This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft File: QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft (raw, json) Hash identifier: s1MznxM4IfE6lFAiHiqhqzZcl5Catrcov+dQciVuAMw= Subject key identifier: 18:5A:97:85:84:CB:05:1F:1E:D3:FE:D1:2F:89:33:57:C4:EB:F6:8F Authority key identifier: 40:EE:97:65:86:4B:D1:1D:4A:34:94:26:E3:72:E1:1A:94:34:8D:E2 Certificate issuer: /CN=40ee9765864bd11d4a349426e372e11a94348de2 Certificate serial: 019C41344D94ADA660C7D1BA03B57A5B3C95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QO6XZYZL0R1KNJQm43LhGpQ0jeI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft Manifest number: 091E Signing time: Mon 09 Feb 2026 07:01:12 +0000 Manifest this update: Mon 09 Feb 2026 07:01:12 +0000 Manifest next update: Tue 10 Feb 2026 07:01:12 +0000 Files and hashes: 1: QO6XZYZL0R1KNJQm43LhGpQ0jeI.crl (hash: qgbJHLEHVUd/5+iFhbm6PlfW674baC45GIwlfT4WLfs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft rsync://rpki.ripe.net/repository/DEFAULT/QO6XZYZL0R1KNJQm43LhGpQ0jeI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:4d:94:ad:a6:60:c7:d1:ba:03:b5:7a:5b:3c:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40ee9765864bd11d4a349426e372e11a94348de2 Validity Not Before: Feb 9 07:01:12 2026 GMT Not After : Feb 10 07:01:12 2026 GMT Subject: CN=185a978584cb051f1ed3fed12f893357c4ebf68f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e5:1a:16:d8:b0:da:93:6e:6e:35:01:85:f1: 21:2b:ba:10:36:a7:9c:fc:71:76:ff:b4:0b:49:5a: be:da:de:33:8a:b1:f8:c6:60:3c:14:14:52:31:a7: 38:8d:11:85:8f:75:6a:9d:d3:07:b8:41:ef:2f:35: 60:cb:65:77:19:72:ca:1f:0a:b5:1d:6c:8d:49:78: b0:a2:14:b6:f0:cc:ce:7b:f3:e4:99:3f:83:e1:2a: bb:3b:ef:44:0a:f6:a0:2f:48:ba:e9:22:4e:06:ab: a4:4a:fa:c2:6f:04:e7:c4:2d:7e:7b:22:9c:cf:32: 0c:52:9e:35:10:03:87:0f:33:ee:9c:86:27:8c:e9: 9c:60:f0:b3:30:e1:04:a7:af:92:83:04:c2:ea:82: 50:80:0d:3e:a6:3b:75:64:e2:17:d3:64:f1:20:2a: 4c:af:03:e7:e1:0b:30:d8:ba:93:7e:58:2b:07:4f: e1:51:a3:ef:d4:fb:86:63:2b:17:67:ba:aa:8f:cd: cd:6f:ab:e0:4b:0d:49:54:a5:6b:f1:8e:cb:1f:07: be:b1:9d:49:1b:61:43:c8:23:fc:a1:d2:62:3a:01: da:48:14:90:ef:bc:38:c3:48:14:82:4f:d1:a9:a4: ff:f2:11:6d:8b:0a:68:66:fa:3c:23:80:54:72:96: cd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:5A:97:85:84:CB:05:1F:1E:D3:FE:D1:2F:89:33:57:C4:EB:F6:8F X509v3 Authority Key Identifier: keyid:40:EE:97:65:86:4B:D1:1D:4A:34:94:26:E3:72:E1:1A:94:34:8D:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QO6XZYZL0R1KNJQm43LhGpQ0jeI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:3f:78:18:05:ee:fd:d5:9b:e5:fb:13:ec:09:3b:84:bd:15: f3:2c:62:fc:c2:71:23:cb:fc:a8:0b:c3:d9:60:39:ad:b2:06: 9e:3c:c2:4a:9a:48:ba:92:bf:b4:3b:25:92:db:96:c0:5e:db: db:e9:72:de:2e:7e:c0:88:fb:18:aa:01:d6:c8:ce:98:f5:dc: 1d:cd:1b:30:55:8c:c0:ab:b3:6d:5c:f6:92:b2:64:e1:7b:78: 36:de:09:35:6c:80:11:39:06:a5:ef:27:87:55:b0:8e:e2:06: 4a:a9:c3:e9:4c:49:7a:48:69:8d:f4:14:ef:7a:12:71:6a:c5: a9:55:48:62:2d:93:22:06:fa:e0:ec:42:45:37:87:1a:a4:15: e3:bc:ab:c7:a4:9a:51:7a:c7:96:75:3b:f6:f7:0d:3d:99:41: 7f:94:f4:77:15:47:69:8b:04:99:33:0c:83:10:4b:36:81:6f: 40:19:ff:59:56:da:e8:7c:38:61:ac:b7:a6:9f:1e:76:9a:ae: c7:30:95:7d:07:cd:70:a8:e6:a9:20:15:4f:db:ae:55:a9:86: 79:b2:35:76:3d:5c:fc:47:0d:18:c6:17:de:9e:81:9e:d0:a6: 05:b0:de:da:f6:09:7d:44:9e:c5:78:fa:d6:6c:ca:11:e0:9b: ad:ad:fb:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNE2UraZgx9G6A7V6WzyVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZWU5NzY1ODY0YmQxMWQ0YTM0OTQyNmUzNzJlMTFhOTQz NDhkZTIwHhcNMjYwMjA5MDcwMTEyWhcNMjYwMjEwMDcwMTEyWjAzMTEwLwYDVQQD EygxODVhOTc4NTg0Y2IwNTFmMWVkM2ZlZDEyZjg5MzM1N2M0ZWJmNjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+UaFtiw2pNubjUBhfEhK7oQNqec /HF2/7QLSVq+2t4zirH4xmA8FBRSMac4jRGFj3VqndMHuEHvLzVgy2V3GXLKHwq1 HWyNSXiwohS28MzOe/PkmT+D4Sq7O+9ECvagL0i66SJOBqukSvrCbwTnxC1+eyKc zzIMUp41EAOHDzPunIYnjOmcYPCzMOEEp6+SgwTC6oJQgA0+pjt1ZOIX02TxICpM rwPn4Qsw2LqTflgrB0/hUaPv1PuGYysXZ7qqj83Nb6vgSw1JVKVr8Y7LHwe+sZ1J G2FDyCP8odJiOgHaSBSQ77w4w0gUgk/RqaT/8hFtiwpoZvo8I4BUcpbNBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBhal4WEywUfHtP+0S+JM1fE6/aPMB8GA1UdIwQY MBaAFEDul2WGS9EdSjSUJuNy4RqUNI3iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU82WFpZWkwwUjFLTkpRbTQzTGhHcFEwamVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC82NWQ3YjktY2NmOS00YjczLWI2Njkt MzUzM2E1MTJmY2Y3LzEvUU82WFpZWkwwUjFLTkpRbTQzTGhHcFEwamVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC82NWQ3YjktY2NmOS00YjczLWI2NjktMzUzM2E1MTJmY2Y3 LzEvUU82WFpZWkwwUjFLTkpRbTQzTGhHcFEwamVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAez94GAXu /dWb5fsT7Ak7hL0V8yxi/MJxI8v8qAvD2WA5rbIGnjzCSppIupK/tDslktuWwF7b 2+ly3i5+wIj7GKoB1sjOmPXcHc0bMFWMwKuzbVz2krJk4Xt4Nt4JNWyAETkGpe8n h1WwjuIGSqnD6UxJekhpjfQU73oScWrFqVVIYi2TIgb64OxCRTeHGqQV47yrx6Sa UXrHlnU79vcNPZlBf5T0dxVHaYsEmTMMgxBLNoFvQBn/WVba6Hw4Yay3pp8edpqu xzCVfQfNcKjmqSAVT9uuVamGebI1dj1c/EcNGMYX3p6BntCmBbDe2vYJfUSexXj6 1mzKEeCbra37ww== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:41 2026 by rpki-client