This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft File: QTKoayl3h-SMVXBZMe05NR-EFxo.mft (raw, json) Hash identifier: cjaU/2eerPEuGbfPea9aObiW8Oct7DarooKj5AiJGzA= Subject key identifier: F5:5A:34:AC:2C:6E:A6:5F:3A:04:AA:27:AE:CA:71:67:2C:6A:2E:63 Authority key identifier: 41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A Certificate issuer: /CN=4132a86b297787e48c55705931ed39351f84171a Certificate serial: 019C43226FDD66241CA3FACE8FF43A146463 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft Manifest number: 11F6 Signing time: Mon 09 Feb 2026 16:00:56 +0000 Manifest this update: Mon 09 Feb 2026 16:00:56 +0000 Manifest next update: Tue 10 Feb 2026 16:00:56 +0000 Files and hashes: 1: QTKoayl3h-SMVXBZMe05NR-EFxo.crl (hash: fU5Fm7HraIs6oJvDCw7HlnAv1mluMvKHIGmKKIx3xp4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6f:dd:66:24:1c:a3:fa:ce:8f:f4:3a:14:64:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4132a86b297787e48c55705931ed39351f84171a Validity Not Before: Feb 9 16:00:56 2026 GMT Not After : Feb 10 16:00:56 2026 GMT Subject: CN=f55a34ac2c6ea65f3a04aa27aeca71672c6a2e63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3d:be:88:ff:60:41:7d:c6:38:d0:20:5e:c2: e8:15:07:f8:78:73:81:d1:dc:f9:c3:12:79:70:a2: 16:55:f4:b5:ae:18:76:c9:6d:36:d6:26:d8:95:3b: 77:56:db:e8:b4:75:df:f7:20:f0:ee:ba:74:df:9e: fb:d5:37:c6:6f:1e:a6:0a:02:7a:60:32:61:a3:b5: c0:06:15:63:bb:69:ce:e6:87:cf:b1:3b:ac:79:8f: 3a:6a:28:35:c0:20:af:3d:db:f9:72:03:fc:77:16: d3:5a:61:25:10:d2:6d:17:39:7a:0a:9b:83:45:08: 80:ea:02:6c:bf:cb:0d:54:3c:71:b2:5e:c0:33:b2: 9a:4b:ba:72:9b:ae:b6:54:a8:72:65:e9:6d:5e:24: 32:e6:a3:ac:f6:97:cc:dd:78:4f:41:3b:35:6f:34: 0a:5c:81:b8:01:8e:a7:a0:32:d6:12:b7:a7:c2:66: b0:41:b3:46:e7:34:6a:08:86:9b:67:ab:56:af:03: bb:8e:a6:1b:ee:59:48:42:10:1d:79:aa:94:03:94: b2:d2:c0:6c:8e:36:48:5f:57:e3:01:3b:1a:be:c6: 7b:4a:9b:e8:7c:84:ad:4b:2c:a3:a3:34:42:ae:5b: 6c:7b:8e:8f:5e:7a:46:9a:a5:41:eb:0a:ae:7c:18: 74:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:5A:34:AC:2C:6E:A6:5F:3A:04:AA:27:AE:CA:71:67:2C:6A:2E:63 X509v3 Authority Key Identifier: keyid:41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:1b:c0:56:eb:45:53:4e:07:a3:4a:87:5c:13:64:e0:75:47: 6d:57:3f:85:30:24:33:40:5e:2b:1c:ab:dd:6b:cd:c5:ac:61: 6d:94:8c:47:23:a4:94:97:6d:dd:f4:f2:6f:be:0c:6a:03:17: 