This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft File: pqBZBOyBdGoKZtIH9dNvjZeIig0.mft (raw, json) Hash identifier: h9+M67xGvryZcXlBJy41X+T8x734sReWGQr2OWcspo4= Subject key identifier: 4C:7D:C9:2C:E8:7A:37:16:39:8C:91:8E:1A:B1:51:4E:0C:98:5A:61 Authority key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D Certificate issuer: /CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d Certificate serial: 019C41D8537DE5B8A9AC344673121A0351AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft Manifest number: 0973 Signing time: Mon 09 Feb 2026 10:00:22 +0000 Manifest this update: Mon 09 Feb 2026 10:00:22 +0000 Manifest next update: Tue 10 Feb 2026 10:00:22 +0000 Files and hashes: 1: 5sg8jhdzeaiLeEp6wxZ_2JeXdD4.roa (hash: liGuxIjPN3BQno0UGJZyTCNg4Fr30OK1nNLU8WxYRpQ=) 2: pqBZBOyBdGoKZtIH9dNvjZeIig0.crl (hash: AauVr/2qS4ciuTUbFHdDi+2wbM7S4uZpLEe6eNBK2Ls=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:53:7d:e5:b8:a9:ac:34:46:73:12:1a:03:51:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d Validity Not Before: Feb 9 10:00:22 2026 GMT Not After : Feb 10 10:00:22 2026 GMT Subject: CN=4c7dc92ce87a3716398c918e1ab1514e0c985a61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:49:47:28:75:c5:3b:b4:48:2a:01:79:7d:cd: e6:5d:c2:8c:d6:4c:e6:1a:38:f8:33:1e:2b:22:07: 01:7c:b1:e7:de:d8:8e:79:18:4f:9f:52:ca:e7:13: 1a:db:11:64:2f:c3:b1:2d:52:fa:0f:06:1d:78:5f: 65:17:de:92:53:d0:54:3d:53:31:9f:f3:de:0e:a3: 26:35:74:90:08:77:14:cc:78:19:45:24:ba:c5:23: 1f:0d:99:7d:fb:25:00:15:7c:b8:7e:d8:26:1a:9a: 9c:8d:13:6d:62:fb:0b:2f:fb:40:85:d5:c8:bc:e9: 1d:60:a2:6a:d0:0f:f9:9c:63:ec:15:8e:95:4d:8a: 62:d4:81:1c:dd:7e:9e:62:45:f8:27:c9:b4:5b:32: a4:73:1e:3c:8b:cb:0c:5d:ea:92:a8:1d:b3:f9:4a: 64:b3:e9:37:f7:9a:82:fd:51:73:be:03:c8:ad:5c: 6a:3a:12:0c:9f:08:6e:cf:3e:ed:af:b3:1d:34:4c: 08:c8:15:11:9b:b0:91:5c:b2:94:22:13:f6:c4:39: 1e:f3:84:3d:ef:5e:24:6c:a3:6e:05:e5:78:ac:22: 6f:ac:a9:13:a3:95:6c:1d:2a:4a:33:2d:a5:71:c1: b2:cc:50:ec:8d:12:5c:d7:cb:4d:3b:93:6f:24:2b: 9e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:7D:C9:2C:E8:7A:37:16:39:8C:91:8E:1A:B1:51:4E:0C:98:5A:61 X509v3 Authority Key Identifier: keyid:A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:e0:e5:be:fc:ca:2c:e2:ca:01:52:aa:cb:e2:51:a4:98:ee: bd:f8:82:ab:b7:89:2c:5f:a6:97:8c:d8:75:81:14:1f:c2:26: 