This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft File: QA-ULrBzNco-f70Y8GwVjbN8_Us.mft (raw, json) Hash identifier: vGpbKWgVANzpsxkM0ccS1DT4/lx9fHEihR2812BO8DQ= Subject key identifier: 4E:D9:BB:91:FA:8A:AF:8D:E6:A3:2C:71:7B:08:BF:AF:A5:DA:21:2E Authority key identifier: 40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B Certificate issuer: /CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b Certificate serial: 019C4321C891D692ACB2E171FDED24BDC749 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft Manifest number: 1475 Signing time: Mon 09 Feb 2026 16:00:13 +0000 Manifest this update: Mon 09 Feb 2026 16:00:13 +0000 Manifest next update: Tue 10 Feb 2026 16:00:13 +0000 Files and hashes: 1: Q6-rH8_VtCkE4JzDebkExXM-L74.roa (hash: Xt/AZnX6ILHCbTKXWO74tBFcuIb/2BGES0mjpiXZkD8=) 2: QA-ULrBzNco-f70Y8GwVjbN8_Us.crl (hash: UDxFCxXN7/Fvi3pOsTKrSKwxJfw/r9bnlRc/oTm0a4E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:c8:91:d6:92:ac:b2:e1:71:fd:ed:24:bd:c7:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b Validity Not Before: Feb 9 16:00:13 2026 GMT Not After : Feb 10 16:00:13 2026 GMT Subject: CN=4ed9bb91fa8aaf8de6a32c717b08bfafa5da212e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e6:6e:5b:53:87:8a:90:88:8b:9a:7a:9a:84: d3:c4:3b:94:cc:b1:ec:24:cf:da:84:cb:92:9d:02: b5:f4:bb:2e:04:df:2e:01:ab:c3:95:bc:df:3d:02: 72:a2:2b:f4:28:7a:95:10:0e:b5:57:03:6d:65:1d: ce:41:1e:51:e3:6a:a4:eb:f3:84:d1:67:ff:a2:38: 69:ce:02:4b:a9:cb:0a:ed:e5:15:fd:62:0f:91:fb: f6:ff:93:16:2c:57:7a:39:2a:cd:03:9b:16:91:4f: a6:71:b0:36:77:8b:69:f1:a9:24:13:52:26:92:3a: 9b:10:8e:1a:94:38:59:17:b1:12:ee:c4:eb:b4:b5: 00:ce:0d:67:cb:92:a4:91:04:3c:a8:dd:9c:00:47: 59:45:cd:fc:8f:d5:c0:4b:35:7f:73:8a:f0:ca:a5: 05:bd:0f:bc:fc:0d:0a:7c:ab:6e:0d:5a:37:7e:c9: 5e:e2:b4:20:ef:a9:84:18:1f:6b:96:3e:cf:3f:3a: a7:e9:0f:12:8b:8b:da:c2:ee:68:e1:ea:98:23:e7: 2c:14:e7:bb:5a:58:1f:b1:41:1e:09:2b:e9:d9:30: ad:0d:6c:0e:7d:c2:fa:4d:44:5b:8c:42:57:e8:2f: 5c:43:1a:a3:e3:fd:4d:d2:7a:f7:77:12:8e:57:40: c3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D9:BB:91:FA:8A:AF:8D:E6:A3:2C:71:7B:08:BF:AF:A5:DA:21:2E X509v3 Authority Key Identifier: keyid:40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:9c:81:93:ec:26:f4:a3:be:99:9e:37:56:a9:7b:51:bc:2e: a1:9a:29:f3:41:9b:1d:47:dd:cf:67:e0:5f:e2:8a:89:71:e4: 