This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft File: QO5hC9zSO60rEZK9RcqKl204Vdo.mft (raw, json) Hash identifier: F9RWLeh2OS1Gb/59RzodEy6iTTI6Df+XQb1VRh/0Qdw= Subject key identifier: 5A:8F:5B:1C:20:31:53:B6:45:B4:09:F6:F3:8F:0B:5B:1F:27:E5:8F Authority key identifier: 40:EE:61:0B:DC:D2:3B:AD:2B:11:92:BD:45:CA:8A:97:6D:38:55:DA Certificate issuer: /CN=40ee610bdcd23bad2b1192bd45ca8a976d3855da Certificate serial: 019C4358D70708E6C7ED7E95BE4306AD0348 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QO5hC9zSO60rEZK9RcqKl204Vdo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft Manifest number: 16AB Signing time: Mon 09 Feb 2026 17:00:21 +0000 Manifest this update: Mon 09 Feb 2026 17:00:21 +0000 Manifest next update: Tue 10 Feb 2026 17:00:21 +0000 Files and hashes: 1: QO5hC9zSO60rEZK9RcqKl204Vdo.crl (hash: hyEAxtf/XjpoqdNOwDgqsO57Bn2HzvTqGFuakBTV8rg=) 2: lyRZ6aaG_PNUTYMpZjK6Ka6tewI.roa (hash: y1+djgClVik/37jj410N7sJ7abi7QHTOhTCOqoWur98=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft rsync://rpki.ripe.net/repository/DEFAULT/QO5hC9zSO60rEZK9RcqKl204Vdo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:d7:07:08:e6:c7:ed:7e:95:be:43:06:ad:03:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40ee610bdcd23bad2b1192bd45ca8a976d3855da Validity Not Before: Feb 9 17:00:21 2026 GMT Not After : Feb 10 17:00:21 2026 GMT Subject: CN=5a8f5b1c203153b645b409f6f38f0b5b1f27e58f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a4:19:16:35:f5:14:4b:6c:44:0a:47:1f:79: f2:43:09:ed:95:70:8c:f3:3c:cc:33:3d:f7:ab:0e: e3:89:7f:3a:5e:83:dd:51:3f:50:d5:9a:40:a7:2d: 3b:dc:6f:53:66:9f:6e:f5:81:8f:d4:c6:1f:f4:74: fc:17:2c:5e:d2:a4:cf:40:d9:eb:aa:a8:15:7e:6d: 3c:29:78:b1:2e:2f:eb:41:39:d7:24:cb:af:1c:e2: af:68:f3:e5:18:97:14:fa:b5:4e:ca:ae:d7:74:5b: 14:57:6d:fb:78:bd:3e:2a:40:a6:23:fd:58:3f:54: fb:cd:79:52:89:79:b8:0c:21:fb:86:56:67:ca:e2: 29:29:88:7a:72:df:77:7e:f1:f7:7d:25:3d:a0:fd: e0:80:41:08:95:45:4c:ce:b0:ed:5b:51:11:b5:86: 34:2f:0e:a6:b6:7e:ab:05:d0:ee:d9:7e:76:ea:69: 0a:8f:8f:1b:74:73:32:2a:7a:66:4f:2a:f7:90:f7: a1:0c:93:3e:ce:d6:33:14:61:e0:6a:17:c9:5b:72: d6:66:b6:ae:19:64:73:3b:a2:4c:a1:1b:52:f6:e3: 50:46:8e:df:e6:f6:77:95:44:29:53:23:23:2d:5a: d6:32:38:4c:b1:c9:63:e4:63:f5:a5:44:f8:99:fa: e7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:8F:5B:1C:20:31:53:B6:45:B4:09:F6:F3:8F:0B:5B:1F:27:E5:8F X509v3 Authority Key Identifier: