This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json) Hash identifier: YYWu55OT+72LxtwnbIYIYO+KgEh2lm5YFvESEY1YRsc= Subject key identifier: 3E:1A:AD:E5:03:0C:BC:FE:B9:19:76:EA:7F:57:E2:1A:32:BE:E1:44 Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b Certificate serial: 019C43904FD64C0CC78BB6B76B05B64C90F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft Manifest number: 12FE Signing time: Mon 09 Feb 2026 18:00:56 +0000 Manifest this update: Mon 09 Feb 2026 18:00:56 +0000 Manifest next update: Tue 10 Feb 2026 18:00:56 +0000 Files and hashes: 1: DQDusfxjlUfsx_jYQ2_QIlod900.roa (hash: w5lQk1AHZADVNhIU1Bs+67ehT2OLHgD2oIHKthafOJo=) 2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: TYMo6F2hHRjeE4Mqyxmh2jCH4Jn1YDzodCeVEaOYSSs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:4f:d6:4c:0c:c7:8b:b6:b7:6b:05:b6:4c:90:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b Validity Not Before: Feb 9 18:00:56 2026 GMT Not After : Feb 10 18:00:56 2026 GMT Subject: CN=3e1aade5030cbcfeb91976ea7f57e21a32bee144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bb:22:60:a6:bf:e6:a5:0a:cf:15:ab:b4:ba: 03:12:b6:ff:31:56:a7:5e:56:0d:7d:4f:f5:af:50: 81:ae:99:7f:aa:ef:e7:5a:b3:cd:3f:1c:61:74:8c: 0a:ca:c6:0a:83:e2:89:a3:09:14:67:b3:f2:01:ae: 90:a5:b0:f9:17:56:e2:6e:11:72:2b:34:67:53:b1: a6:40:66:a7:1e:ae:7b:79:dd:cf:66:a6:27:6f:ad: 36:26:ef:45:7b:27:2c:d7:de:fe:96:09:bb:13:f1: f4:d1:87:e2:26:a9:12:a8:23:0d:5a:11:0c:6e:b1: e7:3e:77:b5:be:da:07:63:4f:71:9a:f7:c0:12:36: 68:8d:c9:91:6f:72:60:ab:9a:94:e2:a0:9d:a7:d3: 82:9b:d7:6c:1b:a2:e7:21:aa:ef:7f:71:6e:6b:4e: 68:69:6f:d3:f9:10:f6:e0:e4:7d:1b:f2:5b:e5:1b: b3:b1:67:a2:1b:8e:8d:c6:fc:f2:f2:d8:ad:4d:33: 11:e1:e7:03:49:e1:d3:88:0c:d1:a8:f2:9b:10:99: b2:ca:b6:44:7a:a5:7d:a9:86:68:0a:a9:ef:24:2e: c0:af:19:cf:87:ec:b0:53:43:c2:a3:5e:49:cc:4f: e0:86:9a:c2:81:dc:98:80:07:e9:eb:4d:fa:61:2d: f8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:1A:AD:E5:03:0C:BC:FE:B9:19:76:EA:7F:57:E2:1A:32:BE:E1:44 X509v3 Authority Key Identifier: keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:12:bb:88:a5:aa:c8:41:d0:31:41:ca:96:c5:64:7c:23:40: 2b:8a:07:22:1e:cb:84:d0:04:8b:c3:12:cd:d6:3e:74:be:0f: 61:8b:1f:4b:56:4b:cc:f6:c7:0a:64:51:3a:3d:0d:6d:05:61: fb:c5:47:32:16:8a:b7:0e:52:5c:23:f6:47:98:af:91:f7:f2: 34:ba:c9:e9:b2:eb:8d:51:5f:1f:a9:9d:27:c6:8c:cd:b1:9b: 01:4f:67:fd:9e:7c:51:f7:59:29:a1:54:84:8d:c2:82:21:0b: 8f:97:7f:c5:99:d2:53:6f:f6:bd:21:30:44:47:13:8f:f1:92: a3:11:14:fd:a8:eb:ee:51:42:67:ab:f7:87:e5:77:1b:5e:34: d4:1a:84:64:cf:86:bb:67:ab:71:e0:bd:3a:69:2f:72:33:d6: 0b:5e:53:8e:de:6a:fe:a7:d1:a9:54:b4:51:ad:8f:0e:56:24: 5a:d2:83:b1:24:28:60:08:2e:c0:43:a4:59:20:10:a3:28:27: bb:05:2d:6c:38:0b:20:cb:a5:d1:58:fd:cb:48:e3:54:fd:e6: d2:a4:26:64:3b:c4:80:ef:51:5d:41:ba:d1:33:f8:77:cc:dc: da:da:2b:2d:a0:2a:10:b7:71:a7:5f:cf:78:fd:1a:f1:56:b7: 54:3e:6d:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkE/WTAzHi7a3awW2TJD4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmZTQxNzM2MjZmNDYwMjY0MGU4ZDRlOTZiNTRhMWEwOTZh YmU3OGIwHhcNMjYwMjA5MTgwMDU2WhcNMjYwMjEwMTgwMDU2WjAzMTEwLwYDVQQD EygzZTFhYWRlNTAzMGNiY2ZlYjkxOTc2ZWE3ZjU3ZTIxYTMyYmVlMTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7siYKa/5qUKzxWrtLoDErb/MVan XlYNfU/1r1CBrpl/qu/nWrPNPxxhdIwKysYKg+KJowkUZ7PyAa6QpbD5F1bibhFy KzRnU7GmQGanHq57ed3PZqYnb602Ju9Feycs197+lgm7E/H00YfiJqkSqCMNWhEM brHnPne1vtoHY09xmvfAEjZojcmRb3Jgq5qU4qCdp9OCm9dsG6LnIarvf3Fua05o aW/T+RD24OR9G/Jb5RuzsWeiG46Nxvzy8titTTMR4ecDSeHTiAzRqPKbEJmyyrZE eqV9qYZoCqnvJC7ArxnPh+ywU0PCo15JzE/ghprCgdyYgAfp6036YS34SQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD4areUDDLz+uRl26n9X4hoyvuFEMB8GA1UdIwQY MBaAFC/kFzYm9GAmQOjU6WtUoaCWq+eLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTC1RWE5pYjBZQ1pBNk5UcGExU2hvSmFyNTRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9hNGNkMGQtYWYxNC00OWMzLTk0ODEt MzU0NzljNTRkY2JkLzEvTC1RWE5pYjBZQ1pBNk5UcGExU2hvSmFyNTRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy9hNGNkMGQtYWYxNC00OWMzLTk0ODEtMzU0NzljNTRkY2Jk LzEvTC1RWE5pYjBZQ1pBNk5UcGExU2hvSmFyNTRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlRK7iKWq yEHQMUHKlsVkfCNAK4oHIh7LhNAEi8MSzdY+dL4PYYsfS1ZLzPbHCmRROj0NbQVh +8VHMhaKtw5SXCP2R5ivkffyNLrJ6bLrjVFfH6mdJ8aMzbGbAU9n/Z58UfdZKaFU hI3CgiELj5d/xZnSU2/2vSEwREcTj/GSoxEU/ajr7lFCZ6v3h+V3G1401BqEZM+G u2erceC9OmkvcjPWC15Tjt5q/qfRqVS0Ua2PDlYkWtKDsSQoYAguwEOkWSAQoygn uwUtbDgLIMul0Vj9y0jjVP3m0qQmZDvEgO9RXUG60TP4d8zc2torLaAqELdxp1/P eP0a8Va3VD5t4A== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:20 2026 by rpki-client