This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft File: mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft (raw, json) Hash identifier: s6ThWMrGBhg/lRBwBO3elZEbwSrg0Pyx3H+qxsO/Qsg= Subject key identifier: 14:67:F6:6A:CC:6D:0C:92:04:4F:8C:63:E2:51:25:A9:FF:5A:F8:3D Authority key identifier: 99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27 Certificate issuer: /CN=996f903f91a85a60c546ee1141348cc3c8036927 Certificate serial: 019C4322CF368B79B035E7E29A445F619AEF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft Manifest number: 14A3 Signing time: Mon 09 Feb 2026 16:01:20 +0000 Manifest this update: Mon 09 Feb 2026 16:01:20 +0000 Manifest next update: Tue 10 Feb 2026 16:01:20 +0000 Files and hashes: 1: 1-WzZMCEyc2Rm8WtzI4guv1wbjQc.roa (hash: Zwy/WM9bxRjQKO19XmxHw+6wiCVAQYUUXkLnAumwRps=) 2: mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl (hash: 8KmE4cOegNSEtafIGRtKIyMFMKT9msS0l8OnzTaf1AQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:cf:36:8b:79:b0:35:e7:e2:9a:44:5f:61:9a:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=996f903f91a85a60c546ee1141348cc3c8036927 Validity Not Before: Feb 9 16:01:20 2026 GMT Not After : Feb 10 16:01:20 2026 GMT Subject: CN=1467f66acc6d0c92044f8c63e25125a9ff5af83d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:05:88:a6:43:96:41:8a:07:06:96:22:ba:4e: ea:a9:4c:23:b1:8d:fd:fd:f4:08:b4:7b:04:f9:55: c7:8d:33:cb:f7:ee:fd:ca:2e:f0:1b:2d:6a:43:31: 32:d8:2f:44:b6:b4:ea:fe:21:ec:82:0e:58:7d:d5: 46:ee:7c:54:88:4f:9f:e8:be:3f:af:77:be:8f:7f: d7:8e:da:1a:09:3d:31:a6:ae:68:1a:ac:40:74:37: 93:ca:de:70:55:60:de:8e:00:e5:a0:3c:71:78:74: d3:ec:8b:dd:dc:df:31:ba:d9:d8:c3:5c:c5:04:60: 93:95:36:b2:c6:e1:c2:48:89:6c:e8:20:56:55:fd: c4:02:ee:a6:ce:d6:82:46:e3:77:65:0a:a8:16:d1: 5e:34:bf:5e:9f:17:d5:21:c1:22:29:e3:6b:f7:4d: 01:a5:7c:0d:b2:f5:4a:a2:c0:5b:35:c4:84:2e:08: 81:ca:20:f1:cf:ed:67:8c:ad:08:3a:b2:b5:33:ca: d1:ab:a9:c3:d7:63:f1:93:3f:cf:ab:43:57:b5:fd: b6:eb:b4:3b:63:13:8f:cc:35:26:40:bd:21:10:79: b0:5c:60:38:63:aa:b1:1b:cc:0e:04:38:ae:1e:98: 49:06:59:1d:a3:fb:d6:41:fb:2d:c0:0e:50:54:11: 70:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:67:F6:6A:CC:6D:0C:92:04:4F:8C:63:E2:51:25:A9:FF:5A:F8:3D X509v3 Authority Key Identifier: keyid:99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:d3:9f:65:ad:6b:9c:69:61:d7:bd:54:93:b1:98:2a:9d:db: 