This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.mft File: qhC-mR89uJUJcQwgZ233qKS_4bQ.mft (raw, json) Hash identifier: D100ZHw0cppJ0h4nnJ1mvAttbDJuQ+U2iKCO9rgel3E= Subject key identifier: 84:62:35:94:63:6D:C7:23:A7:C5:FF:D7:11:08:AF:FF:69:6E:FC:B0 Authority key identifier: AA:10:BE:99:1F:3D:B8:95:09:71:0C:20:67:6D:F7:A8:A4:BF:E1:B4 Certificate issuer: /CN=aa10be991f3db89509710c20676df7a8a4bfe1b4 Certificate serial: 019C420F5DBE9E42D589A90F61B26A82A971 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qhC-mR89uJUJcQwgZ233qKS_4bQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.mft Manifest number: 0C1C Signing time: Mon 09 Feb 2026 11:00:28 +0000 Manifest this update: Mon 09 Feb 2026 11:00:28 +0000 Manifest next update: Tue 10 Feb 2026 11:00:28 +0000 Files and hashes: 1: qhC-mR89uJUJcQwgZ233qKS_4bQ.crl (hash: 2SwSbD07G/7QRFl/q15SGSudOqou3MAR4hQDgvoqNxk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.mft rsync://rpki.ripe.net/repository/DEFAULT/qhC-mR89uJUJcQwgZ233qKS_4bQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:5d:be:9e:42:d5:89:a9:0f:61:b2:6a:82:a9:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa10be991f3db89509710c20676df7a8a4bfe1b4 Validity Not Before: Feb 9 11:00:28 2026 GMT Not After : Feb 10 11:00:28 2026 GMT Subject: CN=84623594636dc723a7c5ffd71108afff696efcb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:96:f1:01:c6:cc:cc:5e:74:55:94:5c:db:2d: 5c:77:6d:ed:6e:33:13:7d:40:f9:a4:d3:aa:03:04: b1:ba:88:e8:18:ff:49:4c:88:d3:d2:f7:e8:ee:1c: ce:11:3b:af:b3:85:72:27:a0:08:87:03:64:42:9a: 2c:4e:02:2d:3a:af:f6:69:bd:c2:5a:e5:24:dd:70: f4:7c:9a:cb:1a:75:ca:2f:a7:69:e5:5d:f8:af:f9: 37:a1:57:45:21:ac:20:2d:1b:4a:04:49:38:2e:b6: d8:fd:a1:9f:96:7b:30:ab:7a:c4:3e:58:87:58:db: 1f:a1:09:42:42:d2:c8:22:98:6b:55:31:24:47:2e: da:a6:fb:1d:c2:93:db:18:cc:3e:73:82:6b:e4:38: 18:c3:1b:bc:54:ee:7e:be:80:ac:ca:6a:55:85:06: 4a:07:e1:8c:73:2f:e0:eb:da:53:83:95:b7:c9:42: 14:0c:9b:76:2f:64:7a:be:56:ab:e8:8b:af:ba:0c: 93:10:3e:f9:53:c4:d1:fb:05:e5:4f:f8:ae:de:00: 91:dd:f5:5c:dd:07:1e:95:13:ad:90:b9:c9:8c:2e: d4:4a:be:49:aa:fa:e7:4d:95:4c:ec:dc:ec:34:8a: 22:77:2e:97:8b:e3:20:cb:4d:ba:60:a9:f1:3c:9b: df:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:62:35:94:63:6D:C7:23:A7:C5:FF:D7:11:08:AF:FF:69:6E:FC:B0 X509v3 Authority Key Identifier: keyid:AA:10:BE:99:1F:3D:B8:95:09:71:0C:20:67:6D:F7:A8:A4:BF:E1:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qhC-mR89uJUJcQwgZ233qKS_4bQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:a7:75:2c:95:5c:88:11:5b:30:2a:8b:3b:7b:51:7d:96:93: 