This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json) Hash identifier: O1k/1mHWbJjwtEnaLJ2EoixgLMxGUnyCiz3uaRv1Wc8= Subject key identifier: C2:B2:D3:91:35:5E:3A:06:55:40:5B:9E:97:C7:B3:5E:38:3F:18:F7 Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c Certificate serial: 019C44DA122A075ADEC69C49D4E6D564F334 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft Manifest number: 180F Signing time: Tue 10 Feb 2026 00:01:08 +0000 Manifest this update: Tue 10 Feb 2026 00:01:08 +0000 Manifest next update: Wed 11 Feb 2026 00:01:08 +0000 Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: gxFoqCWeZnD/S+czxFG6YydkePTW7HpMvvQloPibQ5U=) 2: hVrll11zraZlwu0aoJ27lTvgIvM.roa (hash: p+52m9VvNKJJpUqhG5dFcaxf3Gx9Tk084ipIrkRQ47E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:da:12:2a:07:5a:de:c6:9c:49:d4:e6:d5:64:f3:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c Validity Not Before: Feb 10 00:01:08 2026 GMT Not After : Feb 11 00:01:08 2026 GMT Subject: CN=c2b2d391355e3a0655405b9e97c7b35e383f18f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cc:ba:57:5e:b6:dd:14:b1:9f:3a:23:a5:71: 35:54:72:45:2d:21:f8:3d:ce:12:b4:51:09:17:fc: a2:29:8e:6c:9b:5e:51:a4:23:de:9b:a1:60:43:30: 78:b0:5d:41:e1:b0:3a:d7:68:ef:b1:20:34:ce:f3: 82:36:05:02:31:6f:b5:94:b3:69:8e:12:b1:ce:93: f0:e7:b6:84:47:6a:26:22:d6:e8:b9:45:76:40:27: 0e:99:1c:d1:3f:5e:89:97:7e:53:32:80:5b:c8:9e: 78:21:fe:85:20:a5:65:b2:57:5c:14:5a:d3:70:05: 03:fd:04:f3:d6:de:87:6e:e9:d8:51:57:d9:1b:e5: 66:f2:26:07:53:0e:fa:2f:58:2c:cc:fb:96:68:c1: 6e:bb:df:1f:4f:49:82:3c:a8:7a:d0:a6:6f:6a:d6: 19:6e:35:53:35:c6:54:16:da:d8:c5:92:de:ad:88: 5c:96:00:9a:54:3b:a4:ea:b8:be:3d:1e:8e:52:b6: 55:71:41:30:53:91:89:31:2d:cf:ce:a4:5d:57:36: af:98:00:b5:1a:fc:7e:0d:2a:3a:92:6d:e2:26:10: 5a:20:22:f1:5d:d5:e1:1c:23:9e:97:aa:7a:ea:fd: 5e:61:62:f6:45:cf:cd:d8:a7:73:de:ca:26:12:de: 91:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B2:D3:91:35:5E:3A:06:55:40:5B:9E:97:C7:B3:5E:38:3F:18:F7 X509v3 Authority Key Identifier: keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:4d:23:cb:8c:cc:92:ee:83:ca:63:c3:63:53:e2:1d:1e:62: 77:57:2d:ce:31:01:ed:86:6b:e2:f5:00:39:2e:a7:1c:d9:2c: 6c:a3:df:39:bd:67:07:5a:e7:1a:e2:42:68:fc:c2:a1:bc:d5: 78:f4:a0:5b:d0:ea:f8:f6:d1:3a:bc:a3:34:6b:4e:68:94:e0: 8d:85:bc:8b:9d:9c:b2:bf:dc:a1:96:98:b4:e7:f9:b6:01:33: d6:e2:9d:ce:06:a8:66:cf:4f:81:99:15:8a:e5:5e:84:5a:0a: c3:cf:02:31:25:40:40:42:50:be:33:76:32:2b:d3:d1:da:f1: 92:71:b7:dd:67:64:bc:2f:cc:b8:06:a8:da:e6:cd:d6:6c:4e: 57:ee:46:33:c6:0f:4c:98:14:5e:ac:e5:7d:21:19:e3:01:8c: 90:a2:1a:99:6c:ca:f8:13:d8:01:f3:4d:87:af:d9:6a:a1:fe: 5b:20:5e:15:8a:6d:0c:6f:99:7a:fa:ac:af:6a:9e:9c:6c:6e: 18:af:66:f2:40:c9:51:00:d5:71:56:2a:ab:49:f2:f5:d4:f6: 69:e9:91:cf:48:ae:17:0a:19:d1:0c:1b:eb:b8:4d:ab:ac:fa: a1:04:81:a6:9f:c6:30:d4:18:19:36:93:6e:e1:ff:a3:fc:0e: 4c:c9:25:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2hIqB1rexpxJ1ObVZPM0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwYWE3MTE1N2UyMGQ5ODAzNmJiZDY5M2I4ZWNiYjJiOTlm MGYwM2MwHhcNMjYwMjEwMDAwMTA4WhcNMjYwMjExMDAwMTA4WjAzMTEwLwYDVQQD EyhjMmIyZDM5MTM1NWUzYTA2NTU0MDViOWU5N2M3YjM1ZTM4M2YxOGY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2cy6V1623RSxnzojpXE1VHJFLSH4 Pc4StFEJF/yiKY5sm15RpCPem6FgQzB4sF1B4bA612jvsSA0zvOCNgUCMW+1lLNp jhKxzpPw57aER2omItbouUV2QCcOmRzRP16Jl35TMoBbyJ54If6FIKVlsldcFFrT cAUD/QTz1t6HbunYUVfZG+Vm8iYHUw76L1gszPuWaMFuu98fT0mCPKh60KZvatYZ bjVTNcZUFtrYxZLerYhclgCaVDuk6ri+PR6OUrZVcUEwU5GJMS3PzqRdVzavmAC1 Gvx+DSo6km3iJhBaICLxXdXhHCOel6p66v1eYWL2Rc/N2Kdz3somEt6R+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMKy05E1XjoGVUBbnpfHs144Pxj3MB8GA1UdIwQY MBaAFECqcRV+INmANrvWk7jsuyuZ8PA8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUt MjM1YWJhMTlkOWY5LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUtMjM1YWJhMTlkOWY5 LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdk0jy4zM ku6DymPDY1PiHR5id1ctzjEB7YZr4vUAOS6nHNksbKPfOb1nB1rnGuJCaPzCobzV ePSgW9Dq+PbROryjNGtOaJTgjYW8i52csr/coZaYtOf5tgEz1uKdzgaoZs9PgZkV iuVehFoKw88CMSVAQEJQvjN2MivT0drxknG33WdkvC/MuAao2ubN1mxOV+5GM8YP TJgUXqzlfSEZ4wGMkKIamWzK+BPYAfNNh6/ZaqH+WyBeFYptDG+Zevqsr2qenGxu GK9m8kDJUQDVcVYqq0ny9dT2aemRz0iuFwoZ0Qwb67hNq6z6oQSBpp/GMNQYGTaT buH/o/wOTMklOw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:59 2026 by rpki-client