This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft File: RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft (raw, json) Hash identifier: TMDP10YEATO19YEzq+zaB7E/0TLO91IGE+X+rK7Mja4= Subject key identifier: 04:7C:38:CE:CF:C2:80:3C:A8:DB:49:B9:87:BF:2C:CA:AC:67:9E:A9 Authority key identifier: 45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE Certificate issuer: /CN=4501e85c0025c4ae29528058e232d737c2f495ce Certificate serial: 019C42468C5B7759FBF598680B4BB1EF126B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft Manifest number: 0471 Signing time: Mon 09 Feb 2026 12:00:45 +0000 Manifest this update: Mon 09 Feb 2026 12:00:45 +0000 Manifest next update: Tue 10 Feb 2026 12:00:45 +0000 Files and hashes: 1: RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl (hash: mZbWH4gvahXZy7IoqQgSdR5K1pnTluI+LlCwXTu6ilM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:8c:5b:77:59:fb:f5:98:68:0b:4b:b1:ef:12:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4501e85c0025c4ae29528058e232d737c2f495ce Validity Not Before: Feb 9 12:00:45 2026 GMT Not After : Feb 10 12:00:45 2026 GMT Subject: CN=047c38cecfc2803ca8db49b987bf2ccaac679ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4a:be:34:cb:0d:e7:0f:25:de:2a:15:eb:5e: bb:62:fb:2e:67:c4:98:f9:0a:14:73:7d:cc:4f:72: a5:bd:f1:4e:d7:c5:be:81:8d:6e:df:93:16:e0:4f: b0:4d:03:6f:eb:39:e5:a7:fc:de:cf:b1:5e:c6:dc: ca:87:a6:fa:4d:b4:13:aa:72:84:df:30:43:bd:8f: 4b:ac:89:ec:6b:7e:59:4e:a1:19:02:5f:1c:65:a1: 33:e2:a4:11:13:99:88:0d:f3:36:4d:c1:1a:69:95: c6:42:bf:44:3f:21:fc:c1:eb:07:e3:f6:6f:42:4c: 60:2f:58:61:e9:28:c7:d7:11:c4:bd:37:a6:1b:27: 40:2e:1d:a6:ad:08:54:7d:bd:43:16:0a:fe:8c:47: 6d:a6:90:c8:15:01:b8:8e:d3:c6:c4:dc:4a:72:b5: b2:a8:25:7c:0a:f3:93:9d:0e:98:7a:fd:d9:d3:64: db:e9:6c:84:b7:6a:4c:21:b3:db:70:5d:a0:75:1d: dc:d6:3a:29:be:7e:f8:85:a0:2d:91:66:38:95:d9: 8d:a1:83:49:c7:b6:03:ff:bb:f8:8a:c9:50:a4:43: d2:b1:c0:9c:fa:15:98:71:d7:c5:70:fb:50:86:b7: 77:09:96:ae:65:9f:8b:10:bc:52:d8:d6:f6:8d:b6: 94:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:7C:38:CE:CF:C2:80:3C:A8:DB:49:B9:87:BF:2C:CA:AC:67:9E:A9 X509v3 Authority Key Identifier: keyid:45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:66:1e:62:6e:5b:af:67:d3:74:0f:1e:05:6b:c2:eb:75:42: 22:bb:fa:46:d8:b0:b4:12:9d:28:a1:01:8e:1b:b1:6b:39:43: 43:fb:34:4e:f1:3e:c3:9f:09:69:8a:b8:2e:7f:15:fc:d2:06: 8f:be:1f:55:b5:1a:0a:6a:d8:eb:d0:62:39:6f:09:a0:04:b6: 74:c8:0b:bb:78:3c:97:e5:26:85:66:98:f7:13:f5:e1:a2:23: 0f:ec:21:30:cf:4a:5f:98:e5:82:46:85:0c:d7:a3:e4:29:8b: 3f:f8:2e:47:74:81:7b:2f:b6:df:72:7f:f7:f9:ad:9d:63:55: ab:18:87:04:82:cb:39:f3:ec:23:4a:87:e7:02:6b:34:17:a5: a5:ca:ca:d5:b7:a6:0b:2d:5e:26:02:e1:dc:e0:9b:07:1f:ce: 33:bb:a0:30:27:34:af:ed:fe:43:2e:a4:6e:69:07:49:f7:f2: 8e:8a:fa:6f:2d:c7:45:33:6a:ee:f1:1d:45:84:f1:86:a1:7f: 91:1b:c7:e6:33:4e:fb:f6:e4:ea:45:9c:72:34:3c:6a:34:4b: 24:a2:5c:c8:a3:53:c7:6e:7a:e6:a4:87:01:f3:89:65:2e:42: 60:1b:e9:b7:c7:4f:e5:ae:97:29:0f:0b:f9:82:da:2b:db:c0: fe:2a:a4:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRoxbd1n79ZhoC0ux7xJrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1MDFlODVjMDAyNWM0YWUyOTUyODA1OGUyMzJkNzM3YzJm NDk1Y2UwHhcNMjYwMjA5MTIwMDQ1WhcNMjYwMjEwMTIwMDQ1WjAzMTEwLwYDVQQD EygwNDdjMzhjZWNmYzI4MDNjYThkYjQ5Yjk4N2JmMmNjYWFjNjc5ZWE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Uq+NMsN5w8l3ioV6167YvsuZ8SY +QoUc33MT3KlvfFO18W+gY1u35MW4E+wTQNv6znlp/zez7FextzKh6b6TbQTqnKE 3zBDvY9LrInsa35ZTqEZAl8cZaEz4qQRE5mIDfM2TcEaaZXGQr9EPyH8wesH4/Zv QkxgL1hh6SjH1xHEvTemGydALh2mrQhUfb1DFgr+jEdtppDIFQG4jtPGxNxKcrWy qCV8CvOTnQ6Yev3Z02Tb6WyEt2pMIbPbcF2gdR3c1jopvn74haAtkWY4ldmNoYNJ x7YD/7v4islQpEPSscCc+hWYcdfFcPtQhrd3CZauZZ+LELxS2Nb2jbaUsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAR8OM7PwoA8qNtJuYe/LMqsZ56pMB8GA1UdIwQY MBaAFEUB6FwAJcSuKVKAWOIy1zfC9JXOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlFIb1hBQWx4SzRwVW9CWTRqTFhOOEwwbGM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9kM2U4YTgtNThlZi00NjMwLWJmMzUt Y2VlNjQxOTU1MzNjLzEvUlFIb1hBQWx4SzRwVW9CWTRqTFhOOEwwbGM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9kM2U4YTgtNThlZi00NjMwLWJmMzUtY2VlNjQxOTU1MzNj LzEvUlFIb1hBQWx4SzRwVW9CWTRqTFhOOEwwbGM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKmYeYm5b r2fTdA8eBWvC63VCIrv6RtiwtBKdKKEBjhuxazlDQ/s0TvE+w58JaYq4Ln8V/NIG j74fVbUaCmrY69BiOW8JoAS2dMgLu3g8l+UmhWaY9xP14aIjD+whMM9KX5jlgkaF DNej5CmLP/guR3SBey+233J/9/mtnWNVqxiHBILLOfPsI0qH5wJrNBelpcrK1bem Cy1eJgLh3OCbBx/OM7ugMCc0r+3+Qy6kbmkHSffyjor6by3HRTNq7vEdRYTxhqF/ kRvH5jNO+/bk6kWccjQ8ajRLJKJcyKNTx2565qSHAfOJZS5CYBvpt8dP5a6XKQ8L +YLaK9vA/iqknw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:18 2026 by rpki-client