This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft File: qK9MCjctAUVV99TXyJz5lvBRQvU.mft (raw, json) Hash identifier: zDAFheXE9BceUACeZRd0eV/ikhzcras5t4HiWruaER8= Subject key identifier: 8A:20:F7:B5:04:E9:AB:9B:47:7E:78:5F:28:55:7A:9E:14:6E:DC:F0 Authority key identifier: A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5 Certificate issuer: /CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5 Certificate serial: 019C413488D2A721F724B3BBBB58F34494C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft Manifest number: 05A2 Signing time: Mon 09 Feb 2026 07:01:27 +0000 Manifest this update: Mon 09 Feb 2026 07:01:27 +0000 Manifest next update: Tue 10 Feb 2026 07:01:27 +0000 Files and hashes: 1: qK9MCjctAUVV99TXyJz5lvBRQvU.crl (hash: fNeBylPOsb6SyUqIEWFCcA61m15Ow5urHp6wZE2qjxc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:88:d2:a7:21:f7:24:b3:bb:bb:58:f3:44:94:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5 Validity Not Before: Feb 9 07:01:27 2026 GMT Not After : Feb 10 07:01:27 2026 GMT Subject: CN=8a20f7b504e9ab9b477e785f28557a9e146edcf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d4:66:14:ef:9e:e3:2e:56:ac:bf:4a:42:3e: b6:ea:43:50:d0:90:58:6e:11:b5:e0:6c:ba:77:c2: 5f:4e:31:22:5d:a1:90:c7:18:10:ba:76:10:e9:0c: e5:b1:9a:f5:3d:f5:93:c6:29:7d:d0:62:7f:27:60: 59:7a:bf:0c:2b:03:be:fb:0c:f9:c2:b7:4c:56:d3: 58:d2:e6:a3:4a:e0:cb:62:ca:4a:bd:96:2e:26:cb: e5:72:cf:68:fd:2c:e0:88:8c:0b:57:1e:d0:fd:e9: 4d:39:8f:e9:e5:58:f3:50:ba:1e:be:9d:8f:32:76: 3a:e8:49:06:05:99:d0:7c:eb:c8:a6:7c:f0:e9:e8: f7:34:e4:b9:72:b8:c3:e8:d9:66:7d:dc:58:88:c7: 76:8b:8f:4c:5c:3d:24:2e:c6:dc:0c:7f:b0:9a:e1: a9:30:e9:91:9e:ae:51:65:00:f0:51:8d:f8:e4:70: 35:0a:2c:ac:2a:b9:87:9f:46:8a:34:85:bb:85:bb: bd:1a:33:59:2d:11:dd:79:71:00:52:e0:2d:cb:55: 1a:c3:e8:3f:d5:49:aa:90:eb:af:3e:a9:b5:a4:f6: 0a:f8:38:55:26:a1:d5:16:cd:2b:eb:ef:3f:45:0c: c5:5e:0c:23:68:86:93:c2:a4:91:83:2e:35:1b:aa: b9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:20:F7:B5:04:E9:AB:9B:47:7E:78:5F:28:55:7A:9E:14:6E:DC:F0 X509v3 Authority Key Identifier: keyid:A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:4e:01:8d:dd:52:73:a7:af:fc:0f:84:fd:98:58:ef:a1:87: 32:a7:4d:4c:f5:a1:58:72:a8:97:07:8b:e3:1b:82:58:e0:90: 8e:b3:f4:5e:de:6a:f1:22:3b:80:c4:f4:b5:03:07:49:92:36: 77:03:25:ed:dc:a9:d3:6b:ca:13:95:b7:f9:ca:0a:9a:cc:42: 65:1a:f8:07:b3:8a:59:c9:16:19:58:23:39:6c:42:a8:13:ee: 4f:1f:45:cb:da:8a:e2:24:5b:9c:2c:ee:d2:95:8a:db:45:b8: 93:ae:f9:dc:e4:1a:06:22:7d:c4:24:45:a7:5c:96:66:ef:18: bd:ed:1e:9d:a6:83:83:b7:95:33:4a:45:1b:63:c3:e4:ee:fe: f6:de:32:f7:ab:bc:73:12:eb:07:bf:90:11:d8:1c:59:dd:6a: 8f:21:00:45:e9:60:32:65:e0:a5:48:91:8d:e9:b0:85:ef:00: 5f:be:51:e7:bf:2c:ee:b2:c3:c7:2f:4c:46:3d:0b:ff:c2:c4: 40:b0:aa:be:8c:15:c9:95:d8:b2:8d:95:52:0f:65:9c:ad:43: b0:17:ea:43:48:5c:1e:64:9a:66:a0:99:17:b0:df:67:c8:39: 2d:bc:55:bc:e1:da:62:f9:95:41:5e:1f:7b:32:00:85:45:b0: ee:22:0a:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNIjSpyH3JLO7u1jzRJTGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4YWY0YzBhMzcyZDAxNDU1NWY3ZDRkN2M4OWNmOTk2ZjA1 MTQyZjUwHhcNMjYwMjA5MDcwMTI3WhcNMjYwMjEwMDcwMTI3WjAzMTEwLwYDVQQD Eyg4YTIwZjdiNTA0ZTlhYjliNDc3ZTc4NWYyODU1N2E5ZTE0NmVkY2YwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9RmFO+e4y5WrL9KQj626kNQ0JBY bhG14Gy6d8JfTjEiXaGQxxgQunYQ6QzlsZr1PfWTxil90GJ/J2BZer8MKwO++wz5 wrdMVtNY0uajSuDLYspKvZYuJsvlcs9o/SzgiIwLVx7Q/elNOY/p5VjzULoevp2P MnY66EkGBZnQfOvIpnzw6ej3NOS5crjD6NlmfdxYiMd2i49MXD0kLsbcDH+wmuGp MOmRnq5RZQDwUY345HA1CiysKrmHn0aKNIW7hbu9GjNZLRHdeXEAUuAty1Uaw+g/ 1UmqkOuvPqm1pPYK+DhVJqHVFs0r6+8/RQzFXgwjaIaTwqSRgy41G6q5YQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIog97UE6aubR354XyhVep4UbtzwMB8GA1UdIwQY MBaAFKivTAo3LQFFVffU18ic+ZbwUUL1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUs5TUNqY3RBVVZWOTlUWHlKejVsdkJSUXZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84YjJiYmQtYWYxMi00NmFlLWE1MGYt ZGFiMzhmZDNjNzg2LzEvcUs5TUNqY3RBVVZWOTlUWHlKejVsdkJSUXZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC84YjJiYmQtYWYxMi00NmFlLWE1MGYtZGFiMzhmZDNjNzg2 LzEvcUs5TUNqY3RBVVZWOTlUWHlKejVsdkJSUXZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgk4Bjd1S c6ev/A+E/ZhY76GHMqdNTPWhWHKolweL4xuCWOCQjrP0Xt5q8SI7gMT0tQMHSZI2 dwMl7dyp02vKE5W3+coKmsxCZRr4B7OKWckWGVgjOWxCqBPuTx9Fy9qK4iRbnCzu 0pWK20W4k6753OQaBiJ9xCRFp1yWZu8Yve0enaaDg7eVM0pFG2PD5O7+9t4y96u8 cxLrB7+QEdgcWd1qjyEARelgMmXgpUiRjemwhe8AX75R578s7rLDxy9MRj0L/8LE QLCqvowVyZXYso2VUg9lnK1DsBfqQ0hcHmSaZqCZF7DfZ8g5LbxVvOHaYvmVQV4f ezIAhUWw7iIKzg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:40 2026 by rpki-client