This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft File: QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft (raw, json) Hash identifier: dMjkXeY9NKCX0JUXeTJca2z6vmYIGZIEbP9rkutNg9I= Subject key identifier: 68:8C:BF:0C:E8:B3:AB:8A:5A:83:C7:57:F1:89:95:EB:08:A6:70:DC Authority key identifier: 40:E6:34:BD:C3:0C:0C:4B:5F:79:45:F3:D0:41:E2:35:05:BC:D1:59 Certificate issuer: /CN=40e634bdc30c0c4b5f7945f3d041e23505bcd159 Certificate serial: 019C42461C0FA73F590A7C2BC9A95375ED68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft Manifest number: 0173 Signing time: Mon 09 Feb 2026 12:00:16 +0000 Manifest this update: Mon 09 Feb 2026 12:00:16 +0000 Manifest next update: Tue 10 Feb 2026 12:00:16 +0000 Files and hashes: 1: Otng_ezlHXU4kxRwo4HMGqBulxQ.roa (hash: ZzUAW/zmUDDboHtiC8pCPo3qWbKB9FgFtOseaATnUSk=) 2: QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl (hash: 10KFQqxvt0GGQubCW1Ft0vuMXBj/3//oO6nZ4ddlyV8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:1c:0f:a7:3f:59:0a:7c:2b:c9:a9:53:75:ed:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40e634bdc30c0c4b5f7945f3d041e23505bcd159 Validity Not Before: Feb 9 12:00:16 2026 GMT Not After : Feb 10 12:00:16 2026 GMT Subject: CN=688cbf0ce8b3ab8a5a83c757f18995eb08a670dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:89:4e:6d:80:e7:ff:16:cd:a1:1d:4f:3d:7a: 35:6f:c6:ce:4b:81:cc:b2:b3:4e:a0:b2:2e:15:20: b6:49:a9:1a:ab:3d:cb:98:da:fb:a5:67:cd:8c:49: 17:63:ce:04:b9:42:49:e7:5b:c5:f1:67:d5:ac:7e: 67:36:9c:35:fc:db:c7:1b:57:d5:0d:5a:77:0b:6b: 02:bf:30:12:06:b0:83:7d:df:06:53:0d:81:30:b8: c0:77:52:dc:4d:fe:00:08:86:f6:06:9a:f6:e0:17: 7d:55:6d:2b:fd:ec:c9:35:f3:3f:57:ae:90:18:2d: 56:fe:5f:f2:a2:80:d2:11:07:5e:7a:dc:ba:f0:aa: c3:3d:52:9f:32:f0:eb:27:52:e6:41:d4:b1:f6:db: 66:44:c6:20:43:36:76:cb:c6:f3:5f:5a:fc:eb:ae: cc:70:96:c7:3e:df:62:19:24:30:aa:a5:87:30:e1: 93:20:5f:bc:7e:7c:19:5f:a0:46:32:95:b3:b4:b2: 17:c6:a3:da:2c:dd:2c:54:8a:92:12:53:86:14:1a: 03:4d:c8:d3:5f:99:ed:c8:61:e5:31:1c:91:6f:0c: f2:c2:33:bf:14:12:8c:ee:de:21:cf:f7:67:12:9b: 24:f7:1c:47:7f:f1:df:63:6c:d4:62:c9:85:cb:f0: d0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:8C:BF:0C:E8:B3:AB:8A:5A:83:C7:57:F1:89:95:EB:08:A6:70:DC X509v3 Authority Key Identifier: keyid:40:E6:34:BD:C3:0C:0C:4B:5F:79:45:F3:D0:41:E2:35:05:BC:D1:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:72:4b:fe:83:81:37:66:42:ad:93:99:e0:0b:15:27:4b:08: 