This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json) Hash identifier: n8JN7EUa9ryu2kkc9fbuJ69ju6UpyhOBGxlI3If/3fs= Subject key identifier: 1E:6B:BF:3D:A1:48:07:89:BE:A4:C2:7A:EB:AB:D7:B0:79:05:5E:A5 Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e Certificate serial: 019C44A25836C402E70ED2EC22027CDE6D27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 23:00:15 +0000 Manifest this update: Mon 09 Feb 2026 23:00:15 +0000 Manifest next update: Tue 10 Feb 2026 23:00:15 +0000 Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: eRy1174m6pUyBUJc6wWqlHiXdGun7ujJ2mC9eTVLW34=) 2: XVQmZyZgIfyuS-i9_dYYU_5CGT0.roa (hash: BPYDVshqMOmc9U1pef4+DfyaziPWsnfi+uZonkxHf4c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:58:36:c4:02:e7:0e:d2:ec:22:02:7c:de:6d:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e Validity Not Before: Feb 9 23:00:15 2026 GMT Not After : Feb 10 23:00:15 2026 GMT Subject: CN=1e6bbf3da1480789bea4c27aebabd7b079055ea5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:df:4d:a5:69:de:71:7e:67:d1:a3:99:da:32: 4a:46:f5:e9:56:9d:1c:1a:7d:4e:a9:dc:7b:39:1b: cf:3f:b0:e8:0d:a4:d9:41:50:b8:14:98:99:f4:21: 31:ee:9d:41:87:74:13:c8:c3:19:73:3e:e2:82:1f: 4d:01:26:c6:93:30:9d:e7:af:56:8a:87:ca:11:b8: 0f:f8:c9:7c:2a:07:d3:1f:65:e3:3c:f2:e4:86:1d: 7f:28:96:91:b1:7e:2c:c2:5e:80:e4:76:da:5a:ae: ad:3d:cf:8e:1b:bb:c7:b8:72:5a:aa:a8:3a:03:d0: ff:9e:d5:60:b9:04:07:07:c4:7a:27:5c:23:0f:a1: 6b:63:3c:f9:4d:ab:ca:2a:e3:38:28:b3:cc:a1:eb: ee:68:da:0c:98:d0:4c:32:11:e5:8d:1b:3d:41:ed: a7:76:14:ea:72:92:5a:f3:c1:40:00:21:02:39:13: a2:7d:0b:3a:7a:7e:94:cb:f1:61:0f:94:58:0b:8b: 94:77:be:74:60:f1:c3:37:b4:92:11:0f:31:96:39: 8c:84:12:07:2f:ce:e2:a1:40:d1:cb:65:be:ae:f0: 04:fb:42:58:e5:4a:2c:1e:ef:65:9a:1f:90:33:f0: e1:a3:c9:28:90:56:73:3e:f3:f5:1c:15:7d:ca:cc: 69:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6B:BF:3D:A1:48:07:89:BE:A4:C2:7A:EB:AB:D7:B0:79:05:5E:A5 X509v3 Authority Key Identifier: keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:2b:83:15:97:1b:dd:00:3a:8d:ec:77:f4:2b:17:01:2f:d5: a2:65:e5:c1:3c:76:4b:41:2e:5c:10:73:01:e6:9f:64:0a:b0: f3:7d:a4:e1:b1:f4:99:08:c9:26:f7:6f:0c:ca:05:c5:17:4c: 94:6c:3b:d5:0e:7b:48:f6:95:11:10:23:2e:48:65:4d:49:87: ff:e4:23:dc:b8:26:f9:ca:a5:55:8f:01:fa:6d:f4:e4:d0:04: c8:90:8a:fe:b3:6b:d6:7d:01:50:39:9d:84:05:d6:23:d9:88: 11:e9:e3:84:85:cd:85:6b:ae:ed:ce:17:df:e9:50:9e:04:b5: 23:bd:b4:d1:db:26:e2:e2:d3:dc:48:2f:8d:95:63:76:c6:e8: 59:2c:1e:fc:c6:b2:36:93:26:4a:7d:d9:12:c5:e9:c4:22:9f: 4d:36:9d:73:45:a3:9f:b0:9c:a0:39:3b:f3:10:00:00:42:14: df:b1:63:11:b5:30:4b:3c:37:5f:65:cb:e3:cc:1b:ad:44:a4: 7b:d2:b3:06:93:33:d5:53:5c:1d:49:00:a6:4a:34:da:f3:94: 65:da:b3:4a:a5:5c:af:2e:45:43:e4:9e:12:2c:77:b2:ae:af: 74:10:6c:a6:d8:f3:1c:e1:03:55:7d:71:fa:7c:a7:a4:cc:e5: 13:c6:01:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEolg2xALnDtLsIgJ83m0nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMTYzZGQ0NDE0ZWYzZTc5MmUwMDUwMWYzNGVmY2U5NDQw YTljNGUwHhcNMjYwMjA5MjMwMDE1WhcNMjYwMjEwMjMwMDE1WjAzMTEwLwYDVQQD EygxZTZiYmYzZGExNDgwNzg5YmVhNGMyN2FlYmFiZDdiMDc5MDU1ZWE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2N9NpWnecX5n0aOZ2jJKRvXpVp0c Gn1Oqdx7ORvPP7DoDaTZQVC4FJiZ9CEx7p1Bh3QTyMMZcz7igh9NASbGkzCd569W iofKEbgP+Ml8KgfTH2XjPPLkhh1/KJaRsX4swl6A5HbaWq6tPc+OG7vHuHJaqqg6 A9D/ntVguQQHB8R6J1wjD6FrYzz5TavKKuM4KLPMoevuaNoMmNBMMhHljRs9Qe2n dhTqcpJa88FAACECOROifQs6en6Uy/FhD5RYC4uUd750YPHDN7SSEQ8xljmMhBIH L87ioUDRy2W+rvAE+0JY5UosHu9lmh+QM/Dho8kokFZzPvP1HBV9ysxpnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB5rvz2hSAeJvqTCeuur17B5BV6lMB8GA1UdIwQY MBaAFEAWPdRBTvPnkuAFAfNO/OlECpxOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy81MjE0MzgtM2UwNC00ZDcyLTg4ZGUt MzYyMmFjN2Q2NWNjLzEvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy81MjE0MzgtM2UwNC00ZDcyLTg4ZGUtMzYyMmFjN2Q2NWNj LzEvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaSuDFZcb 3QA6jex39CsXAS/VomXlwTx2S0EuXBBzAeafZAqw832k4bH0mQjJJvdvDMoFxRdM lGw71Q57SPaVERAjLkhlTUmH/+Qj3Lgm+cqlVY8B+m305NAEyJCK/rNr1n0BUDmd hAXWI9mIEenjhIXNhWuu7c4X3+lQngS1I7200dsm4uLT3EgvjZVjdsboWSwe/May NpMmSn3ZEsXpxCKfTTadc0Wjn7CcoDk78xAAAEIU37FjEbUwSzw3X2XL48wbrUSk e9KzBpMz1VNcHUkApko02vOUZdqzSqVcry5FQ+SeEix3sq6vdBBsptjzHOEDVX1x +nynpMzlE8YBuQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:46:52 2026 by rpki-client