This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft File: QA-ULrBzNco-f70Y8GwVjbN8_Us.mft (raw, json) Hash identifier: 724+f7LRDm747brGeu5sZ37b5RauqhL07EtAGT/6/Yo= Subject key identifier: B3:96:7C:58:CC:05:A2:46:FC:96:9F:60:D0:B4:1B:84:D0:54:C8:91 Authority key identifier: 40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B Certificate issuer: /CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b Certificate serial: 019C4133F774DA6B7E1757BFFE986C6CD7CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft Manifest number: 1474 Signing time: Mon 09 Feb 2026 07:00:50 +0000 Manifest this update: Mon 09 Feb 2026 07:00:50 +0000 Manifest next update: Tue 10 Feb 2026 07:00:50 +0000 Files and hashes: 1: Q6-rH8_VtCkE4JzDebkExXM-L74.roa (hash: Xt/AZnX6ILHCbTKXWO74tBFcuIb/2BGES0mjpiXZkD8=) 2: QA-ULrBzNco-f70Y8GwVjbN8_Us.crl (hash: +uU/NT7mb9RLcr39459S1Rqtaq0yGGfAu5Ph9naKOck=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:f7:74:da:6b:7e:17:57:bf:fe:98:6c:6c:d7:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b Validity Not Before: Feb 9 07:00:50 2026 GMT Not After : Feb 10 07:00:50 2026 GMT Subject: CN=b3967c58cc05a246fc969f60d0b41b84d054c891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b9:ac:c0:e4:96:dc:63:b4:65:08:61:17:0a: a5:1c:b5:d4:cf:d2:d3:d2:ca:46:82:fb:d2:a1:ec: 43:ac:1f:17:24:c5:fe:14:04:d2:c6:72:07:8d:3b: 3f:67:8d:09:f0:22:5d:ab:3d:ab:c9:97:78:07:db: a0:52:d4:f7:22:e3:0a:f3:df:2e:75:b8:bb:72:2d: b3:cb:ca:60:d9:8c:bb:11:15:e6:13:df:9f:6a:90: 3d:c6:72:74:48:3c:e7:09:af:5e:70:14:ed:8d:2d: 6c:3c:2f:dd:47:1a:19:c1:99:9d:53:ab:af:b3:8d: 51:99:3a:28:8d:ef:e3:5c:21:cb:1c:69:aa:4e:24: 51:32:46:40:b1:8e:9c:70:9e:63:69:0e:3a:0b:5e: b5:da:d1:65:5c:99:4a:c1:cf:9a:ae:9d:cf:aa:f8: 4d:8a:e6:44:6e:2e:a8:4f:67:87:48:99:e4:7a:1c: 2c:b3:57:59:ca:ae:3e:a0:ca:9e:72:e5:0c:ab:d7: 3c:23:82:32:93:e8:2f:32:9f:df:02:4d:ea:f2:3e: 48:eb:bd:07:1b:2a:53:4f:53:58:8b:ae:b8:bd:af: 6a:ea:15:78:af:79:88:fa:8d:9b:08:3d:06:ef:b0: 56:ed:f5:da:34:8f:88:de:05:85:ea:8a:17:07:8a: 83:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:96:7C:58:CC:05:A2:46:FC:96:9F:60:D0:B4:1B:84:D0:54:C8:91 X509v3 Authority Key Identifier: keyid:40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:c0:93:46:6c:33:fd:fa:88:50:39:84:ad:1d:bd:a4:44:15: 6e:9e:9e:38:94:43:3b:2f:82:74:5a:95:bb:69:c4:c3:ac:c6: 