This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft File: QpBWwzjRbJLN_aHlXQk2givFDNI.mft (raw, json) Hash identifier: RMBizfpcQ75o3/yiu25/SD1WbdjjpkmY426uNqqT1LY= Subject key identifier: DE:A3:8C:B6:F3:84:26:56:EE:0A:F1:48:4F:E9:CA:16:65:E5:04:71 Authority key identifier: 42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2 Certificate issuer: /CN=429056c338d16c92cdfda1e55d0936822bc50cd2 Certificate serial: 019C43C76882D3F9D36444CAA233BE93C4A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft Manifest number: 06A5 Signing time: Mon 09 Feb 2026 19:01:07 +0000 Manifest this update: Mon 09 Feb 2026 19:01:07 +0000 Manifest next update: Tue 10 Feb 2026 19:01:07 +0000 Files and hashes: 1: QpBWwzjRbJLN_aHlXQk2givFDNI.crl (hash: TZIKhqelTcAKmkzOCI2feQymLRaguPXscgIpZ7VwhyY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:68:82:d3:f9:d3:64:44:ca:a2:33:be:93:c4:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=429056c338d16c92cdfda1e55d0936822bc50cd2 Validity Not Before: Feb 9 19:01:07 2026 GMT Not After : Feb 10 19:01:07 2026 GMT Subject: CN=dea38cb6f3842656ee0af1484fe9ca1665e50471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:80:9a:a9:02:1d:d5:44:24:4e:a1:1e:63:96: dd:66:c2:b7:50:0d:72:42:c3:f5:3b:2e:a0:ef:4f: 87:81:c5:a9:78:f3:6a:ff:b2:b1:ef:43:6e:e9:37: 8a:23:15:9e:cd:1e:9a:8d:44:a0:b5:6f:ef:e7:1a: 73:e3:95:d4:7c:91:85:bd:9f:1f:14:75:b7:b2:45: 54:32:7d:f8:84:b8:d5:b4:18:24:cc:a5:78:fc:05: a1:ca:50:e5:fc:90:3d:97:97:fe:62:3b:c1:60:4b: a6:19:20:29:69:76:b5:d7:2f:45:ff:63:a4:cc:5b: 5d:f4:64:fa:c5:cb:61:25:44:03:20:ce:cb:82:7a: 42:73:cc:d6:30:73:62:6a:14:36:67:e2:54:2a:7d: a2:a7:be:8e:ee:15:ab:c7:c8:6e:bb:5e:1d:e0:72: 50:15:25:4f:b3:d3:c5:dd:96:84:50:3b:fc:a9:b8: 71:6a:93:f9:c9:fd:9b:41:3c:7f:1e:b0:4e:78:77: 98:1c:3d:aa:85:7a:29:b1:0d:4e:3b:c8:b2:5e:8e: 1f:13:22:47:df:a9:8c:81:71:99:e7:b6:da:06:97: 44:71:80:4c:86:61:1e:db:d6:38:f1:f1:33:5d:62: 39:e6:18:bd:4e:79:f4:63:b1:31:a7:97:22:68:d5: 5c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:A3:8C:B6:F3:84:26:56:EE:0A:F1:48:4F:E9:CA:16:65:E5:04:71 X509v3 Authority Key Identifier: keyid:42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:4a:c4:1e:06:f1:cb:a7:05:e7:8f:b1:8f:ea:d1:84:69:aa: 30:31:52:08:c6:13:bd:08:b1:e1:14:60:5c:f0:63:b0:3c:22: 3d:10:49:09:1f:b8:6e:79:b0:3e:7f:4f:92:17:f7:b7:97:1e: 