This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft File: QwPxM011rEMsDKp404mnDAnBLKY.mft (raw, json) Hash identifier: iOA3pHQeUgajTC/zbBNp83fivMaEH9jBpe9u3o17Fzg= Subject key identifier: 44:83:DC:E0:AD:10:7C:11:29:8D:A0:1C:F5:3D:2D:F9:98:B6:1E:2D Authority key identifier: 43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6 Certificate issuer: /CN=4303f1334d75ac432c0caa78d389a70c09c12ca6 Certificate serial: 019C4358C1F7A49BB8548F9CE9235CDB5E56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft Manifest number: 0366 Signing time: Mon 09 Feb 2026 17:00:15 +0000 Manifest this update: Mon 09 Feb 2026 17:00:15 +0000 Manifest next update: Tue 10 Feb 2026 17:00:15 +0000 Files and hashes: 1: 3R5g76dVvoZ3hbqttjNUSKbFIB0.roa (hash: rtDmg5+SMVya5wLcSYnXovjRonU3uTPe2cR9Qa4/bgU=) 2: QwPxM011rEMsDKp404mnDAnBLKY.crl (hash: ga8I0coj2iLiVkUaCIFaSz3QecX5c/un19MJvWAlv+U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:c1:f7:a4:9b:b8:54:8f:9c:e9:23:5c:db:5e:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4303f1334d75ac432c0caa78d389a70c09c12ca6 Validity Not Before: Feb 9 17:00:15 2026 GMT Not After : Feb 10 17:00:15 2026 GMT Subject: CN=4483dce0ad107c11298da01cf53d2df998b61e2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:95:74:b6:7a:18:a6:ec:2e:21:4e:01:d5:23: 52:db:3d:2c:fb:05:40:60:6c:e1:6f:41:d2:73:98: 0f:a7:cd:67:a1:41:8e:be:2b:24:c7:00:bb:b6:48: 5e:10:a3:86:df:7e:29:29:5b:24:b0:f2:02:78:e8: ce:f0:59:cb:93:d2:15:ae:df:e9:cc:84:2e:58:43: 11:90:0f:9d:5a:08:77:8a:d3:4d:ba:b7:81:06:c4: 4e:f4:5c:05:de:60:72:d7:04:99:84:8a:a8:b8:73: 8f:f1:04:d9:d4:39:f0:7a:fc:d0:e5:5f:ae:6a:fa: 46:2b:a7:de:9a:52:d9:c4:47:e4:77:c1:d4:e0:da: e5:71:0e:b0:b1:55:e1:cd:7f:72:76:c1:a8:e4:f3: 94:ad:2d:b7:c2:bb:7e:19:80:75:23:f7:b3:54:d8: 1a:05:aa:87:91:f0:fa:8a:ba:f4:97:37:89:b0:43: 4e:4c:d9:2e:8d:22:66:64:85:16:fe:59:74:76:eb: 97:fe:13:28:2e:c6:8f:8c:84:5a:03:73:3f:87:ce: 41:da:23:63:10:b1:20:1e:7a:5e:6b:6f:ff:10:ad: 61:93:7e:26:66:05:e4:dd:b9:d7:b5:9b:d9:00:84: 35:46:65:10:76:c5:62:4a:c2:fa:72:ac:23:af:68: cb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:83:DC:E0:AD:10:7C:11:29:8D:A0:1C:F5:3D:2D:F9:98:B6:1E:2D X509v3 Authority Key Identifier: keyid:43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:72:00:85:5a:73:82:12:84:2e:7f:5e:b7:14:1e:8c:27:36: 7f:fe:8e:40:a2:69:76:26:a9:68:1a:87:b3:f1:a2:39:4e:e3: 