This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft File: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft (raw, json) Hash identifier: VrKHamDal7JT8FujsZCu2r2wo/vzFqa/i6Q1JOt/Xh0= Subject key identifier: A9:BF:A0:CB:C8:0C:36:22:59:2B:7E:42:F0:DA:FD:B3:78:5C:79:E1 Authority key identifier: 43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF Certificate issuer: /CN=43d518d7307788fca3891878490e4f32d9aaf6af Certificate serial: 019C42B3FB6A6358A845232B97B063BDEC3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft Manifest number: 125A Signing time: Mon 09 Feb 2026 14:00:17 +0000 Manifest this update: Mon 09 Feb 2026 14:00:17 +0000 Manifest next update: Tue 10 Feb 2026 14:00:17 +0000 Files and hashes: 1: HiATVU2zNI436oDNBvlSrS-IiIo.roa (hash: 65F3Wcciw7HngFzZ4YANeigLFAEt7ipdC99vCIfMg/k=) 2: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl (hash: vUX7Z9Z7CEDceoRRzwMyDi4QHadkGSDtfEt4nK4CCd8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b3:fb:6a:63:58:a8:45:23:2b:97:b0:63:bd:ec:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43d518d7307788fca3891878490e4f32d9aaf6af Validity Not Before: Feb 9 14:00:17 2026 GMT Not After : Feb 10 14:00:17 2026 GMT Subject: CN=a9bfa0cbc80c3622592b7e42f0dafdb3785c79e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:14:16:f0:2b:1c:7b:47:2d:c2:17:30:c8:0b: 96:f7:65:0d:68:5f:8d:ba:bf:57:06:2d:b4:5e:a0: b4:ac:1b:90:43:6b:02:53:77:b8:3d:99:eb:70:5c: 37:28:b5:e3:21:69:a1:98:94:2e:80:52:f7:ca:a1: ce:3a:9b:d3:a7:dd:f8:c4:92:e0:75:2a:f2:50:b4: 2f:57:b8:42:9e:44:cc:de:b0:e7:14:c3:63:52:c1: e0:e2:13:03:b7:5c:1e:8c:80:5b:e9:50:29:30:c6: 24:ff:da:be:e0:f1:e1:cb:85:8b:9a:72:96:78:ce: 34:ee:0c:a0:ee:ac:38:b6:83:66:10:94:12:39:0e: 9d:df:53:3f:c1:2c:49:f7:37:63:a0:46:e6:ff:34: e0:54:2a:0f:dc:96:df:a1:c4:49:dc:54:04:ab:62: 6b:00:47:ef:b4:67:29:92:f8:ab:ce:ca:d5:7c:1b: 89:93:89:3a:5c:cf:e5:53:aa:ad:75:e9:48:b9:39: f7:cd:07:a1:92:33:e2:49:41:63:34:37:7a:5e:97: 4b:c3:10:ac:fb:62:e3:9b:1c:27:36:dc:df:67:60: 07:9c:c0:89:fb:d5:33:41:5b:30:76:6e:c5:5d:26: e3:01:c2:9c:4f:db:01:1b:33:b9:f3:f4:ae:6e:7c: 1a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:BF:A0:CB:C8:0C:36:22:59:2B:7E:42:F0:DA:FD:B3:78:5C:79:E1 X509v3 Authority Key Identifier: keyid:43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:95:1d:34:c8:7a:84:aa:6d:07:88:6c:0c:e1:c3:17:80:a7: 