This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft File: KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft (raw, json) Hash identifier: Yyl0LqWvQNL4mMlJR3owfIRCCze67ZZbvjk5ODaSN94= Subject key identifier: 19:B5:86:7F:A0:99:06:00:3F:44:D3:12:0C:06:6F:E1:EA:01:32:0E Authority key identifier: 29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C Certificate issuer: /CN=2901d76431c6e873d3c44730571e1e50d602057c Certificate serial: 019C420FC0C45A5FC57D323D2AEC6E4CDB27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft Manifest number: 141F Signing time: Mon 09 Feb 2026 11:00:54 +0000 Manifest this update: Mon 09 Feb 2026 11:00:54 +0000 Manifest next update: Tue 10 Feb 2026 11:00:54 +0000 Files and hashes: 1: KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl (hash: Qs5fARXINnFXMTjXeHBlG5uTR+k3IPSjjWWKvF3WqUQ=) 2: TOF3ZgA2E3UTCvybT5QOxSPJdVo.roa (hash: iSQvu/X4RZ2TX/v9Xw2MSqYTLV+RJbk0Qnv9Fb30Cgo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:c0:c4:5a:5f:c5:7d:32:3d:2a:ec:6e:4c:db:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2901d76431c6e873d3c44730571e1e50d602057c Validity Not Before: Feb 9 11:00:54 2026 GMT Not After : Feb 10 11:00:54 2026 GMT Subject: CN=19b5867fa09906003f44d3120c066fe1ea01320e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2d:07:93:2c:52:d1:16:10:86:4e:f1:1a:57: 96:2e:78:44:07:3f:ac:ee:c7:bf:4d:40:50:9a:c9: 37:87:9c:c1:0e:9b:ad:dc:72:1f:45:50:d2:a6:6c: 98:43:54:f9:6b:00:6b:ec:b2:06:d7:30:ca:86:bc: 4f:f4:f2:59:9d:5d:e2:56:c1:5e:f7:f0:f7:28:62: 05:ad:e1:dc:6f:cb:8b:93:8d:7c:b2:8f:e1:f9:50: d0:4a:39:e2:fe:77:4c:04:dc:af:e6:3b:52:2f:b7: e2:80:68:34:95:39:7d:80:2d:42:a1:62:1d:44:99: cb:41:83:84:bf:4d:9a:46:5e:ee:13:90:c5:fb:42: d5:f2:74:e2:1a:ab:68:52:fc:e4:1b:c2:f4:9a:19: 49:ba:6d:b1:33:2d:8c:fa:ea:19:c9:c3:5d:e5:d9: 5b:e3:b1:2c:4b:4a:05:84:9b:df:69:16:22:2a:3a: 20:29:1d:e7:7d:d9:94:03:bf:fb:bc:1c:6e:d6:af: 4b:29:8c:55:99:2c:93:5d:59:cf:09:eb:67:6b:90: 3a:2b:86:a8:62:7d:fb:8f:bd:f2:28:40:e6:5c:25: fd:5b:67:7b:38:17:c3:b8:19:99:a0:8f:43:6b:83: c5:3e:22:56:62:df:44:f9:05:bf:77:e6:3d:07:b9: 7c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:B5:86:7F:A0:99:06:00:3F:44:D3:12:0C:06:6F:E1:EA:01:32:0E X509v3 Authority Key Identifier: keyid:29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:cb:42:f6:c2:63:73:74:a5:f4:63:4b:8c:14:39:a0:7a:9b: 