92:0d:68:67:24:e1:33:5a:ad:70:89:e0:03:71:8c:5c:3f:4d: 41:21:3a:3c:28:34:c4:ca:cf:60:f5:0e:b9:6d:ba:e2:d4:07: a1:0f:79:16:ce:9e:41:e9:99:9b:08:47:ad:13:dc:1f:fe:ac: 18:ea:2b:67:9b:55:7a:84:a1:b3:d5:b4:ef:7f:1d:b5:06:4b: 97:f2:2b:d5:ae:a4:c8:33:9c:89:4d:60:e1:3f:c4:8a:ca:ff: 2f:c6:fd:50:de:dd:e4:98:21:e1:c9:ec:ed:de:39:e0:9e:28: 91:f3:08:94:96:54:52:29:0d:af:dd:e7:a1:62:08:f0:54:d9: 74:16:4f:b1:e5:e4:05:ab:36:35:65:9b:ac:12:bc:ae:b6:51: b7:53:e1:8e:09:87:5c:07:17:f4:e2:46:77:0f:a4:34:64:d0: 58:a9:0c:a3:59:a0:36:26:d7:64:88:57:b7:d0:c9:a4:82:91: 58:2d:e9:41:30:f4:79:5a:90:5b:04:c5:2f:6d:68:a0:af:82: 53:c2:02:09:f1:ea:06:cf:a0:da:9d:12:fe:01:bb:96:6f:18: 38:40:86:0f:b4:33:6a:eb:57:d1:d1:99:99:6a:7f:39:0b:9a: b0:9d:0a:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD12+nkLViakPYbJqgqlxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhMTBiZTk5MWYzZGI4OTUwOTcxMGMyMDY3NmRmN2E4YTRi ZmUxYjQwHhcNMjYwMjA5MTEwMDI4WhcNMjYwMjEwMTEwMDI4WjAzMTEwLwYDVQQD Eyg4NDYyMzU5NDYzNmRjNzIzYTdjNWZmZDcxMTA4YWZmZjY5NmVmY2IwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5bxAcbMzF50VZRc2y1cd23tbjMT fUD5pNOqAwSxuojoGP9JTIjT0vfo7hzOETuvs4VyJ6AIhwNkQposTgItOq/2ab3C WuUk3XD0fJrLGnXKL6dp5V34r/k3oVdFIawgLRtKBEk4LrbY/aGflnswq3rEPliH WNsfoQlCQtLIIphrVTEkRy7apvsdwpPbGMw+c4Jr5DgYwxu8VO5+voCsympVhQZK B+GMcy/g69pTg5W3yUIUDJt2L2R6vlar6IuvugyTED75U8TR+wXlT/iu3gCR3fVc 3QcelROtkLnJjC7USr5JqvrnTZVM7NzsNIoidy6Xi+Mgy026YKnxPJvfTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIRiNZRjbccjp8X/1xEIr/9pbvywMB8GA1UdIwQY MBaAFKoQvpkfPbiVCXEMIGdt96ikv+G0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWhDLW1SODl1SlVKY1F3Z1oyMzNxS1NfNGJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8yMzUzNjUtOGQxNS00MTI1LTkwMTct MTgzZTJlNzIzMDFiLzEvcWhDLW1SODl1SlVKY1F3Z1oyMzNxS1NfNGJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8yMzUzNjUtOGQxNS00MTI1LTkwMTctMTgzZTJlNzIzMDFi LzEvcWhDLW1SODl1SlVKY1F3Z1oyMzNxS1NfNGJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYKd1LJVc iBFbMCqLO3tRfZaTkg1oZyThM1qtcIngA3GMXD9NQSE6PCg0xMrPYPUOuW264tQH oQ95Fs6eQemZmwhHrRPcH/6sGOorZ5tVeoShs9W0738dtQZLl/Ir1a6kyDOciU1g 4T/Eisr/L8b9UN7d5Jgh4cns7d454J4okfMIlJZUUikNr93noWII8FTZdBZPseXk Bas2NWWbrBK8rrZRt1PhjgmHXAcX9OJGdw+kNGTQWKkMo1mgNibXZIhXt9DJpIKR WC3pQTD0eVqQWwTFL21ooK+CU8ICCfHqBs+g2p0S/gG7lm8YOECGD7QzautX0dGZ mWp/OQuasJ0KzQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:34 2026 by rpki-client