This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft File: QD8Iu6_6QWGEMgOop1erbpVGsM4.mft (raw, json) Hash identifier: N5bXYghkrSivwACa7ArHrCjuFAmkYARJnuobhbYQAPk= Subject key identifier: 13:77:ED:66:22:5C:72:AC:3A:A1:1E:26:06:76:33:3F:9D:C4:CE:F5 Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce Certificate serial: 019C420FCDF2A71F6C0A1BAB9A35B8AD0D40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft Manifest number: 0724 Signing time: Mon 09 Feb 2026 11:00:57 +0000 Manifest this update: Mon 09 Feb 2026 11:00:57 +0000 Manifest next update: Tue 10 Feb 2026 11:00:57 +0000 Files and hashes: 1: 90swIJHrJ2sBN5-x6r2JwT1pPtM.roa (hash: qSNS122hM6E8JtNAlwnMJTYeLimXbz4RNM0wfB80wLI=) 2: QD8Iu6_6QWGEMgOop1erbpVGsM4.crl (hash: LD+r2A1AGOA3j6jVowcGGo0BvK5Q//sEIjX959jzoNk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:cd:f2:a7:1f:6c:0a:1b:ab:9a:35:b8:ad:0d:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce Validity Not Before: Feb 9 11:00:57 2026 GMT Not After : Feb 10 11:00:57 2026 GMT Subject: CN=1377ed66225c72ac3aa11e260676333f9dc4cef5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:1d:58:ad:db:87:71:c0:9c:21:83:73:88:0c: 90:01:0e:0b:aa:ae:33:cc:d7:9b:97:81:93:c3:2d: 39:5f:21:a3:1d:01:51:f4:61:0c:7c:c0:4e:8e:90: 83:49:3b:e7:39:fd:ec:13:da:a5:b1:59:e4:a9:15: 83:0b:74:37:89:c7:42:c0:2e:c9:fb:cb:d9:eb:a5: fe:41:41:91:23:a8:05:b2:4c:89:9f:d1:ca:2c:12: 3c:df:11:f3:bd:71:70:47:d6:f1:86:ac:07:c1:0f: 97:a0:ed:4d:66:90:8a:bc:25:1c:9d:96:c9:d5:0a: 21:1d:d8:59:f9:72:e5:95:83:15:8a:2a:86:1b:99: 0c:6c:19:cc:d7:e2:72:22:0b:79:6c:9b:b3:83:59: b2:68:16:bf:9c:e4:0e:a5:1f:2a:d2:5e:da:f1:d5: 82:0c:12:b8:52:ab:ac:0d:e9:20:91:2c:59:22:0a: 26:79:f7:d7:c9:68:56:20:3c:c4:8a:88:e2:22:63: bb:cd:3f:9b:90:ef:d7:5a:56:ca:37:ad:ff:4a:26: cc:78:76:14:c9:44:2c:10:43:5d:63:a5:89:7f:77: 2a:f0:55:17:a9:67:41:5d:df:e8:38:29:03:6a:b3: 56:01:87:cd:d4:be:46:8e:cf:cd:e9:62:91:6f:ba: 99:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:77:ED:66:22:5C:72:AC:3A:A1:1E:26:06:76:33:3F:9D:C4:CE:F5 X509v3 Authority Key Identifier: keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:44:11:b4:a1:ed:b6:ae:bd:8a:3d:d0:20:90:5a:e5:6a:5f: 54:93:e5:3f:ae:c3:17:1b:9e:e8:de:e0:c2:37:63:e5:f4:c1: 33:aa:48:dc:b0:7d:8b:f1:d2:4a:2c:f9:7c:74:a5:cb:54:fc: 08:ae:00:0e:07:c7:95:e2:1a:78:f6:21:50:47:94:fc:96:8f: 6b:1c:65:1e:8f:64:6c:11:90:eb:d0:c5:84:b1:b0:b5:7b:ad: 98:eb:0b:53:72:ba:fe:bc:f2:8d:ec:08:17:c9:53:43:1d:0b: 5f:10:07:8e:50:56:a0:8b:e3:68:bf:8a:0f:ce:9d:cf:82:8a: be:d7:45:6c:d9:a6:0e:74:57:c4:de:0d:29:8f:10:0a:44:43: 53:67:9e:59:85:63:30:9f:c2:16:3a:8b:e9:23:8b:ee:7b:7b: 4f:e2:f1:bb:63:15:a7:23:56:b1:91:c3:09:01:1f:df:3c:88: 5a:e9:f0:9c:b8:bc:ee:06:f9:31:1f:d7:91:ef:bb:57:26:d7: 4d:da:46:d8:38:f2:5b:51:6f:4e:b6:01:a6:67:a4:71:c3:c1: 96:e4:e8:10:80:8d:b2:c5:1c:4f:d6:0b:9c:a5:dc:f2:f2:bd: e4:50:26:59:98:fd:e0:ef:3a:2a:e9:e6:41:96:17:0c:1e:f4: 33:bd:b7:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD83ypx9sChurmjW4rQ1AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwM2YwOGJiYWZmYTQxNjE4NDMyMDNhOGE3NTdhYjZlOTU0 NmIwY2UwHhcNMjYwMjA5MTEwMDU3WhcNMjYwMjEwMTEwMDU3WjAzMTEwLwYDVQQD EygxMzc3ZWQ2NjIyNWM3MmFjM2FhMTFlMjYwNjc2MzMzZjlkYzRjZWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjB1YrduHccCcIYNziAyQAQ4Lqq4z zNebl4GTwy05XyGjHQFR9GEMfMBOjpCDSTvnOf3sE9qlsVnkqRWDC3Q3icdCwC7J +8vZ66X+QUGRI6gFskyJn9HKLBI83xHzvXFwR9bxhqwHwQ+XoO1NZpCKvCUcnZbJ 1QohHdhZ+XLllYMViiqGG5kMbBnM1+JyIgt5bJuzg1myaBa/nOQOpR8q0l7a8dWC DBK4UqusDekgkSxZIgomeffXyWhWIDzEiojiImO7zT+bkO/XWlbKN63/SibMeHYU yUQsEENdY6WJf3cq8FUXqWdBXd/oOCkDarNWAYfN1L5Gjs/N6WKRb7qZnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBN37WYiXHKsOqEeJgZ2Mz+dxM71MB8GA1UdIwQY MBaAFEA/CLuv+kFhhDIDqKdXq26VRrDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5Yjgt MzhkOGE3OGE0ODYyLzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5YjgtMzhkOGE3OGE0ODYy LzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACkQRtKHt tq69ij3QIJBa5WpfVJPlP67DFxue6N7gwjdj5fTBM6pI3LB9i/HSSiz5fHSly1T8 CK4ADgfHleIaePYhUEeU/JaPaxxlHo9kbBGQ69DFhLGwtXutmOsLU3K6/rzyjewI F8lTQx0LXxAHjlBWoIvjaL+KD86dz4KKvtdFbNmmDnRXxN4NKY8QCkRDU2eeWYVj MJ/CFjqL6SOL7nt7T+Lxu2MVpyNWsZHDCQEf3zyIWunwnLi87gb5MR/Xke+7VybX TdpG2DjyW1FvTrYBpmekccPBluToEICNssUcT9YLnKXc8vK95FAmWZj94O86Kunm QZYXDB70M723Xw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:41 2026 by rpki-client