This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft File: QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft (raw, json) Hash identifier: xfyTwDlgvFp0WRRWnmyeEY1DT8H/NB10njaNyrpp31c= Subject key identifier: 09:57:A0:84:AE:DE:5B:A3:71:F3:92:5A:6C:7F:1A:BF:9B:B5:FC:EC Authority key identifier: 43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6 Certificate issuer: /CN=431c57e1921d31a34aebd12e507a136fe04598c6 Certificate serial: 019C416AA9FE88578F884059C974FDB97667 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft Manifest number: 05CC Signing time: Mon 09 Feb 2026 08:00:35 +0000 Manifest this update: Mon 09 Feb 2026 08:00:35 +0000 Manifest next update: Tue 10 Feb 2026 08:00:35 +0000 Files and hashes: 1: QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl (hash: 01sQ+jnfBaQoUeSsqmp1nQ6NhuCgG6OaK+yQuS6W6mw=) 2: mIEKfqcwzKGnUqM9s4OdPs7YrbA.roa (hash: buVxIPz10EIVfwpYwh+P1ZYqWF3K+n7bUAR0sR0jGqU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:a9:fe:88:57:8f:88:40:59:c9:74:fd:b9:76:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=431c57e1921d31a34aebd12e507a136fe04598c6 Validity Not Before: Feb 9 08:00:35 2026 GMT Not After : Feb 10 08:00:35 2026 GMT Subject: CN=0957a084aede5ba371f3925a6c7f1abf9bb5fcec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f5:ea:79:c4:c7:25:f6:ed:0a:0c:ee:f6:be: d3:36:27:28:23:5c:49:90:73:e7:5c:01:b5:12:55: b7:75:f9:31:3b:1e:78:6c:3b:3f:0c:d5:58:70:a4: bb:db:0a:ec:ea:cc:94:40:26:d9:0b:c6:2d:b3:f2: f0:3b:39:5e:8b:d8:09:51:67:94:c5:2f:7d:9b:50: 27:0c:60:ac:36:da:ce:d4:1e:03:7b:49:ff:2e:4d: de:3e:91:5b:13:a9:5b:81:cc:c1:d6:e9:93:2f:69: d6:33:ef:fc:a3:96:e4:58:42:3d:d3:c9:20:ce:ba: b4:14:5e:c9:5a:c8:06:72:e0:28:d9:7f:68:8f:ce: 30:40:6d:3e:ca:0b:01:0b:0e:67:54:6a:44:82:5d: 02:9b:00:b0:d0:7f:d0:fd:29:82:fa:71:17:ac:59: bf:b3:c2:c1:ca:fe:9c:51:73:06:0c:0a:14:b9:f8: 00:a2:f0:b3:e1:e8:d5:3b:51:c0:ae:92:64:35:b7: 27:d0:eb:c8:d8:a4:ee:46:fd:c9:38:01:1c:0a:ea: f5:97:77:ca:47:34:47:e8:2e:d3:b1:f4:2d:b8:53: 8b:3b:55:b0:39:24:19:3b:86:fa:c0:17:6a:dc:2f: b2:ea:f4:b7:22:c5:41:0a:ab:fa:8e:0d:34:74:f5: 49:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:57:A0:84:AE:DE:5B:A3:71:F3:92:5A:6C:7F:1A:BF:9B:B5:FC:EC X509v3 Authority Key Identifier: keyid:43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:81:9d:05:d1:40:91:e3:d9:63:be:2f:a1:d1:50:5a:f7:6b: 