This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft File: QTJyL2byeskHL9x-kx9uGoUTz8Y.mft (raw, json) Hash identifier: AAwFAkoW8iGHxvEot3r30EwxxTPBKH23VQDtgHegKAw= Subject key identifier: 59:06:4E:6D:58:04:90:8E:1F:34:89:F1:80:09:3C:9E:4D:07:3A:E3 Authority key identifier: 41:32:72:2F:66:F2:7A:C9:07:2F:DC:7E:93:1F:6E:1A:85:13:CF:C6 Certificate issuer: /CN=4132722f66f27ac9072fdc7e931f6e1a8513cfc6 Certificate serial: 019C43226629EF7079051A0517A59BE3D3F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTJyL2byeskHL9x-kx9uGoUTz8Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft Manifest number: 0329 Signing time: Mon 09 Feb 2026 16:00:53 +0000 Manifest this update: Mon 09 Feb 2026 16:00:53 +0000 Manifest next update: Tue 10 Feb 2026 16:00:53 +0000 Files and hashes: 1: QTJyL2byeskHL9x-kx9uGoUTz8Y.crl (hash: JJ3tLlhNt2YmZVxV7cNoh3v9o9R9kRLb6oPzYujuzt8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.crl rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft rsync://rpki.ripe.net/repository/DEFAULT/QTJyL2byeskHL9x-kx9uGoUTz8Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:66:29:ef:70:79:05:1a:05:17:a5:9b:e3:d3:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4132722f66f27ac9072fdc7e931f6e1a8513cfc6 Validity Not Before: Feb 9 16:00:53 2026 GMT Not After : Feb 10 16:00:53 2026 GMT Subject: CN=59064e6d5804908e1f3489f180093c9e4d073ae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f5:74:4f:59:05:63:b1:b1:b4:d1:49:33:60: e6:64:31:e7:00:31:9e:20:d4:ec:69:f8:55:e9:8d: b8:ba:d7:bd:4c:46:5c:80:fb:fd:dd:1b:4f:5f:5a: 54:3f:50:92:74:e4:1c:e5:dc:b3:23:0e:09:27:1d: 0f:95:c2:d7:f3:6f:21:36:d1:d5:89:ff:73:23:5e: 27:e4:06:91:8b:8a:a7:5d:07:3c:b0:6e:8f:68:de: b4:b0:f7:ee:72:c4:5e:93:d2:78:51:ab:4a:c7:01: e6:f7:3a:fe:cb:ce:ce:73:b8:c1:bf:a5:bb:0a:9b: 3f:7d:a1:f9:b5:2e:bd:a0:c0:a8:a3:76:c0:96:3f: 5c:bd:c6:d9:62:14:7a:b6:fc:f3:ce:87:38:f6:7a: 80:8d:da:ee:3a:01:5b:d3:0f:0c:0f:52:63:53:b1: 95:c0:58:07:c1:23:d1:c5:1a:a0:a8:6b:08:35:9d: bd:fd:e9:95:66:4f:03:33:eb:bb:20:52:24:d9:11: 92:8c:45:83:4e:90:3a:a1:a2:1c:41:8a:f2:ab:6e: 16:53:c3:bd:4b:22:a9:e2:fd:8a:c8:d2:b6:2c:53: 27:62:64:09:a3:26:05:8b:6c:e7:26:c0:06:0f:f7: 92:35:5e:b0:3d:5d:30:ce:bc:7a:6e:23:8a:c5:07: 52:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:06:4E:6D:58:04:90:8E:1F:34:89:F1:80:09:3C:9E:4D:07:3A:E3 X509v3 Authority Key Identifier: keyid:41:32:72:2F:66:F2:7A:C9:07:2F:DC:7E:93:1F:6E:1A:85:13:CF:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTJyL2byeskHL9x-kx9uGoUTz8Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:6d:d8:40:63:86:29:bb:5b:d4:1e:11:3d:1f:34:8e:78:5f: 