This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft File: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json) Hash identifier: FZyy4omOp+q3WP1WIoAD5WJj5P+rq6Q761UMsW+Zc0k= Subject key identifier: EC:41:9A:CE:8D:71:7D:4D:FC:2D:D4:2B:46:3E:17:8A:27:2E:0B:1A Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5 Certificate issuer: /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5 Certificate serial: 019C43221DA3227199F44D1F3EB59B1046E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft Manifest number: 0DFC Signing time: Mon 09 Feb 2026 16:00:35 +0000 Manifest this update: Mon 09 Feb 2026 16:00:35 +0000 Manifest next update: Tue 10 Feb 2026 16:00:35 +0000 Files and hashes: 1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: F7YCCcviekEXa2kR4mTInHXd/9wHcZA/Ze0zs/rIth4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:1d:a3:22:71:99:f4:4d:1f:3e:b5:9b:10:46:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5 Validity Not Before: Feb 9 16:00:35 2026 GMT Not After : Feb 10 16:00:35 2026 GMT Subject: CN=ec419ace8d717d4dfc2dd42b463e178a272e0b1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:64:ea:39:54:84:27:d9:32:e7:77:88:3f:b0: 12:24:23:a9:39:97:01:40:19:35:51:9b:18:77:f7: 98:c7:81:1a:0a:5a:76:cd:ee:be:f5:5d:7a:73:7e: 74:db:a2:cb:90:15:5b:2a:71:f8:00:3d:7e:db:63: 1c:f6:fa:bc:1f:72:33:61:6e:89:9e:ee:04:71:18: 32:4e:bb:21:06:b1:bd:9f:c7:80:cf:17:7f:fa:81: d3:34:6c:0e:70:38:9f:70:0d:8e:52:be:91:7c:2d: 72:b3:75:2f:92:7c:e2:aa:e6:68:51:c3:2c:d9:8b: 20:33:f3:38:15:4c:78:ac:0a:6f:8a:a4:27:ad:11: bd:0b:95:83:90:4f:96:f0:34:54:24:d9:60:65:de: 8c:a1:30:b5:12:97:07:09:5e:55:47:4a:e0:22:1b: bf:20:70:5d:76:75:b0:4f:f8:c4:01:b2:cd:43:96: d7:ee:36:13:65:72:f1:81:d5:fe:86:3c:6c:4b:95: 20:de:0e:98:a1:cf:f5:6a:5b:2c:3b:57:3c:c0:15: 08:4a:3e:f1:a3:5c:9b:38:a1:a7:67:56:8b:08:cd: 97:21:a4:55:ed:e3:1e:2c:49:e9:36:f4:5b:90:1c: 66:0d:cc:37:a9:73:f4:04:1d:76:4d:bf:55:b2:08: 56:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:41:9A:CE:8D:71:7D:4D:FC:2D:D4:2B:46:3E:17:8A:27:2E:0B:1A X509v3 Authority Key Identifier: keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:66:f1:8d:ce:7f:e6:7d:79:6b:d2:ff:12:7f:fe:df:d1:ca: 2f:e1:c3:f4:d7:4e:c9:f5:13:e2:77:2d:57:55:bd:a7:da:c8: a0:91:71:98:c5:67:d7:13:d8:70:18:91:89:87:0e:a1:42:71: 53:26:d6:7f:4e:c4:d8:98:8b:f9:71:f1:29:08:bb:11:db:94: c0:33:fe:e7:82:9a:23:7b:72:9f:65:6d:1e:ea:39:2d:ec:64: fa:6f:07:5f:0a:d6:c6:f6:70:99:15:63:cf:37:fc:b5:a8:4b: ec:20:ce:6c:c5:38:aa:b3:98:3b:f0:98:91:d1:4e:e7:e1:9b: 0c:06:57:e7:1c:4e:da:48:37:47:c8:94:fc:4f:a6:43:26:ef: fc:95:e0:7d:6d:ca:3f:0f:34:e9:53:0f:45:34:c6:33:76:35: 9c:b2:dd:a4:63:44:03:78:61:99:82:c2:72:92:03:82:4e:77: fa:ee:68:a2:7e:0c:44:e1:2d:f7:e7:29:fb:88:87:0a:8b:3c: 8f:ae:1a:5e:be:8d:82:e5:65:70:52:97:95:a5:79:7b:d4:6d: 22:f1:de:bd:9a:9b:48:04:d0:e4:70:b4:c7:a1:d8:32:7a:ed: 40:02:69:03:7a:f3:56:18:b1:75:d3:39:95:d1:7d:b6:3f:bd: 6c:d3:d6:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIh2jInGZ9E0fPrWbEEbgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxMmRhZDgyMDY5OWYxNTNhMzFhNjZlZDY3ODNhMWRlNGUw ZjhjZjUwHhcNMjYwMjA5MTYwMDM1WhcNMjYwMjEwMTYwMDM1WjAzMTEwLwYDVQQD EyhlYzQxOWFjZThkNzE3ZDRkZmMyZGQ0MmI0NjNlMTc4YTI3MmUwYjFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGTqOVSEJ9ky53eIP7ASJCOpOZcB QBk1UZsYd/eYx4EaClp2ze6+9V16c35026LLkBVbKnH4AD1+22Mc9vq8H3IzYW6J nu4EcRgyTrshBrG9n8eAzxd/+oHTNGwOcDifcA2OUr6RfC1ys3UvknziquZoUcMs 2YsgM/M4FUx4rApviqQnrRG9C5WDkE+W8DRUJNlgZd6MoTC1EpcHCV5VR0rgIhu/ IHBddnWwT/jEAbLNQ5bX7jYTZXLxgdX+hjxsS5Ug3g6Yoc/1alssO1c8wBUISj7x o1ybOKGnZ1aLCM2XIaRV7eMeLEnpNvRbkBxmDcw3qXP0BB12Tb9VsghWhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOxBms6NcX1N/C3UK0Y+F4onLgsaMB8GA1UdIwQY MBaAFEEtrYIGmfFToxpm7WeDod5OD4z1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9iYTk0ZjQtOGEyMC00ZDEwLTkyN2Yt YTg4MmRhNmMwY2ZjLzEvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9iYTk0ZjQtOGEyMC00ZDEwLTkyN2YtYTg4MmRhNmMwY2Zj LzEvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANWbxjc5/ 5n15a9L/En/+39HKL+HD9NdOyfUT4nctV1W9p9rIoJFxmMVn1xPYcBiRiYcOoUJx UybWf07E2JiL+XHxKQi7EduUwDP+54KaI3tyn2VtHuo5Lexk+m8HXwrWxvZwmRVj zzf8tahL7CDObMU4qrOYO/CYkdFO5+GbDAZX5xxO2kg3R8iU/E+mQybv/JXgfW3K Pw806VMPRTTGM3Y1nLLdpGNEA3hhmYLCcpIDgk53+u5oon4MROEt9+cp+4iHCos8 j64aXr6NguVlcFKXlaV5e9RtIvHevZqbSATQ5HC0x6HYMnrtQAJpA3rzVhixddM5 ldF9tj+9bNPWNQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:49 2026 by rpki-client