This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6aecc5-b85c-418b-afc8-c2e668c19727/1/QHsur7H0zNuzzWzU10srM5eKC3A.mft File: QHsur7H0zNuzzWzU10srM5eKC3A.mft (raw, json) Hash identifier: OJUg3vQtgsyaMtHQVh1eohTJa5kO6z2gGtqAmNKgGbE= Subject key identifier: 86:D6:85:ED:90:1C:AD:DF:CE:66:74:1F:60:9B:03:FB:4B:04:46:64 Authority key identifier: 40:7B:2E:AF:B1:F4:CC:DB:B3:CD:6C:D4:D7:4B:2B:33:97:8A:0B:70 Certificate issuer: /CN=407b2eafb1f4ccdbb3cd6cd4d74b2b33978a0b70 Certificate serial: 019C432208BE31FB619DC6E05FCCDADBA0D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHsur7H0zNuzzWzU10srM5eKC3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6aecc5-b85c-418b-afc8-c2e668c19727/1/QHsur7H0zNuzzWzU10srM5eKC3A.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 16:00:29 +0000 Manifest this update: Mon 09 Feb 2026 16:00:29 +0000 Manifest next update: Tue 10 Feb 2026 16:00:29 +0000 Files and hashes: 1: QHsur7H0zNuzzWzU10srM5eKC3A.crl (hash: QJf6rUw0ineLoCKwOqaTsr5W7k/77v2O4bBZUCMthZc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/6aecc5-b85c-418b-afc8-c2e668c19727/1/QHsur7H0zNuzzWzU10srM5eKC3A.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/6aecc5-b85c-418b-afc8-c2e668c19727/1/QHsur7H0zNuzzWzU10srM5eKC3A.mft rsync://rpki.ripe.net/repository/DEFAULT/QHsur7H0zNuzzWzU10srM5eKC3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:08:be:31:fb:61:9d:c6:e0:5f:cc:da:db:a0:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=407b2eafb1f4ccdbb3cd6cd4d74b2b33978a0b70 Validity Not Before: Feb 9 16:00:29 2026 GMT Not After : Feb 10 16:00:29 2026 GMT Subject: CN=86d685ed901caddfce66741f609b03fb4b044664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d2:b0:a9:4a:6d:66:e8:ed:fc:5c:62:02:9c: 70:84:7d:d3:04:98:48:a9:e2:22:3e:c2:12:04:a1: 6c:73:40:2b:aa:9d:09:a6:ee:d6:8b:96:3a:9d:dc: c9:8f:4e:31:fc:b9:c9:9d:d9:07:e6:04:dd:4b:f1: cc:21:28:6a:b9:69:81:be:b8:31:c9:22:27:a3:d8: ad:98:c5:cd:74:53:8c:2e:71:75:2c:25:61:eb:44: 13:67:ab:3e:5c:4e:2a:8d:81:c3:0b:30:dc:23:ed: 18:e5:2e:44:40:60:d6:42:ea:0a:82:f2:66:be:33: f6:b7:6b:35:89:99:45:43:50:2c:18:ca:a7:0f:88: a9:9b:7b:79:4c:ba:94:fe:c6:73:19:c0:e7:dd:1f: 1b:d0:8a:d4:aa:1f:1e:cb:41:9f:60:0b:c8:7f:2c: 4d:ff:ae:91:20:0c:45:a2:b9:66:a2:6a:48:04:bd: 6b:94:9b:6e:b3:2d:b6:be:94:f5:5d:79:cb:4c:40: 09:01:4a:54:f0:65:d0:b5:1e:16:2f:f8:99:d8:a9: c9:a1:9b:09:96:99:65:7e:33:ce:de:65:ff:ce:90: 41:88:13:a2:1a:2d:c0:12:39:f8:a0:97:3f:ce:4c: 5f:29:75:e2:b8:94:35:4a:32:41:8b:c6:7b:cc:56: ad:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D6:85:ED:90:1C:AD:DF:CE:66:74:1F:60:9B:03:FB:4B:04:46:64 X509v3 Authority Key Identifier: keyid:40:7B:2E:AF:B1:F4:CC:DB:B3:CD:6C:D4:D7:4B:2B:33:97:8A:0B:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHsur7H0zNuzzWzU10srM5eKC3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6aecc5-b85c-418b-afc8-c2e668c19727/1/QHsur7H0zNuzzWzU10srM5eKC3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6aecc5-b85c-418b-afc8-c2e668c19727/1/QHsur7H0zNuzzWzU10srM5eKC3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:06:e4:71:22:4b:1e:c2:c4:15:a1:b1:a6:8d:ea:a9:0c:32: 97:b7:68:d4:a1:f9:3c:9c:cf:ba:09:fc:c6:2a:66:f1:4b:49: f3:70:1e:d8:de:b2:32:65:14:d1:df:eb:60:5c:9a:fc:51:d9: 4b:fc:0a:a2:50:4d:76:f9:9a:bf:e7:00:5a:eb:bf:54:ea:b8: f2:cd:fe:7d:a8:0f:1a:0d:5f:5c:f5:93:9e:4f:8c:c4:cf:90: e9:87:44:ac:a4:45:d0:0e:b2:2a:16:c6:60:2d:d7:89:c6:7a: 96:a7:06:b9:eb:1e:f0:30:41:56:15:62:ac:35:80:94:3b:55: 80:5e:72:49:06:92:8d:44:39:86:27:44:be:78:23:25:48:bc: 30:f4:fa:dd:1b:3b:9c:c0:c4:22:0e:e9:2d:2f:27:45:4a:29: 69:90:22:dd:e4:05:28:79:b0:44:9a:82:92:2f:32:c6:82:e4: 67:86:d1:16:ce:07:d7:70:90:e5:a2:64:c1:b4:92:27:9d:f4: 1a:2d:74:cd:bd:cf:c0:3a:1d:cf:60:c3:65:81:e1:e0:34:b1: b7:f3:d0:8a:31:80:c9:8a:6d:34:72:c4:f4:e4:64:03:f5:08: a5:49:80:4b:7e:48:6f:67:b8:1f:ab:c2:fc:01:d0:2d:58:53: e1:2e:25:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIgi+MfthncbgX8za26DYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwN2IyZWFmYjFmNGNjZGJiM2NkNmNkNGQ3NGIyYjMzOTc4 YTBiNzAwHhcNMjYwMjA5MTYwMDI5WhcNMjYwMjEwMTYwMDI5WjAzMTEwLwYDVQQD Eyg4NmQ2ODVlZDkwMWNhZGRmY2U2Njc0MWY2MDliMDNmYjRiMDQ0NjY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttKwqUptZujt/FxiApxwhH3TBJhI qeIiPsISBKFsc0Arqp0Jpu7Wi5Y6ndzJj04x/LnJndkH5gTdS/HMIShquWmBvrgx ySIno9itmMXNdFOMLnF1LCVh60QTZ6s+XE4qjYHDCzDcI+0Y5S5EQGDWQuoKgvJm vjP2t2s1iZlFQ1AsGMqnD4ipm3t5TLqU/sZzGcDn3R8b0IrUqh8ey0GfYAvIfyxN /66RIAxForlmompIBL1rlJtusy22vpT1XXnLTEAJAUpU8GXQtR4WL/iZ2KnJoZsJ lpllfjPO3mX/zpBBiBOiGi3AEjn4oJc/zkxfKXXiuJQ1SjJBi8Z7zFatewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIbWhe2QHK3fzmZ0H2CbA/tLBEZkMB8GA1UdIwQY MBaAFEB7Lq+x9Mzbs81s1NdLKzOXigtwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUhzdXI3SDB6TnV6eld6VTEwc3JNNWVLQzNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi82YWVjYzUtYjg1Yy00MThiLWFmYzgt YzJlNjY4YzE5NzI3LzEvUUhzdXI3SDB6TnV6eld6VTEwc3JNNWVLQzNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi82YWVjYzUtYjg1Yy00MThiLWFmYzgtYzJlNjY4YzE5NzI3 LzEvUUhzdXI3SDB6TnV6eld6VTEwc3JNNWVLQzNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATwbkcSJL HsLEFaGxpo3qqQwyl7do1KH5PJzPugn8xipm8UtJ83Ae2N6yMmUU0d/rYFya/FHZ S/wKolBNdvmav+cAWuu/VOq48s3+fagPGg1fXPWTnk+MxM+Q6YdErKRF0A6yKhbG YC3XicZ6lqcGuese8DBBVhVirDWAlDtVgF5ySQaSjUQ5hidEvngjJUi8MPT63Rs7 nMDEIg7pLS8nRUopaZAi3eQFKHmwRJqCki8yxoLkZ4bRFs4H13CQ5aJkwbSSJ530 Gi10zb3PwDodz2DDZYHh4DSxt/PQijGAyYptNHLE9ORkA/UIpUmAS35Ib2e4H6vC /AHQLVhT4S4lhg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:11 2026 by rpki-client