04:65:b9:4a:a8:8e:41:88:41:f9:66:ba:fe:f0:d0:07:65:fc: 49:43:df:fc:e7:74:be:2a:0d:a9:66:85:64:99:fe:76:ff:55: 78:05:8d:0e:47:5b:34:1a:fc:a7:13:de:ab:00:32:6c:24:92: 51:ae:5f:43:06:81:78:db:2f:c2:70:59:77:1d:2f:81:27:3b: 3f:b7:92:2b:ab:85:73:a3:44:6e:d2:5b:77:05:66:3f:15:31: b1:fe:b6:f5:ae:08:06:13:67:a5:a3:df:85:9b:89:1c:34:b2: 2a:5c:b0:69:6d:4e:2e:4b:29:47:17:2f:88:83:f4:0e:ec:80: 7b:e9:c3:c3:55:d3:76:a6:4c:72:82:61:b1:da:e2:93:b6:16: 27:d5:d6:7d:3b:ce:7d:af:b3:9a:52:ce:cc:1c:3b:01:61:da: 72:01:88:ad:a1:8c:29:5e:72:82:da:b7:b6:f5:90:d5:86:2b: a5:0a:24:df:0f:68:3d:2d:c2:c1:6f:7f:90:d8:b0:ef:e9:57: 4d:ea:1b:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx2iC0/nTZETKojO+k8SlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyOTA1NmMzMzhkMTZjOTJjZGZkYTFlNTVkMDkzNjgyMmJj NTBjZDIwHhcNMjYwMjA5MTkwMTA3WhcNMjYwMjEwMTkwMTA3WjAzMTEwLwYDVQQD EyhkZWEzOGNiNmYzODQyNjU2ZWUwYWYxNDg0ZmU5Y2ExNjY1ZTUwNDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuICaqQId1UQkTqEeY5bdZsK3UA1y QsP1Oy6g70+HgcWpePNq/7Kx70Nu6TeKIxWezR6ajUSgtW/v5xpz45XUfJGFvZ8f FHW3skVUMn34hLjVtBgkzKV4/AWhylDl/JA9l5f+YjvBYEumGSApaXa11y9F/2Ok zFtd9GT6xcthJUQDIM7LgnpCc8zWMHNiahQ2Z+JUKn2ip76O7hWrx8huu14d4HJQ FSVPs9PF3ZaEUDv8qbhxapP5yf2bQTx/HrBOeHeYHD2qhXopsQ1OO8iyXo4fEyJH 36mMgXGZ57baBpdEcYBMhmEe29Y48fEzXWI55hi9Tnn0Y7Exp5ciaNVcwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN6jjLbzhCZW7grxSE/pyhZl5QRxMB8GA1UdIwQY MBaAFEKQVsM40WySzf2h5V0JNoIrxQzSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXBCV3d6alJiSkxOX2FIbFhRazJnaXZGRE5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy81MTNiNzctOWUzYi00YTZjLTllZDUt N2YyMWQ5YmVmYzJjLzEvUXBCV3d6alJiSkxOX2FIbFhRazJnaXZGRE5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy81MTNiNzctOWUzYi00YTZjLTllZDUtN2YyMWQ5YmVmYzJj LzEvUXBCV3d6alJiSkxOX2FIbFhRazJnaXZGRE5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALkrEHgbx y6cF54+xj+rRhGmqMDFSCMYTvQix4RRgXPBjsDwiPRBJCR+4bnmwPn9Pkhf3t5ce BGW5SqiOQYhB+Wa6/vDQB2X8SUPf/Od0vioNqWaFZJn+dv9VeAWNDkdbNBr8pxPe qwAybCSSUa5fQwaBeNsvwnBZdx0vgSc7P7eSK6uFc6NEbtJbdwVmPxUxsf629a4I BhNnpaPfhZuJHDSyKlywaW1OLkspRxcviIP0DuyAe+nDw1XTdqZMcoJhsdrik7YW J9XWfTvOfa+zmlLOzBw7AWHacgGIraGMKV5ygtq3tvWQ1YYrpQok3w9oPS3CwW9/ kNiw7+lXTeobLg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:31 2026 by rpki-client