This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.mft File: RQ9eqXd4ka1M9BKK5zQE8YvWdVU.mft (raw, json) Hash identifier: xZqkhlXtK3Y8DZwssoEfqrsYvY+VbutkhmFIi4tebpI= Subject key identifier: F4:04:83:DE:0A:92:4E:F4:0F:8F:3A:50:FE:45:EF:39:2F:87:CC:C8 Authority key identifier: 45:0F:5E:A9:77:78:91:AD:4C:F4:12:8A:E7:34:04:F1:8B:D6:75:55 Certificate issuer: /CN=450f5ea9777891ad4cf4128ae73404f18bd67555 Certificate serial: 019C42EAFE55436C0299A92B9AC7AE578F55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.mft Manifest number: 0123 Signing time: Mon 09 Feb 2026 15:00:22 +0000 Manifest this update: Mon 09 Feb 2026 15:00:22 +0000 Manifest next update: Tue 10 Feb 2026 15:00:22 +0000 Files and hashes: 1: RQ9eqXd4ka1M9BKK5zQE8YvWdVU.crl (hash: geHPHWTCK2GhtjmPxPng8bpqGtOri+q3mlEY/LYnBHs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.crl rsync://rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.mft rsync://rpki.ripe.net/repository/DEFAULT/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:ea:fe:55:43:6c:02:99:a9:2b:9a:c7:ae:57:8f:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=450f5ea9777891ad4cf4128ae73404f18bd67555 Validity Not Before: Feb 9 15:00:22 2026 GMT Not After : Feb 10 15:00:22 2026 GMT Subject: CN=f40483de0a924ef40f8f3a50fe45ef392f87ccc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9a:32:56:80:4e:74:4e:f7:cc:40:4b:07:79: 27:d2:28:7c:27:9e:ae:41:7d:10:d5:76:bc:ed:0d: 57:94:f1:47:57:cd:78:00:01:0a:bd:78:aa:76:d4: c7:5a:cf:90:0f:68:fc:fd:21:c0:13:f5:9f:7e:0d: 1b:7b:4b:f4:c7:68:13:eb:d4:c5:d6:01:28:7f:12: 25:ca:de:71:4c:0d:5b:b1:fc:0d:6a:af:47:a6:46: f2:a7:52:8c:48:97:21:6b:80:3b:d0:3f:e7:d0:1f: ba:25:8f:75:10:66:a5:2e:58:e4:95:d8:fd:e0:b5: 31:5a:05:ff:ed:ed:9e:43:46:e4:a5:14:97:91:77: 1a:b2:56:90:fe:65:ad:b5:1a:db:11:24:2f:43:5d: 8f:bd:d3:7e:81:33:af:1a:c3:10:e4:70:2f:42:9d: a4:a7:43:34:54:9f:a0:95:5f:cf:ff:d0:24:90:19: 22:c5:e8:d7:de:98:9f:49:44:72:03:ca:16:4c:7e: 9c:91:96:df:fb:c2:a2:fc:b8:f6:88:40:c7:f1:e8: 8b:b1:ab:4f:2b:c2:b6:1a:3e:45:8d:5b:a5:9d:d3: 97:7e:29:26:2e:96:99:7f:5d:7d:90:30:c0:27:dc: f9:d6:00:c9:b1:5e:82:a0:85:5e:ae:06:a0:59:76: 33:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:04:83:DE:0A:92:4E:F4:0F:8F:3A:50:FE:45:EF:39:2F:87:CC:C8 X509v3 Authority Key Identifier: keyid:45:0F:5E:A9:77:78:91:AD:4C:F4:12:8A:E7:34:04:F1:8B:D6:75:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/0a18f6-0b80-40e9-82ae-8df124cf0ea9/1/RQ9eqXd4ka1M9BKK5zQE8YvWdVU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:70:98:2a:ff:7d:8f:89:d4:6d:23:74:de:60:8a:24:0c:5e: 