This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft File: qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft (raw, json) Hash identifier: MriTEefOcoPl5sIeN8NWVmS/YzBtZAp8YZ4Fy4w6Kus= Subject key identifier: FA:25:D2:9E:E6:CE:33:E5:73:59:9F:DC:E6:64:D2:5D:F9:23:63:25 Authority key identifier: A9:24:0F:02:7A:94:09:22:9C:59:FF:63:0A:A2:A8:0F:93:78:A9:3F Certificate issuer: /CN=a9240f027a9409229c59ff630aa2a80f9378a93f Certificate serial: 019C42468DD9733E621FF15780C359D7EBF3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qSQPAnqUCSKcWf9jCqKoD5N4qT8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft Manifest number: 1362 Signing time: Mon 09 Feb 2026 12:00:45 +0000 Manifest this update: Mon 09 Feb 2026 12:00:45 +0000 Manifest next update: Tue 10 Feb 2026 12:00:45 +0000 Files and hashes: 1: qSQPAnqUCSKcWf9jCqKoD5N4qT8.crl (hash: minmtsTlXhBcC6jp9C17cfH1MXa/w6VVbHX3G9wS/9Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.crl rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft rsync://rpki.ripe.net/repository/DEFAULT/qSQPAnqUCSKcWf9jCqKoD5N4qT8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:8d:d9:73:3e:62:1f:f1:57:80:c3:59:d7:eb:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a9240f027a9409229c59ff630aa2a80f9378a93f Validity Not Before: Feb 9 12:00:45 2026 GMT Not After : Feb 10 12:00:45 2026 GMT Subject: CN=fa25d29ee6ce33e573599fdce664d25df9236325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7c:63:54:fe:02:f6:b9:78:38:77:94:d6:5f: a0:34:22:d1:06:e6:b4:41:3c:7f:bd:c2:65:93:13: cd:df:c9:f2:27:5f:c2:c4:8e:4a:03:60:36:ba:b2: 23:b5:d4:8c:98:43:5b:08:f1:4a:62:ce:88:50:cc: a1:09:3b:aa:a7:54:8b:d6:6b:da:84:7a:dc:d7:58: 03:69:88:4b:3e:ca:b2:45:04:68:bd:fb:66:85:c6: 02:9b:7a:ba:ea:26:f9:66:8d:04:b9:54:d2:b9:4a: 03:f2:3b:db:81:7c:a7:41:bc:a0:00:19:d1:11:58: 3e:18:3e:a9:27:bc:2e:3a:44:6c:fc:76:b1:cf:4a: 24:2d:a0:1e:ee:af:ab:da:55:bf:63:21:7c:20:af: 52:4b:92:d0:c5:71:ac:b6:bd:db:cb:37:ae:a8:a4: 48:82:84:b9:e8:c4:4d:c3:be:20:64:c8:4c:62:f9: 57:37:b9:35:38:45:af:39:a2:3d:39:fd:33:e4:3f: 53:7c:05:4f:be:34:e2:8a:2e:c3:0d:b2:be:23:8c: 73:d3:9a:fc:ff:5a:ad:5a:2e:51:0f:3a:71:19:48: c5:b6:55:be:45:3e:4d:0a:99:b8:b6:2c:55:b2:b5: f0:77:75:d3:56:79:a0:02:5d:75:e4:c8:99:cd:56: f7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:25:D2:9E:E6:CE:33:E5:73:59:9F:DC:E6:64:D2:5D:F9:23:63:25 X509v3 Authority Key Identifier: keyid:A9:24:0F:02:7A:94:09:22:9C:59:FF:63:0A:A2:A8:0F:93:78:A9:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qSQPAnqUCSKcWf9jCqKoD5N4qT8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:d9:d4:a6:2a:01:c8:81:9c:91:33:3a:40:7a:06:a6:b9:24: 