This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json) Hash identifier: pZeSCu3Sv7yBxwvw8kKUio7unXTiBIaVhgasJetgFIM= Subject key identifier: 99:27:05:7D:CC:02:B3:09:06:87:6A:DC:C3:68:94:45:0B:58:D3:41 Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Certificate serial: 019C42B4A3BC42DF8D3F6FA0620DB00666B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft Manifest number: 1824 Signing time: Mon 09 Feb 2026 14:01:00 +0000 Manifest this update: Mon 09 Feb 2026 14:01:00 +0000 Manifest next update: Tue 10 Feb 2026 14:01:00 +0000 Files and hashes: 1: GlqGr2JXY3PhL5VUlM1NVcQhR0w.roa (hash: eNE9wH9uFmshNKZCXrztw6ppTkQy/INcRXUojDA/i0Q=) 2: MNCcfOf0YS36WqFOiIyVG7kT7lw.roa (hash: xDxtOXtE08yNKWuVaze/oNgNsHgsu08VrPvfwX+Etss=) 3: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: J422BZc/PP/elTaCP2aZ1qEee1ha7Nve2fVVTrAgzOc=) 4: WjEJKBNSHVEcN3ymO9d7rBHNhsg.roa (hash: /ukNM+uY+q4nZGfneifUiM0pEWc8ClpbPhjLj7YvUSQ=) 5: ZkpkKq6oEr-_I6JVpG2CjygiNpU.roa (hash: iZ1/Xaqf4kk2t//5gAR8BRoA23b+RGLpyfieDXD6saI=) 6: fh7S3k35orygy_NxNIqp6F0-sJI.roa (hash: XfQHhVDUDcNs2QAWWCjGzgrFd34jfifMCK0Ay/ulRf8=) 7: uNc9xxeMsmhjoPp_AoWS-X6p82U.roa (hash: Ic5jIOaYkijIZKE1wsb+bGe4vb/8GZ2qRJh6Qu5nzIs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:a3:bc:42:df:8d:3f:6f:a0:62:0d:b0:06:66:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Validity Not Before: Feb 9 14:01:00 2026 GMT Not After : Feb 10 14:01:00 2026 GMT Subject: CN=9927057dcc02b30906876adcc36894450b58d341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3d:56:18:6f:cb:ca:a4:82:5a:cf:40:ae:74: 42:8a:ec:53:41:5e:f6:60:0f:3c:82:8b:60:3d:a1: da:b5:ee:5d:34:50:fb:e0:8c:96:bb:4b:7e:07:cd: 11:1b:78:05:db:6c:1d:b8:5b:0a:30:c4:fd:23:1e: de:d6:18:b0:60:b2:d9:4b:82:05:b0:c7:73:20:d7: 7c:2e:d9:1b:7e:93:3a:92:fc:a7:1a:29:63:2f:33: 14:09:cd:15:03:e5:12:3e:55:56:9d:00:df:6a:a9: 5b:4a:ef:81:4e:7b:93:eb:19:f1:be:17:5a:f6:54: 47:be:e7:ab:63:1b:ee:8a:be:c5:4f:d6:15:d4:74: 23:7f:a3:4c:51:ba:24:02:18:ee:3a:f1:25:63:ba: b2:aa:7d:84:2d:4c:43:fa:c9:2d:1d:98:d3:ce:3a: 79:30:f8:48:13:bd:76:29:20:53:bf:07:51:9a:86: 25:2b:d0:ca:1b:ab:6a:5c:71:1c:19:57:3c:e4:4b: a9:e8:5f:01:45:7f:8e:e9:a0:cb:6b:79:19:c7:90: e0:32:53:53:e6:13:36:17:b8:35:e5:1f:a4:9a:be: a5:8b:fe:79:f4:65:19:0e:a5:4d:7f:d7:02:e0:24: 26:5e:ea:c1:f2:f4:8e:e0:85:18:06:15:01:15:8b: c0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:27:05:7D:CC:02:B3:09:06:87:6A:DC:C3:68:94:45:0B:58:D3:41 