90:a6:21:f4:97:8b:bb:e3:a9:28:d6:ae:cc:8f:04:be:6e:b0: af:84:7e:07:1e:36:d1:fd:77:52:c1:ed:66:12:e8:17:4d:dd: 9c:a9:d6:4a:c4:58:54:69:53:4b:16:1f:b5:d2:8f:bb:5e:2c: e3:f6:41:33:cc:51:5c:14:8e:e3:38:82:ab:b6:15:3a:4d:68: 42:09:f5:36:a8:25:b3:7f:f4:f5:6d:ca:33:0e:1a:8d:08:e1: a9:16:cd:3e:84:c2:ba:f6:8a:75:8d:23:94:80:2e:b2:c7:10: 79:24:c7:47:7a:7f:92:cc:e5:f3:fb:64:f7:67:da:9e:56:0a: fa:08:f4:08:93:dd:75:88:0c:bb:6a:8a:9f:dc:ee:86:18:00: 8b:75:0e:1c:db:e6:a6:49:db:5d:01:8f:24:8b:52:00:61:52: 26:cf:ab:c7:ee:de:53:80:87:63:28:dd:06:ee:7b:aa:c5:59: 44:07:03:98:85:a2:8a:bb:c8:a4:81:3a:a3:f8:c1:7a:4c:5c: 2d:06:47:cd:f4:90:bf:b4:64:39:93:f5:74:09:56:0d:c5:36: 21:50:d3:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWMH3pJu4VI+c6SNc215WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzMDNmMTMzNGQ3NWFjNDMyYzBjYWE3OGQzODlhNzBjMDlj MTJjYTYwHhcNMjYwMjA5MTcwMDE1WhcNMjYwMjEwMTcwMDE1WjAzMTEwLwYDVQQD Eyg0NDgzZGNlMGFkMTA3YzExMjk4ZGEwMWNmNTNkMmRmOTk4YjYxZTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZV0tnoYpuwuIU4B1SNS2z0s+wVA YGzhb0HSc5gPp81noUGOviskxwC7tkheEKOG334pKVsksPICeOjO8FnLk9IVrt/p zIQuWEMRkA+dWgh3itNNureBBsRO9FwF3mBy1wSZhIqouHOP8QTZ1DnwevzQ5V+u avpGK6femlLZxEfkd8HU4NrlcQ6wsVXhzX9ydsGo5POUrS23wrt+GYB1I/ezVNga BaqHkfD6irr0lzeJsENOTNkujSJmZIUW/ll0duuX/hMoLsaPjIRaA3M/h85B2iNj ELEgHnpea2//EK1hk34mZgXk3bnXtZvZAIQ1RmUQdsViSsL6cqwjr2jLqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFESD3OCtEHwRKY2gHPU9LfmYth4tMB8GA1UdIwQY MBaAFEMD8TNNdaxDLAyqeNOJpwwJwSymMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXdQeE0wMTFyRU1zREtwNDA0bW5EQW5CTEtZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS80MzgwMDgtMzM4ZC00YzMxLTk3YzUt NGNiOTcwNzZjZmYyLzEvUXdQeE0wMTFyRU1zREtwNDA0bW5EQW5CTEtZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS80MzgwMDgtMzM4ZC00YzMxLTk3YzUtNGNiOTcwNzZjZmYy LzEvUXdQeE0wMTFyRU1zREtwNDA0bW5EQW5CTEtZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADnIAhVpz ghKELn9etxQejCc2f/6OQKJpdiapaBqHs/GiOU7jkKYh9JeLu+OpKNauzI8Evm6w r4R+Bx420f13UsHtZhLoF03dnKnWSsRYVGlTSxYftdKPu14s4/ZBM8xRXBSO4ziC q7YVOk1oQgn1Nqgls3/09W3KMw4ajQjhqRbNPoTCuvaKdY0jlIAusscQeSTHR3p/ kszl8/tk92fanlYK+gj0CJPddYgMu2qKn9zuhhgAi3UOHNvmpknbXQGPJItSAGFS Js+rx+7eU4CHYyjdBu57qsVZRAcDmIWiirvIpIE6o/jBekxcLQZHzfSQv7RkOZP1 dAlWDcU2IVDTyw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:13 2026 by rpki-client