This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft File: vqe2d3e5poMpM1dkl7RqmxYwTNk.mft (raw, json) Hash identifier: JDnsZdWgMW3CB0ZjtNXEr5XvfPv9YBFLgnfOTAPgotk= Subject key identifier: 70:04:BB:AC:83:2E:22:C4:24:86:7B:A9:B5:D6:5E:42:88:BA:D2:50 Authority key identifier: BE:A7:B6:77:77:B9:A6:83:29:33:57:64:97:B4:6A:9B:16:30:4C:D9 Certificate issuer: /CN=bea7b67777b9a6832933576497b46a9b16304cd9 Certificate serial: 019C43FE0D9C359FF796DA80C440BEBCACE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft Manifest number: 1652 Signing time: Mon 09 Feb 2026 20:00:48 +0000 Manifest this update: Mon 09 Feb 2026 20:00:48 +0000 Manifest next update: Tue 10 Feb 2026 20:00:48 +0000 Files and hashes: 1: srq9Ha0TjuLwEjYRk51fxTPdbjI.roa (hash: a6vYm4uCbtYNDd3vfHwRhBRwXJqAYeklTcm+jwdPPv4=) 2: vqe2d3e5poMpM1dkl7RqmxYwTNk.crl (hash: YnE4O9Z3xzbq3xXpcB4x54u/7QrSsGOBP3GZmSs1i1g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:0d:9c:35:9f:f7:96:da:80:c4:40:be:bc:ac:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bea7b67777b9a6832933576497b46a9b16304cd9 Validity Not Before: Feb 9 20:00:48 2026 GMT Not After : Feb 10 20:00:48 2026 GMT Subject: CN=7004bbac832e22c424867ba9b5d65e4288bad250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4b:ae:43:e5:6b:3c:d8:76:4a:bc:40:ee:52: c6:24:4a:05:28:06:c1:57:e8:7c:a6:f7:47:b6:35: 57:7d:8c:2c:13:03:27:8c:42:8d:16:79:6c:3c:c3: 62:d9:38:d5:1b:7f:71:02:62:aa:95:e4:65:e4:80: d7:58:27:96:c6:cd:4b:20:aa:1e:9d:0c:db:a0:72: bd:e5:cd:53:81:3d:09:99:fc:d6:75:22:f2:6c:14: 75:58:79:cd:75:2a:20:12:f7:ee:79:4c:4c:fb:aa: 8c:9a:38:15:81:8d:e7:7b:77:f7:e7:b7:b5:a3:df: 33:d4:96:80:0b:21:23:d4:1f:1c:d7:0d:c9:b9:c1: d1:10:67:0f:d5:e4:1d:df:6d:71:30:41:9b:35:a4: b5:f8:af:d3:22:0b:d4:35:34:dc:14:46:1d:bb:96: b2:e6:29:ff:14:e1:e8:da:69:29:04:4a:53:52:06: 80:a5:90:1b:1e:57:2c:47:8b:60:c2:d0:6d:97:de: 03:98:c9:a6:4d:0f:9b:9d:c9:33:59:db:6a:65:2c: cb:e6:ba:3c:26:93:0b:08:92:4b:77:fb:99:92:1f: 99:b1:01:d3:42:4d:c7:ad:75:15:0f:16:4e:85:1d: 19:86:9c:b7:96:23:53:4e:5d:ec:99:1a:3f:d9:51: 84:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:04:BB:AC:83:2E:22:C4:24:86:7B:A9:B5:D6:5E:42:88:BA:D2:50 X509v3 Authority Key Identifier: keyid:BE:A7:B6:77:77:B9:A6:83:29:33:57:64:97:B4:6A:9B:16:30:4C:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:b4:14:b1:61:c1:12:aa:6f:f6:90:2f:3a:63:e3:b8:db:8e: 