This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft File: MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft (raw, json) Hash identifier: yehF3DoDZmRQTtwCpOrzo7t7pGo6z4KSPO2QEfM0a/M= Subject key identifier: C0:05:98:B2:EA:51:D7:DB:C5:8E:0D:62:4F:0E:A5:0F:4A:99:FF:70 Authority key identifier: 31:09:A8:D7:0F:A4:47:89:35:B0:5C:06:21:F6:88:95:52:40:5D:AF Certificate issuer: /CN=3109a8d70fa4478935b05c0621f6889552405daf Certificate serial: 019C42EB151E449F10D017CE0961A19BE31B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQmo1w-kR4k1sFwGIfaIlVJAXa8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft Manifest number: 0286 Signing time: Mon 09 Feb 2026 15:00:28 +0000 Manifest this update: Mon 09 Feb 2026 15:00:28 +0000 Manifest next update: Tue 10 Feb 2026 15:00:28 +0000 Files and hashes: 1: 97DX5I3DXmozptw-sWqlR4foXXU.roa (hash: 77zsOfhaIU3CSg4BUbhV2AIiKXyzFLkrgnOWV3Vu7Tg=) 2: MQmo1w-kR4k1sFwGIfaIlVJAXa8.crl (hash: 7dzXpVYBsH/6DNusi9dJu65CNfa51AcwZku7kDwz+7c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft rsync://rpki.ripe.net/repository/DEFAULT/MQmo1w-kR4k1sFwGIfaIlVJAXa8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:15:1e:44:9f:10:d0:17:ce:09:61:a1:9b:e3:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3109a8d70fa4478935b05c0621f6889552405daf Validity Not Before: Feb 9 15:00:28 2026 GMT Not After : Feb 10 15:00:28 2026 GMT Subject: CN=c00598b2ea51d7dbc58e0d624f0ea50f4a99ff70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a9:b6:aa:7e:27:f4:d8:54:9e:a1:d3:d3:46: 54:64:63:0e:3a:fb:91:b9:de:f6:68:f6:09:9a:e8: 0e:28:54:74:3a:7a:67:ac:5f:db:f7:cc:a5:a7:6b: a9:dd:fe:9a:50:be:01:fc:17:d3:e6:e6:10:78:1f: 74:b1:df:05:35:92:52:b1:f0:31:16:1a:70:df:2b: 4f:a1:1e:ca:80:28:95:15:86:36:24:7b:3f:3b:cb: 6c:b2:d6:80:1e:19:7f:af:36:39:a9:ba:7c:35:08: c3:a2:8e:62:df:73:74:fe:cd:a1:8b:79:7d:85:f3: fb:8c:65:3e:b7:9a:0d:35:00:56:91:7a:c4:e1:f5: d2:cb:c3:86:69:5b:86:67:9e:31:2a:a9:12:69:c5: f1:be:35:8d:f2:58:74:35:77:63:05:a7:c8:2b:4d: 89:16:c7:aa:72:19:64:5a:3b:85:3f:de:8d:29:a0: 15:68:b0:ba:66:cc:17:f8:3a:dc:a3:d5:8b:b4:b2: 64:e8:dd:5a:7d:c8:34:56:d6:96:1b:f2:a5:ce:b6: d2:86:9d:d6:f5:62:ce:a1:37:36:3a:f6:06:b1:34: 0b:39:3a:5f:46:e7:7d:31:83:d4:51:2b:1c:9a:fa: 0b:c0:a8:d6:f1:6b:2a:5a:c6:1d:5f:5a:13:10:e0: 29:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:05:98:B2:EA:51:D7:DB:C5:8E:0D:62:4F:0E:A5:0F:4A:99:FF:70 X509v3 Authority Key Identifier: keyid:31:09:A8:D7:0F:A4:47:89:35:B0:5C:06:21:F6:88:95:52:40:5D:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQmo1w-kR4k1sFwGIfaIlVJAXa8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:0b:31:a4:b7:fe:5c:eb:44:5c:45:61:de:13:2f:82:cc:66: d9:21:a4:28:d3:46:64:75:1e:c9:b0:3c:1d:c3:c6:94:6f:7e: ba:67:cd:44:fd:48:7e:d8:dc:01:76:5d:e2:d8:9c:4a:a6:11: b3:09:0a:35:c5:52:8b:b4:3b:55:9d:a6:51:7d:3f:f0:47:6d: ef:e0:2a:ed:17:db:64:3f:7a:0e:02:cd:16:9c:2e:c0:93:b8: 59:44:f6:71:11:ef:64:79:fc:b9:8c:27:5d:f0:b0:bb:2f:df: 4e:2e:ad:13:42:45:80:ec:e1:e5:f3:7d:04:b6:52:e4:d6:01: 20:27:62:56:0a:09:bb:4a:a3:14:5b:4c:e9:62:68:37:1f:2e: a8:eb:41:71:ee:ed:fe:67:a1:a3:23:2a:fa:b5:5f:5f:2e:1a: de:47:24:f0:e9:60:a0:01:87:05:71:73:d1:18:85:b8:62:ac: 61:64:97:45:df:47:ef:94:00:5f:8c:53:a3:d0:28:12:4a:d1: 8d:7b:3c:4f:a5:07:fb:db:62:b2:29:4a:02:8b:2f:c1:1c:f9: 20:e1:ed:e6:02:85:3f:f4:71:43:9d:fd:03:6d:62:a6:ad:bb: 89:6f:09:be:6a:a9:45:d9:71:ba:f2:08:0b:6f:2e:f0:1c:18: 5c:31:03:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6xUeRJ8Q0BfOCWGhm+MbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxMDlhOGQ3MGZhNDQ3ODkzNWIwNWMwNjIxZjY4ODk1NTI0 MDVkYWYwHhcNMjYwMjA5MTUwMDI4WhcNMjYwMjEwMTUwMDI4WjAzMTEwLwYDVQQD EyhjMDA1OThiMmVhNTFkN2RiYzU4ZTBkNjI0ZjBlYTUwZjRhOTlmZjcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA76m2qn4n9NhUnqHT00ZUZGMOOvuR ud72aPYJmugOKFR0OnpnrF/b98ylp2up3f6aUL4B/BfT5uYQeB90sd8FNZJSsfAx Fhpw3ytPoR7KgCiVFYY2JHs/O8tsstaAHhl/rzY5qbp8NQjDoo5i33N0/s2hi3l9 hfP7jGU+t5oNNQBWkXrE4fXSy8OGaVuGZ54xKqkSacXxvjWN8lh0NXdjBafIK02J FseqchlkWjuFP96NKaAVaLC6ZswX+Drco9WLtLJk6N1afcg0VtaWG/KlzrbShp3W 9WLOoTc2OvYGsTQLOTpfRud9MYPUUSscmvoLwKjW8WsqWsYdX1oTEOAp1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMAFmLLqUdfbxY4NYk8OpQ9Kmf9wMB8GA1UdIwQY MBaAFDEJqNcPpEeJNbBcBiH2iJVSQF2vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVFtbzF3LWtSNGsxc0Z3R0lmYUlsVkpBWGE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC8xMDZiM2YtNTVhMy00NTU4LTgwMTMt NGJlZTMyNzRjNjk4LzEvTVFtbzF3LWtSNGsxc0Z3R0lmYUlsVkpBWGE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC8xMDZiM2YtNTVhMy00NTU4LTgwMTMtNGJlZTMyNzRjNjk4 LzEvTVFtbzF3LWtSNGsxc0Z3R0lmYUlsVkpBWGE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUwsxpLf+ XOtEXEVh3hMvgsxm2SGkKNNGZHUeybA8HcPGlG9+umfNRP1IftjcAXZd4ticSqYR swkKNcVSi7Q7VZ2mUX0/8Edt7+Aq7RfbZD96DgLNFpwuwJO4WUT2cRHvZHn8uYwn XfCwuy/fTi6tE0JFgOzh5fN9BLZS5NYBICdiVgoJu0qjFFtM6WJoNx8uqOtBce7t /mehoyMq+rVfXy4a3kck8OlgoAGHBXFz0RiFuGKsYWSXRd9H75QAX4xTo9AoEkrR jXs8T6UH+9tisilKAosvwRz5IOHt5gKFP/RxQ539A21ipq27iW8JvmqpRdlxuvII C28u8BwYXDED1w== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:11 2026 by rpki-client