This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft File: QpoEfERhf8-ynNVy962HR9C5Mms.mft (raw, json) Hash identifier: TXDZ3TMUU4BRTvDi/kSFyh0lEN/tU1t5cjT+WCmzPUA= Subject key identifier: 61:82:C9:79:42:40:FE:28:F3:53:D7:7D:6B:BD:D9:89:1E:97:64:C0 Authority key identifier: 42:9A:04:7C:44:61:7F:CF:B2:9C:D5:72:F7:AD:87:47:D0:B9:32:6B Certificate issuer: /CN=429a047c44617fcfb29cd572f7ad8747d0b9326b Certificate serial: 019C41349A7DF8B41795F39E764DA5F94771 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpoEfERhf8-ynNVy962HR9C5Mms.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft Manifest number: 0C84 Signing time: Mon 09 Feb 2026 07:01:32 +0000 Manifest this update: Mon 09 Feb 2026 07:01:32 +0000 Manifest next update: Tue 10 Feb 2026 07:01:32 +0000 Files and hashes: 1: QpoEfERhf8-ynNVy962HR9C5Mms.crl (hash: RoGhIJ6IwOq3Pgp8LvAd3RIznDMxbGzpzET59pmIyDI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft rsync://rpki.ripe.net/repository/DEFAULT/QpoEfERhf8-ynNVy962HR9C5Mms.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:9a:7d:f8:b4:17:95:f3:9e:76:4d:a5:f9:47:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=429a047c44617fcfb29cd572f7ad8747d0b9326b Validity Not Before: Feb 9 07:01:32 2026 GMT Not After : Feb 10 07:01:32 2026 GMT Subject: CN=6182c9794240fe28f353d77d6bbdd9891e9764c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d5:60:2b:76:47:07:46:5a:21:dd:ae:57:52: 2c:5b:c2:49:7a:ce:ef:a9:d5:64:62:0b:2d:7f:bf: f0:8d:c0:ac:80:38:7d:97:cb:82:e7:8c:8e:6d:06: e6:89:ae:44:ae:ee:a3:1e:d6:3e:40:b6:c1:d8:95: 21:74:86:57:99:28:64:12:19:d5:b9:a1:32:79:0e: fe:dd:5a:5e:65:c1:86:24:aa:4f:5f:b0:be:7a:76: 0e:b5:4d:91:cf:ee:5e:61:60:4e:93:f6:9e:11:4a: b5:e0:9d:63:08:cf:cb:ce:2d:36:6d:ff:94:4b:08: 51:df:23:ee:c8:25:93:5b:7b:6b:1c:1f:32:6e:b5: f1:f6:72:14:89:2a:a3:a4:c4:cd:fb:e7:94:06:91: 9f:d7:e2:b9:73:74:16:8d:12:c2:05:03:55:34:a1: 17:94:7c:77:7e:93:09:21:b2:f1:c3:ac:5e:c7:10: 0a:55:8e:50:aa:fb:b3:2b:d7:3f:b4:92:2b:ed:db: dc:af:60:64:1b:9c:58:a0:77:e4:a2:93:da:37:5b: cc:4c:5e:86:f8:e7:59:97:41:1b:48:b2:1e:7a:34: 66:51:38:fa:99:29:c3:53:72:75:40:53:42:98:c4: cc:8c:6d:8d:f1:74:44:88:db:ed:84:1d:d3:ba:b7: 98:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:82:C9:79:42:40:FE:28:F3:53:D7:7D:6B:BD:D9:89:1E:97:64:C0 X509v3 Authority Key Identifier: keyid:42:9A:04:7C:44:61:7F:CF:B2:9C:D5:72:F7:AD:87:47:D0:B9:32:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpoEfERhf8-ynNVy962HR9C5Mms.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/c57467-49a5-4cc6-9e0c-77e61eea6a64/1/QpoEfERhf8-ynNVy962HR9C5Mms.