This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft File: qyt5QmiS7R2nsuYYZ3DPsErmA80.mft (raw, json) Hash identifier: hTGLfpHH5oZawjpns6VnXrugUD6X4jsT1/CDAiznQIg= Subject key identifier: 63:09:30:10:A4:91:8E:64:60:C4:DB:29:83:83:A0:84:20:5B:DF:EA Authority key identifier: AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD Certificate issuer: /CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd Certificate serial: 019C41D8E9C557ED9C38A270367AFDD443BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft Manifest number: 0AB5 Signing time: Mon 09 Feb 2026 10:01:00 +0000 Manifest this update: Mon 09 Feb 2026 10:01:00 +0000 Manifest next update: Tue 10 Feb 2026 10:01:00 +0000 Files and hashes: 1: qyt5QmiS7R2nsuYYZ3DPsErmA80.crl (hash: XVPnKMLuLsSzfhWsY/H73tBvFBbef7o+k7AkWjmz2ms=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:e9:c5:57:ed:9c:38:a2:70:36:7a:fd:d4:43:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd Validity Not Before: Feb 9 10:01:00 2026 GMT Not After : Feb 10 10:01:00 2026 GMT Subject: CN=63093010a4918e6460c4db298383a084205bdfea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:20:56:b4:14:df:00:38:a0:93:25:26:82:43: c2:31:c3:61:d7:2f:78:60:31:f3:b1:37:10:83:8c: b8:ce:dc:04:fb:c3:40:36:1f:e0:50:78:6d:4d:ff: ec:0e:ad:a3:77:9a:3c:3d:b8:08:0f:88:23:d7:83: 0e:fe:cb:0b:50:2e:13:a1:f2:95:c0:c1:91:f7:12: 3c:bd:86:bb:63:b9:d2:87:20:d5:a0:42:f6:86:d6: 02:a5:cf:78:1a:d0:bb:2b:d3:a3:e1:04:30:5c:ab: 80:84:7c:43:e7:47:fa:23:c5:22:10:01:6d:95:49: 16:dc:25:15:d7:ed:60:c1:01:87:7b:cf:e7:1a:67: ce:e7:6e:6f:ba:7e:e4:25:ce:62:8d:bc:28:e2:75: b2:7d:25:bd:ac:32:85:65:18:a1:40:6e:b1:01:d4: 18:0b:b3:53:77:4c:da:85:21:b4:6e:21:57:d3:aa: 76:69:55:4c:fe:f1:bf:01:3a:b5:b5:56:ab:4a:80: b7:9e:e3:a2:f6:06:f0:57:ad:1c:f2:59:09:2c:d8: 2a:d7:49:07:bf:28:11:ff:ae:d4:58:cf:f7:2d:dc: 9f:c6:1d:07:5e:26:d6:a9:1f:c3:cb:1e:c7:2a:a9: e8:d1:b2:84:9c:be:60:3e:45:84:06:85:c3:7a:92: d6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:09:30:10:A4:91:8E:64:60:C4:DB:29:83:83:A0:84:20:5B:DF:EA X509v3 Authority Key Identifier: keyid:AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:2f:d3:76:84:1f:a8:0d:78:db:50:81:34:e6:af:76:cf:38: d4:3b:93:d1:ea:7f:15:b8:a1:10:6f:23:77:58:f0:ab:02:d5: 7a:80:53:f2:2b:e8:ee:5b:6b:b6:32:b4:78:4f:80:54:b6:82: 04:a9:a7:a0:57:4b:2a:d7:14:47:8f:56:6a:67:ca:b1:f3:11: ce:49:19:fc:d5:1f:98:72:c1:07:4e:51:31:ef:73:a4:47:12: 24:a3:f1:2e:62:f2:8d:9d:6b:58:44:2f:42:f0:7a:41:4f:4f: 30:ed:e8:12:37:e7:d4:8a:21:7a:45:c4:b3:f0:c1:2f:be:2c: cb:17:c6:a0:79:5d:69:ee:c5:4a:91:50:bb:ab:51:fa:07:82: a4:24:7a:b2:f6:74:d0:47:af:e6:3f:82:98:17:fd:a1:6d:3e: 5f:ae:e1:41:94:9c:54:72:b0:f2:fb:c9:04:3d:0a:bb:03:bb: f4:2b:e3:99:86:8a:48:8a:a1:f6:8d:57:61:af:97:48:6e:68: 5f:14:88:53:79:bc:64:d4:15:ba:27:59:24:63:7f:bf:37:ad: 08:89:02:c3:33:cf:9f:da:3b:d6:07:44:d3:79:1b:e2:17:8c: d5:ac:98:e3:ad:a4:32:6f:4d:4a:19:b5:b9:1c:de:d4:30:8e: bb:7d:2d:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2OnFV+2cOKJwNnr91EO/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMmI3OTQyNjg5MmVkMWRhN2IyZTYxODY3NzBjZmIwNGFl NjAzY2QwHhcNMjYwMjA5MTAwMTAwWhcNMjYwMjEwMTAwMTAwWjAzMTEwLwYDVQQD Eyg2MzA5MzAxMGE0OTE4ZTY0NjBjNGRiMjk4MzgzYTA4NDIwNWJkZmVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9iBWtBTfADigkyUmgkPCMcNh1y94 YDHzsTcQg4y4ztwE+8NANh/gUHhtTf/sDq2jd5o8PbgID4gj14MO/ssLUC4TofKV wMGR9xI8vYa7Y7nShyDVoEL2htYCpc94GtC7K9Oj4QQwXKuAhHxD50f6I8UiEAFt lUkW3CUV1+1gwQGHe8/nGmfO525vun7kJc5ijbwo4nWyfSW9rDKFZRihQG6xAdQY C7NTd0zahSG0biFX06p2aVVM/vG/ATq1tVarSoC3nuOi9gbwV60c8lkJLNgq10kH vygR/67UWM/3Ldyfxh0HXibWqR/Dyx7HKqno0bKEnL5gPkWEBoXDepLWswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGMJMBCkkY5kYMTbKYODoIQgW9/qMB8GA1UdIwQY MBaAFKsreUJoku0dp7LmGGdwz7BK5gPNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXl0NVFtaVM3UjJuc3VZWVozRFBzRXJtQTgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9hMjYwNTAtNDllYy00OTU1LTk4MTAt ZTU0NTM3MDdhNThlLzEvcXl0NVFtaVM3UjJuc3VZWVozRFBzRXJtQTgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC9hMjYwNTAtNDllYy00OTU1LTk4MTAtZTU0NTM3MDdhNThl LzEvcXl0NVFtaVM3UjJuc3VZWVozRFBzRXJtQTgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAC/TdoQf qA1421CBNOavds841DuT0ep/FbihEG8jd1jwqwLVeoBT8ivo7ltrtjK0eE+AVLaC BKmnoFdLKtcUR49WamfKsfMRzkkZ/NUfmHLBB05RMe9zpEcSJKPxLmLyjZ1rWEQv QvB6QU9PMO3oEjfn1IohekXEs/DBL74syxfGoHldae7FSpFQu6tR+geCpCR6svZ0 0Eev5j+CmBf9oW0+X67hQZScVHKw8vvJBD0KuwO79CvjmYaKSIqh9o1XYa+XSG5o XxSIU3m8ZNQVuidZJGN/vzetCIkCwzPPn9o71gdE03kb4heM1ayY462kMm9NShm1 uRze1DCOu30t6g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:48 2026 by rpki-client