44:48:66:be:65:a9:c0:23:40:1f:29:6a:01:23:0c:4c:76:d4: 3b:44:47:b2:38:5e:d8:80:06:6c:b3:5c:f5:a2:93:b9:a2:4c: e7:16:eb:f5:14:4f:ba:86:9e:b7:6f:5d:8b:8d:62:63:23:26: 97:e6:5d:32:e2:c7:d1:70:e0:3b:ba:95:e1:c7:22:33:23:93: 65:3a:0e:ca:9e:6a:e4:eb:36:75:3c:e1:be:24:63:f0:e7:5f: c7:85:f9:24:ad:45:0d:04:21:8a:c1:dc:87:5c:a7:26:47:03: da:88:c0:48:0e:8f:a3:2d:d8:dc:6a:e3:05:04:68:19:e1:93: 39:9a:d7:94:c4:34:64:ed:04:21:74:82:57:7f:1f:34:b4:c3: 2e:b7:64:80:57:31:54:8a:49:a6:82:7e:bc:e8:be:af:c1:8b: 5b:73:23:54:eb:04:c5:bc:90:93:6b:37:d6:f4:87:ff:ce:64: 49:38:0a:c6:2b:8b:f6:86:3d:dd:77:10:9c:04:34:e2:79:65: f4:c7:7d:5d:ba:50:b3:29:09:64:8a:2c:0b:4e:76:72:0d:bf: ab:07:8f:84:73:93:ab:ad:f1:41:9e:5c:39:e1:43:ed:23:3c: 1f:6f:1d:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/g2cNZ/3ltqAxEC+vKznMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlYTdiNjc3NzdiOWE2ODMyOTMzNTc2NDk3YjQ2YTliMTYz MDRjZDkwHhcNMjYwMjA5MjAwMDQ4WhcNMjYwMjEwMjAwMDQ4WjAzMTEwLwYDVQQD Eyg3MDA0YmJhYzgzMmUyMmM0MjQ4NjdiYTliNWQ2NWU0Mjg4YmFkMjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxUuuQ+VrPNh2SrxA7lLGJEoFKAbB V+h8pvdHtjVXfYwsEwMnjEKNFnlsPMNi2TjVG39xAmKqleRl5IDXWCeWxs1LIKoe nQzboHK95c1TgT0JmfzWdSLybBR1WHnNdSogEvfueUxM+6qMmjgVgY3ne3f357e1 o98z1JaACyEj1B8c1w3JucHREGcP1eQd321xMEGbNaS1+K/TIgvUNTTcFEYdu5ay 5in/FOHo2mkpBEpTUgaApZAbHlcsR4tgwtBtl94DmMmmTQ+bnckzWdtqZSzL5ro8 JpMLCJJLd/uZkh+ZsQHTQk3HrXUVDxZOhR0Zhpy3liNTTl3smRo/2VGE7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHAEu6yDLiLEJIZ7qbXWXkKIutJQMB8GA1UdIwQY MBaAFL6ntnd3uaaDKTNXZJe0apsWMEzZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnFlMmQzZTVwb01wTTFka2w3UnFteFl3VE5rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy80MWMxMTEtNjUwNS00MWE0LTllNjct M2I5MWZmOWExYWNkLzEvdnFlMmQzZTVwb01wTTFka2w3UnFteFl3VE5rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy80MWMxMTEtNjUwNS00MWE0LTllNjctM2I5MWZmOWExYWNk LzEvdnFlMmQzZTVwb01wTTFka2w3UnFteFl3VE5rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfrQUsWHB Eqpv9pAvOmPjuNuOREhmvmWpwCNAHylqASMMTHbUO0RHsjhe2IAGbLNc9aKTuaJM 5xbr9RRPuoaet29di41iYyMml+ZdMuLH0XDgO7qV4cciMyOTZToOyp5q5Os2dTzh viRj8Odfx4X5JK1FDQQhisHch1ynJkcD2ojASA6Poy3Y3GrjBQRoGeGTOZrXlMQ0 ZO0EIXSCV38fNLTDLrdkgFcxVIpJpoJ+vOi+r8GLW3MjVOsExbyQk2s31vSH/85k STgKxiuL9oY93XcQnAQ04nll9Md9XbpQsykJZIosC052cg2/qwePhHOTq63xQZ5c OeFD7SM8H28duQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:44 2026 by rpki-client