This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft File: Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft (raw, json) Hash identifier: VZDxNuWJRzOAfk8T1LPavcD9rzKCOwoRNWz1JSfBiXY= Subject key identifier: 22:10:CB:CB:F8:A3:42:F2:E8:BB:EF:BA:3F:75:6F:41:04:02:8A:67 Authority key identifier: 42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50 Certificate issuer: /CN=427df95ee10a2ad4eaf082dfac159838b37d3450 Certificate serial: 019C42465B5383682AB7FB8CBEF558C2CD9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft Manifest number: 0867 Signing time: Mon 09 Feb 2026 12:00:32 +0000 Manifest this update: Mon 09 Feb 2026 12:00:32 +0000 Manifest next update: Tue 10 Feb 2026 12:00:32 +0000 Files and hashes: 1: GDoBWX1Zlup6n9R7-4KowHMAH2c.roa (hash: zITFjtSHZtBX6uRd3C9BycIhrxB4/nE70BUhqc7LIiw=) 2: Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl (hash: OR260MCT0xQNxhiFjID4k29y1olw9Br9cJVPSLe3ASA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:5b:53:83:68:2a:b7:fb:8c:be:f5:58:c2:cd:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=427df95ee10a2ad4eaf082dfac159838b37d3450 Validity Not Before: Feb 9 12:00:32 2026 GMT Not After : Feb 10 12:00:32 2026 GMT Subject: CN=2210cbcbf8a342f2e8bbefba3f756f4104028a67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:47:2f:2d:41:16:e4:75:2a:ec:60:06:51:00: d6:f8:67:8c:a0:0a:f2:36:e6:98:37:ad:0a:6d:0f: f7:72:0a:fa:b1:1c:00:0a:fe:55:7a:d7:56:66:fe: d3:53:c0:92:23:fc:a2:d9:95:ca:d7:95:45:08:fa: 77:25:df:31:81:e2:cb:8b:bf:0f:d7:81:86:8b:1a: fd:d8:d5:e8:3c:99:3b:32:2b:d4:31:22:57:ae:f1: 35:46:3b:67:be:19:18:8b:9e:19:bf:7f:6c:91:f2: c7:0a:03:0a:07:a6:fc:25:04:6b:85:3f:80:31:58: 55:4f:50:fb:aa:ba:d4:10:51:21:13:02:d6:0c:d7: c9:6c:cc:96:12:fb:d0:de:0b:91:c7:bd:d9:17:ea: 41:39:0f:0e:d8:54:bd:9f:4c:e8:8f:b3:0d:8b:96: 29:1c:e7:2f:66:5a:53:58:d9:64:95:1a:5c:16:54: be:a0:d5:1b:38:02:9f:31:34:8f:ca:c1:72:ab:8c: a9:96:ea:9a:e8:df:0f:48:ba:62:12:65:17:62:0b: 61:32:9d:cc:e6:75:d5:e5:c8:37:04:c2:46:33:53: af:2b:f7:4f:d0:46:50:bc:7a:00:a7:c2:4f:7d:67: 1a:ee:6d:ad:22:d9:8a:5b:42:74:d9:ce:48:f4:ac: 0b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:10:CB:CB:F8:A3:42:F2:E8:BB:EF:BA:3F:75:6F:41:04:02:8A:67 X509v3 Authority Key Identifier: keyid:42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:c3:9f:49:c0:c4:ea:ac:22:77:47:9c:6f:ac:ba:b6:e5:bc: 47:94:75:07:16:43:15:5b:9b:09:0e:62:20:5f:58:36:c3:9f: 6c:bc:23:fc:68:3b:1f:b4:79:bf:41:77:92:9d:0b:ab:0f:0d: b9:d8:6b:22:23:c6:97:15:15:4b:a2:a2:4d:bc:0b:07:38:96: 3e:dc:b7:22:5e:01:34:08:f1:e4:43:e2:25:ca:f9:67:b3:83: 5d:91:25:ea:09:e7:c8:90:ec:3b:56:f5:6f:06:f7:43:0f:25: 5f:c6:db:03:07:3f:eb:ce:cb:4b:f8:94:b8:77:51:e8:a0:bf: c3:03:54:4f:7e:1a:2c:6a:ea:d8:18:0c:ed:af:68:ef:6c:aa: 93:4f:f3:fd:ea:1e:c5:9d:67:97:2a:4a:45:8c:66:a3:a0:26: 3a:fc:31:c6:32:dd:2e:77:11:bb:9d:7b:a7:bc:99:d8:04:b5: 3e:3a:ec:1b:e6:7f:bf:4a:5a:3a:a6:90:ea:8d:45:a6:35:ff: 69:72:8d:f2:e7:e9:e1:2f:bb:45:32:4e:0b:c7:ca:8c:66:4e: bf:9e:e8:01:fb:67:2d:a9:01:2d:4f:5a:8e:1f:c9:36:54:ca: e2:a1:ca:05:94:78:95:55:e0:e4:a8:c4:7f:bc:8a:3a:6e:62: 0c:9d:3d:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRltTg2gqt/uMvvVYws2dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyN2RmOTVlZTEwYTJhZDRlYWYwODJkZmFjMTU5ODM4YjM3 ZDM0NTAwHhcNMjYwMjA5MTIwMDMyWhcNMjYwMjEwMTIwMDMyWjAzMTEwLwYDVQQD EygyMjEwY2JjYmY4YTM0MmYyZThiYmVmYmEzZjc1NmY0MTA0MDI4YTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkcvLUEW5HUq7GAGUQDW+GeMoAry NuaYN60KbQ/3cgr6sRwACv5VetdWZv7TU8CSI/yi2ZXK15VFCPp3Jd8xgeLLi78P 14GGixr92NXoPJk7MivUMSJXrvE1RjtnvhkYi54Zv39skfLHCgMKB6b8JQRrhT+A MVhVT1D7qrrUEFEhEwLWDNfJbMyWEvvQ3guRx73ZF+pBOQ8O2FS9n0zoj7MNi5Yp HOcvZlpTWNlklRpcFlS+oNUbOAKfMTSPysFyq4ypluqa6N8PSLpiEmUXYgthMp3M 5nXV5cg3BMJGM1OvK/dP0EZQvHoAp8JPfWca7m2tItmKW0J02c5I9KwLQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCIQy8v4o0Ly6Lvvuj91b0EEAopnMB8GA1UdIwQY MBaAFEJ9+V7hCirU6vCC36wVmDizfTRQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUt Nzk0M2Q5YTc5YmQyLzEvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUtNzk0M2Q5YTc5YmQy LzEvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn8OfScDE 6qwid0ecb6y6tuW8R5R1BxZDFVubCQ5iIF9YNsOfbLwj/Gg7H7R5v0F3kp0Lqw8N udhrIiPGlxUVS6KiTbwLBziWPty3Il4BNAjx5EPiJcr5Z7ODXZEl6gnnyJDsO1b1 bwb3Qw8lX8bbAwc/687LS/iUuHdR6KC/wwNUT34aLGrq2BgM7a9o72yqk0/z/eoe xZ1nlypKRYxmo6AmOvwxxjLdLncRu517p7yZ2AS1PjrsG+Z/v0paOqaQ6o1FpjX/ aXKN8ufp4S+7RTJOC8fKjGZOv57oAftnLakBLU9ajh/JNlTK4qHKBZR4lVXg5KjE f7yKOm5iDJ09Aw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:57 2026 by rpki-client