This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft File: qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft (raw, json) Hash identifier: +slyNLiKDHri6mPytNb5K6ADGyiikNA+3HAoVIOLZwI= Subject key identifier: 81:3B:B2:86:05:10:16:3B:C7:5F:55:D2:0D:0C:64:81:34:15:FF:48 Authority key identifier: AA:4A:AC:19:48:CE:E2:3D:DF:4D:71:5F:80:35:22:F9:3B:0C:DD:B4 Certificate issuer: /CN=aa4aac1948cee23ddf4d715f803522f93b0cddb4 Certificate serial: 019C42EADAB07DEED60956202CE2AB8A5F10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft Manifest number: 09BD Signing time: Mon 09 Feb 2026 15:00:13 +0000 Manifest this update: Mon 09 Feb 2026 15:00:13 +0000 Manifest next update: Tue 10 Feb 2026 15:00:13 +0000 Files and hashes: 1: QRd4aPFV9jlBuWiqVWId4f78nwU.roa (hash: z76kR0ZXpWXElfaEyx2j2tbap+nSUCRwRkiT2NmSfmM=) 2: qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl (hash: ARKh0ZVf6MuagpWwZ6rT83+jvXpLzG/RDN9Sb/kB/fo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:ea:da:b0:7d:ee:d6:09:56:20:2c:e2:ab:8a:5f:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa4aac1948cee23ddf4d715f803522f93b0cddb4 Validity Not Before: Feb 9 15:00:13 2026 GMT Not After : Feb 10 15:00:13 2026 GMT Subject: CN=813bb2860510163bc75f55d20d0c64813415ff48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8c:6c:58:5d:21:2e:ab:f7:15:9d:a3:59:53: 63:49:89:c3:12:d2:aa:c0:41:ce:b8:58:e4:3e:2e: 25:b4:77:e1:de:4e:32:3d:d6:48:dc:12:b3:76:cf: 96:e8:b1:89:0f:8f:e8:ce:dd:f6:df:75:15:57:bc: 24:2f:95:0b:31:5b:2d:18:9d:0b:9f:aa:0b:51:b2: c0:48:06:55:bf:5d:a9:bb:fe:72:a9:f5:6c:2b:4c: fb:6d:64:95:75:cb:7b:14:ce:5c:34:7d:5d:9c:93: 2b:0a:67:29:79:9d:1c:44:5c:e5:d5:88:70:fc:07: 87:65:39:c7:7c:20:e2:19:2e:ca:a8:3b:b2:1c:9e: 75:76:d3:9c:b4:5a:3f:d3:6d:72:bc:29:cc:1e:e1: c8:8b:de:d7:b7:be:a7:a9:c1:23:19:1e:ef:6b:ca: 72:51:55:7a:51:ab:98:fd:c5:36:d7:a9:e8:a7:85: 81:b2:ca:c7:19:57:fd:c7:9b:94:82:7e:82:c3:b5: 22:da:7d:b7:02:6c:d1:f8:66:fa:15:64:a4:fe:45: 91:ca:54:13:ab:82:7e:57:ec:72:f9:a0:00:7e:98: 2a:d0:4b:2d:f0:10:0e:16:25:97:67:c6:56:87:fd: 40:66:ba:04:29:e2:ec:82:2d:f3:d9:1e:d5:28:fa: 85:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:3B:B2:86:05:10:16:3B:C7:5F:55:D2:0D:0C:64:81:34:15:FF:48 X509v3 Authority Key Identifier: keyid:AA:4A:AC:19:48:CE:E2:3D:DF:4D:71:5F:80:35:22:F9:3B:0C:DD:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:a1:10:16:63:11:f8:eb:ed:ea:3d:94:a9:93:d3:15:2f:23: 