3d:4e:80:6f:81:ab:dc:96:2d:32:16:55:52:79:27:fd:6d:2f: 5a:b8:8a:7b:3b:42:49:c8:74:39:c2:fb:54:5b:2e:42:78:3b: f1:93:72:d9:3b:d6:a5:11:b2:82:58:0f:9e:77:17:ef:98:cc: 64:99:dc:2a:00:1f:61:48:5a:55:f9:2c:0b:69:87:b9:85:2c: 85:5d:2a:64:26:3e:27:d5:9e:81:84:d1:09:c1:33:b6:19:7d: 91:eb:cd:09:60:af:54:fd:fd:fb:2e:15:aa:bd:65:f9:9c:33: 74:54:cb:04:e8:53:2e:48:73:49:2b:48:29:d1:0d:11:3b:95: bd:0d:a1:8f:14:1a:ee:1c:04:e9:e4:cb:d8:5a:76:e7:f6:65: 9b:11:bd:c1:27:cc:ff:29:4e:49:c6:24:c9:8e:07:a4:4e:e3: f3:9c:5a:d7:a7:a8:ef:ad:0c:36:39:d0:a8:c1:fa:82:d4:8f: 9c:15:39:07:60:44:71:5f:70:24:3c:8f:2e:3d:3b:6a:28:87: f1:15:c7:47:6b:4a:13:99:70:c2:f3:39:d9:d1:21:f2:bb:05: 3f:4b:be:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2FN95biprDRGcxIaA1GrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2YTA1OTA0ZWM4MTc0NmEwYTY2ZDIwN2Y1ZDM2ZjhkOTc4 ODhhMGQwHhcNMjYwMjA5MTAwMDIyWhcNMjYwMjEwMTAwMDIyWjAzMTEwLwYDVQQD Eyg0YzdkYzkyY2U4N2EzNzE2Mzk4YzkxOGUxYWIxNTE0ZTBjOTg1YTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7klHKHXFO7RIKgF5fc3mXcKM1kzm Gjj4Mx4rIgcBfLHn3tiOeRhPn1LK5xMa2xFkL8OxLVL6DwYdeF9lF96SU9BUPVMx n/PeDqMmNXSQCHcUzHgZRSS6xSMfDZl9+yUAFXy4ftgmGpqcjRNtYvsLL/tAhdXI vOkdYKJq0A/5nGPsFY6VTYpi1IEc3X6eYkX4J8m0WzKkcx48i8sMXeqSqB2z+Upk s+k395qC/VFzvgPIrVxqOhIMnwhuzz7tr7MdNEwIyBURm7CRXLKUIhP2xDke84Q9 714kbKNuBeV4rCJvrKkTo5VsHSpKMy2lccGyzFDsjRJc18tNO5NvJCuewQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEx9ySzoejcWOYyRjhqxUU4MmFphMB8GA1UdIwQY MBaAFKagWQTsgXRqCmbSB/XTb42XiIoNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHFCWkJPeUJkR29LWnRJSDlkTnZqWmVJaWcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8zYjUxYzktYjM3Yi00NzY3LTg4ZDkt NWRmNmE0NjMwMzViLzEvcHFCWkJPeUJkR29LWnRJSDlkTnZqWmVJaWcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi8zYjUxYzktYjM3Yi00NzY3LTg4ZDktNWRmNmE0NjMwMzVi LzEvcHFCWkJPeUJkR29LWnRJSDlkTnZqWmVJaWcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXODlvvzK LOLKAVKqy+JRpJjuvfiCq7eJLF+ml4zYdYEUH8ImPU6Ab4Gr3JYtMhZVUnkn/W0v WriKeztCSch0OcL7VFsuQng78ZNy2TvWpRGyglgPnncX75jMZJncKgAfYUhaVfks C2mHuYUshV0qZCY+J9WegYTRCcEzthl9kevNCWCvVP39+y4Vqr1l+ZwzdFTLBOhT LkhzSStIKdENETuVvQ2hjxQa7hwE6eTL2Fp25/ZlmxG9wSfM/ylOScYkyY4HpE7j 85xa16eo760MNjnQqMH6gtSPnBU5B2BEcV9wJDyPLj07aiiH8RXHR2tKE5lwwvM5 2dEh8rsFP0u+Ow== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:29 2026 by rpki-client