7c:28:52:d5:2e:a1:1e:4f:10:1d:59:af:e6:2f:bf:c2:db:54: f6:a3:8c:e6:f3:95:47:84:d3:93:c1:10:1a:65:e1:3a:e9:be: 62:57:74:ca:fa:bb:d7:80:80:fe:47:0a:09:2a:6c:b9:df:dc: 81:73:49:84:80:56:14:d3:be:f8:4d:b7:0f:5a:3a:e0:bb:81: cf:e4:b2:df:14:d9:94:ca:b8:6f:7e:05:80:47:ff:51:25:07: 2c:10:84:47:03:e5:a4:65:da:c0:5d:74:8f:14:b6:0e:36:9f: 22:94:28:b9:7b:a4:28:70:62:89:31:65:d5:64:7f:32:19:2b: 1d:5a:38:7b:f6:42:ae:e7:10:ea:37:64:cc:4b:50:2f:25:77: df:17:bd:45:7f:64:e7:a1:6f:2d:6a:98:1a:4c:ea:88:f0:8d: df:b7:37:b7:ba:79:0e:2e:f2:29:ea:e3:3e:dd:0f:e3:85:45: 24:46:f3:80:e5:ba:34:84:3f:56:50:71:77:5e:14:c5:48:1e: 73:0c:cf:6a:7d:69:b0:f4:92:ea:48:e4:84:6c:34:c5:48:2d: 28:ae:ff:47:e9:84:09:cc:74:c2:a8:5a:0e:40:17:cc:ee:e4: 4d:29:87:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6v5VQ2wCmakrmseuV49VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1MGY1ZWE5Nzc3ODkxYWQ0Y2Y0MTI4YWU3MzQwNGYxOGJk Njc1NTUwHhcNMjYwMjA5MTUwMDIyWhcNMjYwMjEwMTUwMDIyWjAzMTEwLwYDVQQD EyhmNDA0ODNkZTBhOTI0ZWY0MGY4ZjNhNTBmZTQ1ZWYzOTJmODdjY2M4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZoyVoBOdE73zEBLB3kn0ih8J56u QX0Q1Xa87Q1XlPFHV814AAEKvXiqdtTHWs+QD2j8/SHAE/Wffg0be0v0x2gT69TF 1gEofxIlyt5xTA1bsfwNaq9Hpkbyp1KMSJcha4A70D/n0B+6JY91EGalLljkldj9 4LUxWgX/7e2eQ0bkpRSXkXcaslaQ/mWttRrbESQvQ12PvdN+gTOvGsMQ5HAvQp2k p0M0VJ+glV/P/9AkkBkixejX3pifSURyA8oWTH6ckZbf+8Ki/Lj2iEDH8eiLsatP K8K2Gj5FjVulndOXfikmLpaZf119kDDAJ9z51gDJsV6CoIVergagWXYzGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPQEg94Kkk70D486UP5F7zkvh8zIMB8GA1UdIwQY MBaAFEUPXql3eJGtTPQSiuc0BPGL1nVVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlE5ZXFYZDRrYTFNOUJLSzV6UUU4WXZXZFZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8wYTE4ZjYtMGI4MC00MGU5LTgyYWUt OGRmMTI0Y2YwZWE5LzEvUlE5ZXFYZDRrYTFNOUJLSzV6UUU4WXZXZFZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny8wYTE4ZjYtMGI4MC00MGU5LTgyYWUtOGRmMTI0Y2YwZWE5 LzEvUlE5ZXFYZDRrYTFNOUJLSzV6UUU4WXZXZFZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfXCYKv99 j4nUbSN03mCKJAxefChS1S6hHk8QHVmv5i+/wttU9qOM5vOVR4TTk8EQGmXhOum+ Yld0yvq714CA/kcKCSpsud/cgXNJhIBWFNO++E23D1o64LuBz+Sy3xTZlMq4b34F gEf/USUHLBCERwPlpGXawF10jxS2DjafIpQouXukKHBiiTFl1WR/MhkrHVo4e/ZC rucQ6jdkzEtQLyV33xe9RX9k56FvLWqYGkzqiPCN37c3t7p5Di7yKerjPt0P44VF JEbzgOW6NIQ/VlBxd14UxUgecwzPan1psPSS6kjkhGw0xUgtKK7/R+mECcx0wqha DkAXzO7kTSmHIw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:39 2026 by rpki-client