This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft File: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft (raw, json) Hash identifier: 1V2d6mmtU8YfQ7ABQH3Ie63OYsC5mhDJBSYKjSFZuVA= Subject key identifier: D4:29:C5:86:9F:56:3B:26:8E:BF:1C:C4:20:A4:B5:7E:9F:2A:3E:B3 Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65 Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65 Certificate serial: 019C4434D2C192429ADBAAA5B32AE0F09C6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft Manifest number: 11D9 Signing time: Mon 09 Feb 2026 21:00:38 +0000 Manifest this update: Mon 09 Feb 2026 21:00:38 +0000 Manifest next update: Tue 10 Feb 2026 21:00:38 +0000 Files and hashes: 1: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl (hash: j2xGdGTcfdR8nejf6Z5FXHVJR6Wk8Tu9TCLaN9ciHaw=) 2: OgtLPNJMhUcc3a3Q9gVgb_uUcTU.roa (hash: W+gl2jZGWcmgxMC+cnSTgyo7gRfrRZB5RZkp77uUONU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:d2:c1:92:42:9a:db:aa:a5:b3:2a:e0:f0:9c:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65 Validity Not Before: Feb 9 21:00:38 2026 GMT Not After : Feb 10 21:00:38 2026 GMT Subject: CN=d429c5869f563b268ebf1cc420a4b57e9f2a3eb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:35:86:c9:ae:9f:e5:6c:c2:d4:3b:b8:2d:ef: f5:64:78:71:15:bb:48:e7:35:9d:0e:f3:da:d8:ce: 65:47:b1:42:83:b5:fe:7a:5a:82:a5:a6:b9:a4:d6: 7a:c8:53:00:5b:e5:09:8e:67:b2:b8:7e:0e:08:04: 3b:e0:20:d5:27:1c:29:38:ca:9d:8a:06:84:8a:74: 2a:1d:2b:94:29:c8:31:98:b6:5c:d8:ec:29:9a:fe: 06:6c:89:33:5f:e4:94:72:75:b8:58:d2:3d:7e:b7: bd:65:b6:43:1a:cb:1d:d1:53:74:39:0e:6d:fd:7e: 6b:38:35:02:ee:aa:27:98:16:c3:ec:75:fc:6f:c2: 8b:33:09:a2:58:3d:3c:1e:0a:0c:75:8d:07:2b:bd: 41:9f:53:f4:d7:f5:29:b7:20:17:66:e9:cc:50:e6: 63:cf:f4:35:f6:a6:14:a9:b3:94:b3:18:84:d8:f7: b4:23:da:1a:09:f1:3b:b2:85:80:aa:93:b7:d6:86: aa:9a:85:b0:69:73:12:28:57:41:f4:f7:22:56:86: b9:b4:e6:89:3a:b9:9c:ce:3a:3c:bd:83:bc:91:9d: 45:43:65:da:0a:8e:be:10:79:9f:bb:06:f7:21:8a: 7b:6e:67:94:43:63:95:0a:6b:dd:d6:d0:25:08:b5: 7f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:29:C5:86:9F:56:3B:26:8E:BF:1C:C4:20:A4:B5:7E:9F:2A:3E:B3 X509v3 Authority Key Identifier: keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:3d:3d:65:39:1e:dc:19:42:db:3c:b1:18:1d:57:3f:5c:00: 7e:75:5d:1d:9a:59:40:2d:7f:eb:d1:0a:64:17:e0:58:94:69: 