This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft File: WqKpJUebz8vBloipUqJDAfTnaDk.mft (raw, json) Hash identifier: 8XnijX8cPgqIQAIcRUTIbg2nwM/xmP+YuU7E9Jp+ek0= Subject key identifier: 92:B2:41:91:BC:42:48:76:B9:95:A5:86:44:47:42:4D:29:97:79:03 Authority key identifier: 5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39 Certificate issuer: /CN=5aa2a925479bcfcbc19688a952a24301f4e76839 Certificate serial: 019C43FE122BE50EC4813523D7E543A7DE63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft Manifest number: 0968 Signing time: Mon 09 Feb 2026 20:00:50 +0000 Manifest this update: Mon 09 Feb 2026 20:00:50 +0000 Manifest next update: Tue 10 Feb 2026 20:00:50 +0000 Files and hashes: 1: Kri8lcqdAC5Txkl5fI-cqACqq6c.roa (hash: J1QbpgXMbeBVuARIX0Ol8v/rcfJIXCmPbQPctcPNzxM=) 2: WqKpJUebz8vBloipUqJDAfTnaDk.crl (hash: 7IpTzadZrz1kPgowVn7x+kOU3Tiiy3lNwJ4evHQ7QG4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:12:2b:e5:0e:c4:81:35:23:d7:e5:43:a7:de:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5aa2a925479bcfcbc19688a952a24301f4e76839 Validity Not Before: Feb 9 20:00:50 2026 GMT Not After : Feb 10 20:00:50 2026 GMT Subject: CN=92b24191bc424876b995a5864447424d29977903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:dd:c7:2a:1f:56:ed:39:57:64:9b:6d:d1:c6: 40:b7:05:54:5e:b6:99:25:af:42:d3:48:a1:ea:e9: 1b:11:05:02:a5:5d:0c:15:ee:02:9b:de:7c:cf:b8: f7:6f:76:a0:73:9d:a7:9f:61:3b:49:23:70:3e:6c: 02:7e:e5:57:4e:af:e8:27:bd:c3:6b:25:7a:c4:66: d8:15:ce:a6:7e:2c:a8:f8:a8:60:8f:5d:27:31:39: 38:27:7e:1d:74:09:d3:cf:9c:7d:c7:86:50:4e:37: b2:df:d0:65:bc:4a:09:0a:f3:d4:af:23:5b:66:70: 8f:bb:33:92:8d:5c:11:55:6b:0c:14:74:eb:f4:29: 67:e8:74:93:cd:59:4a:ac:d1:a6:25:7b:1c:da:27: 81:b2:db:25:92:cf:f5:7a:d5:9e:c2:ae:34:e5:c5: 3f:6f:e5:bd:e1:54:86:b2:ed:fd:c5:42:f0:6d:1f: 67:44:22:66:0e:78:cd:e2:7c:9e:98:43:8c:21:65: 93:6a:93:e2:53:94:6e:66:5c:ba:87:ea:19:cf:3b: 41:63:ba:f3:04:a2:ae:aa:e0:8d:ec:0e:2c:19:76: ca:de:22:bc:2b:2e:a2:64:e1:b0:22:f2:88:5a:27: 56:10:bf:ea:51:8a:95:37:94:7c:6e:d1:e1:12:78: af:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B2:41:91:BC:42:48:76:B9:95:A5:86:44:47:42:4D:29:97:79:03 X509v3 Authority Key Identifier: keyid:5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:eb:b3:c4:2b:7c:60:b0:02:0c:c6:72:39:b8:62:83:1a:9e: e8:96:71:51:9e:a6:f1:41:c3:4b:cc:c8:6c:df:9c:82:73:9a: 