This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft File: QsCVkBFifd0NBX1zHo-lpRApZZI.mft (raw, json) Hash identifier: mXDzo2AETdL6eKp7ExClqpKmxhQL58tUOtLYYUf+lB8= Subject key identifier: 13:4F:98:75:74:99:8F:70:D3:CD:09:EF:51:A9:D4:2B:67:73:04:62 Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92 Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592 Certificate serial: 019C4510B23567C21A326FBEFCDBAD153EDF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft Manifest number: 1812 Signing time: Tue 10 Feb 2026 01:00:47 +0000 Manifest this update: Tue 10 Feb 2026 01:00:47 +0000 Manifest next update: Wed 11 Feb 2026 01:00:47 +0000 Files and hashes: 1: QsCVkBFifd0NBX1zHo-lpRApZZI.crl (hash: KxhZ7Xi9BSZTe7j9TG/LBQWmUNnUJCj+xu4GGwJl4qE=) 2: RMmBnfd1TCGUmEC2O6JokpnQVQ8.roa (hash: wPMgtMcsG/KMNrN9/altEtQua2Hm0vaKQpeGiiY5B3Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:b2:35:67:c2:1a:32:6f:be:fc:db:ad:15:3e:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592 Validity Not Before: Feb 10 01:00:47 2026 GMT Not After : Feb 11 01:00:47 2026 GMT Subject: CN=134f987574998f70d3cd09ef51a9d42b67730462 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:eb:ad:89:f6:96:46:11:65:42:b8:ff:06:67: af:76:21:c1:48:3a:74:f1:a3:8f:96:7c:c9:a8:33: 1b:72:ef:70:91:c5:e9:d7:02:ed:04:07:ff:bf:1c: 10:99:91:5d:ea:69:53:4b:68:69:32:cb:30:0b:3f: 30:70:45:41:bb:12:91:4c:b1:4e:db:df:c3:7c:79: 63:6d:5d:c6:2c:ac:bf:e5:a5:ca:2a:56:c2:26:47: dd:ef:c6:89:01:5a:00:41:a6:25:1a:1b:33:77:78: 04:b4:e8:f4:a6:88:d9:0c:df:36:0b:c2:8f:c4:9b: bc:72:d0:a3:01:ce:68:50:fb:39:df:d3:a1:d4:c4: 66:60:dd:a8:85:10:b0:3f:b6:54:7e:61:18:cc:bf: ee:2f:87:ec:81:39:64:a5:81:c1:09:5b:55:a8:75: ff:0d:e8:be:4c:41:e4:7b:26:32:a9:38:b7:c3:17: 5f:38:ca:a4:53:34:20:55:99:dc:fa:0a:82:20:d3: 94:56:26:a4:b7:92:a9:69:1f:51:f6:05:24:4b:8f: 91:a1:03:aa:b4:1f:cb:fc:f0:b1:b2:d9:2e:03:23: 0f:07:be:5c:f2:27:91:f6:e3:2e:3e:95:f2:a9:e9: 01:a3:b4:7e:29:30:1d:65:8e:31:21:c9:2e:ad:2b: 88:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:4F:98:75:74:99:8F:70:D3:CD:09:EF:51:A9:D4:2B:67:73:04:62 X509v3 Authority Key Identifier: keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:3c:06:12:fa:7f:fd:6d:1f:b3:92:d9:d4:cc:7f:e2:4d:e6: d8:ce:ef:61:22:f3:02:88:47:6c:a3:ce:63:ef:64:8d:d7:9b: c9:87:9d:63:86:8b:68:bc:0a:ce:76:a7:ec:a8:ef:b3:d7:0c: bb:13:87:70:84:cb:da:ad:3c:d2:eb:d1:bd:1b:e3:5d:bb:60: 3d:4e:10:82:5d:aa:db:34:6c:f2:e7:ec:f9:e4:44:d8:ea:c8: 35:47:ce:94:8e:9c:e2:71:94:c8:1a:ca:c3:20:24:2e:ca:69: 71:ab:e3:11:ce:42:d4:22:a5:bf:86:75:77:bf:33:40:9d:1e: 3e:04:3d:ad:8b:22:c6:2d:96:54:dc:fa:0a:63:8c:29:7c:c0: 07:ea:da:de:ae:86:0e:11:06:e1:7e:f3:d3:6b:1d:ab:33:6f: a4:1b:4c:a9:d3:0f:e6:88:28:4b:7b:a9:e7:c2:4e:ad:bf:2e: 5c:80:93:65:79:34:8e:01:ec:3f:fe:f0:f4:e9:b9:61:e2:f3: 1c:1e:dc:a1:5b:c2:a8:ea:cf:50:b4:5e:59:cb:18:4a:38:9d: d8:db:72:d3:9e:46:c0:dc:d3:48:a3:d5:28:23:0c:4c:71:3e: ff:da:51:73:1c:a2:e2:cd:29:8b:e2:7e:f1:55:22:ea:d3:0c: e1:a6:05:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFELI1Z8IaMm++/NutFT7fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyYzA5NTkwMTE2MjdkZGQwZDA1N2Q3MzFlOGZhNWE1MTAy OTY1OTIwHhcNMjYwMjEwMDEwMDQ3WhcNMjYwMjExMDEwMDQ3WjAzMTEwLwYDVQQD EygxMzRmOTg3NTc0OTk4ZjcwZDNjZDA5ZWY1MWE5ZDQyYjY3NzMwNDYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuutifaWRhFlQrj/BmevdiHBSDp0 8aOPlnzJqDMbcu9wkcXp1wLtBAf/vxwQmZFd6mlTS2hpMsswCz8wcEVBuxKRTLFO 29/DfHljbV3GLKy/5aXKKlbCJkfd78aJAVoAQaYlGhszd3gEtOj0pojZDN82C8KP xJu8ctCjAc5oUPs539Oh1MRmYN2ohRCwP7ZUfmEYzL/uL4fsgTlkpYHBCVtVqHX/ Dei+TEHkeyYyqTi3wxdfOMqkUzQgVZnc+gqCINOUViakt5KpaR9R9gUkS4+RoQOq tB/L/PCxstkuAyMPB75c8ieR9uMuPpXyqekBo7R+KTAdZY4xIckurSuI9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBNPmHV0mY9w080J71Gp1CtncwRiMB8GA1UdIwQY MBaAFELAlZARYn3dDQV9cx6PpaUQKWWSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iYTEyY2QtMmU3ZS00MGRjLWFlODgt MjQ4YjU5YzM2OTZiLzEvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9iYTEyY2QtMmU3ZS00MGRjLWFlODgtMjQ4YjU5YzM2OTZi LzEvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWjwGEvp/ /W0fs5LZ1Mx/4k3m2M7vYSLzAohHbKPOY+9kjdebyYedY4aLaLwKznan7Kjvs9cM uxOHcITL2q080uvRvRvjXbtgPU4Qgl2q2zRs8ufs+eRE2OrINUfOlI6c4nGUyBrK wyAkLsppcavjEc5C1CKlv4Z1d78zQJ0ePgQ9rYsixi2WVNz6CmOMKXzAB+ra3q6G DhEG4X7z02sdqzNvpBtMqdMP5ogoS3up58JOrb8uXICTZXk0jgHsP/7w9Om5YeLz HB7coVvCqOrPULReWcsYSjid2Nty055GwNzTSKPVKCMMTHE+/9pRcxyi4s0pi+J+ 8VUi6tMM4aYFLw== -----END CERTIFICATE-----Generated at Tue Feb 10 04:19:49 2026 by rpki-client