This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft File: Q9JznRqU2rlXbiF80N-FdyBLIwA.mft (raw, json) Hash identifier: EIDquqHd4NvfoKljHGk/8Su20hUt7ZpwSc5zP4b2DtQ= Subject key identifier: 80:A0:DA:92:18:FD:E6:FE:03:36:C4:A6:35:B3:D0:F0:57:6C:6B:F4 Authority key identifier: 43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00 Certificate issuer: /CN=43d2739d1a94dab9576e217cd0df8577204b2300 Certificate serial: 019C4322F1DEC65F94BDA96E06F34885DD39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft Manifest number: 0567 Signing time: Mon 09 Feb 2026 16:01:29 +0000 Manifest this update: Mon 09 Feb 2026 16:01:29 +0000 Manifest next update: Tue 10 Feb 2026 16:01:29 +0000 Files and hashes: 1: Q9JznRqU2rlXbiF80N-FdyBLIwA.crl (hash: vAvDI+S+UOx/10GqtrORl8bdI9SDJQWaHZarQ3RoIus=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:f1:de:c6:5f:94:bd:a9:6e:06:f3:48:85:dd:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43d2739d1a94dab9576e217cd0df8577204b2300 Validity Not Before: Feb 9 16:01:29 2026 GMT Not After : Feb 10 16:01:29 2026 GMT Subject: CN=80a0da9218fde6fe0336c4a635b3d0f0576c6bf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:94:8d:3b:82:d4:5c:22:db:ee:73:84:ae:5d: 6c:d8:58:80:e6:05:2a:30:6c:27:3a:26:c5:54:2d: 51:1a:44:8f:3b:32:07:99:9a:f0:9c:e5:f0:ea:2a: 22:14:0f:77:7f:0f:ba:d1:1c:2d:8d:33:4b:43:fa: f3:79:9e:a0:0c:8f:85:79:56:62:74:66:da:b6:0c: b5:01:ef:69:d7:3a:7a:06:90:b2:7e:af:69:ea:ce: 47:c6:a3:bb:78:5b:53:35:80:d6:d4:c0:7a:89:3a: 56:11:1a:b4:78:77:1f:bf:b6:d2:b9:89:52:f6:93: fb:15:f4:4f:7d:63:33:b4:36:d0:cf:5b:bd:70:8e: 53:87:5c:97:5e:7b:b5:39:5d:c3:ec:28:31:ab:7a: 73:be:24:bf:98:ac:82:42:7f:f4:0e:02:8e:fe:17: af:a6:8c:50:b1:c0:2e:93:f0:06:61:64:49:d4:bd: 18:53:eb:37:d2:47:57:1b:42:d3:ba:af:be:75:e4: 9f:68:a3:88:bc:5c:db:58:f5:53:80:0a:1c:6b:46: 76:07:06:e6:8d:01:7a:1b:4e:b8:4b:dc:87:14:00: 59:27:31:30:ce:3c:a3:29:9a:73:f3:75:31:03:80: dd:9c:10:8a:68:5c:8d:b9:d6:12:78:ff:03:d1:88: 83:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:A0:DA:92:18:FD:E6:FE:03:36:C4:A6:35:B3:D0:F0:57:6C:6B:F4 X509v3 Authority Key Identifier: keyid:43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:85:89:73:8b:a1:60:ee:7b:1f:99:ea:96:9c:28:42:79:87: 11:2a:59:72:30:f2:f6:1b:f1:35:96:ae:02:54:b2:d3:bb:36: f7:98:c2:0c:1d:3f:60:13:18:af:d5:ed:06:c4:9f:7a:da:39: 53:a8:0c:f5:50:4e:8e:0c:06:c7:07:e7:18:7c:81:bc:87:47: 47:6d:e5:4e:2b:9e:d7:00:25:94:b2:1b:6c:29:44:ba:2c:e0: 60:5a:bd:8e:34:18:64:a8:17:8a:1a:02:21:b3:99:50:47:1c: 50:10:56:82:41:33:d9:5a:28:8d:c3:df:79:7a:03:13:66:70: ca:d7:82:07:25:cf:64:ac:b7:e7:fe:10:da:b7:bd:9d:78:eb: 5b:13:f9:ae:88:de:a1:64:30:4a:b5:cc:de:e9:ed:b4:3c:24: d1:08:43:94:0e:a5:20:fd:70:0f:a5:47:d5:45:b6:5f:22:87: c7:0c:6e:b6:03:d3:51:ce:d5:37:b4:5f:60:1f:95:f5:b7:84: 82:1e:55:af:5e:17:7a:3b:1a:bc:31:2a:9c:47:e4:dd:00:87: fb:1c:cb:a2:d0:8d:e8:07:a9:22:46:55:79:58:25:40:11:38: a8:83:88:ae:9a:98:85:4a:c4:84:5d:3b:bf:6c:30:22:4c:13: 9b:c6:de:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIvHexl+UvaluBvNIhd05MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzZDI3MzlkMWE5NGRhYjk1NzZlMjE3Y2QwZGY4NTc3MjA0 YjIzMDAwHhcNMjYwMjA5MTYwMTI5WhcNMjYwMjEwMTYwMTI5WjAzMTEwLwYDVQQD Eyg4MGEwZGE5MjE4ZmRlNmZlMDMzNmM0YTYzNWIzZDBmMDU3NmM2YmY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiZSNO4LUXCLb7nOErl1s2FiA5gUq MGwnOibFVC1RGkSPOzIHmZrwnOXw6ioiFA93fw+60RwtjTNLQ/rzeZ6gDI+FeVZi dGbatgy1Ae9p1zp6BpCyfq9p6s5HxqO7eFtTNYDW1MB6iTpWERq0eHcfv7bSuYlS 9pP7FfRPfWMztDbQz1u9cI5Th1yXXnu1OV3D7Cgxq3pzviS/mKyCQn/0DgKO/hev poxQscAuk/AGYWRJ1L0YU+s30kdXG0LTuq++deSfaKOIvFzbWPVTgAoca0Z2Bwbm jQF6G064S9yHFABZJzEwzjyjKZpz83UxA4DdnBCKaFyNudYSeP8D0YiD+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFICg2pIY/eb+AzbEpjWz0PBXbGv0MB8GA1UdIwQY MBaAFEPSc50alNq5V24hfNDfhXcgSyMAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTlKem5ScVUycmxYYmlGODBOLUZkeUJMSXdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83ZmU1YzUtOWJhMi00ZTY2LWJhMmUt YTQ0MzI2YTM5Zjk3LzEvUTlKem5ScVUycmxYYmlGODBOLUZkeUJMSXdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi83ZmU1YzUtOWJhMi00ZTY2LWJhMmUtYTQ0MzI2YTM5Zjk3 LzEvUTlKem5ScVUycmxYYmlGODBOLUZkeUJMSXdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmYWJc4uh YO57H5nqlpwoQnmHESpZcjDy9hvxNZauAlSy07s295jCDB0/YBMYr9XtBsSfeto5 U6gM9VBOjgwGxwfnGHyBvIdHR23lTiue1wAllLIbbClEuizgYFq9jjQYZKgXihoC IbOZUEccUBBWgkEz2VoojcPfeXoDE2ZwyteCByXPZKy35/4Q2re9nXjrWxP5roje oWQwSrXM3unttDwk0QhDlA6lIP1wD6VH1UW2XyKHxwxutgPTUc7VN7RfYB+V9beE gh5Vr14XejsavDEqnEfk3QCH+xzLotCN6AepIkZVeVglQBE4qIOIrpqYhUrEhF07 v2wwIkwTm8beMQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:27 2026 by rpki-client