63:91:22:ca:7b:b6:8d:26:53:9d:2f:96:2e:16:06:d5:94:7e: 24:af:dc:db:44:e0:1e:fd:58:11:df:b3:a5:04:9d:22:29:66: e5:35:dd:c9:55:be:ae:84:14:fa:75:d3:3d:ce:0a:86:82:5f: 8c:8a:3e:df:9f:fb:25:b5:73:8c:10:b6:0a:8a:b1:30:e0:d3: b1:5f:74:92:e9:f0:72:24:a7:34:ba:9d:86:f0:72:46:b3:83: 8f:6a:84:c2:e6:f3:2a:49:2b:ca:00:79:91:78:92:ea:f0:d3: a0:ba:dc:12:46:1a:9b:b1:c7:60:d9:4b:90:f5:c2:dd:7f:25: 86:b8:24:d6:6e:4b:6f:53:f6:58:33:ae:4f:a5:52:b3:34:8f: 53:cb:b1:4e:6f:f4:40:0e:65:0c:53:9a:7d:ca:04:7e:8e:81: f5:ae:41:1b:47:73:44:f3:8c:9c:f7:7c:7c:b8:f4:9d:c4:db: c0:8b:5c:11:1d:72:ce:8d:f1:35:fd:05:ae:6e:f8:ca:49:d5: 51:45:5a:d1:d9:ef:12:59:8c:3b:23:25:1d:f6:e0:ac:27:44: 98:f4:a1:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/hIr5Q7EgTUj1+VDp95jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhYTJhOTI1NDc5YmNmY2JjMTk2ODhhOTUyYTI0MzAxZjRl NzY4MzkwHhcNMjYwMjA5MjAwMDUwWhcNMjYwMjEwMjAwMDUwWjAzMTEwLwYDVQQD Eyg5MmIyNDE5MWJjNDI0ODc2Yjk5NWE1ODY0NDQ3NDI0ZDI5OTc3OTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkd3HKh9W7TlXZJtt0cZAtwVUXraZ Ja9C00ih6ukbEQUCpV0MFe4Cm958z7j3b3agc52nn2E7SSNwPmwCfuVXTq/oJ73D ayV6xGbYFc6mfiyo+Khgj10nMTk4J34ddAnTz5x9x4ZQTjey39BlvEoJCvPUryNb ZnCPuzOSjVwRVWsMFHTr9Cln6HSTzVlKrNGmJXsc2ieBstslks/1etWewq405cU/ b+W94VSGsu39xULwbR9nRCJmDnjN4nyemEOMIWWTapPiU5RuZly6h+oZzztBY7rz BKKuquCN7A4sGXbK3iK8Ky6iZOGwIvKIWidWEL/qUYqVN5R8btHhEnivJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJKyQZG8Qkh2uZWlhkRHQk0pl3kDMB8GA1UdIwQY MBaAFFqiqSVHm8/LwZaIqVKiQwH052g5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV3FLcEpVZWJ6OHZCbG9pcFVxSkRBZlRuYURrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8wYTAzMGYtYWJiNS00ZTM3LTk2YTMt YjRmMTIwMTIyOTIyLzEvV3FLcEpVZWJ6OHZCbG9pcFVxSkRBZlRuYURrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8wYTAzMGYtYWJiNS00ZTM3LTk2YTMtYjRmMTIwMTIyOTIy LzEvV3FLcEpVZWJ6OHZCbG9pcFVxSkRBZlRuYURrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAneuzxCt8 YLACDMZyObhigxqe6JZxUZ6m8UHDS8zIbN+cgnOaY5Eiynu2jSZTnS+WLhYG1ZR+ JK/c20TgHv1YEd+zpQSdIilm5TXdyVW+roQU+nXTPc4KhoJfjIo+35/7JbVzjBC2 CoqxMODTsV90kunwciSnNLqdhvByRrODj2qEwubzKkkrygB5kXiS6vDToLrcEkYa m7HHYNlLkPXC3X8lhrgk1m5Lb1P2WDOuT6VSszSPU8uxTm/0QA5lDFOafcoEfo6B 9a5BG0dzRPOMnPd8fLj0ncTbwItcER1yzo3xNf0Frm74yknVUUVa0dnvElmMOyMl HfbgrCdEmPShsA== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:55 2026 by rpki-client