This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft File: fQtE5JJUnht9pTLIDDSIUMWkToA.mft (raw, json) Hash identifier: m1Th1vnkW2vUq5Fc6u/uC+dqkPgulZ4+uZusM9KocFk= Subject key identifier: EE:3E:D0:AC:4A:6E:BC:98:E1:D3:35:70:F5:31:A6:3C:15:4F:65:03 Authority key identifier: 7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80 Certificate issuer: /CN=7d0b44e492549e1b7da532c80c348850c5a44e80 Certificate serial: 019C42467843E75210A39C87C4E209222C14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 12:00:40 +0000 Manifest this update: Mon 09 Feb 2026 12:00:40 +0000 Manifest next update: Tue 10 Feb 2026 12:00:40 +0000 Files and hashes: 1: fQtE5JJUnht9pTLIDDSIUMWkToA.crl (hash: c4el5esBj5iQbAsez1XpbAbKDS+wdPEqHXrbT1V1b64=) 2: uTfCO2CQvjnwzxgvmE8a-0Q3PkE.roa (hash: uXLhOjnuwZec+7he1bSLRYP9Be1CjyK6Z98Hp44cEVE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:78:43:e7:52:10:a3:9c:87:c4:e2:09:22:2c:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d0b44e492549e1b7da532c80c348850c5a44e80 Validity Not Before: Feb 9 12:00:40 2026 GMT Not After : Feb 10 12:00:40 2026 GMT Subject: CN=ee3ed0ac4a6ebc98e1d33570f531a63c154f6503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2e:7f:9c:21:85:ff:d7:c5:3f:8e:d1:1e:b6: 0b:ac:70:fc:b4:23:54:df:bd:7b:0c:0d:61:5c:0a: d3:ef:1d:99:ba:2c:37:1e:90:48:70:6f:86:7b:ec: b4:7f:fd:62:3d:e9:c5:6b:60:64:c0:89:d2:95:c1: ff:6f:5b:6c:eb:7b:12:fd:c8:c1:28:ad:71:b7:0c: fd:03:69:d4:5d:1a:1d:c8:60:cc:25:e0:c2:b2:44: 2e:cb:c9:f8:20:ad:9d:e9:31:c1:d0:a8:9a:50:07: c0:94:14:c0:77:f7:c8:bc:3f:ef:ca:e2:7d:ef:4f: 9e:25:04:be:c6:7f:ac:64:30:ad:86:d8:08:d9:14: b1:d7:da:92:eb:5a:b7:22:09:b4:81:3b:94:c7:64: cf:07:1b:88:0b:fb:7c:85:ca:06:10:22:52:28:43: 10:95:c2:1f:ea:fd:aa:b2:c7:18:74:19:48:72:18: b3:17:7a:2b:6d:5e:0b:24:d1:56:39:f2:b4:2a:8a: a9:96:7c:ea:48:05:fc:28:eb:0c:48:d1:f0:36:a5: 10:a3:4f:bd:7b:16:86:9b:29:ee:20:13:49:e5:39: f9:4c:6c:e2:04:97:f0:51:0d:7b:f8:db:d1:8c:9b: ad:57:23:dc:c0:8d:9c:ce:38:d6:23:73:42:11:ea: 48:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:3E:D0:AC:4A:6E:BC:98:E1:D3:35:70:F5:31:A6:3C:15:4F:65:03 X509v3 Authority Key Identifier: keyid:7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:10:19:64:a4:cf:a0:a2:3e:a7:32:35:c8:67:3c:ae:b7:85: be:57:0e:a7:61:15:41:2a:fe:ff:f7:19:81:37:6f:c1:a2:c6: 