69:bd:74: cf:62:28:95:5e:47:b1:18:9f:13:2f:69:c4:79:a0: 74:36:f9:92:a6:6c:b8:b4:2d:2c:f5:0e:87:79:4e: 00:a1:6e:0a:1e:59:77:4d:eb:07:f1:dc:fd:37:d7: ea:a8:f5:c7:0e:96:84:0d:2d:6c:9d:55:bd:8d:2d: 7f:27:ab:42:ff:67:d0:7b:92:2b:42:ff:7a:47:c7: fd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:17:86:D5:25:E1:81:9D:95:30:26:63:87:A7:A8:81:85:93:22:27 X509v3 Authority Key Identifier: keyid:40:09:C7:6B:B7:ED:2B:3D:14:4C:D8:55:A5:EC:1A:8E:B7:D4:DE:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QAnHa7ftKz0UTNhVpewajrfU3pk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/d60eb6-3bb2-45c0-9daf-9f55b4ae90cc/1/QAnHa7ftKz0UTNhVpewajrfU3pk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/d60eb6-3bb2-45c0-9daf-9f55b4ae90cc/1/QAnHa7ftKz0UTNhVpewajrfU3pk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:79:56:72:a7:a4:09:3a:80:e1:0f:00:ac:e8:d7:4e:a2:58: dd:0c:77:51:67:69:68:5b:4f:28:67:ef:0c:da:04:5e:a7:d3: 8b:74:0e:6e:9a:53:c8:1f:81:61:dc:ca:dc:11:22:83:b8:c4: a7:5a:0b:e1:50:f6:01:27:8d:93:11:bb:38:bf:42:a4:8d:29: 99:91:a5:cc:2a:bc:1c:d3:24:ca:c8:2a:e8:19:8c:ac:cb:fe: e5:3e:37:cc:53:2c:97:fa:e4:66:d0:01:4d:79:5c:ce:14:16: fd:a6:0f:ab:92:d2:9a:ab:95:47:85:61:56:52:5d:64:5f:f8: c2:99:db:ad:7a:ce:09:29:f6:40:cc:be:dd:ee:8a:0f:65:7a: 63:eb:38:0a:5e:0b:88:18:59:d6:8e:95:cf:c0:02:d6:fd:ad: 66:65:f2:6e:ac:76:25:6a:b5:78:2d:94:fb:d6:5a:fc:bc:c0: d4:b6:b4:03:a0:a3:83:68:98:3f:50:84:a3:c9:15:07:98:41: c6:a6:35:69:64:55:e5:8c:9f:e4:ea:80:dd:d3:07:38:28:78: 08:12:90:bd:f9:5d:1c:8c:7b:5e:ab:b3:15:59:d2:56:32:a2: ad:70:ca:e6:a4:02:1e:9e:ae:d1:0b:f5:bc:c9:2e:dc:5f:a1: d1:b3:59:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa5Tny2rEiWpFPp/9GpWzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMDljNzZiYjdlZDJiM2QxNDRjZDg1NWE1ZWMxYThlYjdk NGRlOTkwHhcNMjYwMjA5MjIwMDI3WhcNMjYwMjEwMjIwMDI3WjAzMTEwLwYDVQQD EyhhYzE3ODZkNTI1ZTE4MTlkOTUzMDI2NjM4N2E3YTg4MTg1OTMyMjI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLn4PB8cDIwk3KVqfSBd7VuLEHfD BvHkFbmZHBr1C6Ai7Mwl0prxft2cgW/8zaQXgsX8N5ID+whcc2wM52XL/3CdnP5N ZRypOV7m2zswOJ23LgcJJj0NBr3Q4ZsL73FQ85iv7bDXG1QhygvWFM3NN2yHI02g FxZSuITno4Oe+sJScBAuyMg+5hTDSk2Zyz18NpMIrCgLNQ2lKEa8nHvWAqi3UXkt aohWAxgK3f6xlxBpvXTPYiiVXkexGJ8TL2nEeaB0NvmSpmy4tC0s9Q6HeU4AoW4K Hll3TesH8dz9N9fqqPXHDpaEDS1snVW9jS1/J6tC/2fQe5IrQv96R8f9XwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKwXhtUl4YGdlTAmY4enqIGFkyInMB8GA1UdIwQY MBaAFEAJx2u37Ss9FEzYVaXsGo631N6ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUFuSGE3ZnRLejBVVE5oVnBld2FqcmZVM3BrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9kNjBlYjYtM2JiMi00NWMwLTlkYWYt OWY1NWI0YWU5MGNjLzEvUUFuSGE3ZnRLejBVVE5oVnBld2FqcmZVM3BrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS9kNjBlYjYtM2JiMi00NWMwLTlkYWYtOWY1NWI0YWU5MGNj LzEvUUFuSGE3ZnRLejBVVE5oVnBld2FqcmZVM3BrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJnlWcqek CTqA4Q8ArOjXTqJY3Qx3UWdpaFtPKGfvDNoEXqfTi3QObppTyB+BYdzK3BEig7jE p1oL4VD2ASeNkxG7OL9CpI0pmZGlzCq8HNMkysgq6BmMrMv+5T43zFMsl/rkZtAB TXlczhQW/aYPq5LSmquVR4VhVlJdZF/4wpnbrXrOCSn2QMy+3e6KD2V6Y+s4Cl4L iBhZ1o6Vz8AC1v2tZmXybqx2JWq1eC2U+9Za/LzA1La0A6Cjg2iYP1CEo8kVB5hB xqY1aWRV5Yyf5OqA3dMHOCh4CBKQvfldHIx7XquzFVnSVjKirXDK5qQCHp6u0Qv1 vMku3F+h0bNZ0g== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:31 2026 by rpki-client