This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/2408e1-e42f-4915-a715-a1d6d91cde68/1/Q5_i1RcHd00tDCv50SrQercmQqI.mft File: Q5_i1RcHd00tDCv50SrQercmQqI.mft (raw, json) Hash identifier: qX5WDFMw78oFiJAHoyHd2t4n3jGfCSQ8HU2mjxXTq6M= Subject key identifier: 00:DA:A5:99:0E:DF:15:7E:E2:59:5E:43:69:4B:41:88:E6:A8:44:85 Authority key identifier: 43:9F:E2:D5:17:07:77:4D:2D:0C:2B:F9:D1:2A:D0:7A:B7:26:42:A2 Certificate issuer: /CN=439fe2d51707774d2d0c2bf9d12ad07ab72642a2 Certificate serial: 019C446C72A91AAB6A53EAF2EC5DCC60B5E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5_i1RcHd00tDCv50SrQercmQqI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/2408e1-e42f-4915-a715-a1d6d91cde68/1/Q5_i1RcHd00tDCv50SrQercmQqI.mft Manifest number: 1075 Signing time: Mon 09 Feb 2026 22:01:23 +0000 Manifest this update: Mon 09 Feb 2026 22:01:23 +0000 Manifest next update: Tue 10 Feb 2026 22:01:23 +0000 Files and hashes: 1: Q5_i1RcHd00tDCv50SrQercmQqI.crl (hash: e3SjQlgcb/9Dd9wByB8UNdlLuv3zwegtTJVTIMb62wI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/2408e1-e42f-4915-a715-a1d6d91cde68/1/Q5_i1RcHd00tDCv50SrQercmQqI.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/2408e1-e42f-4915-a715-a1d6d91cde68/1/Q5_i1RcHd00tDCv50SrQercmQqI.mft rsync://rpki.ripe.net/repository/DEFAULT/Q5_i1RcHd00tDCv50SrQercmQqI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6c:72:a9:1a:ab:6a:53:ea:f2:ec:5d:cc:60:b5:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=439fe2d51707774d2d0c2bf9d12ad07ab72642a2 Validity Not Before: Feb 9 22:01:23 2026 GMT Not After : Feb 10 22:01:23 2026 GMT Subject: CN=00daa5990edf157ee2595e43694b4188e6a84485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:17:1e:94:be:ca:6c:bd:ec:56:a3:dd:26:fa: 19:95:b6:cb:c1:11:83:a8:8c:a7:01:8a:25:74:25: e3:d5:a2:65:0a:7f:fd:74:59:6c:b3:db:d7:d9:60: 0a:cd:88:d9:ab:3a:1c:eb:18:32:a1:e9:ab:20:be: 38:9c:ab:ae:3d:7e:1c:d6:29:bd:d7:14:8f:d5:b2: d3:96:b7:b2:30:2c:4e:7c:00:f0:72:b8:97:d6:86: a5:af:33:2c:ba:78:7c:73:fa:8a:b0:7b:7b:39:66: 33:12:54:ce:4b:4d:28:cd:a5:59:3d:d3:38:03:e4: e9:78:7d:da:72:c2:83:1f:df:3b:3d:12:88:f3:60: f6:63:73:31:3d:9e:1b:55:c4:96:ca:31:fa:f2:22: 15:50:68:ae:20:2e:ea:c9:08:9b:aa:05:74:9a:11: e6:6b:f8:80:3a:44:d1:d8:e8:58:44:21:79:81:46: 0f:61:7f:86:a7:73:8a:f2:db:db:e3:a0:f0:45:82: 8f:71:97:14:bf:38:bb:9a:c9:74:d1:cf:ca:17:c2: fb:95:0b:66:de:3f:97:97:7d:40:ca:6a:57:b5:9c: c9:db:65:3a:10:7b:f0:65:5e:f3:1f:df:b6:27:82: 3b:1c:ee:77:51:8a:a3:20:88:48:b3:60:82:40:57: 20:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:DA:A5:99:0E:DF:15:7E:E2:59:5E:43:69:4B:41:88:E6:A8:44:85 X509v3 Authority Key Identifier: