This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft File: q33wfyEEN2kvd-7DRpuaSCuW0ao.mft (raw, json) Hash identifier: JNPJgTda4UlMoIH6/R/xNSIUYpIR8csViKDWcJHm0Go= Subject key identifier: 9C:94:5F:24:50:48:06:3D:19:BC:D8:46:F6:B8:66:53:8B:37:AD:D0 Authority key identifier: AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA Certificate issuer: /CN=ab7df07f210437692f77eec3469b9a482b96d1aa Certificate serial: 019C4434C625A85CB17FBDB0AE70C7728E74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft Manifest number: 07A5 Signing time: Mon 09 Feb 2026 21:00:35 +0000 Manifest this update: Mon 09 Feb 2026 21:00:35 +0000 Manifest next update: Tue 10 Feb 2026 21:00:35 +0000 Files and hashes: 1: q33wfyEEN2kvd-7DRpuaSCuW0ao.crl (hash: rnAKv21tUimMp8J4oAyghg2MgXo02jCAH3dVvD+7jJI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:c6:25:a8:5c:b1:7f:bd:b0:ae:70:c7:72:8e:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab7df07f210437692f77eec3469b9a482b96d1aa Validity Not Before: Feb 9 21:00:35 2026 GMT Not After : Feb 10 21:00:35 2026 GMT Subject: CN=9c945f245048063d19bcd846f6b866538b37add0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:51:9a:26:3d:1e:23:1c:97:c7:8c:83:15:9b: 43:37:14:a0:72:32:79:63:ef:f6:c1:ab:54:93:30: 6d:c8:3f:be:51:e7:0f:73:84:bf:ca:d3:b1:40:e3: e6:1b:98:eb:35:1d:a6:65:6f:1b:85:2c:32:01:42: c0:0c:a2:fd:52:bf:05:8d:ff:63:94:eb:80:1a:c8: bb:37:71:6f:6a:c4:9b:67:0c:9f:5e:dc:45:fa:73: 74:f7:81:bb:19:9c:73:34:e4:4b:75:91:96:08:9b: 64:c3:c1:25:fa:04:6e:a6:2f:a5:49:83:57:5d:65: 6d:87:1a:4e:41:9e:8d:32:eb:75:3a:20:02:af:71: fa:92:2e:47:0d:e5:10:3b:39:8c:db:7c:0f:75:16: ea:4e:94:b8:71:54:2a:61:ea:06:a5:d0:67:e9:d7: 41:4f:c3:84:e6:d7:71:eb:af:7a:f2:e3:00:66:03: 5b:02:ee:b1:3f:19:2d:50:87:cb:8e:60:d8:da:09: e8:7a:ca:45:8b:b9:b8:78:2c:ed:f6:cb:54:36:7f: e0:59:ec:54:a0:80:1d:8f:4c:cf:05:8e:13:78:8e: f4:87:97:25:c3:5b:4f:8c:96:1c:d1:c0:2b:93:09: 8c:3f:28:4a:37:ef:d1:73:56:5c:be:c8:fa:1a:a2: 4f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:94:5F:24:50:48:06:3D:19:BC:D8:46:F6:B8:66:53:8B:37:AD:D0 X509v3 Authority Key Identifier: keyid:AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:f3:32:04:c2:4f:43:9f:2f:2a:22:eb:e7:50:f7:9e:10:a2: 69:c9:77:3e:ac:97:46:7d:57:1b:85:7b:ec:58:a3:50:eb:fa: a9:5c:bd:5a:f0:9a:e3:b2:a5:99:96:36:40:83:fa:5f:86:91: