This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft File: qmWvaX3x9s2vTLvWbePUO-2GnpA.mft (raw, json) Hash identifier: OLhQAHVR9dTc5fthEC5gqng9xQGc2UNdSehYnumKQFY= Subject key identifier: F0:7E:46:63:B8:BF:A4:2B:A1:A1:E0:33:50:8B:8D:73:00:EB:23:69 Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90 Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90 Certificate serial: 019C416A832BC1C2DDB670186D2E124116CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft Manifest number: 0E2C Signing time: Mon 09 Feb 2026 08:00:25 +0000 Manifest this update: Mon 09 Feb 2026 08:00:25 +0000 Manifest next update: Tue 10 Feb 2026 08:00:25 +0000 Files and hashes: 1: PGUUZM8u8YWCrmYPpZ5UGlkMe7E.roa (hash: vabTxUmDYcjlCjqakgT+rEZSHxdr7LOmZlkCx88W/fM=) 2: qmWvaX3x9s2vTLvWbePUO-2GnpA.crl (hash: ZVwWw6QQPfX9zbrDzSlxATKqf7Z2EXQC4p3l4uqK80o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:83:2b:c1:c2:dd:b6:70:18:6d:2e:12:41:16:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90 Validity Not Before: Feb 9 08:00:25 2026 GMT Not After : Feb 10 08:00:25 2026 GMT Subject: CN=f07e4663b8bfa42ba1a1e033508b8d7300eb2369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b6:0a:1f:38:d4:7e:3e:0f:02:39:07:09:3f: 7a:f5:34:53:cb:85:09:d7:d8:2e:d4:e9:f4:f8:be: c5:f7:3f:8c:8c:4e:06:91:32:1f:0b:db:75:99:32: e3:b6:b6:8f:56:e0:42:1f:70:c9:8e:cc:2c:fb:8a: 78:c7:11:23:ec:39:40:25:89:57:dc:4f:13:6b:78: c9:7b:0f:2a:1a:54:57:e4:27:75:e2:a8:dd:5f:59: 71:66:9a:89:8c:93:06:d3:b0:d3:06:78:b0:54:ca: f8:bc:00:78:fe:5e:07:46:ce:96:4d:d4:54:6d:14: 16:d8:82:04:e1:87:ad:aa:f1:c5:2e:95:c3:b1:2f: be:69:79:26:c1:6c:26:42:80:a1:15:a6:88:d1:38: 65:bb:49:1a:79:89:0a:2b:10:46:53:2a:78:a0:db: 60:ca:f7:10:37:cf:e4:62:23:6b:51:bf:a5:f4:fb: 01:b6:da:f3:a4:23:8e:c8:2e:8b:3b:51:d3:07:e1: 31:f5:5c:91:3a:3d:63:85:91:d8:ac:cd:c7:6c:de: 9e:41:a2:1c:7c:8d:14:fe:74:89:f1:78:50:57:b5: cf:34:41:40:e3:64:2e:22:66:c3:ee:27:ca:b0:c1: 31:bb:1e:0e:91:c4:00:fb:55:32:f4:99:d3:89:00: 54:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7E:46:63:B8:BF:A4:2B:A1:A1:E0:33:50:8B:8D:73:00:EB:23:69 X509v3 Authority Key Identifier: keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:77:08:21:80:d1:04:cf:e8:83:a0:ad:3b:7b:0c:f7:3f:21: 30:ea:8f:f0:02:97:61:77:30:db:03:4d:68:85:89:83:9f:80: d7:ac:f4:76:24:bc:4f:86:25:ae:69:9a:cb:4d:03:a0:75:bc: 