This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft File: QzFPMPOkU_9JIh2VStgCijBKAVA.mft (raw, json) Hash identifier: 69C0fU/qvQC/4o9En4aC97CxKiCVxAZ6kWV/h4u+rJw= Subject key identifier: 6E:91:02:64:8F:85:83:A0:CF:3D:2B:4A:2A:51:19:59:D6:A6:19:14 Authority key identifier: 43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50 Certificate issuer: /CN=43314f30f3a453ff49221d954ad8028a304a0150 Certificate serial: 019C43907B325AECE5B18511AD23E52EE69F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 18:01:07 +0000 Manifest this update: Mon 09 Feb 2026 18:01:07 +0000 Manifest next update: Tue 10 Feb 2026 18:01:07 +0000 Files and hashes: 1: QzFPMPOkU_9JIh2VStgCijBKAVA.crl (hash: w8l475SxNI4I52XrRJ+TX4eJ0lJ2acceKw6eVMXIOTE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:7b:32:5a:ec:e5:b1:85:11:ad:23:e5:2e:e6:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43314f30f3a453ff49221d954ad8028a304a0150 Validity Not Before: Feb 9 18:01:07 2026 GMT Not After : Feb 10 18:01:07 2026 GMT Subject: CN=6e9102648f8583a0cf3d2b4a2a511959d6a61914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3a:1a:90:73:d0:98:00:8e:9c:53:47:67:9b: 16:bf:ba:20:d4:5b:16:af:8f:c7:fd:ed:13:ec:3c: a8:97:1f:8f:95:12:ec:b0:09:41:0d:d5:ad:a7:15: d7:18:e3:74:88:56:49:38:8e:c8:42:a2:ac:73:e7: ac:9b:fa:68:68:bf:e4:fb:41:4b:d4:18:8c:45:3a: 63:89:43:fd:57:d8:13:61:dd:27:b4:ef:03:3e:37: b5:62:8d:1e:a3:2e:93:fe:73:a5:12:f1:aa:75:03: db:ab:89:e6:17:46:c1:35:66:51:fb:d0:12:be:54: 23:71:5c:0a:90:49:31:e3:69:d0:e0:8b:a8:6d:19: 49:cb:4c:1c:d2:74:4f:aa:9a:d4:ab:4f:c8:fe:81: 45:14:f2:a0:ca:8d:b0:38:fa:d7:25:d0:59:61:1e: 57:aa:6c:f1:7f:a5:a6:81:32:a2:27:39:a3:fa:7a: 9a:ff:05:e3:28:26:98:bc:7d:73:7a:e7:0c:4c:aa: fb:52:57:3e:50:22:5b:93:45:f1:d4:fe:90:06:7d: 34:c9:8a:2e:70:22:c7:e9:b9:1c:29:49:8f:32:8b: 0c:62:0a:a5:3c:7a:73:5f:46:44:17:8e:2e:3e:04: 8d:37:da:10:0b:d8:39:1f:63:9e:b3:c3:75:e7:67: e8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:91:02:64:8F:85:83:A0:CF:3D:2B:4A:2A:51:19:59:D6:A6:19:14 X509v3 Authority Key Identifier: keyid:43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:8f:77:f9:90:b6:ca:2a:c4:9f:8e:99:4a:8f:cc:f7:38:64: a8:c1:06:a4:76:0a:01:1e:3b:6b:fe:c0:d9:a2:a6:13:46:6c: db:af:c5:eb:0c:4a:e2:a0:fe:1d:96:95:3b:04:69:6e:a2:bf: aa:8e:73:6f:c2:d9:97:32:b1:73:a8:f1:cb:b0:1b:58:39:13: 5d:f4:bd:bf:a5:b8:8a:88:00:d5:0e:e7:62:2e:1b:32:64:56: 91:b2:5e:60:54:a7:2c:fd:2d:24:b9:46:30:8a:c0:80:69:e2: d5:a6:a1:1e:c4:f5:f3:ec:72:dc:b4:90:7a:94:c1:6e:89:e4: 84:fd:0b:1c:0e:92:f5:ac:73:9e:5c:09:11:d0:52:9e:0e:99: 0e:45:63:83:6e:06:e5:48:f4:87:3b:95:38:7d:d4:29:53:41: 77:c4:48:c7:db:8d:f7:51:63:58:ab:25:fb:50:70:b6:4c:2a: ad:b9:11:f3:63:38:7d:9b:38:ed:fd:8d:33:c9:d7:29:22:10: ae:b0:ee:4c:48:41:1f:6a:f1:d3:3a:a2:74:e2:8e:35:be:7c: 38:18:e8:df:01:1f:79:d3:e4:50:ca:40:26:ef:f1:94:75:00: 82:e1:a9:29:93:79:9f:e7:2e:7f:7d:9d:3a:7b:dc:05:ed:e2: c3:6c:6a:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkHsyWuzlsYURrSPlLuafMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzMzE0ZjMwZjNhNDUzZmY0OTIyMWQ5NTRhZDgwMjhhMzA0 YTAxNTAwHhcNMjYwMjA5MTgwMTA3WhcNMjYwMjEwMTgwMTA3WjAzMTEwLwYDVQQD Eyg2ZTkxMDI2NDhmODU4M2EwY2YzZDJiNGEyYTUxMTk1OWQ2YTYxOTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjoakHPQmACOnFNHZ5sWv7og1FsW r4/H/e0T7Dyolx+PlRLssAlBDdWtpxXXGON0iFZJOI7IQqKsc+esm/poaL/k+0FL 1BiMRTpjiUP9V9gTYd0ntO8DPje1Yo0eoy6T/nOlEvGqdQPbq4nmF0bBNWZR+9AS vlQjcVwKkEkx42nQ4IuobRlJy0wc0nRPqprUq0/I/oFFFPKgyo2wOPrXJdBZYR5X qmzxf6WmgTKiJzmj+nqa/wXjKCaYvH1zeucMTKr7Ulc+UCJbk0Xx1P6QBn00yYou cCLH6bkcKUmPMosMYgqlPHpzX0ZEF44uPgSNN9oQC9g5H2Oes8N152fo6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG6RAmSPhYOgzz0rSipRGVnWphkUMB8GA1UdIwQY MBaAFEMxTzDzpFP/SSIdlUrYAoowSgFQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXpGUE1QT2tVXzlKSWgyVlN0Z0NpakJLQVZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC82MzBlOTQtNmI3MS00MDYzLTkzMjgt NTU4ZWVhMWY1OTAxLzEvUXpGUE1QT2tVXzlKSWgyVlN0Z0NpakJLQVZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC82MzBlOTQtNmI3MS00MDYzLTkzMjgtNTU4ZWVhMWY1OTAx LzEvUXpGUE1QT2tVXzlKSWgyVlN0Z0NpakJLQVZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU493+ZC2 yirEn46ZSo/M9zhkqMEGpHYKAR47a/7A2aKmE0Zs26/F6wxK4qD+HZaVOwRpbqK/ qo5zb8LZlzKxc6jxy7AbWDkTXfS9v6W4iogA1Q7nYi4bMmRWkbJeYFSnLP0tJLlG MIrAgGni1aahHsT18+xy3LSQepTBbonkhP0LHA6S9axznlwJEdBSng6ZDkVjg24G 5Uj0hzuVOH3UKVNBd8RIx9uN91FjWKsl+1BwtkwqrbkR82M4fZs47f2NM8nXKSIQ rrDuTEhBH2rx0zqidOKONb58OBjo3wEfedPkUMpAJu/xlHUAguGpKZN5n+cuf32d OnvcBe3iw2xq5w== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:56 2026 by rpki-client