This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft File: QB0ZYVrOK7vPoJFpCAgIdipksX4.mft (raw, json) Hash identifier: FfsXw/zJhGjCCajPRw6n+8EVzbEzkjtofJp8t2grsFw= Subject key identifier: D8:A8:2B:30:B0:4D:36:7E:48:ED:99:36:E0:64:1D:8D:DB:4B:CA:B9 Authority key identifier: 40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E Certificate issuer: /CN=401d19615ace2bbbcfa09169080808762a64b17e Certificate serial: 019C42464CF0261D5ED172CD2B8B9B47B0C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft Manifest number: 06DF Signing time: Mon 09 Feb 2026 12:00:29 +0000 Manifest this update: Mon 09 Feb 2026 12:00:29 +0000 Manifest next update: Tue 10 Feb 2026 12:00:29 +0000 Files and hashes: 1: QB0ZYVrOK7vPoJFpCAgIdipksX4.crl (hash: G/5iQ32Nd0I4tuWFrpCK1TeBDCnqKlbNvQyqLQQYcDY=) 2: VI_14hIZSMxriiYvEo8zurAkwos.roa (hash: vbC8BhXmxZVktP9z4L8ZbNsqrQlwhBR+BWbQ4L1r4nk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:4c:f0:26:1d:5e:d1:72:cd:2b:8b:9b:47:b0:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=401d19615ace2bbbcfa09169080808762a64b17e Validity Not Before: Feb 9 12:00:29 2026 GMT Not After : Feb 10 12:00:29 2026 GMT Subject: CN=d8a82b30b04d367e48ed9936e0641d8ddb4bcab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:22:3d:c4:9f:db:cf:63:2c:77:a0:06:21:4d: 5e:9d:42:76:85:8e:2b:d2:16:c4:1c:d3:da:20:6b: 83:39:30:d7:33:f0:68:7f:4b:9b:39:c4:29:ac:9e: 06:1f:44:8b:ad:d6:d0:4e:de:33:c3:b5:a5:a7:aa: 7c:a0:05:62:84:74:27:5c:8e:4c:7e:2c:00:35:78: 2c:c1:d9:5e:e2:f9:d1:c2:2c:a9:d2:50:fe:bf:43: 3e:98:42:bd:7e:da:1f:ca:39:47:47:f2:21:a5:8f: 19:7e:43:bf:d2:97:64:66:92:1a:d8:87:94:9b:43: b3:31:99:61:d6:d2:d9:83:cb:4f:1b:b5:77:ac:21: a9:86:ef:a1:00:95:0a:44:bc:40:e3:84:71:d7:8f: 2f:93:6f:5d:4e:95:19:63:b4:3b:e7:48:4a:18:07: 24:72:12:36:dc:52:d9:63:54:52:89:8c:aa:db:a5: 74:44:ca:a0:4c:a4:f5:7d:2e:2f:f9:af:b5:24:3f: a2:69:28:6d:b7:c7:dc:59:37:af:57:46:a4:5f:81: 17:4b:1d:d4:e5:ac:5f:86:d4:1e:a2:13:9b:92:96: d9:82:76:40:c5:04:72:c1:3f:d5:5e:6f:83:d6:b1: 70:75:4d:42:6a:eb:ad:5b:9f:dd:28:f4:90:15:c2: 77:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A8:2B:30:B0:4D:36:7E:48:ED:99:36:E0:64:1D:8D:DB:4B:CA:B9 X509v3 Authority Key Identifier: keyid:40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:1a:22:7e:76:5e:69:0a:8c:2b:ca:e6:f1:93:64:c3:8f:8c: d1:b4:d6:c1:37:f8:79:da:0c:b0:86:d0:48:71:28:ab:bb:5e: 53:d2:35:4c:cc:3e:a1:b8:49:7d:73:c6:7b:51:0a:82:0b:c4: 3f:bc:0f:07:d9:26:41:e7:30:7a:a4:6c:a3:c5:27:11:9b:d6: 22:97:25:fc:bf:c3:49:38:c1:cf:fc:0a:32:9a:a6:a2:b8:f5: 23:c5:85:86:04:13:7a:f5:66:e5:a2:54:e0:b0:af:82:f3:05: ab:4f:f6:d1:c0:3d:c6:9b:74:26:48:56:b8:c8:33:17:dd:fa: 19:b2:8f:d8:38:4f:77:5f:be:e5:d2:8d:a1:f3:d0:f9:31:c7: ae:09:27:cb:21:f1:ed:ba:d4:45:0a:11:8c:67:7f:f9:77:85: ab:e7:aa:a0:b0:6d:c9:2d:1a:3c:b6:0b:cf:23:07:bd:a4:da: 3c:05:d4:fd:3d:a7:c2:72:8d:c8:9e:79:c6:d8:e0:47:28:9d: dc:81:86:16:4d:72:3b:d9:15:f2:10:2f:43:8d:f3:20:cc:4b: a8:a7:5b:7e:6b:2c:ad:86:dc:4f:12:b1:05:22:4c:10:3a:7f: af:dc:a4:09:f8:6a:58:4a:d9:26:92:c0:e0:00:40:90:56:18: 28:f9:8a:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRkzwJh1e0XLNK4ubR7DAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMWQxOTYxNWFjZTJiYmJjZmEwOTE2OTA4MDgwODc2MmE2 NGIxN2UwHhcNMjYwMjA5MTIwMDI5WhcNMjYwMjEwMTIwMDI5WjAzMTEwLwYDVQQD EyhkOGE4MmIzMGIwNGQzNjdlNDhlZDk5MzZlMDY0MWQ4ZGRiNGJjYWI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiiI9xJ/bz2Msd6AGIU1enUJ2hY4r 0hbEHNPaIGuDOTDXM/Bof0ubOcQprJ4GH0SLrdbQTt4zw7Wlp6p8oAVihHQnXI5M fiwANXgswdle4vnRwiyp0lD+v0M+mEK9ftofyjlHR/IhpY8ZfkO/0pdkZpIa2IeU m0OzMZlh1tLZg8tPG7V3rCGphu+hAJUKRLxA44Rx148vk29dTpUZY7Q750hKGAck chI23FLZY1RSiYyq26V0RMqgTKT1fS4v+a+1JD+iaShtt8fcWTevV0akX4EXSx3U 5axfhtQeohObkpbZgnZAxQRywT/VXm+D1rFwdU1CauutW5/dKPSQFcJ3kwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNioKzCwTTZ+SO2ZNuBkHY3bS8q5MB8GA1UdIwQY MBaAFEAdGWFaziu7z6CRaQgICHYqZLF+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9iNWRhNzAtNDIxMC00NjNlLTlkYzYt OTc5OTcyYTAwMTRkLzEvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9iNWRhNzAtNDIxMC00NjNlLTlkYzYtOTc5OTcyYTAwMTRk LzEvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFRoifnZe aQqMK8rm8ZNkw4+M0bTWwTf4edoMsIbQSHEoq7teU9I1TMw+obhJfXPGe1EKggvE P7wPB9kmQecweqRso8UnEZvWIpcl/L/DSTjBz/wKMpqmorj1I8WFhgQTevVm5aJU 4LCvgvMFq0/20cA9xpt0JkhWuMgzF936GbKP2DhPd1++5dKNofPQ+THHrgknyyHx 7brURQoRjGd/+XeFq+eqoLBtyS0aPLYLzyMHvaTaPAXU/T2nwnKNyJ55xtjgRyid 3IGGFk1yO9kV8hAvQ43zIMxLqKdbfmssrYbcTxKxBSJMEDp/r9ykCfhqWErZJpLA 4ABAkFYYKPmKYw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:08 2026 by rpki-client