14:ab:50:aa:70:09:41:3e:fd:de:31:70:cc:3e:7d:e2:04:83: 2b:f2:fa:8a:2f:4c:6f:98:a0:89:d6:8a:3d:6c:c1:a6:34:f3: 93:91:af:df:b5:0d:a2:bc:49:be:d4:c7:58:48:a6:51:c0:64: fd:a7:c5:c5:59:c0:f2:12:ea:9a:40:70:6d:1c:bd:63:b6:8f: 46:10:80:0c:d2:db:79:61:16:64:1b:3c:3b:14:bc:1a:d4:fb: 3c:92:41:7b:3a:c4:7e:a9:df:ff:55:9c:80:91:e3:94:ec:ad: 9a:0e:11:a6:05:22:eb:9f:0c:68:5c:4c:ed:97:08:74:c2:4f: f3:a3:7d:03:05:80:72:09:a5:bb:21:ae:b8:35:41:1b:c4:82: 89:dd:ad:6e:49:60:b0:bb:37:8b:ef:b3:7c:9c:54:99:6b:a7: b5:a6:76:c7:63:b3:dd:2a:07:1f:b6:7a:15:4b:a7:65:b9:23: 8d:89:33:45:90:68:05:fe:de:ac:3b:a8:22:bf:c5:68:49:ec: c2:ba:27:21:c2:d0:f7:17:6b:ce:58:6b:19:bb:26:02:ee:0c: 6d:af:8c:4e:a2:d3:e0:75:1b:1d:30:b7:55:ba:05:53:bf:bb: b2:63:b3:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRo3Zcz5iH/FXgMNZ1+vzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5MjQwZjAyN2E5NDA5MjI5YzU5ZmY2MzBhYTJhODBmOTM3 OGE5M2YwHhcNMjYwMjA5MTIwMDQ1WhcNMjYwMjEwMTIwMDQ1WjAzMTEwLwYDVQQD EyhmYTI1ZDI5ZWU2Y2UzM2U1NzM1OTlmZGNlNjY0ZDI1ZGY5MjM2MzI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnxjVP4C9rl4OHeU1l+gNCLRBua0 QTx/vcJlkxPN38nyJ1/CxI5KA2A2urIjtdSMmENbCPFKYs6IUMyhCTuqp1SL1mva hHrc11gDaYhLPsqyRQRovftmhcYCm3q66ib5Zo0EuVTSuUoD8jvbgXynQbygABnR EVg+GD6pJ7wuOkRs/Haxz0okLaAe7q+r2lW/YyF8IK9SS5LQxXGstr3byzeuqKRI goS56MRNw74gZMhMYvlXN7k1OEWvOaI9Of0z5D9TfAVPvjTiii7DDbK+I4xz05r8 /1qtWi5RDzpxGUjFtlW+RT5NCpm4tixVsrXwd3XTVnmgAl115MiZzVb3PwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPol0p7mzjPlc1mf3OZk0l35I2MlMB8GA1UdIwQY MBaAFKkkDwJ6lAkinFn/YwqiqA+TeKk/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVNRUEFucVVDU0tjV2Y5akNxS29ENU40cVQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iZmNmN2YtOTMwYy00ZWQ0LTk2Y2Qt M2QxYjNhODZjZTg3LzEvcVNRUEFucVVDU0tjV2Y5akNxS29ENU40cVQ4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9iZmNmN2YtOTMwYy00ZWQ0LTk2Y2QtM2QxYjNhODZjZTg3 LzEvcVNRUEFucVVDU0tjV2Y5akNxS29ENU40cVQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbNnUpioB yIGckTM6QHoGprkkFKtQqnAJQT793jFwzD594gSDK/L6ii9Mb5igidaKPWzBpjTz k5Gv37UNorxJvtTHWEimUcBk/afFxVnA8hLqmkBwbRy9Y7aPRhCADNLbeWEWZBs8 OxS8GtT7PJJBezrEfqnf/1WcgJHjlOytmg4RpgUi658MaFxM7ZcIdMJP86N9AwWA cgmluyGuuDVBG8SCid2tbklgsLs3i++zfJxUmWuntaZ2x2Oz3SoHH7Z6FUunZbkj jYkzRZBoBf7erDuoIr/FaEnswronIcLQ9xdrzlhrGbsmAu4Mba+MTqLT4HUbHTC3 VboFU7+7smOz+w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:26 2026 by rpki-client