0b:f5:49:f1:2e:27:f2:77:d4:fa:c2:78:1c:44:0b:ca:0f:87: fd:2f:7a:61:af:47:ee:c0:f4:43:53:19:71:3d:8a:5b:3a:03: 1f:84:16:bf:c5:5f:c5:67:c5:61:42:07:cf:3c:df:1e:8c:45: 30:8f:74:93:7a:1b:25:51:a9:fb:d0:37:6e:55:c1:ec:ff:5c: 65:07:41:b7:e1:fe:1d:2e:9e:f2:a1:0a:99:19:6a:04:7a:5e: be:d8:d4:e0:a5:11:bd:0f:e2:ee:6b:23:98:0c:81:79:bd:dc: 79:89:e0:d4:0f:ea:01:3c:c6:cd:aa:bc:cd:78:d8:5d:cd:d4: ad:ba:49:79:57:15:d3:aa:10:c3:16:cd:2d:b1:c2:c9:3b:83: 60:e7:bd:92:d0:20:b2:bd:6d:a2:fe:10:a6:9c:2e:9b:7f:6a: 82:00:ad:31:61:24:f9:35:0e:da:45:60:cc:de:32:88:f6:70: b4:b4:e7:8a:42:6d:82:e7:ff:37:75:35:6f:5e:2e:60:4c:2c: 15:fd:e4:a0:95:d9:c6:56:2a:d0:09:5b:65:a1:5c:66:d8:0b: 8d:1a:b1:ac:bf:3f:38:05:12:bb:b5:65:5c:aa:6f:bf:1a:98: 81:12:4b:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIs82i3mwNefimkRfYZrvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5NmY5MDNmOTFhODVhNjBjNTQ2ZWUxMTQxMzQ4Y2MzYzgw MzY5MjcwHhcNMjYwMjA5MTYwMTIwWhcNMjYwMjEwMTYwMTIwWjAzMTEwLwYDVQQD EygxNDY3ZjY2YWNjNmQwYzkyMDQ0ZjhjNjNlMjUxMjVhOWZmNWFmODNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQWIpkOWQYoHBpYiuk7qqUwjsY39 /fQItHsE+VXHjTPL9+79yi7wGy1qQzEy2C9EtrTq/iHsgg5YfdVG7nxUiE+f6L4/ r3e+j3/XjtoaCT0xpq5oGqxAdDeTyt5wVWDejgDloDxxeHTT7Ivd3N8xutnYw1zF BGCTlTayxuHCSIls6CBWVf3EAu6mztaCRuN3ZQqoFtFeNL9enxfVIcEiKeNr900B pXwNsvVKosBbNcSELgiByiDxz+1njK0IOrK1M8rRq6nD12Pxkz/Pq0NXtf2267Q7 YxOPzDUmQL0hEHmwXGA4Y6qxG8wOBDiuHphJBlkdo/vWQfstwA5QVBFw7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBRn9mrMbQySBE+MY+JRJan/Wvg9MB8GA1UdIwQY MBaAFJlvkD+RqFpgxUbuEUE0jMPIA2knMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVctUVA1R29XbURGUnU0UlFUU013OGdEYVNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9hMjAxMDEtMWM5Zi00NGM1LTgwNzct NTE5MGY3ODY5YTdmLzEvbVctUVA1R29XbURGUnU0UlFUU013OGdEYVNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS9hMjAxMDEtMWM5Zi00NGM1LTgwNzctNTE5MGY3ODY5YTdm LzEvbVctUVA1R29XbURGUnU0UlFUU013OGdEYVNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANtOfZa1r nGlh171Uk7GYKp3bC/VJ8S4n8nfU+sJ4HEQLyg+H/S96Ya9H7sD0Q1MZcT2KWzoD H4QWv8VfxWfFYUIHzzzfHoxFMI90k3obJVGp+9A3blXB7P9cZQdBt+H+HS6e8qEK mRlqBHpevtjU4KURvQ/i7msjmAyBeb3ceYng1A/qATzGzaq8zXjYXc3UrbpJeVcV 06oQwxbNLbHCyTuDYOe9ktAgsr1tov4Qppwum39qggCtMWEk+TUO2kVgzN4yiPZw tLTnikJtguf/N3U1b14uYEwsFf3koJXZxlYq0AlbZaFcZtgLjRqxrL8/OAUSu7Vl XKpvvxqYgRJLmg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:39 2026 by rpki-client