This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json) Hash identifier: a9vtMiYLnyF3BJn9nKREyZs4YPLMYuT28AnfqX/SlGM= Subject key identifier: D8:6F:07:13:5E:54:64:26:0C:59:C6:FB:86:78:1A:AD:37:8C:0B:E4 Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa Certificate serial: 019C427D782D55690DA8AAE9A57EE47FAA0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft Manifest number: 0B94 Signing time: Mon 09 Feb 2026 13:00:44 +0000 Manifest this update: Mon 09 Feb 2026 13:00:44 +0000 Manifest next update: Tue 10 Feb 2026 13:00:44 +0000 Files and hashes: 1: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: xr+RwkL8dz4TRgHJvjyJrlH2rCV0LICT63Nmy8fIOBI=) 2: SD4DOOe1Q-YfVl5PpC2wzjneINo.roa (hash: rAueVU0HnCRC0myAX4koUuZ65An0z5mJknuS+tLrJrQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:78:2d:55:69:0d:a8:aa:e9:a5:7e:e4:7f:aa:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa Validity Not Before: Feb 9 13:00:44 2026 GMT Not After : Feb 10 13:00:44 2026 GMT Subject: CN=d86f07135e5464260c59c6fb86781aad378c0be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:73:c4:84:e2:02:15:f4:d6:9f:04:98:21:60: 33:26:98:d3:9b:38:96:9d:30:15:4d:00:c2:87:f7: b1:de:b4:18:20:45:66:94:d4:9c:66:2a:ff:b0:12: d6:ad:46:a2:1c:90:12:e1:45:8d:5c:cc:c4:01:d3: 2e:03:61:2d:19:42:bf:6d:26:cb:c4:d4:51:52:dc: 75:1f:26:63:be:c7:0a:3a:58:0e:80:6c:6c:10:b1: 1f:38:75:05:9f:d1:35:4e:78:0e:63:5e:37:49:2f: c2:06:c3:d2:11:49:0b:0d:35:f4:23:65:9b:57:1d: 5c:1d:97:4c:4c:58:ff:f0:36:ea:e3:6a:24:e2:1b: 26:e1:d4:7b:39:e7:c0:99:99:35:f8:fc:d3:e0:ce: 73:9d:8f:02:af:1c:93:e6:72:36:cb:ef:af:db:71: c1:98:e3:3c:14:67:35:e3:a3:bf:3a:c7:c6:75:ec: 15:6e:77:39:a7:c4:46:f3:37:a4:be:23:d1:04:cb: 44:c6:4a:1f:65:8b:65:6f:c1:51:a4:a8:55:af:87: e8:0b:5c:b9:61:cf:23:dd:f3:2b:1c:b1:00:ce:4f: 2c:3f:41:ab:75:95:41:4e:d5:3e:d9:fe:80:76:13: 2d:5f:1a:2c:b2:41:e9:19:19:ec:1b:02:51:69:96: 4c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:6F:07:13:5E:54:64:26:0C:59:C6:FB:86:78:1A:AD:37:8C:0B:E4 X509v3 Authority Key Identifier: keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:8d:eb:96:24:e0:1b:f1:a1:d1:e1:26:92:67:f3:19:6c:52: ea:15:27:82:bd:44:1d:5d:8e:3a:11:8b:b3:72:5b:b9:06:cc: 33:48:f0:07:ab:c5:13:e3:7d:18:c6:61:9e:9d:10:0c:ef:d1: f1:c9:ac:fc:c6:63:3b:39:23:63:41:fa:6d:e9:d0:56:c2:9f: 6e:dc:2d:85:83:ff:64:e6:f7:79:1f:64:4b:7b:1d:2b:11:3e: de:f7:00:31:d1:77:89:86:3c:f8:f1:45:53:f0:15:a0:a4:e9: 15:67:ef:8d:ea:96:db:c4:2a:bc:4e:7d:5d:e2:b5:41:6a:09: 65:07:95:11:ee:7d:45:67:3b:b2:3f:2d:87:1e:19:4c:cb:aa: 94:8b:75:77:f2:92:a3:b3:f5:49:e6:8e:1c:eb:5e:d5:63:5b: 03:8f:42:32:37:9f:c8:79:53:3b:4f:df:c7:96:21:6f:aa:96: 19:c8:81:00:f3:11:0c:48:0a:ad:50:f3:ef:a8:24:a4:71:4e: 50:af:f4:23:ec:ad:91:16:cb:03:11:8d:a6:14:dc:0c:79:47: 36:ab:a7:a4:06:50:0f:91:00:dd:90:97:09:cd:9b:23:9d:9a: 87:6c:16:e4:8a:fb:93:2e:6d:03:81:5d:84:23:12:e2:4e:31: de:a1:c4:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfXgtVWkNqKrppX7kf6oNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxOGQ1NGI1NWIxOTJhMjQ4Yjg0NzIzNGRiYTUxMmY5NzYw Y2FiZmEwHhcNMjYwMjA5MTMwMDQ0WhcNMjYwMjEwMTMwMDQ0WjAzMTEwLwYDVQQD EyhkODZmMDcxMzVlNTQ2NDI2MGM1OWM2ZmI4Njc4MWFhZDM3OGMwYmU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3PEhOICFfTWnwSYIWAzJpjTmziW nTAVTQDCh/ex3rQYIEVmlNScZir/sBLWrUaiHJAS4UWNXMzEAdMuA2EtGUK/bSbL xNRRUtx1HyZjvscKOlgOgGxsELEfOHUFn9E1TngOY143SS/CBsPSEUkLDTX0I2Wb Vx1cHZdMTFj/8Dbq42ok4hsm4dR7OefAmZk1+PzT4M5znY8CrxyT5nI2y++v23HB mOM8FGc146O/OsfGdewVbnc5p8RG8zekviPRBMtExkofZYtlb8FRpKhVr4foC1y5 Yc8j3fMrHLEAzk8sP0GrdZVBTtU+2f6AdhMtXxosskHpGRnsGwJRaZZMMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNhvBxNeVGQmDFnG+4Z4Gq03jAvkMB8GA1UdIwQY MBaAFEGNVLVbGSoki4RyNNulEvl2DKv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVkxVXRWc1pLaVNMaEhJMDI2VVMtWFlNcV9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9iNDM4NTctMDIxYy00MjYyLWIxODMt MWQ3N2NmMmE3MTAwLzEvUVkxVXRWc1pLaVNMaEhJMDI2VVMtWFlNcV9vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9iNDM4NTctMDIxYy00MjYyLWIxODMtMWQ3N2NmMmE3MTAw LzEvUVkxVXRWc1pLaVNMaEhJMDI2VVMtWFlNcV9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcY3rliTg G/Gh0eEmkmfzGWxS6hUngr1EHV2OOhGLs3JbuQbMM0jwB6vFE+N9GMZhnp0QDO/R 8cms/MZjOzkjY0H6benQVsKfbtwthYP/ZOb3eR9kS3sdKxE+3vcAMdF3iYY8+PFF U/AVoKTpFWfvjeqW28QqvE59XeK1QWoJZQeVEe59RWc7sj8thx4ZTMuqlIt1d/KS o7P1SeaOHOte1WNbA49CMjefyHlTO0/fx5Yhb6qWGciBAPMRDEgKrVDz76gkpHFO UK/0I+ytkRbLAxGNphTcDHlHNqunpAZQD5EA3ZCXCc2bI52ah2wW5Ir7ky5tA4Fd hCMS4k4x3qHEkA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:31 2026 by rpki-client