This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft File: QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft (raw, json) Hash identifier: TqteBKofRj+X944/kHZdHHt543RXwp9MsuOfwbspWUI= Subject key identifier: 3A:94:A3:AD:A1:A1:83:C9:F4:8A:DF:9A:4A:C1:1C:24:CB:4B:D4:B1 Authority key identifier: 40:5F:FC:74:AE:92:38:6A:FB:7C:E7:70:F0:39:0E:90:D4:CD:E3:06 Certificate issuer: /CN=405ffc74ae92386afb7ce770f0390e90d4cde306 Certificate serial: 019C457EC22291E6CD6AD0D5C540A7C46245 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft Manifest number: 0459 Signing time: Tue 10 Feb 2026 03:01:00 +0000 Manifest this update: Tue 10 Feb 2026 03:01:00 +0000 Manifest next update: Wed 11 Feb 2026 03:01:00 +0000 Files and hashes: 1: QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl (hash: vyYK8f9YHpeZ9leRmCc2tgUDNre0Ix/Z82v0vSPgSx8=) 2: wMAaF9FeE8vQPeGbyh-_gFZr-RQ.roa (hash: U3G2ZKAfz9i+c+9iabqEffqSxjMJIKuTC8d9C/LqbOM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:7e:c2:22:91:e6:cd:6a:d0:d5:c5:40:a7:c4:62:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=405ffc74ae92386afb7ce770f0390e90d4cde306 Validity Not Before: Feb 10 03:01:00 2026 GMT Not After : Feb 11 03:01:00 2026 GMT Subject: CN=3a94a3ada1a183c9f48adf9a4ac11c24cb4bd4b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0d:0d:62:85:10:1e:4f:3c:c1:65:85:da:6a: d1:04:a2:c5:0f:25:ea:07:aa:8b:0f:75:d2:88:bc: 5e:22:80:57:a2:a8:78:76:42:c1:69:da:47:c3:b2: 7e:53:cd:1e:78:4d:22:e1:0a:18:99:69:d0:b6:1c: 62:50:07:91:bf:4c:b7:47:6f:57:4c:3a:6a:40:ee: 2f:dd:ae:06:f3:87:c4:4e:03:e2:7c:10:50:c0:f9: a2:64:a6:53:6c:54:9f:b1:84:95:82:8e:9c:21:bf: 81:8d:89:63:5d:07:74:fb:7d:cb:e9:25:a7:b5:7e: b5:26:c2:3b:a9:55:b1:0f:66:68:d0:b6:22:41:38: e3:73:87:33:67:ba:8f:48:37:1e:50:f4:98:c9:db: 1b:80:c2:42:95:4b:a4:57:9d:c1:f6:4a:4d:65:71: 3b:8f:83:e2:e3:be:85:2b:12:e5:0c:07:6d:21:59: 68:a3:af:57:7f:c4:f3:a0:7e:be:62:01:2b:d2:57: bb:0f:ff:cd:75:6a:01:e4:eb:7c:ae:16:8c:20:4f: 60:57:b3:08:aa:ee:0e:5f:ec:f8:0e:d3:57:e3:e9: be:3b:33:13:cb:bc:a0:fe:b6:f7:1c:c8:f5:0e:a7: 64:13:63:6f:15:e8:14:73:ee:d6:ba:15:8a:88:b0: de:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:94:A3:AD:A1:A1:83:C9:F4:8A:DF:9A:4A:C1:1C:24:CB:4B:D4:B1 X509v3 Authority Key Identifier: keyid:40:5F:FC:74:AE:92:38:6A:FB:7C:E7:70:F0:39:0E:90:D4:CD:E3:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:1f:12:e8:5f:b7:60:2f:5d:31:45:e6:c3:2a:81:7d:a0:bc: a1:90:df:ba:7e:58:0d:88:63:74:db:4e:89:1d:01:c5:b0:22: 0e:d4:8f:44:2c:2b:94:0f:59:85:05:22:9a:ef:e4:d4:e3:c7: a4:53:5c:03:7c:47:f2:03:b8:d5:a6:09:fd:4f:ee:d9:76:17: 57:c6:7e:8e:bd:ff:cc:41:76:0e:02:2f:f5:b5:80:61:59:91: dd:fc:4d:b9:0a:f7:48:b5:a7:48:c0:69:f5:e6:f9:c9:59:0a: f6:64:4b:76:d6:27:7b:ee:a4:f8:81:9f:ea:a3:5e:76:c6:f5: db:5f:57:87:37:c3:d2:66:bf:8f:e3:8f:5a:70:9e:f1:f8:5c: 3c:5c:8d:a3:47:5a:50:d5:8f:2a:61:4b:6b:8b:94:b7:a8:d8: 72:b6:39:42:73:29:d4:a8:b9:86:8c:b8:8e:e1:ab:1b:4e:f3: f6:76:d5:9f:9a:20:a3:58:f5:67:5b:2e:61:ed:df:4d:3c:9c: 21:3e:d4:0b:75:ad:c5:b5:8b:22:45:07:44:73:77:27:f2:ae: d7:a9:52:88:72:e3:84:d2:07:ed:24:08:59:82:fb:cd:64:d8: 83:09:a7:0b:c0:c1:7f:85:d3:ed:57:70:fe:92:20:dd:ce:43: 73:bf:b2:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFfsIikebNatDVxUCnxGJFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwNWZmYzc0YWU5MjM4NmFmYjdjZTc3MGYwMzkwZTkwZDRj ZGUzMDYwHhcNMjYwMjEwMDMwMTAwWhcNMjYwMjExMDMwMTAwWjAzMTEwLwYDVQQD EygzYTk0YTNhZGExYTE4M2M5ZjQ4YWRmOWE0YWMxMWMyNGNiNGJkNGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQ0NYoUQHk88wWWF2mrRBKLFDyXq B6qLD3XSiLxeIoBXoqh4dkLBadpHw7J+U80eeE0i4QoYmWnQthxiUAeRv0y3R29X TDpqQO4v3a4G84fETgPifBBQwPmiZKZTbFSfsYSVgo6cIb+BjYljXQd0+33L6SWn tX61JsI7qVWxD2Zo0LYiQTjjc4czZ7qPSDceUPSYydsbgMJClUukV53B9kpNZXE7 j4Pi476FKxLlDAdtIVloo69Xf8TzoH6+YgEr0le7D//NdWoB5Ot8rhaMIE9gV7MI qu4OX+z4DtNX4+m+OzMTy7yg/rb3HMj1DqdkE2NvFegUc+7WuhWKiLDeowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDqUo62hoYPJ9IrfmkrBHCTLS9SxMB8GA1UdIwQY MBaAFEBf/HSukjhq+3zncPA5DpDUzeMGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUZfOGRLNlNPR3I3Zk9kdzhEa09rTlRONHdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iMWZkN2EtMmUyNi00YTVkLTgwMmQt NzI0NmFlZmNkMjcyLzEvUUZfOGRLNlNPR3I3Zk9kdzhEa09rTlRONHdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9iMWZkN2EtMmUyNi00YTVkLTgwMmQtNzI0NmFlZmNkMjcy LzEvUUZfOGRLNlNPR3I3Zk9kdzhEa09rTlRONHdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkh8S6F+3 YC9dMUXmwyqBfaC8oZDfun5YDYhjdNtOiR0BxbAiDtSPRCwrlA9ZhQUimu/k1OPH pFNcA3xH8gO41aYJ/U/u2XYXV8Z+jr3/zEF2DgIv9bWAYVmR3fxNuQr3SLWnSMBp 9eb5yVkK9mRLdtYne+6k+IGf6qNedsb1219XhzfD0ma/j+OPWnCe8fhcPFyNo0da UNWPKmFLa4uUt6jYcrY5QnMp1Ki5hoy4juGrG07z9nbVn5ogo1j1Z1suYe3fTTyc IT7UC3WtxbWLIkUHRHN3J/Ku16lSiHLjhNIH7SQIWYL7zWTYgwmnC8DBf4XT7Vdw /pIg3c5Dc7+yDA== -----END CERTIFICATE-----Generated at Tue Feb 10 04:30:26 2026 by rpki-client