This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.mft File: QTsVW4BGJkf4WUaogk0in-6q--Y.mft (raw, json) Hash identifier: AD1tmwUNag0NcppIdw+Vmj+4dxxDq/AgMSikr/s01U8= Subject key identifier: 4A:48:D4:73:70:9A:00:43:23:5C:62:EC:EC:F0:D1:37:20:58:D9:53 Authority key identifier: 41:3B:15:5B:80:46:26:47:F8:59:46:A8:82:4D:22:9F:EE:AA:FB:E6 Certificate issuer: /CN=413b155b80462647f85946a8824d229feeaafbe6 Certificate serial: 019C420F89195EEB09E88BF2B2E75CF75E75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTsVW4BGJkf4WUaogk0in-6q--Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.mft Manifest number: 0391 Signing time: Mon 09 Feb 2026 11:00:40 +0000 Manifest this update: Mon 09 Feb 2026 11:00:40 +0000 Manifest next update: Tue 10 Feb 2026 11:00:40 +0000 Files and hashes: 1: QTsVW4BGJkf4WUaogk0in-6q--Y.crl (hash: pbTvNY8AkE5jEmoSf/EGQ0qRVKA7JNEcjU9l/skxrXQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.crl rsync://rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.mft rsync://rpki.ripe.net/repository/DEFAULT/QTsVW4BGJkf4WUaogk0in-6q--Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:89:19:5e:eb:09:e8:8b:f2:b2:e7:5c:f7:5e:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=413b155b80462647f85946a8824d229feeaafbe6 Validity Not Before: Feb 9 11:00:40 2026 GMT Not After : Feb 10 11:00:40 2026 GMT Subject: CN=4a48d473709a0043235c62ececf0d1372058d953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:25:fe:72:1e:97:a0:b4:87:78:83:64:11:7d: 9f:83:30:9f:ee:30:35:d8:34:67:78:62:98:b4:7d: 91:92:f3:4c:d5:e1:d2:27:b3:79:de:79:ec:ef:5e: e6:e4:71:4d:06:b5:a3:a4:7d:15:a7:f2:0f:ae:ea: f6:35:e8:9a:80:92:8a:6a:41:b9:eb:8e:41:4d:f6: a0:67:a7:a2:e6:33:53:86:70:e9:ec:27:63:87:4d: 08:ec:77:da:0d:7d:6c:4c:c4:96:c8:c8:21:44:4d: cb:ce:8d:85:d8:12:04:6a:45:e4:e6:52:03:cf:2f: df:03:67:1f:59:81:f4:88:46:5a:6e:e2:31:5d:64: 39:85:6d:f1:8c:e5:a2:16:51:6c:ca:0a:2b:1e:7a: cf:c1:8b:ca:c6:85:97:d3:28:9a:d3:d3:8c:7e:55: 96:6b:d5:f2:cd:c2:65:89:97:af:18:e7:a0:63:27: 18:ed:71:22:d6:76:9d:85:e6:1c:0e:ba:35:2c:d0: 75:e0:91:60:96:22:c2:57:e0:19:dc:fc:09:c6:e3: 64:c5:ee:47:0b:9c:b9:ef:c1:ca:02:58:50:30:61: 37:55:d5:99:9f:0e:a3:c0:a1:f4:14:b6:75:67:6d: 75:59:3c:ae:39:7a:50:b9:4c:03:78:57:57:eb:20: a8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:48:D4:73:70:9A:00:43:23:5C:62:EC:EC:F0:D1:37:20:58:D9:53 X509v3 Authority Key Identifier: keyid:41:3B:15:5B:80:46:26:47:F8:59:46:A8:82:4D:22:9F:EE:AA:FB:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTsVW4BGJkf4WUaogk0in-6q--Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:c7:86:71:2d:d1:95:86:30:8a:b6:36:35:ac:53:0b:d9:ca: e0:a9:bc:cb:be:cc:cf:aa:a5:7d:48:40:4b:0a:f4:71:d7:5a: a9:4a:78:98:e8:07:2d:ab:f8:66:0e:94:86:1f:a9:98:c5:2e: 14:1e:8d:42:5b:47:f3:3f:ee:c4:d4:e6:35:f9:7a:07:44:18: 27:73:e0:be:5f:ee:9f:bf:3c:4c:c5:77:95:31:c4:ce:cb:0a: 73:e2:76:6d:db:60:49:64:70:a1:0e:19:f9:c6:93:5f:92:d4: b5:26:4a:62:03:7d:be:95:d3:fa:e7:c3:b5:24:59:a2:10:c4: 56:42:ee:0f:4b:46:6e:0e:1a:c9:fc:16:2d:52:d2:9e:fc:fd: 1d:5e:4c:23:db:ec:7b:55:c2:9b:71:73:a1:6e:d2:aa:3e:58: 92:6d:cd:20:3f:01:a2:f1:18:6e:6d:94:2c:2a:05:11:57:f8: e8:f0:54:82:5b:18:00:cc:15:fd:9d:d2:63:57:31:ff:24:fd: 35:67:3a:32:da:c2:8b:22:f7:1d:6a:0d:8c:a9:0d:1c:b0:ff: 58:d0:c3:fd:71:ed:88:66:a2:e7:45:cc:b0:ca:75:2e:41:91: 53:68:41:f7:15:d2:db:14:b1:b3:20:69:a6:fe:b0:4c:b8:5c: 48:da:73:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD4kZXusJ6Ivysudc9151MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxM2IxNTViODA0NjI2NDdmODU5NDZhODgyNGQyMjlmZWVh YWZiZTYwHhcNMjYwMjA5MTEwMDQwWhcNMjYwMjEwMTEwMDQwWjAzMTEwLwYDVQQD Eyg0YTQ4ZDQ3MzcwOWEwMDQzMjM1YzYyZWNlY2YwZDEzNzIwNThkOTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyX+ch6XoLSHeINkEX2fgzCf7jA1 2DRneGKYtH2RkvNM1eHSJ7N53nns717m5HFNBrWjpH0Vp/IPrur2NeiagJKKakG5 645BTfagZ6ei5jNThnDp7Cdjh00I7HfaDX1sTMSWyMghRE3Lzo2F2BIEakXk5lID zy/fA2cfWYH0iEZabuIxXWQ5hW3xjOWiFlFsygorHnrPwYvKxoWX0yia09OMflWW a9XyzcJliZevGOegYycY7XEi1nadheYcDro1LNB14JFgliLCV+AZ3PwJxuNkxe5H C5y578HKAlhQMGE3VdWZnw6jwKH0FLZ1Z211WTyuOXpQuUwDeFdX6yCovwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEpI1HNwmgBDI1xi7Ozw0TcgWNlTMB8GA1UdIwQY MBaAFEE7FVuARiZH+FlGqIJNIp/uqvvmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVRzVlc0QkdKa2Y0V1Vhb2drMGluLTZxLS1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9lZDYzYmYtMmIwZS00YzliLTk4YjUt NGEyNTFjYmVjNzkxLzEvUVRzVlc0QkdKa2Y0V1Vhb2drMGluLTZxLS1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9lZDYzYmYtMmIwZS00YzliLTk4YjUtNGEyNTFjYmVjNzkx LzEvUVRzVlc0QkdKa2Y0V1Vhb2drMGluLTZxLS1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcMeGcS3R lYYwirY2NaxTC9nK4Km8y77Mz6qlfUhASwr0cddaqUp4mOgHLav4Zg6Uhh+pmMUu FB6NQltH8z/uxNTmNfl6B0QYJ3Pgvl/un788TMV3lTHEzssKc+J2bdtgSWRwoQ4Z +caTX5LUtSZKYgN9vpXT+ufDtSRZohDEVkLuD0tGbg4ayfwWLVLSnvz9HV5MI9vs e1XCm3FzoW7Sqj5Ykm3NID8BovEYbm2ULCoFEVf46PBUglsYAMwV/Z3SY1cx/yT9 NWc6MtrCiyL3HWoNjKkNHLD/WNDD/XHtiGai50XMsMp1LkGRU2hB9xXS2xSxsyBp pv6wTLhcSNpzxg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:06:37 2026 by rpki-client