0c:a5:9d:48:20:2f:0c:6a:94:7d:e1:95:41:a9:4a:12:1d:0f: a4:48:78:15:4d:4c:5a:1f:a3:55:33:a6:27:ee:b2:53:1f:26: 29:84:1f:c1:66:5c:ec:4b:c2:2f:ba:d6:96:a5:90:ef:a0:34: da:ef:4c:ba:59:7e:f3:37:42:d2:b8:46:9c:4b:ca:c5:b2:dd: c5:4d:6a:a3:e1:0d:03:89:18:34:1a:56:88:f9:20:cd:62:f6: d7:92:9a:44:10:15:ee:eb:5c:2b:6a:b5:47:fc:c4:62:14:cb: 4e:bf:99:17:31:7f:8a:68:5b:cd:89:93:59:ba:26:ef:0d:a9: ad:f2:6b:85:fb:fe:4d:5e:66:aa:f1:c2:ed:fd:a5:8d:42:11: 02:61:f0:a8:71:9c:aa:a2:60:c9:64:6d:dc:ec:dd:73:bd:51: 19:1d:3e:8c:34:4c:95:aa:8f:55:9d:2b:88:f6:49:a6:61:4c: dd:b9:4b:fa:78:9f:1e:e5:aa:9a:17:04:da:84:e2:0e:99:b7: 13:70:7e:c2:2c:ef:c9:db:70:7e:28:45:3e:97:e2:27:1e:fb: 47:3a:c2:ff:76:10:d4:4e:9e:a8:b9:8d:be:c7:1b:b7:22:e5: 3b:fa:35:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCs/tqY1ioRSMrl7Bjvew6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzZDUxOGQ3MzA3Nzg4ZmNhMzg5MTg3ODQ5MGU0ZjMyZDlh YWY2YWYwHhcNMjYwMjA5MTQwMDE3WhcNMjYwMjEwMTQwMDE3WjAzMTEwLwYDVQQD EyhhOWJmYTBjYmM4MGMzNjIyNTkyYjdlNDJmMGRhZmRiMzc4NWM3OWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4BQW8Csce0ctwhcwyAuW92UNaF+N ur9XBi20XqC0rBuQQ2sCU3e4PZnrcFw3KLXjIWmhmJQugFL3yqHOOpvTp934xJLg dSryULQvV7hCnkTM3rDnFMNjUsHg4hMDt1wejIBb6VApMMYk/9q+4PHhy4WLmnKW eM407gyg7qw4toNmEJQSOQ6d31M/wSxJ9zdjoEbm/zTgVCoP3JbfocRJ3FQEq2Jr AEfvtGcpkvirzsrVfBuJk4k6XM/lU6qtdelIuTn3zQehkjPiSUFjNDd6XpdLwxCs +2LjmxwnNtzfZ2AHnMCJ+9UzQVswdm7FXSbjAcKcT9sBGzO58/SubnwazwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKm/oMvIDDYiWSt+QvDa/bN4XHnhMB8GA1UdIwQY MBaAFEPVGNcwd4j8o4kYeEkOTzLZqvavMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTlVWTF6QjNpUHlqaVJoNFNRNVBNdG1xOXE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9hYjdjYWEtOGJjNS00YmNlLWExMzAt ZWRkZjMyMGQ1MGUyLzEvUTlVWTF6QjNpUHlqaVJoNFNRNVBNdG1xOXE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9hYjdjYWEtOGJjNS00YmNlLWExMzAtZWRkZjMyMGQ1MGUy LzEvUTlVWTF6QjNpUHlqaVJoNFNRNVBNdG1xOXE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANZUdNMh6 hKptB4hsDOHDF4CnDKWdSCAvDGqUfeGVQalKEh0PpEh4FU1MWh+jVTOmJ+6yUx8m KYQfwWZc7EvCL7rWlqWQ76A02u9Mull+8zdC0rhGnEvKxbLdxU1qo+ENA4kYNBpW iPkgzWL215KaRBAV7utcK2q1R/zEYhTLTr+ZFzF/imhbzYmTWbom7w2prfJrhfv+ TV5mqvHC7f2ljUIRAmHwqHGcqqJgyWRt3Ozdc71RGR0+jDRMlaqPVZ0riPZJpmFM 3blL+nifHuWqmhcE2oTiDpm3E3B+wizvydtwfihFPpfiJx77RzrC/3YQ1E6eqLmN vscbtyLlO/o1tw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:59 2026 by rpki-client