This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json) Hash identifier: CK19A1jXQD/q9BG0WpO3VKD9S0BtqP7khHu/+0xiNeA= Subject key identifier: FF:57:FC:D9:E3:20:A1:3C:E7:A5:BB:93:B6:5B:7C:FF:54:0D:35:BB Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c Certificate serial: 019C42B485383CA07419DCBB06B917A20409 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft Manifest number: 17A2 Signing time: Mon 09 Feb 2026 14:00:52 +0000 Manifest this update: Mon 09 Feb 2026 14:00:52 +0000 Manifest next update: Tue 10 Feb 2026 14:00:52 +0000 Files and hashes: 1: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: LZ6DBHSjcDNu9fBOf11XbfzQTd9fq4/wQHkxxrBhiOk=) 2: uuyf9SL1IzQsxC4GwsHv2Aqvi6I.roa (hash: bWBF8Lzkc1fXhVOcL+v1lM3xBjFclLxIjyc/HWhj0fY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:85:38:3c:a0:74:19:dc:bb:06:b9:17:a2:04:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c Validity Not Before: Feb 9 14:00:52 2026 GMT Not After : Feb 10 14:00:52 2026 GMT Subject: CN=ff57fcd9e320a13ce7a5bb93b65b7cff540d35bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c2:dc:cd:30:fe:09:3d:c1:2e:74:ca:a9:26: 83:c1:a5:4b:b0:35:e3:cd:c9:74:d1:fb:3e:84:b5: 52:64:37:6c:7c:2d:a6:01:3c:4d:c1:10:07:e9:38: 2a:f7:70:51:50:7a:c0:02:90:70:17:03:26:34:85: 99:42:7e:fc:64:9f:a5:74:ff:9f:7c:da:70:d5:45: 13:3b:95:4c:50:a6:97:09:b4:4f:ef:74:bd:70:b2: 3f:67:03:b7:0a:46:02:d3:99:7b:f2:af:ff:be:b6: 62:f6:1c:a3:7c:78:2a:78:64:3c:67:99:95:d7:6a: 66:f6:cf:0f:06:25:be:a7:2e:19:86:cb:63:31:d2: cf:ae:f2:fc:fe:c4:1e:80:b3:7d:f8:11:cc:c3:34: 6b:dc:db:db:96:1f:5f:30:5e:70:4c:23:3f:ef:6c: 69:08:f6:46:29:f1:b3:ba:fe:6f:a5:7e:84:11:31: 82:bb:e5:7e:e7:11:f6:69:9a:34:c7:5a:a4:3d:85: 51:ac:74:16:8d:5f:7e:ce:79:8c:b5:2a:d0:34:70: 61:c1:66:25:de:db:bf:e1:75:32:cd:10:56:bb:65: 39:99:1e:d5:56:e4:28:24:0e:15:3c:e6:25:d6:e9: c0:40:b0:0f:ad:f1:0e:61:3f:31:57:67:f9:12:3b: 68:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:57:FC:D9:E3:20:A1:3C:E7:A5:BB:93:B6:5B:7C:FF:54:0D:35:BB X509v3 Authority Key Identifier: keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:b6:0e:a1:0b:12:c7:74:34:85:d4:fc:1f:0a:90:8d:dc:53: 9b:0c:ba:43:9f:b0:6a:83:b7:c7:23:72:5e:79:7b:a5:d5:6b: 38:a4:16:1d:86:f1:ad:42:ba:26:fc:c0:ed:a3:bb:c1:93:ba: 26:55:64:3a:ed:6a:a7:e3:56:8b:ad:cf:a7:c6:71:39:7d:cd: 62:59:22:e7:a8:55:f1:7f:77:de:89:6f:c1:00:f9:de:17:b6: b5:76:cb:62:46:63:3e:fc:70:11:f5:f6:f4:9b:e2:2d:ee:1e: d3:00:0a:13:c0:4a:6a:df:e8:65:a6:e4:36:68:50:50:3a:fa: 6f:b6:14:50:12:9a:86:04:fc:be:3b:4f:d7:ac:6d:7b:e4:ea: 2a:de:3f:39:3a:0f:2e:f8:96:a4:fc:f0:e5:89:88:8a:2b:49: 45:d3:bb:df:7a:35:c5:fd:49:7a:b5:ab:7b:55:ac:bd:2a:5c: ff:99:23:2b:d5:64:5f:9a:88:9f:3e:be:e8:af:ce:b4:0a:08: fd:4a:86:16:89:1e:60:39:ae:1e:7c:03:e4:9a:7d:56:55:19: 61:c6:2d:f8:cd:30:38:71:6a:93:64:26:a5:a7:c5:53:74:60: b5:48:f4:fd:e3:dc:46:ba:7b:24:c3:1a:6e:7f:ec:fc:cb:76: 5b:54:f5:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtIU4PKB0Gdy7BrkXogQJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkMDFhNWQ5MGRjM2E4MzZjZWI2MzgxZWZjNzUzNGUxMjlm NDNhNGMwHhcNMjYwMjA5MTQwMDUyWhcNMjYwMjEwMTQwMDUyWjAzMTEwLwYDVQQD EyhmZjU3ZmNkOWUzMjBhMTNjZTdhNWJiOTNiNjViN2NmZjU0MGQzNWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcLczTD+CT3BLnTKqSaDwaVLsDXj zcl00fs+hLVSZDdsfC2mATxNwRAH6Tgq93BRUHrAApBwFwMmNIWZQn78ZJ+ldP+f fNpw1UUTO5VMUKaXCbRP73S9cLI/ZwO3CkYC05l78q//vrZi9hyjfHgqeGQ8Z5mV 12pm9s8PBiW+py4ZhstjMdLPrvL8/sQegLN9+BHMwzRr3Nvblh9fMF5wTCM/72xp CPZGKfGzuv5vpX6EETGCu+V+5xH2aZo0x1qkPYVRrHQWjV9+znmMtSrQNHBhwWYl 3tu/4XUyzRBWu2U5mR7VVuQoJA4VPOYl1unAQLAPrfEOYT8xV2f5EjtoswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP9X/NnjIKE856W7k7ZbfP9UDTW7MB8GA1UdIwQY MBaAFH0BpdkNw6g2zrY4Hvx1NOEp9DpMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yMWIwMDctYTA4Ni00MzEyLTlkMjMt NjJmNjY2NDczYjIxLzEvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi8yMWIwMDctYTA4Ni00MzEyLTlkMjMtNjJmNjY2NDczYjIx LzEvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo7YOoQsS x3Q0hdT8HwqQjdxTmwy6Q5+waoO3xyNyXnl7pdVrOKQWHYbxrUK6JvzA7aO7wZO6 JlVkOu1qp+NWi63Pp8ZxOX3NYlki56hV8X933olvwQD53he2tXbLYkZjPvxwEfX2 9JviLe4e0wAKE8BKat/oZabkNmhQUDr6b7YUUBKahgT8vjtP16xte+TqKt4/OToP LviWpPzw5YmIiitJRdO733o1xf1JerWre1WsvSpc/5kjK9VkX5qInz6+6K/OtAoI /UqGFokeYDmuHnwD5Jp9VlUZYcYt+M0wOHFqk2QmpafFU3RgtUj0/ePcRrp7JMMa bn/s/Mt2W1T18w== -----END CERTIFICATE-----Generated at Mon Feb 9 20:56:17 2026 by rpki-client