keyid:40:EE:61:0B:DC:D2:3B:AD:2B:11:92:BD:45:CA:8A:97:6D:38:55:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QO5hC9zSO60rEZK9RcqKl204Vdo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:85:81:b3:88:90:03:df:77:55:12:4a:ea:10:8c:38:9f:30: aa:fb:91:bb:15:d7:1a:ba:bf:e6:12:1c:a0:74:78:d7:ed:76: 28:6e:07:4f:6a:e6:a6:28:6b:17:ea:a7:53:04:2e:5f:15:d8: 90:07:fd:36:47:dc:fa:75:6a:56:c3:63:56:18:d1:cf:78:8c: 18:74:f4:12:86:27:eb:09:bb:b1:4b:9d:0e:a4:28:a5:58:4b: 74:9d:23:22:57:52:35:31:c9:73:79:fa:0c:fc:9b:6a:de:1b: 4d:85:4a:d4:e5:14:d7:ae:69:17:e9:b7:0a:67:53:ec:4a:5e: 1f:f1:5c:f2:92:a4:44:44:db:d1:b8:5c:ea:c8:8c:ab:9c:ec: 1b:ff:64:65:c8:08:4a:a5:0b:7c:7c:9b:22:06:49:6f:84:ad: ce:8a:27:16:9f:d3:9c:03:54:75:66:55:6a:1b:19:f6:c8:46: c6:be:04:6d:e6:23:1e:3b:d9:9a:d3:4b:cd:7e:1a:63:6d:ad: 1f:74:b1:74:9f:64:34:b7:6a:98:59:8b:4e:f0:b9:f3:52:ed: ec:a3:51:08:bc:4f:a9:09:a2:9a:86:cf:c4:6a:75:d6:dd:60: 41:2c:59:dd:23:10:01:d1:26:5d:ee:fa:db:05:97:b3:d5:89: a8:77:ae:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWNcHCObH7X6VvkMGrQNIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZWU2MTBiZGNkMjNiYWQyYjExOTJiZDQ1Y2E4YTk3NmQz ODU1ZGEwHhcNMjYwMjA5MTcwMDIxWhcNMjYwMjEwMTcwMDIxWjAzMTEwLwYDVQQD Eyg1YThmNWIxYzIwMzE1M2I2NDViNDA5ZjZmMzhmMGI1YjFmMjdlNThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmaQZFjX1FEtsRApHH3nyQwntlXCM 8zzMMz33qw7jiX86XoPdUT9Q1ZpApy073G9TZp9u9YGP1MYf9HT8Fyxe0qTPQNnr qqgVfm08KXixLi/rQTnXJMuvHOKvaPPlGJcU+rVOyq7XdFsUV237eL0+KkCmI/1Y P1T7zXlSiXm4DCH7hlZnyuIpKYh6ct93fvH3fSU9oP3ggEEIlUVMzrDtW1ERtYY0 Lw6mtn6rBdDu2X526mkKj48bdHMyKnpmTyr3kPehDJM+ztYzFGHgahfJW3LWZrau GWRzO6JMoRtS9uNQRo7f5vZ3lUQpUyMjLVrWMjhMsclj5GP1pUT4mfrn9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFqPWxwgMVO2RbQJ9vOPC1sfJ+WPMB8GA1UdIwQY MBaAFEDuYQvc0jutKxGSvUXKipdtOFXaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU81aEM5elNPNjByRVpLOVJjcUtsMjA0VmRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi81ZWZhZTUtMmM5Mi00MGQwLWEzYjYt YTZjMTdjZTgyZDc3LzEvUU81aEM5elNPNjByRVpLOVJjcUtsMjA0VmRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi81ZWZhZTUtMmM5Mi00MGQwLWEzYjYtYTZjMTdjZTgyZDc3 LzEvUU81aEM5elNPNjByRVpLOVJjcUtsMjA0VmRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfYWBs4iQ A993VRJK6hCMOJ8wqvuRuxXXGrq/5hIcoHR41+12KG4HT2rmpihrF+qnUwQuXxXY kAf9Nkfc+nVqVsNjVhjRz3iMGHT0EoYn6wm7sUudDqQopVhLdJ0jIldSNTHJc3n6 DPybat4bTYVK1OUU165pF+m3CmdT7EpeH/Fc8pKkRETb0bhc6siMq5zsG/9kZcgI SqULfHybIgZJb4StzoonFp/TnANUdWZVahsZ9shGxr4EbeYjHjvZmtNLzX4aY22t H3SxdJ9kNLdqmFmLTvC581Lt7KNRCLxPqQmimobPxGp11t1gQSxZ3SMQAdEmXe76 2wWXs9WJqHeu7g== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:05 2026 by rpki-client