4b:7e:01:33:ab:68:b2:57:b6:d4:4d:70:46:ea:03:8c:84:3f: ff:e6:70:c9:38:94:84:31:6a:ee:62:51:51:3f:21:72:4d:55: 6c:fc:cb:19:68:0d:15:1d:1e:c4:51:52:ae:ea:81:d8:ba:79: 23:81:44:d9:2b:b9:a2:de:40:8f:8f:79:9b:99:04:e4:84:0e: b1:44:dd:fc:e2:9c:00:43:ce:3d:f2:5b:b9:2b:1a:47:52:09: be:e0:32:50:ea:35:5f:34:5f:d9:f1:b0:12:70:19:46:1c:0d: 4a:1b:60:ce:0f:9a:47:2a:98:1c:e0:ad:2e:26:72:c0:1e:60: 7f:a4:1f:cd:27:19:c2:d7:ad:3b:d6:cf:39:2a:d2:b2:b8:e0: 82:ae:68:f1:51:04:dc:11:b5:f9:be:ed:51:2a:c4:4c:ae:67: 6b:c7:59:6f:84:dd:e5:63:99:59:22:05:5b:e5:40:f6:d4:0e: a6:d6:e7:9f:8b:2a:d4:13:0e:ee:fd:a5:11:ea:e1:dd:98:23: f1:bf:ee:74:ca:02:61:4c:e4:50:d8:73:49:8f:98:23:9f:5f: 4e:b4:57:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRnhD51IQo5yHxOIJIiwUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkMGI0NGU0OTI1NDllMWI3ZGE1MzJjODBjMzQ4ODUwYzVh NDRlODAwHhcNMjYwMjA5MTIwMDQwWhcNMjYwMjEwMTIwMDQwWjAzMTEwLwYDVQQD EyhlZTNlZDBhYzRhNmViYzk4ZTFkMzM1NzBmNTMxYTYzYzE1NGY2NTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6S5/nCGF/9fFP47RHrYLrHD8tCNU 3717DA1hXArT7x2Zuiw3HpBIcG+Ge+y0f/1iPenFa2BkwInSlcH/b1ts63sS/cjB KK1xtwz9A2nUXRodyGDMJeDCskQuy8n4IK2d6THB0KiaUAfAlBTAd/fIvD/vyuJ9 70+eJQS+xn+sZDCthtgI2RSx19qS61q3Igm0gTuUx2TPBxuIC/t8hcoGECJSKEMQ lcIf6v2qsscYdBlIchizF3orbV4LJNFWOfK0KoqplnzqSAX8KOsMSNHwNqUQo0+9 exaGmynuIBNJ5Tn5TGziBJfwUQ17+NvRjJutVyPcwI2czjjWI3NCEepIoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO4+0KxKbryY4dM1cPUxpjwVT2UDMB8GA1UdIwQY MBaAFH0LROSSVJ4bfaUyyAw0iFDFpE6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZlF0RTVKSlVuaHQ5cFRMSUREU0lVTVdrVG9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9iOTIzMWYtYjNkZi00MDEyLTk2ZDct NzIwNGI4MTEyNTBmLzEvZlF0RTVKSlVuaHQ5cFRMSUREU0lVTVdrVG9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS9iOTIzMWYtYjNkZi00MDEyLTk2ZDctNzIwNGI4MTEyNTBm LzEvZlF0RTVKSlVuaHQ5cFRMSUREU0lVTVdrVG9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASBAZZKTP oKI+pzI1yGc8rreFvlcOp2EVQSr+//cZgTdvwaLGS34BM6tosle21E1wRuoDjIQ/ /+ZwyTiUhDFq7mJRUT8hck1VbPzLGWgNFR0exFFSruqB2Lp5I4FE2Su5ot5Aj495 m5kE5IQOsUTd/OKcAEPOPfJbuSsaR1IJvuAyUOo1XzRf2fGwEnAZRhwNShtgzg+a RyqYHOCtLiZywB5gf6QfzScZwtetO9bPOSrSsrjggq5o8VEE3BG1+b7tUSrETK5n a8dZb4Td5WOZWSIFW+VA9tQOptbnn4sq1BMO7v2lEerh3Zgj8b/udMoCYUzkUNhz SY+YI59fTrRXbQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:25 2026 by rpki-client