This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft File: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft (raw, json) Hash identifier: eb55R90OKIYT4n25lxYpLrhSrSM/0mZhNfBa1KiOxWc= Subject key identifier: 30:A9:F9:3B:AD:52:DD:84:14:A7:16:CF:02:7B:23:18:1F:6B:D4:8E Authority key identifier: 40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94 Certificate issuer: /CN=408b0fe658eb96fb50b135f71bb92f27b92c1394 Certificate serial: 019C41D8CC0625DDA6DE4BFA1809A028807E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 10:00:52 +0000 Manifest this update: Mon 09 Feb 2026 10:00:52 +0000 Manifest next update: Tue 10 Feb 2026 10:00:52 +0000 Files and hashes: 1: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl (hash: s+chqdxZdVJHIBAR/AccbUtzkO6GXIzUWn7miSYqIb8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:cc:06:25:dd:a6:de:4b:fa:18:09:a0:28:80:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408b0fe658eb96fb50b135f71bb92f27b92c1394 Validity Not Before: Feb 9 10:00:52 2026 GMT Not After : Feb 10 10:00:52 2026 GMT Subject: CN=30a9f93bad52dd8414a716cf027b23181f6bd48e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4b:82:56:d2:f7:42:1a:00:4c:6c:77:d7:80: 31:f0:ab:a6:b2:e0:15:2b:ad:a0:16:07:dd:3f:6a: 35:62:c8:60:e2:3a:9e:a6:26:6a:32:24:f4:59:88: 95:a5:94:b7:a9:b8:1c:6d:81:91:d5:90:df:bb:87: 07:f0:5f:09:1a:ab:16:b2:f4:92:eb:48:33:04:29: 5f:71:c7:64:0d:66:62:00:6b:bb:0f:fd:3a:79:c4: 50:f5:86:fa:88:de:f6:64:a2:36:55:55:fe:9d:19: 27:95:b6:c3:cf:ce:0e:5b:6f:b6:f4:d2:a9:a1:e8: cd:47:f2:20:f5:5f:c4:ae:39:a0:93:42:65:53:0c: 59:c7:22:d6:c6:97:21:a5:7f:9b:57:d5:47:84:4e: dd:57:ed:9a:eb:55:1a:3d:d4:4f:81:f6:e6:90:e4: 44:1c:0d:33:fc:e0:28:c3:fb:61:b1:85:e7:40:5a: df:5b:12:8c:5a:65:66:b4:03:c5:ce:95:7b:ca:bd: e3:46:ac:12:41:d1:a1:0a:31:8e:ba:47:d8:f0:6b: 2c:d9:f9:ca:25:5b:d3:7a:87:ee:10:3e:40:6a:5a: a9:19:0e:c9:5f:eb:25:29:bd:57:5f:ea:aa:a8:87: 6e:5b:6e:6e:ba:93:9a:9b:0f:f0:55:21:8d:42:17: 20:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A9:F9:3B:AD:52:DD:84:14:A7:16:CF:02:7B:23:18:1F:6B:D4:8E X509v3 Authority Key Identifier: keyid:40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:52:1c:94:28:69:eb:55:d0:6a:95:64:94:1d:08:e3:7c:29: 75:7a:4d:9e:5f:03:cb:97:6a:9f:dc:05:50:4b:54:4e:5b:45: 09:72:52:7c:a9:fb:d6:22:ec:40:21:73:04:0b:f1:95:2e:59: d7:fc:45:9d:dd:ce:46:8a:4e:13:d0:d4:bc:02:03:e7:3d:10: 69:09:06:d3:ac:88:1b:52:c5:3f:24:bd:b4:9a:32:75:f0:e9: 0e:6e:f6:ca:81:3e:4b:b3:8a:8f:99:84:a4:80:47:7c:a2:af: 87:95:de:dc:f9:6c:01:60:a8:ba:31:e8:45:a7:ca:c3:e0:99: a8:66:c2:0d:44:4a:b2:8c:5a:ab:14:5c:69:11:9f:13:50:e2: 1d:84:b7:b1:ef:47:90:57:38:32:e4:2d:ba:03:ab:ec:5b:bb: 1b:bc:81:90:b0:ad:2f:d5:35:a0:e1:4f:80:1c:94:42:b5:eb: 67:b5:03:3e:c3:ac:09:d0:c2:de:e1:0c:95:17:05:ff:5d:2f: 4d:cb:62:c5:98:17:bc:b6:8d:84:aa:52:08:1c:c1:1d:40:c6: 23:ac:b8:a6:79:50:90:1f:ec:34:3c:eb:12:a5:f2:a4:e7:93: b2:60:8e:e6:b9:b7:02:69:e6:8b:a1:d1:d6:93:43:b4:16:d8: 28:99:65:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2MwGJd2m3kv6GAmgKIB+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwOGIwZmU2NThlYjk2ZmI1MGIxMzVmNzFiYjkyZjI3Yjky YzEzOTQwHhcNMjYwMjA5MTAwMDUyWhcNMjYwMjEwMTAwMDUyWjAzMTEwLwYDVQQD EygzMGE5ZjkzYmFkNTJkZDg0MTRhNzE2Y2YwMjdiMjMxODFmNmJkNDhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwkuCVtL3QhoATGx314Ax8KumsuAV K62gFgfdP2o1Yshg4jqepiZqMiT0WYiVpZS3qbgcbYGR1ZDfu4cH8F8JGqsWsvSS 60gzBClfccdkDWZiAGu7D/06ecRQ9Yb6iN72ZKI2VVX+nRknlbbDz84OW2+29NKp oejNR/Ig9V/Erjmgk0JlUwxZxyLWxpchpX+bV9VHhE7dV+2a61UaPdRPgfbmkORE HA0z/OAow/thsYXnQFrfWxKMWmVmtAPFzpV7yr3jRqwSQdGhCjGOukfY8Gss2fnK JVvTeofuED5AalqpGQ7JX+slKb1XX+qqqIduW25uupOamw/wVSGNQhcgXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDCp+TutUt2EFKcWzwJ7Ixgfa9SOMB8GA1UdIwQY MBaAFECLD+ZY65b7ULE19xu5Lye5LBOUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9lNTY1NGMtOWZlNy00NzkzLThhOGYt NDBlZGFkZWVlODYwLzEvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9lNTY1NGMtOWZlNy00NzkzLThhOGYtNDBlZGFkZWVlODYw LzEvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAllIclChp 61XQapVklB0I43wpdXpNnl8Dy5dqn9wFUEtUTltFCXJSfKn71iLsQCFzBAvxlS5Z 1/xFnd3ORopOE9DUvAID5z0QaQkG06yIG1LFPyS9tJoydfDpDm72yoE+S7OKj5mE pIBHfKKvh5Xe3PlsAWCoujHoRafKw+CZqGbCDURKsoxaqxRcaRGfE1DiHYS3se9H kFc4MuQtugOr7Fu7G7yBkLCtL9U1oOFPgByUQrXrZ7UDPsOsCdDC3uEMlRcF/10v TctixZgXvLaNhKpSCBzBHUDGI6y4pnlQkB/sNDzrEqXypOeTsmCO5rm3Amnmi6HR 1pNDtBbYKJllYg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:43 2026 by rpki-client