This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft File: qQ_wEQVOz-aKitx94mit5sCCdxE.mft (raw, json) Hash identifier: MNaLq5PeTJrHmaHwtmucL7WmsXIkxtlL9LEYSewNbQs= Subject key identifier: 57:7B:21:CD:A9:E4:2A:4A:32:9D:32:25:EA:D6:3B:CB:E7:E4:69:75 Authority key identifier: A9:0F:F0:11:05:4E:CF:E6:8A:8A:DC:7D:E2:68:AD:E6:C0:82:77:11 Certificate issuer: /CN=a90ff011054ecfe68a8adc7de268ade6c0827711 Certificate serial: 019C43225874223563169DEB00D7C70584C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQ_wEQVOz-aKitx94mit5sCCdxE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:50 +0000 Manifest this update: Mon 09 Feb 2026 16:00:50 +0000 Manifest next update: Tue 10 Feb 2026 16:00:50 +0000 Files and hashes: 1: qQ_wEQVOz-aKitx94mit5sCCdxE.crl (hash: BwH5WNb7wcYw5pZH8zXuPXrvM3dVZsaN+k7WqnTmABM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft rsync://rpki.ripe.net/repository/DEFAULT/qQ_wEQVOz-aKitx94mit5sCCdxE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:58:74:22:35:63:16:9d:eb:00:d7:c7:05:84:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a90ff011054ecfe68a8adc7de268ade6c0827711 Validity Not Before: Feb 9 16:00:50 2026 GMT Not After : Feb 10 16:00:50 2026 GMT Subject: CN=577b21cda9e42a4a329d3225ead63bcbe7e46975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9d:e7:91:8c:d8:49:13:b3:57:7e:ad:f7:db: 1a:de:2e:73:31:a0:7a:70:11:a8:15:c6:08:09:56: cd:e1:e4:58:87:ad:46:b8:df:8d:ea:02:62:50:0e: 85:08:37:8f:15:2f:08:68:1f:e5:c7:4d:b2:44:73: 36:db:c2:4b:78:7a:5e:d5:d2:1b:ea:e1:68:6c:66: b5:d5:93:f8:18:5a:d3:ed:c8:b0:de:9a:dc:48:cf: 06:f0:e2:bf:19:23:7a:b0:18:0a:12:5f:0e:1b:09: fe:af:de:2a:3a:08:5a:d7:5f:ac:61:44:00:84:a1: cb:42:2b:51:a5:69:74:84:1c:c2:c4:54:57:c2:da: fd:75:2b:f3:60:96:ac:ca:1a:28:24:c4:f8:8b:4e: d1:10:97:eb:8f:55:16:93:9a:23:a1:42:b8:04:0c: 3c:22:7c:49:a4:fe:e9:bd:58:02:01:ac:cc:09:84: 09:08:e4:8c:b8:40:85:ee:ca:cd:5e:16:43:b1:96: 15:ef:af:62:40:07:4f:c6:e0:bd:2c:89:ad:3e:d8: 7e:30:84:5e:9c:a6:05:6f:82:86:af:39:f7:54:ee: bc:43:68:1c:89:4b:ba:fd:15:83:bd:a8:9e:74:03: fa:73:82:f0:0b:f1:f1:46:5a:34:8a:1e:57:5a:bb: c4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:7B:21:CD:A9:E4:2A:4A:32:9D:32:25:EA:D6:3B:CB:E7:E4:69:75 X509v3 Authority Key Identifier: keyid:A9:0F:F0:11:05:4E:CF:E6:8A:8A:DC:7D:E2:68:AD:E6:C0:82:77:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQ_wEQVOz-aKitx94mit5sCCdxE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:fe:65:79:10:b7:05:11:cc:25:9f:9a:7e:49:7b:2d:31:92: 