This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft File: Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft (raw, json) Hash identifier: 4XIlLGvmNIBD1WV4osXK/Cf58KIXd1I1xFk1R3H85n0= Subject key identifier: 44:2A:FC:9F:F9:8C:E0:DA:63:C0:4C:3A:64:A3:EA:77:28:F0:BC:86 Authority key identifier: 43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C Certificate issuer: /CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Certificate serial: 019C41D84D6213B840146C2EB9C2B9830B13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft Manifest number: 0B84 Signing time: Mon 09 Feb 2026 10:00:20 +0000 Manifest this update: Mon 09 Feb 2026 10:00:20 +0000 Manifest next update: Tue 10 Feb 2026 10:00:20 +0000 Files and hashes: 1: JXLkT6VnIp-SB5I9EMRZOw0DYZI.roa (hash: l3rRARSXe/Kv5HUcutLJRW5ribdNSHw4ggpcG9Mw0ro=) 2: Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl (hash: LXWboiiR2aAawyZHyPbL4/OqcQIhIoLyD9T1j2orwDs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:4d:62:13:b8:40:14:6c:2e:b9:c2:b9:83:0b:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Validity Not Before: Feb 9 10:00:20 2026 GMT Not After : Feb 10 10:00:20 2026 GMT Subject: CN=442afc9ff98ce0da63c04c3a64a3ea7728f0bc86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2d:42:21:1f:9e:05:ba:60:d8:8b:99:e0:ca: dd:2c:07:7c:ed:2e:96:a5:57:5f:1b:0a:09:12:f1: c1:20:1d:f3:1a:54:4f:a6:a6:4c:16:af:80:9f:1b: 6e:9f:cb:b2:bc:7f:e5:82:f0:ad:8b:cf:a4:a5:eb: 98:12:18:71:34:c6:95:f8:22:1a:00:1d:db:5a:87: 86:64:63:c7:1c:a3:c2:2e:bc:6b:a2:c8:7e:b2:c8: 2f:7a:2d:75:43:b4:a1:76:57:d1:8f:28:ee:80:26: 86:b3:0d:29:b0:4a:bd:2d:46:fb:e0:09:a0:8e:ef: bd:43:a6:eb:05:42:4b:63:82:d3:74:5f:ab:9f:74: 8a:b4:fd:b4:5b:8e:d7:1b:09:a0:67:16:eb:fb:e1: 89:20:52:ec:c3:66:ab:d1:9c:33:55:aa:76:17:27: 36:d3:4c:bd:c4:9b:db:4c:8f:f8:2d:91:1e:05:3c: 80:f9:d6:85:7d:9c:48:75:72:d4:db:c8:3f:3c:a3: fc:9a:0b:db:a5:98:bd:6a:2f:8f:56:33:02:a1:24: c8:b0:78:0e:9f:e5:e3:f1:c0:0e:ec:a8:a9:5c:07: a0:9f:d9:b2:e5:44:6c:38:ca:ea:bd:c9:d0:b7:1d: 59:c3:4c:f8:16:0e:68:da:21:ef:11:17:a8:cf:3d: 26:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:2A:FC:9F:F9:8C:E0:DA:63:C0:4C:3A:64:A3:EA:77:28:F0:BC:86 X509v3 Authority Key Identifier: keyid:43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:09:73:cc:77:b3:01:b5:06:d2:32:89:60:01:56:02:b2:7d: 8c:fa:82:41:7f:47:02:b9:9b:a7:ff:f0:53:62:aa:84:f6:cf: 42:2c:32:e1:b1:e5:d1:6c:db:1b:de:f2:ae:ae:e7:ee:60:fd: 07:db:80:73:b8:97:44:6f:b2:66:74:d4:4b:04:dd:b9:fa:47: e6:f1:06:e9:87:13:34:74:47:4a:e3:83:9b:08:17:5c:e8:ce: d2:39:03:06:34:32:81:4e:ca:7e:48:ac:ca:1e:60:da:41:9b: a4:f6:8b:60:b7:37:81:83:72:9a:6e:a5:44:18:a2:b9:26:ad: e1:72:dc:9d:bb:c1:eb:72:5b:16:5d:9a:62:f5:9e:73:94:13: 38:ee:d1:f1:52:d6:86:99:ad:fd:56:e6:9e:9b:3b:c8:13:cb: e3:66:75:41:b4:28:7a:3d:f9:e0:58:df:24:cd:0d:f9:5b:a8: 07:6e:83:f7:39:45:18:d5:fe:65:f8:65:f4:f4:1d:6d:d3:39: 5a:88:fb:aa:af:ed:c5:78:7f:eb:9f:04:80:c1:bd:1f:fa:2c: b5:3b:4f:70:51:df:6b:e3:e7:f0:7e:12:5a:55:7c:82:cb:f5: fe:02:fd:b9:20:26:c2:06:a0:04:71:da:ae:95:65:00:9d:43: 9f:ef:07:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2E1iE7hAFGwuucK5gwsTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNTRhNDE5MjI1ZDVkNzlmNGExYWUxNTIwYTNiMWE1NmQ0 NTI2OGMwHhcNMjYwMjA5MTAwMDIwWhcNMjYwMjEwMTAwMDIwWjAzMTEwLwYDVQQD Eyg0NDJhZmM5ZmY5OGNlMGRhNjNjMDRjM2E2NGEzZWE3NzI4ZjBiYzg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyi1CIR+eBbpg2IuZ4MrdLAd87S6W pVdfGwoJEvHBIB3zGlRPpqZMFq+Anxtun8uyvH/lgvCti8+kpeuYEhhxNMaV+CIa AB3bWoeGZGPHHKPCLrxrosh+ssgvei11Q7ShdlfRjyjugCaGsw0psEq9LUb74Amg ju+9Q6brBUJLY4LTdF+rn3SKtP20W47XGwmgZxbr++GJIFLsw2ar0ZwzVap2Fyc2 00y9xJvbTI/4LZEeBTyA+daFfZxIdXLU28g/PKP8mgvbpZi9ai+PVjMCoSTIsHgO n+Xj8cAO7KipXAegn9my5URsOMrqvcnQtx1Zw0z4Fg5o2iHvEReozz0mNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEQq/J/5jODaY8BMOmSj6nco8LyGMB8GA1UdIwQY MBaAFENUpBkiXV159KGuFSCjsaVtRSaMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEt Njg4ZDUxYTQ0NDQ4LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEtNjg4ZDUxYTQ0NDQ4 LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARwlzzHez AbUG0jKJYAFWArJ9jPqCQX9HArmbp//wU2KqhPbPQiwy4bHl0WzbG97yrq7n7mD9 B9uAc7iXRG+yZnTUSwTdufpH5vEG6YcTNHRHSuODmwgXXOjO0jkDBjQygU7Kfkis yh5g2kGbpPaLYLc3gYNymm6lRBiiuSat4XLcnbvB63JbFl2aYvWec5QTOO7R8VLW hpmt/Vbmnps7yBPL42Z1QbQoej354FjfJM0N+VuoB26D9zlFGNX+Zfhl9PQdbdM5 Woj7qq/txXh/658EgMG9H/ostTtPcFHfa+Pn8H4SWlV8gsv1/gL9uSAmwgagBHHa rpVlAJ1Dn+8Hvw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:11 2026 by rpki-client