keyid:43:9F:E2:D5:17:07:77:4D:2D:0C:2B:F9:D1:2A:D0:7A:B7:26:42:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5_i1RcHd00tDCv50SrQercmQqI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2408e1-e42f-4915-a715-a1d6d91cde68/1/Q5_i1RcHd00tDCv50SrQercmQqI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2408e1-e42f-4915-a715-a1d6d91cde68/1/Q5_i1RcHd00tDCv50SrQercmQqI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:f1:14:c8:b0:1f:a5:32:7c:97:e0:d7:aa:be:47:10:54:20: 49:0a:bc:a6:8a:78:82:a9:b5:9f:e1:b4:80:bd:7e:12:70:60: 32:93:cf:32:58:9a:a8:b7:c6:88:21:e7:f2:a4:19:1e:bc:0e: ea:42:d4:9b:4b:a0:bb:5d:4b:a1:1a:6e:5c:15:6f:12:78:96: 15:b1:3a:bf:ae:9e:c0:49:ca:67:dc:d1:b8:09:37:14:ba:17: 55:2f:3b:65:a4:5c:07:f6:b4:cd:c7:44:f5:c5:ee:98:c1:5c: 89:06:7f:68:5c:0b:1d:14:cd:4b:a0:fa:58:9b:0e:62:a9:79: 71:5d:6e:ed:33:06:1d:91:62:ff:ea:a0:44:a8:05:b3:c9:31: 6a:b2:a2:a0:c4:40:8b:5e:bf:59:32:9d:a2:70:69:19:1b:41: 0d:15:7a:56:bc:79:14:01:1c:22:1e:63:c0:eb:e5:4c:ad:f8: fd:f2:6c:61:1b:ae:fe:e3:c6:17:5f:2b:44:26:95:d9:eb:cc: 9b:df:4d:9b:44:57:7b:f3:30:a1:85:98:60:d1:2d:ba:48:c5: b5:e4:51:38:07:3c:34:2d:b9:b0:54:18:56:46:13:37:1f:57: 04:0a:31:81:e3:24:f3:05:b0:aa:7b:1c:0c:a5:18:1f:de:dd: 12:b5:e2:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEbHKpGqtqU+ry7F3MYLXkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzOWZlMmQ1MTcwNzc3NGQyZDBjMmJmOWQxMmFkMDdhYjcy NjQyYTIwHhcNMjYwMjA5MjIwMTIzWhcNMjYwMjEwMjIwMTIzWjAzMTEwLwYDVQQD EygwMGRhYTU5OTBlZGYxNTdlZTI1OTVlNDM2OTRiNDE4OGU2YTg0NDg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2hcelL7KbL3sVqPdJvoZlbbLwRGD qIynAYoldCXj1aJlCn/9dFlss9vX2WAKzYjZqzoc6xgyoemrIL44nKuuPX4c1im9 1xSP1bLTlreyMCxOfADwcriX1oalrzMsunh8c/qKsHt7OWYzElTOS00ozaVZPdM4 A+TpeH3acsKDH987PRKI82D2Y3MxPZ4bVcSWyjH68iIVUGiuIC7qyQibqgV0mhHm a/iAOkTR2OhYRCF5gUYPYX+Gp3OK8tvb46DwRYKPcZcUvzi7msl00c/KF8L7lQtm 3j+Xl31AympXtZzJ22U6EHvwZV7zH9+2J4I7HO53UYqjIIhIs2CCQFcgowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFADapZkO3xV+4lleQ2lLQYjmqESFMB8GA1UdIwQY MBaAFEOf4tUXB3dNLQwr+dEq0Hq3JkKiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTVfaTFSY0hkMDB0REN2NTBTclFlcmNtUXFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8yNDA4ZTEtZTQyZi00OTE1LWE3MTUt YTFkNmQ5MWNkZTY4LzEvUTVfaTFSY0hkMDB0REN2NTBTclFlcmNtUXFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS8yNDA4ZTEtZTQyZi00OTE1LWE3MTUtYTFkNmQ5MWNkZTY4 LzEvUTVfaTFSY0hkMDB0REN2NTBTclFlcmNtUXFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY/EUyLAf pTJ8l+DXqr5HEFQgSQq8pop4gqm1n+G0gL1+EnBgMpPPMliaqLfGiCHn8qQZHrwO 6kLUm0ugu11LoRpuXBVvEniWFbE6v66ewEnKZ9zRuAk3FLoXVS87ZaRcB/a0zcdE 9cXumMFciQZ/aFwLHRTNS6D6WJsOYql5cV1u7TMGHZFi/+qgRKgFs8kxarKioMRA i16/WTKdonBpGRtBDRV6Vrx5FAEcIh5jwOvlTK34/fJsYRuu/uPGF18rRCaV2evM m99Nm0RXe/MwoYWYYNEtukjFteRROAc8NC25sFQYVkYTNx9XBAoxgeMk8wWwqnsc DKUYH97dErXi3A== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:56 2026 by rpki-client