This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/8cf1f5-2095-48fa-8c3a-a3137bc83d0a/1/cLQT-ngqMEKDDaI6o_NZSn1eovQ.mft File: cLQT-ngqMEKDDaI6o_NZSn1eovQ.mft (raw, json) Hash identifier: Bdk8rB4u28ZEp3H2QB/H3kzKBxsRWHf70Ey3M3qWuJw= Subject key identifier: E5:6D:48:4B:DE:47:3B:61:A2:D2:C2:DA:11:E9:3D:FB:3C:17:7D:64 Authority key identifier: 70:B4:13:FA:78:2A:30:42:83:0D:A2:3A:A3:F3:59:4A:7D:5E:A2:F4 Certificate issuer: /CN=70b413fa782a3042830da23aa3f3594a7d5ea2f4 Certificate serial: 019C438FC156C0A644CBB45AD63A812EBDE6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cLQT-ngqMEKDDaI6o_NZSn1eovQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/8cf1f5-2095-48fa-8c3a-a3137bc83d0a/1/cLQT-ngqMEKDDaI6o_NZSn1eovQ.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 18:00:20 +0000 Manifest this update: Mon 09 Feb 2026 18:00:20 +0000 Manifest next update: Tue 10 Feb 2026 18:00:20 +0000 Files and hashes: 1: cLQT-ngqMEKDDaI6o_NZSn1eovQ.crl (hash: LagGUCK/4yHlMrwR3nHqErLGjX3Y+4iFbieLLqUv+cM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/8cf1f5-2095-48fa-8c3a-a3137bc83d0a/1/cLQT-ngqMEKDDaI6o_NZSn1eovQ.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/8cf1f5-2095-48fa-8c3a-a3137bc83d0a/1/cLQT-ngqMEKDDaI6o_NZSn1eovQ.mft rsync://rpki.ripe.net/repository/DEFAULT/cLQT-ngqMEKDDaI6o_NZSn1eovQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:c1:56:c0:a6:44:cb:b4:5a:d6:3a:81:2e:bd:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70b413fa782a3042830da23aa3f3594a7d5ea2f4 Validity Not Before: Feb 9 18:00:20 2026 GMT Not After : Feb 10 18:00:20 2026 GMT Subject: CN=e56d484bde473b61a2d2c2da11e93dfb3c177d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:61:42:0a:82:ff:fd:45:da:8d:e9:e5:9c:cc: 34:d3:94:13:7d:89:e2:43:e4:5a:73:75:13:89:f3: ad:2c:d4:fa:8d:8c:fe:8f:a3:d7:e2:1a:91:a8:2d: 9c:d8:1a:a9:89:a2:a4:17:92:7b:09:a0:4d:0f:fa: 4b:d0:7a:30:fa:c6:10:22:ae:93:a9:8f:5d:4f:51: 6e:da:e2:44:00:e4:5f:5b:8a:7c:00:08:2c:4d:41: 0f:46:58:de:0e:9b:0b:11:b0:69:ec:d2:f9:bc:59: 7c:85:9e:87:9f:7b:fd:be:15:8a:94:ad:e8:dd:69: 98:6a:00:df:05:1a:3e:27:3d:e4:97:26:6b:4c:02: 76:a5:71:48:85:b2:1d:46:76:31:13:ce:f3:25:a3: 32:d1:0d:a2:e1:82:fd:87:e2:47:5c:c1:8d:38:32: db:6b:c4:60:71:5f:fb:65:38:16:5e:ee:15:b8:44: 9c:25:b5:f1:9e:f3:d2:8b:04:5c:d1:13:c0:28:76: aa:4c:5b:a7:ad:b2:ae:71:78:3c:90:ce:02:ed:75: a7:85:59:6b:af:e1:4a:86:3a:73:f6:be:fd:67:17: c3:99:57:e9:cd:40:39:d6:5c:bc:d1:d1:69:bd:b4: 6e:39:41:af:67:b8:65:04:db:39:c9:c5:a9:ac:03: af:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:6D:48:4B:DE:47:3B:61:A2:D2:C2:DA:11:E9:3D:FB:3C:17:7D:64 X509v3 Authority Key Identifier: keyid:70:B4:13:FA:78:2A:30:42:83:0D:A2:3A:A3:F3:59:4A:7D:5E:A2:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLQT-ngqMEKDDaI6o_NZSn1eovQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/8cf1f5-2095-48fa-8c3a-a3137bc83d0a/1/cLQT-ngqMEKDDaI6o_NZSn1eovQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/8cf1f5-2095-48fa-8c3a-a3137bc83d0a/1/cLQT-ngqMEKDDaI6o_NZSn1eovQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:e7:97:4c:b9:8e:dc:7d:f6:2e:d9:32:11:26:c7:95:69:4b: 02:a3:9a:4d:c8:5a:75:23:f5:c1:04:50:8e:3f:3f:33:d1:32: 29:e4:5b:50:09:37:26:2f:cc:ec:95:b0:0e:85:79:e3:1b:c0: 7f:46:0b:10:fd:57:ea:de:c6:35:82:4f:29:1c:26:ea:bc:d6: 15:8d:07:99:63:ec:a1:ca:4a:da:89:79:31:2b:05:0f:ca:98: de:cd:6c:28:90:99:55:09:f1:c8:d2:c6:be:f2:53:d1:37:fa: 10:15:56:61:13:ff:3c:47:9d:74:c8:36:39:d4:13:0c:d9:71: 0d:11:1a:61:9b:25:19:e9:87:f4:e6:a1:40:92:ca:39:f1:a5: 6d:c8:07:bf:68:c3:97:44:bd:0e:f8:e3:34:7e:e9:53:6a:b8: 83:da:be:94:43:38:5a:35:ae:af:74:d6:fb:1c:e9:ba:df:9b: 82:05:4e:4e:ac:3a:4e:cf:7f:c6:ec:d5:3e:97:83:f2:57:fd: 5c:ac:fd:73:74:a1:00:da:51:91:e5:3a:53:ad:bc:60:6a:d0: 79:2c:b5:b5:c6:11:1c:cf:e0:26:69:d1:62:0d:56:d5:6a:af: 34:5e:a5:a2:8c:01:45:26:9b:8f:ef:88:05:74:60:18:3b:8e: 33:ac:cc:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj8FWwKZEy7Ra1jqBLr3mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwYjQxM2ZhNzgyYTMwNDI4MzBkYTIzYWEzZjM1OTRhN2Q1 ZWEyZjQwHhcNMjYwMjA5MTgwMDIwWhcNMjYwMjEwMTgwMDIwWjAzMTEwLwYDVQQD EyhlNTZkNDg0YmRlNDczYjYxYTJkMmMyZGExMWU5M2RmYjNjMTc3ZDY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlWFCCoL//UXajenlnMw005QTfYni Q+Rac3UTifOtLNT6jYz+j6PX4hqRqC2c2BqpiaKkF5J7CaBND/pL0How+sYQIq6T qY9dT1Fu2uJEAORfW4p8AAgsTUEPRljeDpsLEbBp7NL5vFl8hZ6Hn3v9vhWKlK3o 3WmYagDfBRo+Jz3klyZrTAJ2pXFIhbIdRnYxE87zJaMy0Q2i4YL9h+JHXMGNODLb a8RgcV/7ZTgWXu4VuEScJbXxnvPSiwRc0RPAKHaqTFunrbKucXg8kM4C7XWnhVlr r+FKhjpz9r79ZxfDmVfpzUA51ly80dFpvbRuOUGvZ7hlBNs5ycWprAOvQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOVtSEveRzthotLC2hHpPfs8F31kMB8GA1UdIwQY MBaAFHC0E/p4KjBCgw2iOqPzWUp9XqL0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0xRVC1uZ3FNRUtERGFJNm9fTlpTbjFlb3ZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi84Y2YxZjUtMjA5NS00OGZhLThjM2Et YTMxMzdiYzgzZDBhLzEvY0xRVC1uZ3FNRUtERGFJNm9fTlpTbjFlb3ZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi84Y2YxZjUtMjA5NS00OGZhLThjM2EtYTMxMzdiYzgzZDBh LzEvY0xRVC1uZ3FNRUtERGFJNm9fTlpTbjFlb3ZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdueXTLmO 3H32LtkyESbHlWlLAqOaTchadSP1wQRQjj8/M9EyKeRbUAk3Ji/M7JWwDoV54xvA f0YLEP1X6t7GNYJPKRwm6rzWFY0HmWPsocpK2ol5MSsFD8qY3s1sKJCZVQnxyNLG vvJT0Tf6EBVWYRP/PEeddMg2OdQTDNlxDREaYZslGemH9OahQJLKOfGlbcgHv2jD l0S9DvjjNH7pU2q4g9q+lEM4WjWur3TW+xzput+bggVOTqw6Ts9/xuzVPpeD8lf9 XKz9c3ShANpRkeU6U628YGrQeSy1tcYRHM/gJmnRYg1W1WqvNF6loowBRSabj++I BXRgGDuOM6zMhQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:02 2026 by rpki-client