11:16:eb:e8:b5:33:e1:4d:cb:30:80:45:f2:fa:fd:0f:95:65: fd:4b:2c:3c:15:0c:5e:1b:20:4c:ac:d2:7e:af:63:f2:e9:7a: 54:08:12:5d:a0:79:c4:a6:a2:2d:00:3d:aa:62:21:5c:3f:58: 07:e3:d0:b1:0f:15:4c:43:19:f7:a9:12:38:13:b0:e8:dc:1e: 57:6e:5f:fb:50:d0:3b:a4:4f:54:9a:47:30:33:54:0d:74:90: aa:84:ad:7e:95:ba:69:d3:a1:f2:16:c9:76:44:b6:65:75:9a: b5:0b:6b:fd:f2:62:ac:eb:4c:b0:9f:7d:c5:9a:03:a2:c2:cf: 80:02:d0:78:b0:f6:8d:f5:ff:3f:fd:2a:55:64:31:04:08:7d: 60:17:1a:aa:08:2f:0d:01:a8:c1:18:10:69:1b:eb:4f:36:ee: 7e:3c:c9:15:eb:47:9f:e4:25:34:29:b7:c7:38:f6:b2:6e:29: d2:41:32:94:21:31:27:e9:4c:da:6f:f4:ed:5a:eb:3f:3c:15: 8f:37:86:b3:1f:0c:15:8f:57:12:b3:37:bb:c7:47:77:1e:e6: 84:11:dc:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIciR1pKssuFx/e0kvcdJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMGY5NDJlYjA3MzM1Y2EzZTdmYmQxOGYwNmMxNThkYjM3 Y2ZkNGIwHhcNMjYwMjA5MTYwMDEzWhcNMjYwMjEwMTYwMDEzWjAzMTEwLwYDVQQD Eyg0ZWQ5YmI5MWZhOGFhZjhkZTZhMzJjNzE3YjA4YmZhZmE1ZGEyMTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+ZuW1OHipCIi5p6moTTxDuUzLHs JM/ahMuSnQK19LsuBN8uAavDlbzfPQJyoiv0KHqVEA61VwNtZR3OQR5R42qk6/OE 0Wf/ojhpzgJLqcsK7eUV/WIPkfv2/5MWLFd6OSrNA5sWkU+mcbA2d4tp8akkE1Im kjqbEI4alDhZF7ES7sTrtLUAzg1ny5KkkQQ8qN2cAEdZRc38j9XASzV/c4rwyqUF vQ+8/A0KfKtuDVo3fsle4rQg76mEGB9rlj7PPzqn6Q8Si4vawu5o4eqYI+csFOe7 WlgfsUEeCSvp2TCtDWwOfcL6TURbjEJX6C9cQxqj4/1N0nr3dxKOV0DD+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE7Zu5H6iq+N5qMscXsIv6+l2iEuMB8GA1UdIwQY MBaAFEAPlC6wczXKPn+9GPBsFY2zfP1LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUEtVUxyQnpOY28tZjcwWThHd1ZqYk44X1VzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8yMDk4YWMtYzJkZS00MzYyLWEyNTUt YWNkNzJkMmM2Y2I2LzEvUUEtVUxyQnpOY28tZjcwWThHd1ZqYk44X1VzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC8yMDk4YWMtYzJkZS00MzYyLWEyNTUtYWNkNzJkMmM2Y2I2 LzEvUUEtVUxyQnpOY28tZjcwWThHd1ZqYk44X1VzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkpyBk+wm 9KO+mZ43Vql7UbwuoZop80GbHUfdz2fgX+KKiXHkERbr6LUz4U3LMIBF8vr9D5Vl /UssPBUMXhsgTKzSfq9j8ul6VAgSXaB5xKaiLQA9qmIhXD9YB+PQsQ8VTEMZ96kS OBOw6NweV25f+1DQO6RPVJpHMDNUDXSQqoStfpW6adOh8hbJdkS2ZXWatQtr/fJi rOtMsJ99xZoDosLPgALQeLD2jfX/P/0qVWQxBAh9YBcaqggvDQGowRgQaRvrTzbu fjzJFetHn+QlNCm3xzj2sm4p0kEylCExJ+lM2m/07VrrPzwVjzeGsx8MFY9XErM3 u8dHdx7mhBHcIQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:41 2026 by rpki-client