This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/851a00-595a-4fb8-ac2c-9261626a48c5/1/Q_aHvzg-MgRbwCfcyuqtzzbI5xU.mft File: Q_aHvzg-MgRbwCfcyuqtzzbI5xU.mft (raw, json) Hash identifier: UgkdvZTYXz/koCJ/5c0AiCSX/sXBNNcvQyzj4r7PZZo= Subject key identifier: 9F:97:6E:71:A8:AC:DA:7E:51:D5:F5:43:C0:8F:21:72:2B:51:49:28 Authority key identifier: 43:F6:87:BF:38:3E:32:04:5B:C0:27:DC:CA:EA:AD:CF:36:C8:E7:15 Certificate issuer: /CN=43f687bf383e32045bc027dccaeaadcf36c8e715 Certificate serial: 019C42EAF09656BE4439FF92B3479C480091 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q_aHvzg-MgRbwCfcyuqtzzbI5xU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/851a00-595a-4fb8-ac2c-9261626a48c5/1/Q_aHvzg-MgRbwCfcyuqtzzbI5xU.mft Manifest number: FC Signing time: Mon 09 Feb 2026 15:00:18 +0000 Manifest this update: Mon 09 Feb 2026 15:00:18 +0000 Manifest next update: Tue 10 Feb 2026 15:00:18 +0000 Files and hashes: 1: Q_aHvzg-MgRbwCfcyuqtzzbI5xU.crl (hash: QUANCasADXPZptkQbo/57d/EsszxB0LuHlqSA6eolpY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/851a00-595a-4fb8-ac2c-9261626a48c5/1/Q_aHvzg-MgRbwCfcyuqtzzbI5xU.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/851a00-595a-4fb8-ac2c-9261626a48c5/1/Q_aHvzg-MgRbwCfcyuqtzzbI5xU.mft rsync://rpki.ripe.net/repository/DEFAULT/Q_aHvzg-MgRbwCfcyuqtzzbI5xU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:ea:f0:96:56:be:44:39:ff:92:b3:47:9c:48:00:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43f687bf383e32045bc027dccaeaadcf36c8e715 Validity Not Before: Feb 9 15:00:18 2026 GMT Not After : Feb 10 15:00:18 2026 GMT Subject: CN=9f976e71a8acda7e51d5f543c08f21722b514928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:7b:b2:d4:ff:ce:aa:a3:6a:79:a2:91:07:94: 7d:4e:8d:ff:02:07:1c:56:a4:63:ca:6a:b0:74:be: 9a:42:f4:be:b5:a1:cd:eb:88:6f:d1:ab:3b:98:2e: 0e:8a:db:04:3d:4d:e4:30:4d:8b:b9:b8:55:10:50: ea:07:90:fd:53:5b:18:0b:b6:96:6a:5d:04:da:42: f8:f7:37:b4:ed:e9:3c:c0:94:1e:6b:4e:e9:fb:06: d8:e6:72:e5:02:45:71:16:05:3a:59:c0:48:f1:2f: 48:29:5a:ce:29:6d:06:2b:c8:93:47:88:74:14:e3: 95:9d:d6:d8:f7:ce:62:51:5c:92:15:f7:a0:3c:36: dc:95:d4:2d:e6:26:57:08:05:e0:da:62:2a:1d:d3: bb:b3:09:cf:9d:66:5e:28:bc:1a:24:1c:0d:37:34: 06:53:ea:6b:b2:57:71:b8:ff:8d:b7:fa:93:c2:6a: d9:02:8e:31:a9:c8:ae:fd:b2:b5:36:63:d1:b9:73: fa:1e:89:06:06:90:07:72:b3:80:ab:51:67:d4:48: bd:9e:f4:4f:5e:42:b5:90:22:c3:bd:88:c0:f4:fd: 44:8d:70:f0:7d:f3:96:9a:13:86:29:b0:a2:a1:bf: 03:cb:e0:4f:02:d5:50:7d:f2:33:78:dd:1f:db:50: 19:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:97:6E:71:A8:AC:DA:7E:51:D5:F5:43:C0:8F:21:72:2B:51:49:28 X509v3 Authority Key Identifier: keyid:43:F6:87:BF:38:3E:32:04:5B:C0:27:DC:CA:EA:AD:CF:36:C8:E7:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q_aHvzg-MgRbwCfcyuqtzzbI5xU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/851a00-595a-4fb8-ac2c-9261626a48c5/1/Q_aHvzg-MgRbwCfcyuqtzzbI5xU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/851a00-595a-4fb8-ac2c-9261626a48c5/1/Q_aHvzg-MgRbwCfcyuqtzzbI5xU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:05:48:07:31:fd:06:f6:82:38:ea:b4:21:27:d7:8b:88:a1: e1:f9:d8:9d:96:6a:1f:8a:05:57:d9:3f:f5:f8:d9:50:ff:34: 21:ea:6e:a2:d7:51:27:bb:0d:b7:6e:1b:5f:f3:e2:7b:1e:9a: 85:e9:5d:69:9b:c8:09:cd:14:ad:30:50:23:ce:be:ef:34:29: 16:8c:4b:9e:48:18:ee:15:94:b8:0f:24:9a:ed:59:73:24:cf: cf:ab:29:03:dd:ee:63:34:0b:e3:74:04:03:6f:89:b5:7c:65: ce:74:a0:75:fb:d2:5e:08:99:a5:96:61:cb:d6:ef:92:d6:67: a6:be:45:93:d8:0f:0c:77:e9:29:97:24:bc:b3:30:ba:75:5a: 56:7c:36:73:88:1a:d9:b9:e5:a0:58:66:ca:97:e0:51:f4:8f: 99:19:1b:43:52:88:76:97:cc:21:43:cc:1d:3d:22:95:36:5b: 04:02:f5:b3:ed:f8:5b:b9:70:a6:a5:bb:8c:e4:5c:f7:03:e5: 38:66:37:a8:34:28:6f:3b:90:ff:06:f7:79:3c:77:84:46:52: 11:c4:ae:77:57:01:9e:0c:b4:c3:f9:dd:b2:45:a2:48:9c:e8: 87:af:62:64:9c:a2:27:f6:bb:4a:ac:5b:e1:f4:3e:6e:19:e7: 4d:17:4d:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6vCWVr5EOf+Ss0ecSACRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzZjY4N2JmMzgzZTMyMDQ1YmMwMjdkY2NhZWFhZGNmMzZj OGU3MTUwHhcNMjYwMjA5MTUwMDE4WhcNMjYwMjEwMTUwMDE4WjAzMTEwLwYDVQQD Eyg5Zjk3NmU3MWE4YWNkYTdlNTFkNWY1NDNjMDhmMjE3MjJiNTE0OTI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHuy1P/OqqNqeaKRB5R9To3/Agcc VqRjymqwdL6aQvS+taHN64hv0as7mC4OitsEPU3kME2LubhVEFDqB5D9U1sYC7aW al0E2kL49ze07ek8wJQea07p+wbY5nLlAkVxFgU6WcBI8S9IKVrOKW0GK8iTR4h0 FOOVndbY985iUVySFfegPDbcldQt5iZXCAXg2mIqHdO7swnPnWZeKLwaJBwNNzQG U+prsldxuP+Nt/qTwmrZAo4xqciu/bK1NmPRuXP6HokGBpAHcrOAq1Fn1Ei9nvRP XkK1kCLDvYjA9P1EjXDwffOWmhOGKbCiob8Dy+BPAtVQffIzeN0f21AZtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ+XbnGorNp+UdX1Q8CPIXIrUUkoMB8GA1UdIwQY MBaAFEP2h784PjIEW8An3Mrqrc82yOcVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUV9hSHZ6Zy1NZ1Jid0NmY3l1cXR6emJJNXhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC84NTFhMDAtNTk1YS00ZmI4LWFjMmMt OTI2MTYyNmE0OGM1LzEvUV9hSHZ6Zy1NZ1Jid0NmY3l1cXR6emJJNXhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC84NTFhMDAtNTk1YS00ZmI4LWFjMmMtOTI2MTYyNmE0OGM1 LzEvUV9hSHZ6Zy1NZ1Jid0NmY3l1cXR6emJJNXhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApQVIBzH9 BvaCOOq0ISfXi4ih4fnYnZZqH4oFV9k/9fjZUP80IepuotdRJ7sNt24bX/Piex6a heldaZvICc0UrTBQI86+7zQpFoxLnkgY7hWUuA8kmu1ZcyTPz6spA93uYzQL43QE A2+JtXxlznSgdfvSXgiZpZZhy9bvktZnpr5Fk9gPDHfpKZckvLMwunVaVnw2c4ga 2bnloFhmypfgUfSPmRkbQ1KIdpfMIUPMHT0ilTZbBAL1s+34W7lwpqW7jORc9wPl OGY3qDQobzuQ/wb3eTx3hEZSEcSud1cBngy0w/ndskWiSJzoh69iZJyiJ/a7Sqxb 4fQ+bhnnTRdNeg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:45 2026 by rpki-client