25:c3:88:df:d3:1c:0b:1d:f3:6d:63:32:f8:bf:d7:5f:e3:49: b4:d8:f6:dd:3d:82:67:10:60:0f:12:c4:71:f7:fe:30:a2:6c: 3a:e1:9f:aa:87:b7:69:5f:59:ab:15:41:0f:e3:45:8f:a9:a3: ee:b5:14:0c:92:ea:db:c0:44:ac:fc:23:7a:ff:62:45:8b:09: e4:55:30:14:1e:f2:94:80:06:aa:64:55:46:f4:71:f4:34:13: ba:24:d3:d1:24:e4:6e:b0:60:13:18:e0:82:8a:3b:92:0f:18: a8:78:13:ea:8f:51:f6:44:9e:86:9b:85:b9:e2:d8:ad:c7:15: 99:dc:78:b8:07:cc:04:5e:d2:16:94:fa:c1:c0:6a:95:85:10: 99:10:dc:e1:fd:f1:2b:9a:45:3c:ae:98:1a:7c:26:e5:30:dc: 67:1c:36:b9:c0:38:a9:ca:66:f2:3c:8d:b2:fb:52:63:dc:34: 19:90:68:70:5e:cc:5d:24:e1:9a:39:54:ce:a8:3f:95:40:c0: c5:c4:60:8c:ba:2c:d0:85:b2:fe:eb:61:84:ca:7e:8d:1d:54: a8:c3:d9:53:cb:8d:79:38:27:d2:b1:ab:8c:60:a1:71:03:b3: 9e:b7:31:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImYp73B5BRoFF6Wb49PwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxMzI3MjJmNjZmMjdhYzkwNzJmZGM3ZTkzMWY2ZTFhODUx M2NmYzYwHhcNMjYwMjA5MTYwMDUzWhcNMjYwMjEwMTYwMDUzWjAzMTEwLwYDVQQD Eyg1OTA2NGU2ZDU4MDQ5MDhlMWYzNDg5ZjE4MDA5M2M5ZTRkMDczYWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8PV0T1kFY7GxtNFJM2DmZDHnADGe INTsafhV6Y24ute9TEZcgPv93RtPX1pUP1CSdOQc5dyzIw4JJx0PlcLX828hNtHV if9zI14n5AaRi4qnXQc8sG6PaN60sPfucsRek9J4UatKxwHm9zr+y87Oc7jBv6W7 Cps/faH5tS69oMCoo3bAlj9cvcbZYhR6tvzzzoc49nqAjdruOgFb0w8MD1JjU7GV wFgHwSPRxRqgqGsINZ29/emVZk8DM+u7IFIk2RGSjEWDTpA6oaIcQYryq24WU8O9 SyKp4v2KyNK2LFMnYmQJoyYFi2znJsAGD/eSNV6wPV0wzrx6biOKxQdS3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFkGTm1YBJCOHzSJ8YAJPJ5NBzrjMB8GA1UdIwQY MBaAFEEyci9m8nrJBy/cfpMfbhqFE8/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVRKeUwyYnllc2tITDl4LWt4OXVHb1VUejhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My85ODUwNTYtNzQ4Zi00YjkyLWI2ZmUt NTRjMzdjMDJiN2VlLzEvUVRKeUwyYnllc2tITDl4LWt4OXVHb1VUejhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My85ODUwNTYtNzQ4Zi00YjkyLWI2ZmUtNTRjMzdjMDJiN2Vl LzEvUVRKeUwyYnllc2tITDl4LWt4OXVHb1VUejhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeW3YQGOG Kbtb1B4RPR80jnhfJcOI39McCx3zbWMy+L/XX+NJtNj23T2CZxBgDxLEcff+MKJs OuGfqoe3aV9ZqxVBD+NFj6mj7rUUDJLq28BErPwjev9iRYsJ5FUwFB7ylIAGqmRV RvRx9DQTuiTT0STkbrBgExjggoo7kg8YqHgT6o9R9kSehpuFueLYrccVmdx4uAfM BF7SFpT6wcBqlYUQmRDc4f3xK5pFPK6YGnwm5TDcZxw2ucA4qcpm8jyNsvtSY9w0 GZBocF7MXSThmjlUzqg/lUDAxcRgjLos0IWy/uthhMp+jR1UqMPZU8uNeTgn0rGr jGChcQOznrcxTg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:11 2026 by rpki-client