4d:f2:fc:52:be:2b:05:0d:10:0c:1f:2f:c9:6d:8f:11:6c:f6: 1c:fd:60:95:2b:b9:c4:95:1a:29:de:0a:99:3c:cb:a5:92:15: b6:21:50:1a:87:91:25:9a:27:8d:9f:cf:ef:00:95:8e:2f:45: f2:ea:a7:5b:da:4e:a1:aa:c8:ce:51:a3:ab:87:76:ae:6f:43: ec:ba:16:90:93:8b:fc:ec:9c:b7:8a:8e:cc:8f:42:06:ad:05: 19:16:52:83:63:87:55:fd:11:70:89:26:cd:a5:dd:c7:79:72: 01:d3:c9:0e:8d:8d:a5:5a:68:84:6a:be:78:bb:e5:00:d4:1f: c1:bc:63:0b:b6:fd:fc:27:4a:9f:17:7b:79:cc:87:59:6e:37: 4f:f4:95:1f:29:bc:ab:7f:54:fe:c6:9a:9f:e8:c1:a7:0d:08: 35:9a:ff:a4:81:6e:c6:98:e3:34:e6:fb:36:f0:dd:90:bd:17: b1:4e:2c:91:5b:ef:8e:f7:75:f6:1a:c9:7f:9e:5a:9b:83:6b: 2d:00:00:89:57:44:07:a1:c8:c8:e9:10:75:e8:fa:43:e3:a1: 7b:d8:27:1d:26:ac:0b:75:49:8d:57:62:ec:28:91:d1:c2:76: 26:6c:42:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRhwPpz9ZCnwryalTde1oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZTYzNGJkYzMwYzBjNGI1Zjc5NDVmM2QwNDFlMjM1MDVi Y2QxNTkwHhcNMjYwMjA5MTIwMDE2WhcNMjYwMjEwMTIwMDE2WjAzMTEwLwYDVQQD Eyg2ODhjYmYwY2U4YjNhYjhhNWE4M2M3NTdmMTg5OTVlYjA4YTY3MGRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2olObYDn/xbNoR1PPXo1b8bOS4HM srNOoLIuFSC2Sakaqz3LmNr7pWfNjEkXY84EuUJJ51vF8WfVrH5nNpw1/NvHG1fV DVp3C2sCvzASBrCDfd8GUw2BMLjAd1LcTf4ACIb2Bpr24Bd9VW0r/ezJNfM/V66Q GC1W/l/yooDSEQdeety68KrDPVKfMvDrJ1LmQdSx9ttmRMYgQzZ2y8bzX1r8667M cJbHPt9iGSQwqqWHMOGTIF+8fnwZX6BGMpWztLIXxqPaLN0sVIqSElOGFBoDTcjT X5ntyGHlMRyRbwzywjO/FBKM7t4hz/dnEpsk9xxHf/HfY2zUYsmFy/DQqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGiMvwzos6uKWoPHV/GJlesIpnDcMB8GA1UdIwQY MBaAFEDmNL3DDAxLX3lF89BB4jUFvNFZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU9ZMHZjTU1ERXRmZVVYejBFSGlOUVc4MFZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9jMzM3MzEtM2M1Mi00Yzg1LTk3ODkt YmQyN2FmYWQ5YzNkLzEvUU9ZMHZjTU1ERXRmZVVYejBFSGlOUVc4MFZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9jMzM3MzEtM2M1Mi00Yzg1LTk3ODktYmQyN2FmYWQ5YzNk LzEvUU9ZMHZjTU1ERXRmZVVYejBFSGlOUVc4MFZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAXJL/oOB N2ZCrZOZ4AsVJ0sITfL8Ur4rBQ0QDB8vyW2PEWz2HP1glSu5xJUaKd4KmTzLpZIV tiFQGoeRJZonjZ/P7wCVji9F8uqnW9pOoarIzlGjq4d2rm9D7LoWkJOL/Oyct4qO zI9CBq0FGRZSg2OHVf0RcIkmzaXdx3lyAdPJDo2NpVpohGq+eLvlANQfwbxjC7b9 /CdKnxd7ecyHWW43T/SVHym8q39U/saan+jBpw0INZr/pIFuxpjjNOb7NvDdkL0X sU4skVvvjvd19hrJf55am4NrLQAAiVdEB6HIyOkQdej6Q+Ohe9gnHSasC3VJjVdi 7CiR0cJ2JmxCPQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:16 2026 by rpki-client