This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft File: QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft (raw, json) Hash identifier: brVKHDD6I0PqgWQiBOXGKFas7qq2oH5qhk5SF6YyzrA= Subject key identifier: 2B:B7:DD:CA:66:1A:52:D5:34:85:9B:71:7E:E2:4E:33:FB:70:A5:13 Authority key identifier: 41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C Certificate issuer: /CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c Certificate serial: 019C4322E843B1A60BF87513A5C63EC79477 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft Manifest number: 17A0 Signing time: Mon 09 Feb 2026 16:01:26 +0000 Manifest this update: Mon 09 Feb 2026 16:01:26 +0000 Manifest next update: Tue 10 Feb 2026 16:01:26 +0000 Files and hashes: 1: QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl (hash: O82L7+Er0kQzbAmDdFkm8wbpjgS9yGScx9f6bw5qlJM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:e8:43:b1:a6:0b:f8:75:13:a5:c6:3e:c7:94:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c Validity Not Before: Feb 9 16:01:26 2026 GMT Not After : Feb 10 16:01:26 2026 GMT Subject: CN=2bb7ddca661a52d534859b717ee24e33fb70a513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4a:ad:a0:e7:fd:41:7c:44:88:3b:31:20:62: b7:a0:a8:47:df:89:e7:50:86:e8:1e:7a:b9:82:20: 1f:85:2c:13:a8:e8:a0:f6:8b:dc:bd:47:34:b0:04: 9a:e6:f1:72:c8:0b:96:64:15:f8:74:86:95:bd:02: ba:1e:e7:dc:ba:80:a4:67:b9:d4:ed:1f:bd:c2:6f: 31:03:13:0d:9e:3f:b9:e7:ba:71:fb:96:e7:d5:2d: ff:34:fe:4a:c4:c2:f5:00:35:2e:52:27:e8:f4:34: c4:e0:1d:23:b2:ec:d7:a3:96:9e:50:29:12:80:1e: 8c:6a:8a:f8:96:e8:a1:41:a0:aa:cf:33:9e:7a:f8: 8a:ed:2a:33:c0:32:a5:6c:69:7c:e4:42:a9:f5:a6: ab:75:25:ea:e0:1f:8c:7b:a2:b3:6d:f9:b3:f5:83: 44:74:a1:92:ce:c7:25:66:66:aa:b3:f8:a7:47:53: 94:63:4c:f9:75:f0:a3:ec:53:77:df:8a:da:18:8b: 79:f5:11:38:42:0f:bb:71:ff:04:2a:f6:84:f6:b9: 14:b0:c5:db:d5:74:f5:cb:f7:d8:d0:0a:13:72:a0: 06:80:54:ce:b2:2e:c3:ff:1f:65:94:4a:a7:1c:03: d9:da:d9:a8:39:4d:b5:74:c5:6f:20:ed:39:e3:3e: 43:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:B7:DD:CA:66:1A:52:D5:34:85:9B:71:7E:E2:4E:33:FB:70:A5:13 X509v3 Authority Key Identifier: keyid:41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:e3:15:a2:ce:4f:bc:dd:1b:67:68:72:75:37:a3:72:f3:0e: 4c:b0:53:c9:12:14:c8:e3:ff:af:1c:bf:ba:d0:d4:93:d9:64: f8:2d:a4:aa:2d:2a:81:96:d6:5a:f7:ab:08:06:82:26:18:47: b2:86:3e:4b:a7:d8:f0:a9:dc:10:3e:ec:a0:06:45:d9:b2:92: a0:2d:a2:49:02:29:56:7f:19:51:ae:6e:0a:3f:73:7b:b7:33: 89:6d:7c:26:f0:43:62:f9:12:5c:17:f2:6f:5c:5e:4f:b8:cb: 27:e6:46:50:e7:80:04:b8:8b:34:0a:c8:36:20:26:43:d7:03: 2c:2f:9f:d9:cf:02:f8:a0:58:03:9a:85:06:e6:6e:fa:06:29: f4:fd:42:2d:c7:32:73:4b:44:2e:df:70:55:4f:fa:42:ab:9a: a3:79:e7:a4:63:1b:e1:6f:60:6b:4a:d2:3c:60:82:53:bf:59: 8e:3e:7b:70:fd:46:03:5f:0b:53:6c:ce:12:8d:d5:19:a5:d4: ae:3d:d2:ff:d4:fc:14:c9:5b:21:b8:4a:5d:3f:83:e6:ca:1f: ea:90:1a:15:cc:db:89:9e:68:d0:f1:9c:13:fa:c1:ef:ac:8b: e9:c4:17:83:59:d6:d6:a5:e3:2c:d8:72:da:f6:80:c1:77:da: ce:b4:4f:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIuhDsaYL+HUTpcY+x5R3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxNzg1Y2I1ZmM2YjQwZmRmMTRmNzJhNmQyNWY0MTQzYzE3 YzMxN2MwHhcNMjYwMjA5MTYwMTI2WhcNMjYwMjEwMTYwMTI2WjAzMTEwLwYDVQQD EygyYmI3ZGRjYTY2MWE1MmQ1MzQ4NTliNzE3ZWUyNGUzM2ZiNzBhNTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00qtoOf9QXxEiDsxIGK3oKhH34nn UIboHnq5giAfhSwTqOig9ovcvUc0sASa5vFyyAuWZBX4dIaVvQK6HufcuoCkZ7nU 7R+9wm8xAxMNnj+557px+5bn1S3/NP5KxML1ADUuUifo9DTE4B0jsuzXo5aeUCkS gB6Maor4luihQaCqzzOeeviK7SozwDKlbGl85EKp9aardSXq4B+Me6Kzbfmz9YNE dKGSzsclZmaqs/inR1OUY0z5dfCj7FN334raGIt59RE4Qg+7cf8EKvaE9rkUsMXb 1XT1y/fY0AoTcqAGgFTOsi7D/x9llEqnHAPZ2tmoOU21dMVvIO054z5DOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCu33cpmGlLVNIWbcX7iTjP7cKUTMB8GA1UdIwQY MBaAFEF4XLX8a0D98U9yptJfQUPBfDF8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVhoY3RmeHJRUDN4VDNLbTBsOUJROEY4TVh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9hZTM4NDAtN2RkYS00ODJlLWEyNGUt ZTQ2ZWM1YjliMDZjLzEvUVhoY3RmeHJRUDN4VDNLbTBsOUJROEY4TVh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9hZTM4NDAtN2RkYS00ODJlLWEyNGUtZTQ2ZWM1YjliMDZj LzEvUVhoY3RmeHJRUDN4VDNLbTBsOUJROEY4TVh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHeMVos5P vN0bZ2hydTejcvMOTLBTyRIUyOP/rxy/utDUk9lk+C2kqi0qgZbWWverCAaCJhhH soY+S6fY8KncED7soAZF2bKSoC2iSQIpVn8ZUa5uCj9ze7cziW18JvBDYvkSXBfy b1xeT7jLJ+ZGUOeABLiLNArINiAmQ9cDLC+f2c8C+KBYA5qFBuZu+gYp9P1CLccy c0tELt9wVU/6Qquao3nnpGMb4W9ga0rSPGCCU79Zjj57cP1GA18LU2zOEo3VGaXU rj3S/9T8FMlbIbhKXT+D5sof6pAaFczbiZ5o0PGcE/rB76yL6cQXg1nW1qXjLNhy 2vaAwXfazrRP+Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:25 2026 by rpki-client