08:38:b2:a5:f4:ca:f9:d8:30:cc:96:a9:df:23:27:c8:78:4e: ee:41:c6:d1:c6:11:0c:16:e9:9c:bf:90:80:89:b7:61:b0:40: 3f:78:00:79:36:99:53:78:4a:0c:c5:89:ee:ca:b0:e4:66:92: bd:0f:26:db:1c:e0:4f:f0:97:79:bc:b0:a5:c6:ce:c3:78:01: 8b:85:c8:ac:90:2a:7a:7d:79:af:fa:b9:44:5f:c4:40:07:70: 05:c0:a7:5a:d9:78:ad:5c:6b:d5:16:60:d6:63:67:c6:e4:67: 2e:e0:f4:43:10:e7:f2:c1:f1:de:1e:0d:3a:c3:36:10:6f:97: a1:5e:71:33:c2:90:61:7b:7c:6d:67:36:41:6f:41:30:aa:0b: 6c:ff:e3:89:85:3c:be:5f:2b:09:9a:4a:bf:27:1f:79:95:7c: d5:c1:2e:d2:f0:96:4b:01:42:e1:48:f6:92:63:92:48:96:61: 7b:59:e1:3b:b1:f2:6e:10:d3:cc:b9:75:14:55:be:cf:35:b6: 88:90:c9:90:4f:7d:d2:56:4a:c3:ee:99:07:6a:42:8c:3f:a2: 9b:eb:0c:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENNLBkkKa26qlsyrg8JxsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyYTNjOGNjNjNkMGU3ZTA2OWNhNTIzZjM0ZWZiMzk1M2Vl MjFiNjUwHhcNMjYwMjA5MjEwMDM4WhcNMjYwMjEwMjEwMDM4WjAzMTEwLwYDVQQD EyhkNDI5YzU4NjlmNTYzYjI2OGViZjFjYzQyMGE0YjU3ZTlmMmEzZWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvTWGya6f5WzC1Du4Le/1ZHhxFbtI 5zWdDvPa2M5lR7FCg7X+elqCpaa5pNZ6yFMAW+UJjmeyuH4OCAQ74CDVJxwpOMqd igaEinQqHSuUKcgxmLZc2Owpmv4GbIkzX+SUcnW4WNI9fre9ZbZDGssd0VN0OQ5t /X5rODUC7qonmBbD7HX8b8KLMwmiWD08HgoMdY0HK71Bn1P01/UptyAXZunMUOZj z/Q19qYUqbOUsxiE2Pe0I9oaCfE7soWAqpO31oaqmoWwaXMSKFdB9PciVoa5tOaJ Ormczjo8vYO8kZ1FQ2XaCo6+EHmfuwb3IYp7bmeUQ2OVCmvd1tAlCLV/mwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNQpxYafVjsmjr8cxCCktX6fKj6zMB8GA1UdIwQY MBaAFNKjyMxj0OfgacpSPzTvs5U+4htlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHFQSXpHUFE1LUJweWxJX05PLXpsVDdpRzJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9kMGExZmUtMGI2NS00ZDUwLWFlMmYt MTI4OTg2OTdhODYyLzEvMHFQSXpHUFE1LUJweWxJX05PLXpsVDdpRzJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9kMGExZmUtMGI2NS00ZDUwLWFlMmYtMTI4OTg2OTdhODYy LzEvMHFQSXpHUFE1LUJweWxJX05PLXpsVDdpRzJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoz09ZTke 3BlC2zyxGB1XP1wAfnVdHZpZQC1/69EKZBfgWJRpCDiypfTK+dgwzJap3yMnyHhO 7kHG0cYRDBbpnL+QgIm3YbBAP3gAeTaZU3hKDMWJ7sqw5GaSvQ8m2xzgT/CXebyw pcbOw3gBi4XIrJAqen15r/q5RF/EQAdwBcCnWtl4rVxr1RZg1mNnxuRnLuD0QxDn 8sHx3h4NOsM2EG+XoV5xM8KQYXt8bWc2QW9BMKoLbP/jiYU8vl8rCZpKvycfeZV8 1cEu0vCWSwFC4Uj2kmOSSJZhe1nhO7HybhDTzLl1FFW+zzW2iJDJkE990lZKw+6Z B2pCjD+im+sMsw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:59 2026 by rpki-client