This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft File: Q2TnsO7yBINcffKon2DAK-HYmt0.mft (raw, json) Hash identifier: Sg/N6oDr9xh/qqr1mGENgJ1/e3TDsiAcabh7fUrA3No= Subject key identifier: F2:01:65:EE:9A:E7:C6:7F:44:DA:35:82:48:64:0A:F2:64:A5:52:11 Authority key identifier: 43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD Certificate issuer: /CN=4364e7b0eef204835c7df2a89f60c02be1d89add Certificate serial: 019C439065A6C37A3E79B19ACF82F7E27F23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft Manifest number: 024F Signing time: Mon 09 Feb 2026 18:01:02 +0000 Manifest this update: Mon 09 Feb 2026 18:01:02 +0000 Manifest next update: Tue 10 Feb 2026 18:01:02 +0000 Files and hashes: 1: FQ4np3Uu_U8HBc_wlmyGfaHB8_k.roa (hash: ZMkh1EkPj0lBhpV7GegP5F1AQLzZZxZ3YJL9c+bLr0k=) 2: Q2TnsO7yBINcffKon2DAK-HYmt0.crl (hash: gc/0BsRcjsSeXBmHkW86tvfD4TGyzpVYQWA08OjNVog=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:65:a6:c3:7a:3e:79:b1:9a:cf:82:f7:e2:7f:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4364e7b0eef204835c7df2a89f60c02be1d89add Validity Not Before: Feb 9 18:01:02 2026 GMT Not After : Feb 10 18:01:02 2026 GMT Subject: CN=f20165ee9ae7c67f44da358248640af264a55211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:aa:6c:74:a6:49:2d:0e:e0:12:7c:70:06:b9: 99:05:26:9c:43:26:75:0e:cf:a9:f8:53:f4:38:6c: d1:e1:38:da:83:7b:30:96:19:1b:78:78:ee:1a:69: 12:12:2d:f0:6d:1e:88:3c:cd:dc:9c:7a:85:13:38: 81:55:1b:bd:30:36:15:7c:e2:6f:78:92:82:02:33: de:6a:09:48:f6:61:84:7e:f4:db:29:f4:95:51:2a: 31:80:ea:9d:ae:a2:5d:95:33:10:9e:37:37:ed:0b: 9f:df:03:66:e7:32:f5:67:31:c6:1a:5f:00:fe:ed: 31:53:5d:c8:9e:ed:f8:a5:d9:e4:82:2f:3d:eb:2f: 78:ff:57:2c:04:2b:72:7a:69:99:34:3a:87:e5:06: 04:ff:ed:b9:e0:a6:29:df:41:ca:fb:e5:92:a6:5e: 45:ef:ba:5e:4c:50:32:ea:fc:4e:67:ea:74:d7:81: 08:88:c8:12:5c:07:75:97:f0:f7:24:44:48:5b:10: 52:41:35:a4:da:a2:c7:12:6f:9a:b6:97:b5:a3:e3: b1:0c:27:88:8a:56:71:c8:d5:da:ec:0b:bc:97:d3: 6d:42:d4:41:f4:e5:05:23:a1:7c:33:d7:15:11:f3: e1:1a:4a:a5:b5:65:ef:3f:4d:54:0d:15:31:62:35: 8c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:01:65:EE:9A:E7:C6:7F:44:DA:35:82:48:64:0A:F2:64:A5:52:11 X509v3 Authority Key Identifier: keyid:43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:7b:11:bc:7c:a3:f0:70:21:a3:f6:02:19:29:db:0e:b1:56: 9a:ca:1a:4c:ce:fe:4f:06:b6:d0:14:68:79:91:31:6b:c9:94: 