X509v3 Authority Key Identifier: keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:04:0f:15:ed:43:24:6c:ba:27:0c:4f:9f:09:96:c1:da:43: 19:f7:10:7f:c7:df:60:f8:e9:05:20:22:3e:f0:20:36:d5:e4: 1d:79:13:58:2a:d6:df:18:4b:e2:5d:4c:d3:14:9c:3a:b9:96: f2:43:a8:67:c3:48:c6:b2:c9:bc:45:7d:ea:8c:ce:d1:87:86: 02:e4:5c:ca:4d:bb:77:d9:ed:67:d9:f6:58:ec:07:99:67:77: 7e:51:30:0d:c7:1a:88:2c:da:7a:59:ad:5a:8b:37:46:c1:77: 4e:88:6e:3d:58:08:8d:37:56:21:5f:69:cb:05:83:60:4a:c2: 06:a4:e7:91:cc:36:98:5e:d4:63:09:66:b8:ff:a6:34:87:04: 3f:fd:c6:68:3f:3e:64:05:16:b4:9a:83:84:3f:aa:e5:13:40: 48:41:d8:9a:50:5a:f9:26:4f:58:6a:0d:7a:94:94:51:b5:a4: 12:2a:22:07:82:52:25:5d:44:46:b8:99:cc:98:79:22:78:c1: 85:05:e9:b9:1a:bb:35:e1:31:cb:4d:5f:97:38:1f:ee:88:28: 5a:a0:e1:11:57:21:bd:3b:d2:85:aa:fd:1a:f2:c3:32:b6:24: 20:cf:b2:0e:db:f3:c2:3f:f2:64:6c:ae:c4:32:87:5e:70:c5: af:cf:4f:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtKO8Qt+NP2+gYg2wBmawMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzODRmNmZhNmRlY2NlZDU1NzhhODVhNTFlMGJkNjU3MDFl YTM0ZWMwHhcNMjYwMjA5MTQwMTAwWhcNMjYwMjEwMTQwMTAwWjAzMTEwLwYDVQQD Eyg5OTI3MDU3ZGNjMDJiMzA5MDY4NzZhZGNjMzY4OTQ0NTBiNThkMzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvz1WGG/LyqSCWs9ArnRCiuxTQV72 YA88gotgPaHate5dNFD74IyWu0t+B80RG3gF22wduFsKMMT9Ix7e1hiwYLLZS4IF sMdzINd8LtkbfpM6kvynGiljLzMUCc0VA+USPlVWnQDfaqlbSu+BTnuT6xnxvhda 9lRHvuerYxvuir7FT9YV1HQjf6NMUbokAhjuOvElY7qyqn2ELUxD+sktHZjTzjp5 MPhIE712KSBTvwdRmoYlK9DKG6tqXHEcGVc85Eup6F8BRX+O6aDLa3kZx5DgMlNT 5hM2F7g15R+kmr6li/559GUZDqVNf9cC4CQmXurB8vSO4IUYBhUBFYvASwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJknBX3MArMJBodq3MNolEULWNNBMB8GA1UdIwQY MBaAFEOE9vpt7M7VV4qFpR4L1lcB6jTsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMt MWIxM2JkNDU2NmE1LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMtMWIxM2JkNDU2NmE1 LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPwQPFe1D JGy6JwxPnwmWwdpDGfcQf8ffYPjpBSAiPvAgNtXkHXkTWCrW3xhL4l1M0xScOrmW 8kOoZ8NIxrLJvEV96ozO0YeGAuRcyk27d9ntZ9n2WOwHmWd3flEwDccaiCzaelmt Wos3RsF3TohuPVgIjTdWIV9pywWDYErCBqTnkcw2mF7UYwlmuP+mNIcEP/3GaD8+ ZAUWtJqDhD+q5RNASEHYmlBa+SZPWGoNepSUUbWkEioiB4JSJV1ERriZzJh5InjB hQXpuRq7NeExy01flzgf7ogoWqDhEVchvTvShar9GvLDMrYkIM+yDtvzwj/yZGyu xDKHXnDFr89Ptw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:57 2026 by rpki-client