45:7e:ce:ab:8f:d0:c8:43:95:4a:72:26:ff:f0:80:73:9b:f4: 0d:d0:2e:d5:0d:32:84:d4:97:2b:8f:13:db:76:80:44:fc:ef: 20:f8:30:77:36:27:37:23:70:20:ff:20:fb:ac:51:9e:2f:a1: 9a:7b:67:19:66:b0:d6:27:d8:1c:5e:7c:18:ae:1b:58:0c:13: 65:9f:b8:b5:c9:2b:d2:ee:25:02:f7:bb:bf:5f:55:ef:f5:37: 85:24:54:4c:4e:c0:71:eb:3d:09:d6:61:03:a2:6a:59:ba:7d: e4:a0:ea:76:05:87:d5:de:5c:0e:5e:70:9c:e9:52:1d:bc:2c: 82:71:f0:6a:62:f1:e2:27:41:c7:a3:d5:40:8c:ff:41:3a:a7: 9d:6b:84:4b:58:d8:39:4a:da:0f:d9:17:2b:c4:b4:d0:b3:cd: 65:e2:1b:ae:35:a1:42:e7:4e:61:e3:11:53:61:0a:2e:fe:5b: 66:c5:0d:32:58:da:e7:ff:14:8c:a0:ff:3e:54:68:ea:f8:60: 62:42:36:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIm/dZiQco/rOj/Q6FGRjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxMzJhODZiMjk3Nzg3ZTQ4YzU1NzA1OTMxZWQzOTM1MWY4 NDE3MWEwHhcNMjYwMjA5MTYwMDU2WhcNMjYwMjEwMTYwMDU2WjAzMTEwLwYDVQQD EyhmNTVhMzRhYzJjNmVhNjVmM2EwNGFhMjdhZWNhNzE2NzJjNmEyZTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoT2+iP9gQX3GONAgXsLoFQf4eHOB 0dz5wxJ5cKIWVfS1rhh2yW021ibYlTt3VtvotHXf9yDw7rp035771TfGbx6mCgJ6 YDJho7XABhVju2nO5ofPsTuseY86aig1wCCvPdv5cgP8dxbTWmElENJtFzl6CpuD RQiA6gJsv8sNVDxxsl7AM7KaS7pym662VKhyZeltXiQy5qOs9pfM3XhPQTs1bzQK XIG4AY6noDLWErenwmawQbNG5zRqCIabZ6tWrwO7jqYb7llIQhAdeaqUA5Sy0sBs jjZIX1fjATsavsZ7SpvofIStSyyjozRCrltse46PXnpGmqVB6wqufBh0ywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPVaNKwsbqZfOgSqJ67KcWcsai5jMB8GA1UdIwQY MBaAFEEyqGspd4fkjFVwWTHtOTUfhBcaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVRLb2F5bDNoLVNNVlhCWk1lMDVOUi1FRnhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi84NzhlN2MtMzRmNS00N2NiLWE3ZTEt ODA0MmQ2ZjRiZWYxLzEvUVRLb2F5bDNoLVNNVlhCWk1lMDVOUi1FRnhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi84NzhlN2MtMzRmNS00N2NiLWE3ZTEtODA0MmQ2ZjRiZWYx LzEvUVRLb2F5bDNoLVNNVlhCWk1lMDVOUi1FRnhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjRvAVutF U04Ho0qHXBNk4HVHbVc/hTAkM0BeKxyr3WvNxaxhbZSMRyOklJdt3fTyb74MagMX RX7Oq4/QyEOVSnIm//CAc5v0DdAu1Q0yhNSXK48T23aARPzvIPgwdzYnNyNwIP8g +6xRni+hmntnGWaw1ifYHF58GK4bWAwTZZ+4tckr0u4lAve7v19V7/U3hSRUTE7A ces9CdZhA6JqWbp95KDqdgWH1d5cDl5wnOlSHbwsgnHwamLx4idBx6PVQIz/QTqn nWuES1jYOUraD9kXK8S00LPNZeIbrjWhQudOYeMRU2EKLv5bZsUNMlja5/8UjKD/ PlRo6vhgYkI2Bw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:28 2026 by rpki-client