This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/81306a-f1dd-4040-8357-fe0133cda535/1/QFphtYwdUt5SLgQQCcv80fflK3w.mft File: QFphtYwdUt5SLgQQCcv80fflK3w.mft (raw, json) Hash identifier: AMIyOfqTLvZj5hILMSO5VCo6VwFe8pUerChZCmPEbbk= Subject key identifier: 3F:6C:F5:37:6D:80:B1:3D:C1:7B:1D:43:B2:FA:13:71:97:7E:D8:53 Authority key identifier: 40:5A:61:B5:8C:1D:52:DE:52:2E:04:10:09:CB:FC:D1:F7:E5:2B:7C Certificate issuer: /CN=405a61b58c1d52de522e041009cbfcd1f7e52b7c Certificate serial: 019C4133F9F7BB272D73067DEB95EDA92216 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QFphtYwdUt5SLgQQCcv80fflK3w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/81306a-f1dd-4040-8357-fe0133cda535/1/QFphtYwdUt5SLgQQCcv80fflK3w.mft Manifest number: 1309 Signing time: Mon 09 Feb 2026 07:00:51 +0000 Manifest this update: Mon 09 Feb 2026 07:00:51 +0000 Manifest next update: Tue 10 Feb 2026 07:00:51 +0000 Files and hashes: 1: QFphtYwdUt5SLgQQCcv80fflK3w.crl (hash: OKmEQ7hfn1RJ8WYWHeY2eOVdUb+DU6mWWlfp6mgCz9U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/81306a-f1dd-4040-8357-fe0133cda535/1/QFphtYwdUt5SLgQQCcv80fflK3w.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/81306a-f1dd-4040-8357-fe0133cda535/1/QFphtYwdUt5SLgQQCcv80fflK3w.mft rsync://rpki.ripe.net/repository/DEFAULT/QFphtYwdUt5SLgQQCcv80fflK3w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:f9:f7:bb:27:2d:73:06:7d:eb:95:ed:a9:22:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=405a61b58c1d52de522e041009cbfcd1f7e52b7c Validity Not Before: Feb 9 07:00:51 2026 GMT Not After : Feb 10 07:00:51 2026 GMT Subject: CN=3f6cf5376d80b13dc17b1d43b2fa1371977ed853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:06:84:b1:12:0b:1c:cc:cc:2b:07:6b:89:fc: 63:ed:1c:a5:fb:dd:c6:88:54:6b:2f:4b:01:99:39: 3a:5d:63:25:7d:cf:ad:ae:c8:22:7f:7d:fc:f7:4e: b3:32:97:0d:93:e5:2f:90:92:ee:a6:96:46:c7:50: e5:cb:fc:98:43:3c:9c:51:9d:63:b6:58:b9:9a:0d: 01:c4:82:db:19:0a:12:12:60:93:55:a0:fc:4d:75: 95:e3:55:f7:b5:c8:86:e8:2f:c2:9e:e6:59:59:42: 26:d1:47:d7:39:ad:94:fe:b6:5c:db:5c:b4:01:5e: a5:2e:ca:87:83:f8:78:78:d3:29:de:c0:54:c6:9c: ac:e9:31:4e:a5:50:a0:26:70:22:7b:db:ea:97:d6: 15:2b:58:66:bd:2c:fe:62:97:64:14:7e:4a:f1:c0: 82:70:d3:66:08:b6:05:12:c3:4c:12:7f:b2:62:45: 1c:e3:24:2a:ad:0f:96:0c:53:65:3a:d8:f4:38:11: 6e:cc:67:ac:9d:08:6a:82:7b:43:b1:f3:ae:80:6e: ce:b7:0b:0f:f9:85:96:b5:d0:69:43:69:06:46:ac: 70:57:95:4e:b6:e2:8d:22:0d:ae:2a:86:b6:16:d7: 93:67:61:e8:11:23:58:58:80:43:3f:02:a0:d0:38: 44:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6C:F5:37:6D:80:B1:3D:C1:7B:1D:43:B2:FA:13:71:97:7E:D8:53 X509v3 Authority Key Identifier: keyid:40:5A:61:B5:8C:1D:52:DE:52:2E:04:10:09:CB:FC:D1:F7:E5:2B:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QFphtYwdUt5SLgQQCcv80fflK3w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81306a-f1dd-4040-8357-fe0133cda535/1/QFphtYwdUt5SLgQQCcv80fflK3w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81306a-f1dd-4040-8357-fe0133cda535/1/QFphtYwdUt5SLgQQCcv80fflK3w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:96:ff:f5:6b:ed:45:d7:d2:e8:9d:46:20:5e:00:35:cf:66: 0c:59:83:de:fc:21:08:73:07:7c:05:7e:0a:6b:8b:8f:a6:33: 9e:50:e6:93:2d:b1:1e:14:d2:c8:93:b2:9b:74:5e:ca:de:ad: 93:59:5a:05:7d:7e:7c:10:be:ff:2b:ab:1e:9a:21:07:3c:37: 25:e3:e8:89:ed:ca:66:e8:1a:a0:52:5a:31:39:e0:17:f4:7e: 01:8a:44:54:22:67:c0:54:6a:2a:ab:79:37:51:b8:96:d7:d9: e9:7c:0f:8d:71:ca:c9:b2:92:e3:d0:17:06:cd:92:46:da:48: f3:22:16:ef:e5:65:3f:7c:6b:34:14:b4:da:5b:d3:b3:0a:c4: 03:e7:fb:0a:4b:f8:81:2f:28:09:69:4b:2f:10:8f:5f:8f:be: 6c:53:13:f3:9f:48:41:67:f2:b7:1e:08:26:61:6f:cb:05:a2: 24:dd:85:7a:87:c7:e1:12:a7:c9:4b:dd:c1:57:28:b9:3a:df: e1:60:d6:0e:c8:f8:b0:96:2f:35:f6:ba:6a:06:f1:74:a8:77: ec:c8:81:bf:cb:c4:ea:e1:a3:d7:d2:fb:ef:a1:49:22:8c:e1: 22:b4:25:7a:6c:5b:12:57:29:1f:4e:dc:ca:8e:f6:33:e6:38: 23:da:ab:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM/n3uyctcwZ965XtqSIWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwNWE2MWI1OGMxZDUyZGU1MjJlMDQxMDA5Y2JmY2QxZjdl NTJiN2MwHhcNMjYwMjA5MDcwMDUxWhcNMjYwMjEwMDcwMDUxWjAzMTEwLwYDVQQD EygzZjZjZjUzNzZkODBiMTNkYzE3YjFkNDNiMmZhMTM3MTk3N2VkODUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQaEsRILHMzMKwdrifxj7Ryl+93G iFRrL0sBmTk6XWMlfc+trsgif338906zMpcNk+UvkJLuppZGx1Dly/yYQzycUZ1j tli5mg0BxILbGQoSEmCTVaD8TXWV41X3tciG6C/CnuZZWUIm0UfXOa2U/rZc21y0 AV6lLsqHg/h4eNMp3sBUxpys6TFOpVCgJnAie9vql9YVK1hmvSz+YpdkFH5K8cCC cNNmCLYFEsNMEn+yYkUc4yQqrQ+WDFNlOtj0OBFuzGesnQhqgntDsfOugG7OtwsP +YWWtdBpQ2kGRqxwV5VOtuKNIg2uKoa2FteTZ2HoESNYWIBDPwKg0DhEQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD9s9TdtgLE9wXsdQ7L6E3GXfthTMB8GA1UdIwQY MBaAFEBaYbWMHVLeUi4EEAnL/NH35St8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUZwaHRZd2RVdDVTTGdRUUNjdjgwZmZsSzN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy84MTMwNmEtZjFkZC00MDQwLTgzNTct ZmUwMTMzY2RhNTM1LzEvUUZwaHRZd2RVdDVTTGdRUUNjdjgwZmZsSzN3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy84MTMwNmEtZjFkZC00MDQwLTgzNTctZmUwMTMzY2RhNTM1 LzEvUUZwaHRZd2RVdDVTTGdRUUNjdjgwZmZsSzN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHZb/9Wvt RdfS6J1GIF4ANc9mDFmD3vwhCHMHfAV+CmuLj6YznlDmky2xHhTSyJOym3Reyt6t k1laBX1+fBC+/yurHpohBzw3JePoie3KZugaoFJaMTngF/R+AYpEVCJnwFRqKqt5 N1G4ltfZ6XwPjXHKybKS49AXBs2SRtpI8yIW7+VlP3xrNBS02lvTswrEA+f7Ckv4 gS8oCWlLLxCPX4++bFMT859IQWfytx4IJmFvywWiJN2FeofH4RKnyUvdwVcouTrf 4WDWDsj4sJYvNfa6agbxdKh37MiBv8vE6uGj19L776FJIozhIrQlemxbElcpH07c yo72M+Y4I9qrVQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:49 2026 by rpki-client