This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft File: QLt2qpbfjrfWd3s1clLhEVUjh4U.mft (raw, json) Hash identifier: 1E5hB5TRU2Lq3N6axSFF9iGF2CMmeBGEH9ksxe4eUnM= Subject key identifier: B3:9A:1D:9E:48:C4:A4:9B:4B:BB:4D:75:04:34:91:FE:4B:4D:70:B1 Authority key identifier: 40:BB:76:AA:96:DF:8E:B7:D6:77:7B:35:72:52:E1:11:55:23:87:85 Certificate issuer: /CN=40bb76aa96df8eb7d6777b357252e11155238785 Certificate serial: 019C41D8AB808664B49A4513E38D1098F56F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft Manifest number: 1568 Signing time: Mon 09 Feb 2026 10:00:44 +0000 Manifest this update: Mon 09 Feb 2026 10:00:44 +0000 Manifest next update: Tue 10 Feb 2026 10:00:44 +0000 Files and hashes: 1: QLt2qpbfjrfWd3s1clLhEVUjh4U.crl (hash: bKRT3Y25sAgcEaDXT4aE+I2T42J5MVKfD1Neq7KO9ks=) 2: lXeVvSBTU7kT9plGVLjP1SeM5e8.roa (hash: d6HLCVnG+FtyHmH62hlZHwElrQ46SkYz4wdJECCi/g0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.crl rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:ab:80:86:64:b4:9a:45:13:e3:8d:10:98:f5:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40bb76aa96df8eb7d6777b357252e11155238785 Validity Not Before: Feb 9 10:00:44 2026 GMT Not After : Feb 10 10:00:44 2026 GMT Subject: CN=b39a1d9e48c4a49b4bbb4d75043491fe4b4d70b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:34:cc:07:25:71:54:ad:b4:4b:14:eb:ad:2f: ef:6c:0b:32:80:08:cc:e7:15:a1:ae:a7:69:07:65: 11:94:e0:bc:bb:f6:ea:17:1d:ed:2c:4f:72:27:7d: 7f:82:f2:4f:40:90:bf:49:9e:92:cd:26:ef:5d:12: 04:95:f8:dc:2d:d1:97:52:10:ba:79:fa:6d:3f:10: 5b:c6:8b:24:1f:df:85:30:31:43:9f:ea:68:57:11: 3f:96:ee:ee:f0:54:74:04:00:fa:36:23:11:de:82: 84:4d:c5:07:87:9b:d7:2d:e3:a2:61:e0:b7:a8:dd: 74:67:9d:15:0c:4c:39:e7:e8:a9:0e:cd:77:40:b2: 91:e9:35:8e:20:cd:a8:45:42:f0:d9:4f:ab:80:b0: f4:d9:62:6a:f5:49:a1:1b:e9:84:f2:d8:c7:18:e9: 3c:06:48:a0:9c:a7:15:11:6d:68:9f:96:6a:7d:81: 7f:1f:b4:43:df:65:6f:9d:02:2d:d3:4a:9d:ac:33: a5:a4:4a:96:ec:b0:e2:e1:d7:cb:15:72:6b:e4:a6: 8f:1d:4a:8d:77:18:4b:b0:7c:d4:85:a7:7e:8f:9c: 46:64:f9:0b:dc:1d:8a:2f:b4:80:46:1e:62:71:14: 3b:ff:14:b3:a5:a0:09:c6:7d:ab:84:63:be:a0:26: 59:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:9A:1D:9E:48:C4:A4:9B:4B:BB:4D:75:04:34:91:FE:4B:4D:70:B1 X509v3 Authority Key Identifier: keyid:40:BB:76:AA:96:DF:8E:B7:D6:77:7B:35:72:52:E1:11:55:23:87:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:ac:a3:aa:03:5e:60:d7:44:1f:9f:6d:65:ff:87:72:7c:62: 