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:47:51:94:96:7e:e5:3d:60:dc:ee:51:01:38:96:2f:1b:fb: d3:24:b1:1a:f2:42:90:23:d4:65:cb:69:54:bb:55:42:a9:56: 81:66:ab:2f:26:cc:84:0f:d8:7c:90:27:22:79:89:a1:16:8f: f7:6f:50:99:7b:be:b1:76:13:b1:16:67:f3:80:f3:0f:97:69: b7:58:a3:03:c9:bd:da:a8:0e:7b:59:ef:dd:6b:e7:2a:34:eb: 43:ce:e0:74:a0:d0:05:df:32:67:f4:b3:4a:b2:ff:1b:da:f2: b9:d8:7d:be:dc:7c:cb:a9:9f:ed:03:f9:66:47:e4:dc:c1:16: 1e:0d:81:ca:63:11:6c:19:a6:ed:b6:8b:73:b2:8a:04:83:5f: f5:b4:0b:3a:3a:fc:c6:f2:1e:d0:1f:cd:dd:89:4f:97:e5:56: 4f:df:49:66:64:9c:05:2e:a3:f2:da:31:29:5c:eb:f2:08:d8: ad:74:b2:39:08:77:dc:31:07:74:d4:09:ac:de:24:ae:f5:d9: bb:97:de:7d:79:2f:25:53:db:ac:1a:8b:e5:a3:be:05:44:05: b4:5a:ef:53:ef:2d:dc:12:4a:de:5f:50:61:af:af:0c:bc:75: c0:1a:f0:a6:58:7e:f4:67:65:ec:90:59:aa:39:76:1b:6f:86: 6b:52:f9:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNJp9+LQXlfOedk2l+UdxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyOWEwNDdjNDQ2MTdmY2ZiMjljZDU3MmY3YWQ4NzQ3ZDBi OTMyNmIwHhcNMjYwMjA5MDcwMTMyWhcNMjYwMjEwMDcwMTMyWjAzMTEwLwYDVQQD Eyg2MTgyYzk3OTQyNDBmZTI4ZjM1M2Q3N2Q2YmJkZDk4OTFlOTc2NGMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNVgK3ZHB0ZaId2uV1IsW8JJes7v qdVkYgstf7/wjcCsgDh9l8uC54yObQbmia5Eru6jHtY+QLbB2JUhdIZXmShkEhnV uaEyeQ7+3VpeZcGGJKpPX7C+enYOtU2Rz+5eYWBOk/aeEUq14J1jCM/Lzi02bf+U SwhR3yPuyCWTW3trHB8ybrXx9nIUiSqjpMTN++eUBpGf1+K5c3QWjRLCBQNVNKEX lHx3fpMJIbLxw6xexxAKVY5QqvuzK9c/tJIr7dvcr2BkG5xYoHfkopPaN1vMTF6G +OdZl0EbSLIeejRmUTj6mSnDU3J1QFNCmMTMjG2N8XREiNvthB3TureYdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGGCyXlCQP4o81PXfWu92Ykel2TAMB8GA1UdIwQY MBaAFEKaBHxEYX/PspzVcveth0fQuTJrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXBvRWZFUmhmOC15bk5WeTk2MkhSOUM1TW1zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9jNTc0NjctNDlhNS00Y2M2LTllMGMt NzdlNjFlZWE2YTY0LzEvUXBvRWZFUmhmOC15bk5WeTk2MkhSOUM1TW1zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy9jNTc0NjctNDlhNS00Y2M2LTllMGMtNzdlNjFlZWE2YTY0 LzEvUXBvRWZFUmhmOC15bk5WeTk2MkhSOUM1TW1zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqkdRlJZ+ 5T1g3O5RATiWLxv70ySxGvJCkCPUZctpVLtVQqlWgWarLybMhA/YfJAnInmJoRaP 929QmXu+sXYTsRZn84DzD5dpt1ijA8m92qgOe1nv3WvnKjTrQ87gdKDQBd8yZ/Sz SrL/G9ryudh9vtx8y6mf7QP5Zkfk3MEWHg2BymMRbBmm7baLc7KKBINf9bQLOjr8 xvIe0B/N3YlPl+VWT99JZmScBS6j8toxKVzr8gjYrXSyOQh33DEHdNQJrN4krvXZ u5fefXkvJVPbrBqL5aO+BUQFtFrvU+8t3BJK3l9QYa+vDLx1wBrwplh+9Gdl7JBZ qjl2G2+Ga1L5hw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:27 2026 by rpki-client