This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft File: qklDGDthG-Ogd1OCUJSQBIsK1zg.mft (raw, json) Hash identifier: DeMfy9dlrrAWXCvbGFmKsptaN1P3TwP1rXFDTJkgrBk= Subject key identifier: AD:AA:A1:1E:3B:2E:49:BB:D9:E9:B0:3B:CA:7D:39:06:13:D7:A6:61 Authority key identifier: AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38 Certificate issuer: /CN=aa4943183b611be3a0775382509490048b0ad738 Certificate serial: 019C41A1D50A474C611A1F15EA247961BD7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 09:00:50 +0000 Manifest this update: Mon 09 Feb 2026 09:00:50 +0000 Manifest next update: Tue 10 Feb 2026 09:00:50 +0000 Files and hashes: 1: 979-UeeMesUYtKwgSXJYqxuZCeQ.roa (hash: Gy12Ft/uLr8x9z8NPGEB7zTkTDi5D4+71v/AaSEGb9w=) 2: qklDGDthG-Ogd1OCUJSQBIsK1zg.crl (hash: mwbMGr2X686vxtpiDh4NQ2GQvB5ftGd4UNmd5mW6Svs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:d5:0a:47:4c:61:1a:1f:15:ea:24:79:61:bd:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa4943183b611be3a0775382509490048b0ad738 Validity Not Before: Feb 9 09:00:50 2026 GMT Not After : Feb 10 09:00:50 2026 GMT Subject: CN=adaaa11e3b2e49bbd9e9b03bca7d390613d7a661 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:92:92:1d:fd:a4:e9:16:a7:cb:ca:47:70:d3: 6c:54:0a:ee:cd:b3:2f:06:68:ca:4c:84:29:b1:81: 28:ee:26:0e:23:29:5f:0f:3d:45:08:44:fc:c0:06: 96:d9:cb:7c:23:e9:64:a1:be:47:a8:be:94:79:14: c7:1a:d1:31:d6:41:27:44:64:0a:c7:06:78:ed:81: 07:91:f8:73:81:15:6f:29:72:33:e3:22:95:a6:d5: cc:46:3c:8a:08:05:88:16:fe:c8:44:9f:48:1e:16: 8c:20:e7:7c:6f:4a:13:74:65:ce:b2:e3:33:4f:4e: 50:2d:10:d1:85:94:39:96:a1:b7:fd:31:0f:19:31: d0:9d:03:7e:77:bd:05:ee:95:a1:6e:e6:ea:08:6a: 26:3b:6b:45:4a:7e:dd:d7:07:18:a5:82:7d:fe:eb: a4:15:45:f4:58:ec:1f:19:9e:f6:bf:6b:ea:dd:40: c4:fe:e9:2f:2c:bd:a3:cd:52:08:57:eb:6f:7f:fd: 31:7e:6b:3f:67:23:be:49:b6:bc:f3:b3:74:e1:e2: a3:f8:a2:7e:6b:50:6d:65:ab:6e:3a:3a:ca:5e:ed: e0:2d:ec:67:fe:57:65:7e:bb:ba:31:85:df:e5:93: 5a:f0:d1:19:d2:b9:d3:88:2d:53:58:3f:6b:34:ad: da:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:AA:A1:1E:3B:2E:49:BB:D9:E9:B0:3B:CA:7D:39:06:13:D7:A6:61 X509v3 Authority Key Identifier: keyid:AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:82:84:e4:07:cd:72:4b:60:36:2e:84:b6:29:ed:96:f9:cf: 21:81:7e:ee:c4:a5:37:72:cf:8e:23:87:b6:28:56:3e:12:50: 25:b2:ba:e3:65:6a:e7:74:88:7b:1f:00:a6:e0:97:12:c9:3d: cb:60:79:54:81:97:b4:b9:51:e8:9f:d9:ef:34:e0:b9:c6:8b: e8:15:fd:62:8e:bd:fd:70:ac:8d:05:dd:1f:58:fe:da:2f:d6: d9:9c:47:ce:12:b0:48:7c:60:6b:19:cd:2d:6f:2d:aa:fa:f3: ed:97:18:5c:ea:48:72:39:3a:f7:09:c5:da:9c:58:4e:ab:d1: cd:e7:5b:95:2a:cc:d5:3c:5e:8f:96:62:28:01:a2:3f:5d:f8: ee:ab:8e:fc:8c:d6:70:d2:56:b4:a3:57:8b:f2:12:62:8d:41: 75:77:47:94:42:e2:ad:90:0b:d5:41:e4:6f:ad:65:dc:a1:b7: 75:67:af:41:cc:b8:9e:fa:4d:7e:28:d6:0a:1d:78:51:a7:84: 67:67:22:78:8d:80:ee:99:5c:ea:e4:0a:45:88:55:8a:76:70: b4:c8:da:b7:b4:e0:a5:93:8d:88:d9:6b:2b:a1:e5:0e:70:51: a5:0c:43:e1:94:c1:b6:cf:cc:d7:2c:7b:af:f3:47:37:f6:dd: 2c:16:bb:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBodUKR0xhGh8V6iR5Yb16MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNDk0MzE4M2I2MTFiZTNhMDc3NTM4MjUwOTQ5MDA0OGIw YWQ3MzgwHhcNMjYwMjA5MDkwMDUwWhcNMjYwMjEwMDkwMDUwWjAzMTEwLwYDVQQD EyhhZGFhYTExZTNiMmU0OWJiZDllOWIwM2JjYTdkMzkwNjEzZDdhNjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pKSHf2k6Rany8pHcNNsVAruzbMv BmjKTIQpsYEo7iYOIylfDz1FCET8wAaW2ct8I+lkob5HqL6UeRTHGtEx1kEnRGQK xwZ47YEHkfhzgRVvKXIz4yKVptXMRjyKCAWIFv7IRJ9IHhaMIOd8b0oTdGXOsuMz T05QLRDRhZQ5lqG3/TEPGTHQnQN+d70F7pWhbubqCGomO2tFSn7d1wcYpYJ9/uuk FUX0WOwfGZ72v2vq3UDE/ukvLL2jzVIIV+tvf/0xfms/ZyO+Sba887N04eKj+KJ+ a1BtZatuOjrKXu3gLexn/ldlfru6MYXf5ZNa8NEZ0rnTiC1TWD9rNK3aRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK2qoR47Lkm72emwO8p9OQYT16ZhMB8GA1UdIwQY MBaAFKpJQxg7YRvjoHdTglCUkASLCtc4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS83YmIwMzgtMDFiYy00ZDg1LTlmMDQt ZDIyMjc0YmJhNzEzLzEvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS83YmIwMzgtMDFiYy00ZDg1LTlmMDQtZDIyMjc0YmJhNzEz LzEvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKYKE5AfN cktgNi6EtintlvnPIYF+7sSlN3LPjiOHtihWPhJQJbK642Vq53SIex8ApuCXEsk9 y2B5VIGXtLlR6J/Z7zTgucaL6BX9Yo69/XCsjQXdH1j+2i/W2ZxHzhKwSHxgaxnN LW8tqvrz7ZcYXOpIcjk69wnF2pxYTqvRzedblSrM1Txej5ZiKAGiP1347quO/IzW cNJWtKNXi/ISYo1BdXdHlELirZAL1UHkb61l3KG3dWevQcy4nvpNfijWCh14UaeE Z2cieI2A7plc6uQKRYhVinZwtMjat7TgpZONiNlrK6HlDnBRpQxD4ZTBts/M1yx7 r/NHN/bdLBa7Og== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:02 2026 by rpki-client