74:ad:f8:68:8e:91:a9:21:3f:a1:e5:3b:a2:75:e0:c1:30:c2: 06:9c:bd:a0:d7:0e:0a:26:b7:76:75:9f:5b:b9:9d:f3:f2:ed: 30:1d:e9:bd:64:fc:45:49:92:17:de:60:23:e1:30:3e:9c:d3: a3:a2:eb:ed:5b:ba:be:66:82:a5:f2:ff:25:59:fc:ba:7b:f9: aa:58:6d:49:c4:ca:5b:d0:37:b3:55:03:a9:63:fe:61:b2:79: a9:d2:2c:0c:9c:03:a1:9f:43:e3:0f:6c:a2:af:f4:35:9b:c1: 9f:42:37:ab:3c:ce:3e:48:ae:ac:77:e3:98:96:a6:84:21:33: 36:94:e4:97:8e:2d:b3:c1:bd:a8:2d:94:a4:d6:a5:f6:67:e4: 2d:18:cf:cd:ad:62:5f:2b:5a:c7:53:97:48:c7:2b:a5:96:77: 61:6b:95:76:34:c7:9e:25:33:79:d5:16:da:92:d0:22:2a:50: 8b:37:c7:b6:0d:4e:9a:9d:d0:5b:4a:66:7f:c1:16:20:e9:ef: 3e:1e:15:2a:71:67:a0:7a:5d:7c:a7:7d:67:ea:2e:a9:e7:b0: 1b:57:8a:58:4e:44:a4:24:3c:6f:e1:8d:8d:9b:3b:e0:69:bb: 89:69:7a:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6tqwfe7WCVYgLOKril8QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNGFhYzE5NDhjZWUyM2RkZjRkNzE1ZjgwMzUyMmY5M2Iw Y2RkYjQwHhcNMjYwMjA5MTUwMDEzWhcNMjYwMjEwMTUwMDEzWjAzMTEwLwYDVQQD Eyg4MTNiYjI4NjA1MTAxNjNiYzc1ZjU1ZDIwZDBjNjQ4MTM0MTVmZjQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIxsWF0hLqv3FZ2jWVNjSYnDEtKq wEHOuFjkPi4ltHfh3k4yPdZI3BKzds+W6LGJD4/ozt3233UVV7wkL5ULMVstGJ0L n6oLUbLASAZVv12pu/5yqfVsK0z7bWSVdct7FM5cNH1dnJMrCmcpeZ0cRFzl1Yhw /AeHZTnHfCDiGS7KqDuyHJ51dtOctFo/021yvCnMHuHIi97Xt76nqcEjGR7va8py UVV6UauY/cU216nop4WBssrHGVf9x5uUgn6Cw7Ui2n23AmzR+Gb6FWSk/kWRylQT q4J+V+xy+aAAfpgq0Est8BAOFiWXZ8ZWh/1AZroEKeLsgi3z2R7VKPqFvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIE7soYFEBY7x19V0g0MZIE0Ff9IMB8GA1UdIwQY MBaAFKpKrBlIzuI9301xX4A1Ivk7DN20MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWtxc0dVak80ajNmVFhGZmdEVWktVHNNM2JRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi8wNmIyNDEtNmRlNy00ODVjLTk4YWUt ZjliZDY0Y2E2ZTRjLzEvcWtxc0dVak80ajNmVFhGZmdEVWktVHNNM2JRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi8wNmIyNDEtNmRlNy00ODVjLTk4YWUtZjliZDY0Y2E2ZTRj LzEvcWtxc0dVak80ajNmVFhGZmdEVWktVHNNM2JRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhqEQFmMR +Ovt6j2UqZPTFS8jdK34aI6RqSE/oeU7onXgwTDCBpy9oNcOCia3dnWfW7md8/Lt MB3pvWT8RUmSF95gI+EwPpzTo6Lr7Vu6vmaCpfL/JVn8unv5qlhtScTKW9A3s1UD qWP+YbJ5qdIsDJwDoZ9D4w9soq/0NZvBn0I3qzzOPkiurHfjmJamhCEzNpTkl44t s8G9qC2UpNal9mfkLRjPza1iXytax1OXSMcrpZZ3YWuVdjTHniUzedUW2pLQIipQ izfHtg1Omp3QW0pmf8EWIOnvPh4VKnFnoHpdfKd9Z+ouqeewG1eKWE5EpCQ8b+GN jZs74Gm7iWl6fw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:05 2026 by rpki-client