5b:15:23:10:c2:3d:95:16:5f:ca:e0:06:69:b0:02:cd:71:67: 93:62:70:e4:08:9b:d1:d7:21:e7:02:fc:d3:e6:3a:58:43:a5: 80:3a:2f:de:76:73:42:72:79:82:47:1b:25:ac:95:0a:26:1d: e3:b4:e1:85:62:9a:1a:92:3f:5a:c0:f0:e5:0d:34:fc:f6:b6: 32:e2:e0:19:56:ac:ed:8c:d7:a6:f0:d7:9d:ff:78:dd:d5:66: 15:4b:48:cb:2a:41:ed:ec:01:c3:24:71:f8:e1:df:b9:f8:39: 8f:77:d8:93:35:0d:4c:b7:eb:fb:23:1f:74:3b:c5:e5:18:44: 79:87:d7:14:d0:c5:f4:29:6a:10:e0:e4:40:65:f5:ce:86:1f: 14:e2:70:65:ca:2c:d0:93:34:03:18:45:41:0a:4a:70:2f:3a: f1:37:e0:5e:3a:9b:d6:bd:dd:d7:88:30:de:f0:c8:65:a7:e5: ee:6c:f9:55:9c:b5:db:8e:44:11:9b:5a:94:4a:3f:cd:e3:44: 95:49:79:34:56:e8:8e:29:84:e6:d3:16:c5:1e:77:58:6b:86: fd:ef:7d:3c:3b:84:8e:21:a3:5e:ac:f4:c8:67:69:c1:d8:22: fa:c3:c4:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBaqn+iFePiEBZyXT9uXZnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzMWM1N2UxOTIxZDMxYTM0YWViZDEyZTUwN2ExMzZmZTA0 NTk4YzYwHhcNMjYwMjA5MDgwMDM1WhcNMjYwMjEwMDgwMDM1WjAzMTEwLwYDVQQD EygwOTU3YTA4NGFlZGU1YmEzNzFmMzkyNWE2YzdmMWFiZjliYjVmY2VjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/XqecTHJfbtCgzu9r7TNicoI1xJ kHPnXAG1ElW3dfkxOx54bDs/DNVYcKS72wrs6syUQCbZC8Yts/LwOzlei9gJUWeU xS99m1AnDGCsNtrO1B4De0n/Lk3ePpFbE6lbgczB1umTL2nWM+/8o5bkWEI908kg zrq0FF7JWsgGcuAo2X9oj84wQG0+ygsBCw5nVGpEgl0CmwCw0H/Q/SmC+nEXrFm/ s8LByv6cUXMGDAoUufgAovCz4ejVO1HArpJkNbcn0OvI2KTuRv3JOAEcCur1l3fK RzRH6C7TsfQtuFOLO1WwOSQZO4b6wBdq3C+y6vS3IsVBCqv6jg00dPVJuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAlXoISu3lujcfOSWmx/Gr+btfzsMB8GA1UdIwQY MBaAFEMcV+GSHTGjSuvRLlB6E2/gRZjGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXh4WDRaSWRNYU5LNjlFdVVIb1RiLUJGbU1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wZjFhYWYtYjE3My00Y2UxLWJjYmEt Y2MzNTNlYmFjYmE2LzEvUXh4WDRaSWRNYU5LNjlFdVVIb1RiLUJGbU1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8wZjFhYWYtYjE3My00Y2UxLWJjYmEtY2MzNTNlYmFjYmE2 LzEvUXh4WDRaSWRNYU5LNjlFdVVIb1RiLUJGbU1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN4GdBdFA kePZY74vodFQWvdrWxUjEMI9lRZfyuAGabACzXFnk2Jw5Aib0dch5wL80+Y6WEOl gDov3nZzQnJ5gkcbJayVCiYd47ThhWKaGpI/WsDw5Q00/Pa2MuLgGVas7YzXpvDX nf943dVmFUtIyypB7ewBwyRx+OHfufg5j3fYkzUNTLfr+yMfdDvF5RhEeYfXFNDF 9ClqEODkQGX1zoYfFOJwZcos0JM0AxhFQQpKcC868TfgXjqb1r3d14gw3vDIZafl 7mz5VZy1245EEZtalEo/zeNElUl5NFbojimE5tMWxR53WGuG/e99PDuEjiGjXqz0 yGdpwdgi+sPENg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:41 2026 by rpki-client