This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json) Hash identifier: oS1uPBbJcQMRSh5y10rYlOtMh/gPvLmwvE40TP49Ja8= Subject key identifier: 8A:61:95:E6:FA:5A:49:E3:51:45:9F:D5:52:1F:72:99:5D:59:73:25 Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0 Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0 Certificate serial: 019C44DA24FEE1DA36EB9227925C5515656E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft Manifest number: 0B2E Signing time: Tue 10 Feb 2026 00:01:12 +0000 Manifest this update: Tue 10 Feb 2026 00:01:12 +0000 Manifest next update: Wed 11 Feb 2026 00:01:12 +0000 Files and hashes: 1: 4TWnkEehYGPz8S3MxMCECSR21Hk.roa (hash: n3+/E4ft5KJ8lIw6jVs8x5Mt/ftJJPREMORWJ+SrYKM=) 2: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: ehofip19aJNN83FRlwWyo99HgHVHub60+i68oC27Imc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:da:24:fe:e1:da:36:eb:92:27:92:5c:55:15:65:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=090287256e25fa340d3afba780eac60d556adec0 Validity Not Before: Feb 10 00:01:12 2026 GMT Not After : Feb 11 00:01:12 2026 GMT Subject: CN=8a6195e6fa5a49e351459fd5521f72995d597325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:97:a3:4a:cb:be:e0:b0:55:20:44:e3:f6:23: ca:e1:e6:e8:5e:2e:28:9f:d9:92:9e:66:d9:b4:39: 24:bc:a1:2d:e0:ab:4c:7d:be:2c:06:51:97:c8:a5: 08:42:a5:0a:30:2a:8c:14:b9:5a:f4:92:df:b5:ff: 47:68:c9:25:68:ed:22:a0:f9:89:f9:50:8b:f6:c6: 38:39:2c:f5:0d:6a:76:30:e2:02:8b:6e:43:ef:a3: 07:bb:e5:1e:8b:1b:58:a0:fe:51:c3:fe:4c:44:e6: e7:80:2c:9d:f9:fc:60:53:a3:c3:e2:6c:bd:6d:1f: 0a:c5:bb:9a:a7:7f:83:93:e5:e6:09:af:67:83:f8: 6b:56:6c:9f:fb:21:8a:48:6d:c8:0d:10:02:c6:0e: f4:ee:86:f9:bb:6b:c4:c3:1d:a9:78:87:cf:cc:5d: 67:dd:a7:af:1d:1c:33:63:7f:ab:f5:71:67:34:e5: ec:36:6b:b3:66:41:08:85:cc:83:5f:db:2d:9b:82: 4a:4c:67:c3:c2:97:df:46:96:5b:04:c9:27:9d:48: 5e:8c:bd:10:25:d8:b7:8c:fd:78:4f:99:c6:91:32: 18:d4:97:9a:0b:46:f5:ab:3a:81:40:78:e3:99:3f: a1:71:83:da:a2:4b:89:1a:21:37:56:ef:59:24:2b: c8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:61:95:E6:FA:5A:49:E3:51:45:9F:D5:52:1F:72:99:5D:59:73:25 X509v3 Authority Key Identifier: keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:cd:ca:ec:09:03:78:46:f5:fd:36:95:65:9f:9c:56:c3:c9: 65:d4:cb:81:5a:24:30:15:98:9a:4b:d6:71:9d:08:f1:37:5e: cb:d2:ea:0c:af:9c:10:6f:56:eb:24:ea:45:b0:7d:a3:ba:aa: 10:44:0d:1e:b4:d1:e2:4b:99:6a:fc:8c:ee:73:02:9c:3c:64: 1c:a2:27:bb:9e:36:f0:88:0c:50:56:6f:f3:a0:b1:cf:3a:7f: 46:48:94:f3:c6:8a:33:c7:14:61:98:ec:d1:ab:f7:d9:74:43: 52:af:b6:c2:ce:12:5a:33:a2:77:4f:95:42:19:5a:0a:7b:8a: 9e:d5:31:b3:4d:a4:76:a9:91:91:8b:99:db:b4:cb:0a:ec:04: 63:22:c7:3a:45:44:99:c6:23:98:bf:91:fe:cf:e6:5d:1c:ec: 30:ff:d4:bd:4a:0e:34:38:9b:d2:74:c9:dc:f8:b7:72:2a:3b: 4d:fa:58:17:5d:90:f2:a5:cf:e4:43:0c:a5:c7:a4:0f:45:c5: ba:9b:24:0c:a3:b8:48:c1:ed:cb:3b:68:db:86:46:8b:de:0d: c6:ae:83:8d:a4:da:34:de:f3:16:83:14:cd:37:ec:db:4e:2c: a8:90:b8:ee:ad:2a:c0:9b:f7:3c:f9:66:61:de:07:ad:69:0e: d8:ef:14:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2iT+4do265InklxVFWVuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MDI4NzI1NmUyNWZhMzQwZDNhZmJhNzgwZWFjNjBkNTU2 YWRlYzAwHhcNMjYwMjEwMDAwMTEyWhcNMjYwMjExMDAwMTEyWjAzMTEwLwYDVQQD Eyg4YTYxOTVlNmZhNWE0OWUzNTE0NTlmZDU1MjFmNzI5OTVkNTk3MzI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspejSsu+4LBVIETj9iPK4eboXi4o n9mSnmbZtDkkvKEt4KtMfb4sBlGXyKUIQqUKMCqMFLla9JLftf9HaMklaO0ioPmJ +VCL9sY4OSz1DWp2MOICi25D76MHu+UeixtYoP5Rw/5MRObngCyd+fxgU6PD4my9 bR8Kxbuap3+Dk+XmCa9ng/hrVmyf+yGKSG3IDRACxg707ob5u2vEwx2peIfPzF1n 3aevHRwzY3+r9XFnNOXsNmuzZkEIhcyDX9stm4JKTGfDwpffRpZbBMknnUhejL0Q Jdi3jP14T5nGkTIY1JeaC0b1qzqBQHjjmT+hcYPaokuJGiE3Vu9ZJCvIxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIphleb6WknjUUWf1VIfcpldWXMlMB8GA1UdIwQY MBaAFAkChyVuJfo0DTr7p4Dqxg1Vat7AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1FLSEpXNGwtalFOT3Z1bmdPckdEVlZxM3NBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC81YjBmZjUtODRjMy00OWJiLTlmYWIt NzdiMjFjMDRiYzdkLzEvQ1FLSEpXNGwtalFOT3Z1bmdPckdEVlZxM3NBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC81YjBmZjUtODRjMy00OWJiLTlmYWItNzdiMjFjMDRiYzdk LzEvQ1FLSEpXNGwtalFOT3Z1bmdPckdEVlZxM3NBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAos3K7AkD eEb1/TaVZZ+cVsPJZdTLgVokMBWYmkvWcZ0I8Tdey9LqDK+cEG9W6yTqRbB9o7qq EEQNHrTR4kuZavyM7nMCnDxkHKInu5428IgMUFZv86Cxzzp/RkiU88aKM8cUYZjs 0av32XRDUq+2ws4SWjOid0+VQhlaCnuKntUxs02kdqmRkYuZ27TLCuwEYyLHOkVE mcYjmL+R/s/mXRzsMP/UvUoONDib0nTJ3Pi3cio7TfpYF12Q8qXP5EMMpcekD0XF upskDKO4SMHtyzto24ZGi94Nxq6DjaTaNN7zFoMUzTfs204sqJC47q0qwJv3PPlm Yd4HrWkO2O8UUA== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:27 2026 by rpki-client