This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft File: QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft (raw, json) Hash identifier: hpZDW/BYL+L9SLC3gWKqOk1Jxt7HyCa4X+8P0/WNWkE= Subject key identifier: 3F:E4:99:DE:C8:31:29:55:2E:44:3C:24:D6:F8:08:6C:49:E9:5B:95 Authority key identifier: 41:48:CB:AD:17:48:20:5B:4F:43:34:BB:A6:38:C6:4C:2B:21:FC:0E Certificate issuer: /CN=4148cbad1748205b4f4334bba638c64c2b21fc0e Certificate serial: 019C42EB0FD83BBA4EC49C1E3E8F6F32D55A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft Manifest number: 123E Signing time: Mon 09 Feb 2026 15:00:27 +0000 Manifest this update: Mon 09 Feb 2026 15:00:27 +0000 Manifest next update: Tue 10 Feb 2026 15:00:27 +0000 Files and hashes: 1: 2SKAnmNppGmTIZV2xgVXbNnLQZE.roa (hash: 0TEDM1XRgsWS8H5Ci7uA1v4v4wOO9F775kBBURCrd3c=) 2: QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl (hash: hmahAczLG4mfRIM9qhKPhsUG0hoM1ja4/1QwPunsoAY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:0f:d8:3b:ba:4e:c4:9c:1e:3e:8f:6f:32:d5:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4148cbad1748205b4f4334bba638c64c2b21fc0e Validity Not Before: Feb 9 15:00:27 2026 GMT Not After : Feb 10 15:00:27 2026 GMT Subject: CN=3fe499dec83129552e443c24d6f8086c49e95b95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:73:9f:02:7c:38:03:fb:fc:a4:a9:cd:33:48: 43:16:b0:94:79:11:23:fc:08:50:b3:16:69:a8:00: f4:23:15:5a:76:2d:81:4c:e2:54:86:5a:67:06:40: 51:06:7c:f9:ea:c0:8f:c4:4a:81:bd:c5:98:4d:e0: 9d:c8:8f:36:ca:c3:2a:0e:73:ad:18:fa:2a:7f:c6: 73:a0:78:8a:9c:fe:dc:6d:8d:f0:fd:ee:57:e3:0a: c3:ce:62:4b:d8:de:87:2d:15:b3:5f:75:37:98:4e: a1:13:fa:b4:5c:ee:b4:38:89:f5:48:63:22:24:6c: 26:95:69:2b:59:e1:30:c2:d3:aa:a3:20:b8:ab:57: 0a:37:13:37:89:ad:e7:0a:69:10:b3:f6:4a:5a:8d: ab:08:24:60:4c:c6:be:80:90:0d:b7:66:2d:4a:17: 39:84:7e:04:74:bf:92:32:5e:71:ac:75:d1:11:a9: 6c:aa:f3:22:36:06:77:c6:0f:77:7c:b5:8a:88:b4: 7a:85:cb:37:bd:25:62:3b:75:c0:6a:c9:05:d9:2a: 19:c3:f3:35:2d:02:b6:96:51:a6:c7:02:27:e6:a8: 0a:64:7b:2a:36:64:bb:c6:10:81:4d:98:2e:d3:16: 5c:bf:82:a2:0e:c2:27:80:ae:f4:1f:47:22:bf:83: 89:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:E4:99:DE:C8:31:29:55:2E:44:3C:24:D6:F8:08:6C:49:E9:5B:95 X509v3 Authority Key Identifier: keyid:41:48:CB:AD:17:48:20:5B:4F:43:34:BB:A6:38:C6:4C:2B:21:FC:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:d5:5b:96:ca:19:05:97:6d:39:83:cb:49:41:1b:7a:3a:55: 