20:56:1d:26:f7:2a:de:b2:fb:45:db:39:02:1f:94:94:2b:19: 2a:f2:0f:a3:b9:7d:60:f5:d4:36:50:56:57:4c:f4:43:04:16: e4:54:10:1b:5d:34:9f:3b:bd:be:1e:4b:a1:f1:4c:3c:f5:40: ca:b4:7e:6d:43:72:d4:54:96:da:7d:3c:b2:b8:3c:10:4d:51: 91:f0:10:f1:27:15:21:07:5a:94:f9:82:f4:3c:0b:b5:b3:b9: f7:c4:e1:5b:f3:10:55:15:8e:66:ed:2c:31:35:1c:2b:68:1b: 22:3c:49:e2:87:99:5d:ce:7f:f2:33:5a:5a:a8:0c:86:da:5a: d6:7e:ed:a2:35:f1:d7:de:0d:65:a9:a5:c5:65:bc:33:4d:00: 65:1e:5c:78:2e:e4:cc:5a:1e:55:79:b8:79:62:5e:12:cb:b4: bb:b6:d4:9a:61:00:c1:e1:c0:e0:0c:c9:0e:44:78:14:00:5d: 50:04:7c:0b:b9:69:cd:e1:b6:7c:02:f4:9e:00:ac:4b:5e:29: e7:f4:80:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBaoMrwcLdtnAYbS4SQRbPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNjVhZjY5N2RmMWY2Y2RhZjRjYmJkNjZkZTNkNDNiZWQ4 NjllOTAwHhcNMjYwMjA5MDgwMDI1WhcNMjYwMjEwMDgwMDI1WjAzMTEwLwYDVQQD EyhmMDdlNDY2M2I4YmZhNDJiYTFhMWUwMzM1MDhiOGQ3MzAwZWIyMzY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrYKHzjUfj4PAjkHCT969TRTy4UJ 19gu1On0+L7F9z+MjE4GkTIfC9t1mTLjtraPVuBCH3DJjsws+4p4xxEj7DlAJYlX 3E8Ta3jJew8qGlRX5Cd14qjdX1lxZpqJjJMG07DTBniwVMr4vAB4/l4HRs6WTdRU bRQW2IIE4YetqvHFLpXDsS++aXkmwWwmQoChFaaI0Thlu0kaeYkKKxBGUyp4oNtg yvcQN8/kYiNrUb+l9PsBttrzpCOOyC6LO1HTB+Ex9VyROj1jhZHYrM3HbN6eQaIc fI0U/nSJ8XhQV7XPNEFA42QuImbD7ifKsMExux4OkcQA+1Uy9JnTiQBUMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPB+RmO4v6QroaHgM1CLjXMA6yNpMB8GA1UdIwQY MBaAFKplr2l98fbNr0y71m3j1Dvthp6QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcW1XdmFYM3g5czJ2VEx2V2JlUFVPLTJHbnBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8wNDAxOWMtYWQxNy00MjhkLWIzYTIt MWJlMTNiYThkNDU2LzEvcW1XdmFYM3g5czJ2VEx2V2JlUFVPLTJHbnBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8wNDAxOWMtYWQxNy00MjhkLWIzYTItMWJlMTNiYThkNDU2 LzEvcW1XdmFYM3g5czJ2VEx2V2JlUFVPLTJHbnBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOHcIIYDR BM/og6CtO3sM9z8hMOqP8AKXYXcw2wNNaIWJg5+A16z0diS8T4Ylrmmay00DoHW8 IFYdJvcq3rL7Rds5Ah+UlCsZKvIPo7l9YPXUNlBWV0z0QwQW5FQQG100nzu9vh5L ofFMPPVAyrR+bUNy1FSW2n08srg8EE1RkfAQ8ScVIQdalPmC9DwLtbO598ThW/MQ VRWOZu0sMTUcK2gbIjxJ4oeZXc5/8jNaWqgMhtpa1n7tojXx194NZamlxWW8M00A ZR5ceC7kzFoeVXm4eWJeEsu0u7bUmmEAweHA4AzJDkR4FABdUAR8C7lpzeG2fAL0 ngCsS14p5/SAZA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:00 2026 by rpki-client