7f:27:25:92:45:f6:a4:05:f2:1c:99:e3:ad:58:f5:e7:9d:34: bd:9d:6e:9d:04:9c:2f:47:24:a2:9f:6c:92:26:53:74:a5:c3: ab:10:c1:59:df:66:09:8c:9e:44:49:be:f5:68:52:9a:d5:91: 25:6c:82:5a:65:a5:fd:cd:ae:19:a0:95:ca:5f:58:32:51:cd: 3c:63:96:32:55:4f:0a:a3:7b:da:7a:bc:31:59:ce:fe:d0:d7: dc:6b:e3:43:04:2c:cb:fc:2c:a6:15:d8:29:4a:a6:84:7a:dd: 26:21:51:a9:1f:f1:e6:72:e2:d1:45:ee:80:c3:32:6c:71:48: c6:01:6f:4f:90:ba:ad:28:97:65:ac:09:d8:e0:30:7b:d7:3e: 37:e4:68:4e:29:36:81:cc:23:6e:e0:96:b5:77:8e:d8:c5:93: d2:c8:67:62:74:5c:fd:48:ae:fe:cd:91:8a:5a:67:ff:5e:34: 6c:9d:a6:08:70:c5:50:eb:96:d0:84:7e:a5:f4:e7:d9:92:a2: fb:93:e3:f2:78:38:bc:a2:83:1b:ec:63:1e:94:ea:fe:a2:83: 9b:15:3d:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM/d02mt+F1e//phsbNfNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMGY5NDJlYjA3MzM1Y2EzZTdmYmQxOGYwNmMxNThkYjM3 Y2ZkNGIwHhcNMjYwMjA5MDcwMDUwWhcNMjYwMjEwMDcwMDUwWjAzMTEwLwYDVQQD EyhiMzk2N2M1OGNjMDVhMjQ2ZmM5NjlmNjBkMGI0MWI4NGQwNTRjODkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbmswOSW3GO0ZQhhFwqlHLXUz9LT 0spGgvvSoexDrB8XJMX+FATSxnIHjTs/Z40J8CJdqz2ryZd4B9ugUtT3IuMK898u dbi7ci2zy8pg2Yy7ERXmE9+fapA9xnJ0SDznCa9ecBTtjS1sPC/dRxoZwZmdU6uv s41RmTooje/jXCHLHGmqTiRRMkZAsY6ccJ5jaQ46C1612tFlXJlKwc+arp3PqvhN iuZEbi6oT2eHSJnkehwss1dZyq4+oMqecuUMq9c8I4Iyk+gvMp/fAk3q8j5I670H GypTT1NYi664va9q6hV4r3mI+o2bCD0G77BW7fXaNI+I3gWF6ooXB4qDYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLOWfFjMBaJG/JafYNC0G4TQVMiRMB8GA1UdIwQY MBaAFEAPlC6wczXKPn+9GPBsFY2zfP1LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUEtVUxyQnpOY28tZjcwWThHd1ZqYk44X1VzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8yMDk4YWMtYzJkZS00MzYyLWEyNTUt YWNkNzJkMmM2Y2I2LzEvUUEtVUxyQnpOY28tZjcwWThHd1ZqYk44X1VzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC8yMDk4YWMtYzJkZS00MzYyLWEyNTUtYWNkNzJkMmM2Y2I2 LzEvUUEtVUxyQnpOY28tZjcwWThHd1ZqYk44X1VzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH8CTRmwz /fqIUDmErR29pEQVbp6eOJRDOy+CdFqVu2nEw6zGfyclkkX2pAXyHJnjrVj15500 vZ1unQScL0ckop9skiZTdKXDqxDBWd9mCYyeREm+9WhSmtWRJWyCWmWl/c2uGaCV yl9YMlHNPGOWMlVPCqN72nq8MVnO/tDX3GvjQwQsy/wsphXYKUqmhHrdJiFRqR/x 5nLi0UXugMMybHFIxgFvT5C6rSiXZawJ2OAwe9c+N+RoTik2gcwjbuCWtXeO2MWT 0shnYnRc/Uiu/s2Rilpn/140bJ2mCHDFUOuW0IR+pfTn2ZKi+5Pj8ng4vKKDG+xj HpTq/qKDmxU91Q== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:33 2026 by rpki-client