c1:90:7c:7c:4d:2a:4e:75:39:41:9b:be:c8:9c:2b:ba:9e:ad: f8:af:8d:cc:2b:71:ca:08:7f:31:b4:c2:24:bf:73:a0:c6:3a: 80:34:75:e1:69:f1:42:19:ff:17:86:23:ca:fb:c8:26:4f:46: 8a:6f:7b:f3:71:b8:ee:1c:a0:ab:43:0f:32:3a:07:73:fb:0f: fe:8f:38:bf:c9:74:68:97:f4:6f:e5:3e:90:f7:d6:6a:41:0c: 93:61:b8:21:c7:48:bc:ae:c9:46:3c:73:37:df:46:87:47:79: f4:dc:77:5e:d3:34:be:4a:81:d0:6b:f3:a3:92:5e:8d:64:a8: 80:d0:af:ff:35:c4:77:54:cd:96:da:f8:f1:34:ea:40:79:57: 86:cf:96:be:12:5e:c6:54:d1:9d:60:ac:0c:ef:db:d3:1e:0a: a8:7c:c6:42:ce:c3:8d:d8:fa:b8:dd:43:03:d6:87:40:38:62: 97:00:ce:b9:fd:e2:a1:92:47:f0:a1:6d:9c:34:46:3e:1f:47: 80:eb:d0:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENMYlqFyxf72wrnDHco50MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiN2RmMDdmMjEwNDM3NjkyZjc3ZWVjMzQ2OWI5YTQ4MmI5 NmQxYWEwHhcNMjYwMjA5MjEwMDM1WhcNMjYwMjEwMjEwMDM1WjAzMTEwLwYDVQQD Eyg5Yzk0NWYyNDUwNDgwNjNkMTliY2Q4NDZmNmI4NjY1MzhiMzdhZGQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFGaJj0eIxyXx4yDFZtDNxSgcjJ5 Y+/2watUkzBtyD++UecPc4S/ytOxQOPmG5jrNR2mZW8bhSwyAULADKL9Ur8Fjf9j lOuAGsi7N3FvasSbZwyfXtxF+nN094G7GZxzNORLdZGWCJtkw8El+gRupi+lSYNX XWVthxpOQZ6NMut1OiACr3H6ki5HDeUQOzmM23wPdRbqTpS4cVQqYeoGpdBn6ddB T8OE5tdx66968uMAZgNbAu6xPxktUIfLjmDY2gnoespFi7m4eCzt9stUNn/gWexU oIAdj0zPBY4TeI70h5clw1tPjJYc0cArkwmMPyhKN+/Rc1Zcvsj6GqJPUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJyUXyRQSAY9GbzYRva4ZlOLN63QMB8GA1UdIwQY MBaAFKt98H8hBDdpL3fuw0abmkgrltGqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTMzd2Z5RUVOMmt2ZC03RFJwdWFTQ3VXMGFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8yODc4NzAtMGUxYi00Y2QyLThmMjQt NjcxMGU5NmExYjZmLzEvcTMzd2Z5RUVOMmt2ZC03RFJwdWFTQ3VXMGFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS8yODc4NzAtMGUxYi00Y2QyLThmMjQtNjcxMGU5NmExYjZm LzEvcTMzd2Z5RUVOMmt2ZC03RFJwdWFTQ3VXMGFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt/MyBMJP Q58vKiLr51D3nhCiacl3PqyXRn1XG4V77FijUOv6qVy9WvCa47KlmZY2QIP6X4aR wZB8fE0qTnU5QZu+yJwrup6t+K+NzCtxygh/MbTCJL9zoMY6gDR14WnxQhn/F4Yj yvvIJk9Gim9783G47hygq0MPMjoHc/sP/o84v8l0aJf0b+U+kPfWakEMk2G4IcdI vK7JRjxzN99Gh0d59Nx3XtM0vkqB0Gvzo5JejWSogNCv/zXEd1TNltr48TTqQHlX hs+WvhJexlTRnWCsDO/b0x4KqHzGQs7Djdj6uN1DA9aHQDhilwDOuf3ioZJH8KFt nDRGPh9HgOvQdQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:00 2026 by rpki-client