35:ae:33:d9:54:04:0f:07:1d:43:49:e4:08:9e:13:45:3b:81: a3:46:c9:05:be:47:d1:bb:df:59:58:b6:2a:b2:67:82:5f:48: f7:c5:bf:d9:67:26:75:c2:fe:a5:e9:91:cb:06:ef:da:8f:ff: 73:d5:24:30:b5:64:38:84:af:1f:64:d8:a4:5b:db:67:56:ef: b9:3c:d7:67:12:a1:54:ed:6f:89:64:35:d4:83:dd:e9:98:0e: 2f:fb:7e:ff:e7:3e:6b:5e:64:93:f4:7b:84:29:a3:46:42:80: 3e:9f:10:f0:1a:3d:25:81:59:12:ba:85:f7:fe:77:20:c6:cf: 15:38:c8:30:57:52:75:9d:e3:91:eb:ba:f9:19:fd:30:96:15: 4a:13:f8:f7:8d:c0:50:97:8d:b6:4c:31:65:fd:5b:25:c6:2a: c9:e2:36:61:6d:d7:4f:93:4d:e5:ee:7f:35:1c:f9:87:37:f3: 6c:3f:0f:77:9d:8e:31:a1:4c:a0:01:71:38:77:ea:8c:44:60: bf:c1:e7:c8:36:42:6d:28:a2:ad:61:18:2c:da:cb:06:c8:28: a8:50:c1:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkGWmw3o+ebGaz4L34n8jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNjRlN2IwZWVmMjA0ODM1YzdkZjJhODlmNjBjMDJiZTFk ODlhZGQwHhcNMjYwMjA5MTgwMTAyWhcNMjYwMjEwMTgwMTAyWjAzMTEwLwYDVQQD EyhmMjAxNjVlZTlhZTdjNjdmNDRkYTM1ODI0ODY0MGFmMjY0YTU1MjExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKpsdKZJLQ7gEnxwBrmZBSacQyZ1 Ds+p+FP0OGzR4Tjag3swlhkbeHjuGmkSEi3wbR6IPM3cnHqFEziBVRu9MDYVfOJv eJKCAjPeaglI9mGEfvTbKfSVUSoxgOqdrqJdlTMQnjc37Quf3wNm5zL1ZzHGGl8A /u0xU13Inu34pdnkgi896y94/1csBCtyemmZNDqH5QYE/+254KYp30HK++WSpl5F 77peTFAy6vxOZ+p014EIiMgSXAd1l/D3JERIWxBSQTWk2qLHEm+atpe1o+OxDCeI ilZxyNXa7Au8l9NtQtRB9OUFI6F8M9cVEfPhGkqltWXvP01UDRUxYjWMgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPIBZe6a58Z/RNo1gkhkCvJkpVIRMB8GA1UdIwQY MBaAFENk57Du8gSDXH3yqJ9gwCvh2JrdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTJUbnNPN3lCSU5jZmZLb24yREFLLUhZbXQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9hOWE1MWEtZThlMy00OTdhLWFiYTIt ZTc5OWMyM2FhYzIwLzEvUTJUbnNPN3lCSU5jZmZLb24yREFLLUhZbXQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS9hOWE1MWEtZThlMy00OTdhLWFiYTItZTc5OWMyM2FhYzIw LzEvUTJUbnNPN3lCSU5jZmZLb24yREFLLUhZbXQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJXsRvHyj 8HAho/YCGSnbDrFWmsoaTM7+Twa20BRoeZExa8mUNa4z2VQEDwcdQ0nkCJ4TRTuB o0bJBb5H0bvfWVi2KrJngl9I98W/2WcmdcL+pemRywbv2o//c9UkMLVkOISvH2TY pFvbZ1bvuTzXZxKhVO1viWQ11IPd6ZgOL/t+/+c+a15kk/R7hCmjRkKAPp8Q8Bo9 JYFZErqF9/53IMbPFTjIMFdSdZ3jkeu6+Rn9MJYVShP4943AUJeNtkwxZf1bJcYq yeI2YW3XT5NN5e5/NRz5hzfzbD8Pd52OMaFMoAFxOHfqjERgv8HnyDZCbSiirWEY LNrLBsgoqFDB9Q== -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:47 2026 by rpki-client