8c:6e:04:b4:70:a8:20:ad:f0:1b:3b:0a:63:66:cd:e3:54:15: eb:bc:01:58:67:64:0f:c5:82:7b:51:fe:e7:07:5b:e9:6a:bb: 2a:87:bb:15:a4:3f:c9:ea:b9:cf:bb:09:cc:66:ed:e9:a0:27: 66:18:49:7a:80:7f:c8:84:7b:dc:dc:27:c7:af:95:f9:09:ef: d5:40:ac:d5:04:7b:04:6f:8d:53:25:5d:34:90:9e:c8:4b:b7: 90:18:68:40:34:d5:9b:5b:46:ac:ba:98:8f:0c:8c:74:3d:35: fb:f5:86:c7:6a:54:04:db:e0:f8:ed:4e:b3:7d:45:70:80:85: 8c:a1:4a:aa:7f:82:5b:25:35:ff:f2:ab:43:5e:16:2a:1e:5f: e7:cd:9e:c6:1e:cb:18:14:ff:0e:cf:14:f8:ed:67:78:1a:07: 2c:5d:b4:58:0b:8a:cb:27:62:8d:74:fb:89:5b:ac:af:10:66: d2:85:89:35:cf:80:49:d1:5c:6f:3c:43:28:aa:32:4e:90:f3: b2:81:df:21:88:b3:b4:5c:25:6a:ad:2e:8b:c9:70:35:62:5b: 19:90:f0:47:28:f7:5d:b5:63:98:76:ac:20:7a:2d:38:4f:b1: 29:9c:a9:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2KuAhmS0mkUT440QmPVvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwYmI3NmFhOTZkZjhlYjdkNjc3N2IzNTcyNTJlMTExNTUy Mzg3ODUwHhcNMjYwMjA5MTAwMDQ0WhcNMjYwMjEwMTAwMDQ0WjAzMTEwLwYDVQQD EyhiMzlhMWQ5ZTQ4YzRhNDliNGJiYjRkNzUwNDM0OTFmZTRiNGQ3MGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjTMByVxVK20SxTrrS/vbAsygAjM 5xWhrqdpB2URlOC8u/bqFx3tLE9yJ31/gvJPQJC/SZ6SzSbvXRIElfjcLdGXUhC6 efptPxBbxoskH9+FMDFDn+poVxE/lu7u8FR0BAD6NiMR3oKETcUHh5vXLeOiYeC3 qN10Z50VDEw55+ipDs13QLKR6TWOIM2oRULw2U+rgLD02WJq9UmhG+mE8tjHGOk8 BkignKcVEW1on5ZqfYF/H7RD32VvnQIt00qdrDOlpEqW7LDi4dfLFXJr5KaPHUqN dxhLsHzUhad+j5xGZPkL3B2KL7SARh5icRQ7/xSzpaAJxn2rhGO+oCZZVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLOaHZ5IxKSbS7tNdQQ0kf5LTXCxMB8GA1UdIwQY MBaAFEC7dqqW34631nd7NXJS4RFVI4eFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUx0MnFwYmZqcmZXZDNzMWNsTGhFVlVqaDRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9lMzFkNjgtY2I2My00YmQxLTk5Yjkt MzVlZTdhNzM5ZmQ5LzEvUUx0MnFwYmZqcmZXZDNzMWNsTGhFVlVqaDRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9lMzFkNjgtY2I2My00YmQxLTk5YjktMzVlZTdhNzM5ZmQ5 LzEvUUx0MnFwYmZqcmZXZDNzMWNsTGhFVlVqaDRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjKyjqgNe YNdEH59tZf+HcnxijG4EtHCoIK3wGzsKY2bN41QV67wBWGdkD8WCe1H+5wdb6Wq7 Koe7FaQ/yeq5z7sJzGbt6aAnZhhJeoB/yIR73Nwnx6+V+Qnv1UCs1QR7BG+NUyVd NJCeyEu3kBhoQDTVm1tGrLqYjwyMdD01+/WGx2pUBNvg+O1Os31FcICFjKFKqn+C WyU1//KrQ14WKh5f582exh7LGBT/Ds8U+O1neBoHLF20WAuKyydijXT7iVusrxBm 0oWJNc+ASdFcbzxDKKoyTpDzsoHfIYiztFwlaq0ui8lwNWJbGZDwRyj3XbVjmHas IHotOE+xKZyp8A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:39 2026 by rpki-client