04:8e:a9:31:85:a2:d2:1f:5b:cb:4e:8a:90:49:23:92:7c:14: 28:f1:0b:5b:ea:38:78:a4:e1:ad:20:71:88:23:8a:09:52:7f: aa:bb:13:98:10:12:8d:74:52:9e:4d:5a:f3:47:db:4d:83:5a: f4:e4:88:3c:34:9b:5c:49:1d:74:7a:ca:e3:c2:81:e6:d3:ea: 6c:61:e2:6e:b3:e1:c1:7a:f8:17:c7:95:cc:5f:eb:82:39:0e: a1:f3:58:46:ff:c6:b5:61:2d:9f:b3:3f:54:a8:c9:a5:de:2d: 44:ad:82:24:69:df:4b:13:f1:ef:fd:fb:81:27:22:b8:a2:e2: af:89:79:1a:d8:26:b2:d6:91:80:c3:87:3e:2b:af:23:89:be: 08:cf:da:26:d5:99:c8:eb:48:7b:97:fe:43:81:b1:cb:8a:b8: 63:02:9a:0a:d6:bd:e2:5f:58:9e:d2:fa:ac:4e:43:2d:0b:44: 44:76:7d:59:4d:cd:ca:7e:da:0e:50:15:fa:bc:0b:63:1e:67: 05:72:82:81:3d:db:a4:70:a8:dd:31:c3:ea:94:59:eb:28:32: 87:42:d0:2f:a2:92:e9:cc:6c:bc:54:d4:24:be:16:d5:f8:eb: c4:bc:65:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6w/YO7pOxJwePo9vMtVaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxNDhjYmFkMTc0ODIwNWI0ZjQzMzRiYmE2MzhjNjRjMmIy MWZjMGUwHhcNMjYwMjA5MTUwMDI3WhcNMjYwMjEwMTUwMDI3WjAzMTEwLwYDVQQD EygzZmU0OTlkZWM4MzEyOTU1MmU0NDNjMjRkNmY4MDg2YzQ5ZTk1Yjk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3OfAnw4A/v8pKnNM0hDFrCUeREj /AhQsxZpqAD0IxVadi2BTOJUhlpnBkBRBnz56sCPxEqBvcWYTeCdyI82ysMqDnOt GPoqf8ZzoHiKnP7cbY3w/e5X4wrDzmJL2N6HLRWzX3U3mE6hE/q0XO60OIn1SGMi JGwmlWkrWeEwwtOqoyC4q1cKNxM3ia3nCmkQs/ZKWo2rCCRgTMa+gJANt2YtShc5 hH4EdL+SMl5xrHXREalsqvMiNgZ3xg93fLWKiLR6hcs3vSViO3XAaskF2SoZw/M1 LQK2llGmxwIn5qgKZHsqNmS7xhCBTZgu0xZcv4KiDsIngK70H0civ4OJJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD/kmd7IMSlVLkQ8JNb4CGxJ6VuVMB8GA1UdIwQY MBaAFEFIy60XSCBbT0M0u6Y4xkwrIfwOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVVqTHJSZElJRnRQUXpTN3BqakdUQ3NoX0E0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9jZTIxYjMtYzRkZS00NTZkLWI1Mzgt OTc5NzVkMzRmYzZjLzEvUVVqTHJSZElJRnRQUXpTN3BqakdUQ3NoX0E0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9jZTIxYjMtYzRkZS00NTZkLWI1MzgtOTc5NzVkMzRmYzZj LzEvUVVqTHJSZElJRnRQUXpTN3BqakdUQ3NoX0E0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM9VblsoZ BZdtOYPLSUEbejpVBI6pMYWi0h9by06KkEkjknwUKPELW+o4eKThrSBxiCOKCVJ/ qrsTmBASjXRSnk1a80fbTYNa9OSIPDSbXEkddHrK48KB5tPqbGHibrPhwXr4F8eV zF/rgjkOofNYRv/GtWEtn7M/VKjJpd4tRK2CJGnfSxPx7/37gSciuKLir4l5Gtgm staRgMOHPiuvI4m+CM/aJtWZyOtIe5f+Q4Gxy4q4YwKaCta94l9YntL6rE5DLQtE RHZ9WU3Nyn7aDlAV+rwLYx5nBXKCgT3bpHCo3THD6pRZ6ygyh0LQL6KS6cxsvFTU JL4W1fjrxLxlzg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:38 2026 by rpki-client