6a:ad:23:b4:8d:5f:34:2c:3a:c2:95:a2:57:e9:ce:d7:cd:c3: a2:b6:4e:79:59:b5:cb:da:fe:64:58:ef:aa:40:fe:d7:89:37: ec:07:05:a4:a3:43:85:cd:72:ec:b3:41:bf:00:83:96:97:e2: 82:d1:94:7c:63:11:25:85:4f:89:39:3d:a1:00:4b:0b:bf:f2: ac:c3:92:6f:8a:1d:c9:cf:10:79:2c:ab:04:08:eb:8e:0d:de: b1:05:17:c4:5e:b1:46:e0:b8:c8:89:dd:ed:f0:20:8a:0f:07: 24:99:f4:a7:c4:34:93:b2:29:b8:3b:f2:0c:07:6c:ee:e2:2b: 73:f9:aa:0e:8f:04:de:5f:97:ba:92:49:26:e9:06:4d:c4:03: 16:92:3e:81:1d:77:72:90:f5:ed:d9:96:a5:51:2b:a0:a3:03: ff:91:f7:75:fb:d8:34:fb:51:c3:b0:7c:98:ec:2e:25:2d:99: 59:db:55:bd:6d:0f:e9:e2:9a:6f:2b:30:09:b9:13:38:c6:18: 3b:2e:d8:cb:22:85:2c:7b:b8:8b:66:8b:bc:09:63:e0:90:f9: 48:7f:12:d1:cb:f0:a7:0c:7e:86:bc:36:c3:21:82:79:19:26: b9:df:8d:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD8DEWl/FfTI9KuxuTNsnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MDFkNzY0MzFjNmU4NzNkM2M0NDczMDU3MWUxZTUwZDYw MjA1N2MwHhcNMjYwMjA5MTEwMDU0WhcNMjYwMjEwMTEwMDU0WjAzMTEwLwYDVQQD EygxOWI1ODY3ZmEwOTkwNjAwM2Y0NGQzMTIwYzA2NmZlMWVhMDEzMjBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAny0HkyxS0RYQhk7xGleWLnhEBz+s 7se/TUBQmsk3h5zBDput3HIfRVDSpmyYQ1T5awBr7LIG1zDKhrxP9PJZnV3iVsFe 9/D3KGIFreHcb8uLk418so/h+VDQSjni/ndMBNyv5jtSL7figGg0lTl9gC1CoWId RJnLQYOEv02aRl7uE5DF+0LV8nTiGqtoUvzkG8L0mhlJum2xMy2M+uoZycNd5dlb 47EsS0oFhJvfaRYiKjogKR3nfdmUA7/7vBxu1q9LKYxVmSyTXVnPCetna5A6K4ao Yn37j73yKEDmXCX9W2d7OBfDuBmZoI9Da4PFPiJWYt9E+QW/d+Y9B7l8MQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBm1hn+gmQYAP0TTEgwGb+HqATIOMB8GA1UdIwQY MBaAFCkB12Qxxuhz08RHMFceHlDWAgV8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1FIWFpESEc2SFBUeEVjd1Z4NGVVTllDQlh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8wNWMzYTEtYzhmZS00MGZmLTljNTIt M2U2ZjAzMjQ0MTBhLzEvS1FIWFpESEc2SFBUeEVjd1Z4NGVVTllDQlh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS8wNWMzYTEtYzhmZS00MGZmLTljNTItM2U2ZjAzMjQ0MTBh LzEvS1FIWFpESEc2SFBUeEVjd1Z4NGVVTllDQlh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbctC9sJj c3Sl9GNLjBQ5oHqbaq0jtI1fNCw6wpWiV+nO183DorZOeVm1y9r+ZFjvqkD+14k3 7AcFpKNDhc1y7LNBvwCDlpfigtGUfGMRJYVPiTk9oQBLC7/yrMOSb4odyc8QeSyr BAjrjg3esQUXxF6xRuC4yInd7fAgig8HJJn0p8Q0k7IpuDvyDAds7uIrc/mqDo8E 3l+XupJJJukGTcQDFpI+gR13cpD17dmWpVEroKMD/5H3dfvYNPtRw7B8mOwuJS2Z WdtVvW0P6eKabyswCbkTOMYYOy7YyyKFLHu4i2aLvAlj4JD5SH8S0cvwpwx+hrw2 wyGCeRkmud+NLg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:24 2026 by rpki-client