71:55:6f:28:ed:29:ff:6b:30:84:82:7a:21:65:32:4f:18:89: 0e:f5:9f:c3:df:01:8f:77:79:fd:3b:b9:13:87:25:4b:43:ea: c7:6b:2d:97:f7:93:66:f1:65:54:5b:94:e5:53:a8:f4:27:59: a8:b5:90:99:65:92:ac:f4:5c:74:2a:fe:2e:ac:fe:de:c9:1c: bc:ca:98:4d:6f:37:87:0f:ac:bc:59:16:cb:3f:2d:94:eb:f8: e8:57:1f:30:5c:d5:28:c8:8e:58:ed:ba:36:15:a4:a9:2f:3e: bf:cc:40:1e:c3:d5:bc:20:74:4b:a6:f2:d5:5e:8c:67:2a:2b: 82:fa:c2:f1:b5:7d:c4:9a:fd:d2:61:04:72:ff:0a:69:fe:17: 4b:b5:5c:f2:9a:08:30:4d:fd:a5:17:f3:b9:1a:0a:24:11:dc: e0:6d:2b:6c:32:58:d5:c9:93:95:8f:7a:67:b9:b1:24:1a:c6: 60:28:41:96:70:ef:19:8a:c2:93:ef:24:81:13:c9:f0:9b:a4: e5:59:22:6e:79:1f:09:ad:4d:af:42:9a:0d:49:5e:5f:8f:3b: 4f:5f:f4:13:00:c1:0b:b5:72:7c:80:b4:13:5b:18:15:55:92: 07:9e:c4:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlh0IjVjFp3rANfHBYTGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5MGZmMDExMDU0ZWNmZTY4YThhZGM3ZGUyNjhhZGU2YzA4 Mjc3MTEwHhcNMjYwMjA5MTYwMDUwWhcNMjYwMjEwMTYwMDUwWjAzMTEwLwYDVQQD Eyg1NzdiMjFjZGE5ZTQyYTRhMzI5ZDMyMjVlYWQ2M2JjYmU3ZTQ2OTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA453nkYzYSROzV36t99sa3i5zMaB6 cBGoFcYICVbN4eRYh61GuN+N6gJiUA6FCDePFS8IaB/lx02yRHM228JLeHpe1dIb 6uFobGa11ZP4GFrT7ciw3prcSM8G8OK/GSN6sBgKEl8OGwn+r94qOgha11+sYUQA hKHLQitRpWl0hBzCxFRXwtr9dSvzYJasyhooJMT4i07REJfrj1UWk5ojoUK4BAw8 InxJpP7pvVgCAazMCYQJCOSMuECF7srNXhZDsZYV769iQAdPxuC9LImtPth+MIRe nKYFb4KGrzn3VO68Q2gciUu6/RWDvaiedAP6c4LwC/HxRlo0ih5XWrvEzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFd7Ic2p5CpKMp0yJerWO8vn5Gl1MB8GA1UdIwQY MBaAFKkP8BEFTs/miorcfeJorebAgncRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVFfd0VRVk96LWFLaXR4OTRtaXQ1c0NDZHhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9iYTczYTItZjBlNi00NzZmLTgxMzMt ZTk5Mjc3MDM3YTQzLzEvcVFfd0VRVk96LWFLaXR4OTRtaXQ1c0NDZHhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9iYTczYTItZjBlNi00NzZmLTgxMzMtZTk5Mjc3MDM3YTQz LzEvcVFfd0VRVk96LWFLaXR4OTRtaXQ1c0NDZHhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlP5leRC3 BRHMJZ+afkl7LTGScVVvKO0p/2swhIJ6IWUyTxiJDvWfw98Bj3d5/Tu5E4clS0Pq x2stl/eTZvFlVFuU5VOo9CdZqLWQmWWSrPRcdCr+Lqz+3skcvMqYTW83hw+svFkW yz8tlOv46FcfMFzVKMiOWO26NhWkqS8+v8xAHsPVvCB0S6by1V6MZyorgvrC8bV9 xJr90mEEcv8Kaf4XS7Vc8poIME39pRfzuRoKJBHc4G0rbDJY1cmTlY96Z7mxJBrG YChBlnDvGYrCk+8kgRPJ8Juk5VkibnkfCa1Nr0KaDUleX487T1/0EwDBC7VyfIC0 E1sYFVWSB57E2A== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:12 2026 by rpki-client