This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft File: P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft (raw, json) Hash identifier: wGovS2h/pZw2+imEbIqWWdN20AHo09gv8gbN+ElWXDU= Subject key identifier: 99:2C:F9:7E:DB:22:21:08:CA:04:5E:4C:48:75:CB:00:5A:EB:28:9A Authority key identifier: 3F:B7:8C:D1:A3:10:C9:9D:63:77:14:0E:52:8A:A3:E6:E0:DC:AB:9F Certificate issuer: /CN=3fb78cd1a310c99d6377140e528aa3e6e0dcab9f Certificate serial: 019C457EE3FF4B5E2E8BD6B2522B1DFC49F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P7eM0aMQyZ1jdxQOUoqj5uDcq58.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft Manifest number: 0347 Signing time: Tue 10 Feb 2026 03:01:09 +0000 Manifest this update: Tue 10 Feb 2026 03:01:09 +0000 Manifest next update: Wed 11 Feb 2026 03:01:09 +0000 Files and hashes: 1: AjQ9aGrRgiCSMlcEOaQOc1QG7FA.roa (hash: gcQqIdjRrwkMqVcdcn63V2cLzw0R6xsBAxjOG/G39YM=) 2: P7eM0aMQyZ1jdxQOUoqj5uDcq58.crl (hash: 4FpdQROCyAfKYeroBBKSMeXVvfz/mifng30YJbXLP9g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft rsync://rpki.ripe.net/repository/DEFAULT/P7eM0aMQyZ1jdxQOUoqj5uDcq58.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 03:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:7e:e3:ff:4b:5e:2e:8b:d6:b2:52:2b:1d:fc:49:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fb78cd1a310c99d6377140e528aa3e6e0dcab9f Validity Not Before: Feb 10 03:01:09 2026 GMT Not After : Feb 11 03:01:09 2026 GMT Subject: CN=992cf97edb222108ca045e4c4875cb005aeb289a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:3c:0c:d1:56:af:95:06:d0:51:a6:24:25:37: 0d:e6:e4:f4:95:3c:8d:78:54:37:76:08:e2:d2:7b: 53:a6:71:5e:d8:fb:66:eb:82:15:26:34:0f:e9:5e: 95:37:10:d5:6e:b1:b0:6c:af:55:ed:6c:38:42:04: 2b:ed:2a:7c:e6:2a:3f:c0:83:14:a8:bb:69:c4:2d: 7b:96:a6:33:3c:4d:8c:ac:8f:6e:e3:52:7f:e2:61: 34:92:a4:7d:d3:7a:3f:f4:9a:d0:7e:a6:6f:b5:1e: c8:e0:9d:e7:39:13:4d:df:54:eb:e5:16:ce:97:4e: 82:e1:5d:83:97:d0:32:15:f8:e2:55:be:1e:8b:3a: 38:8a:f1:b8:13:f1:00:8f:44:5d:82:90:3e:37:7c: 85:79:d5:bd:01:b5:f9:e8:9e:38:20:71:4b:79:3b: b4:72:20:56:d6:d3:70:f4:3e:7a:a3:c4:60:57:c6: 76:6a:3e:e5:af:82:45:eb:06:a3:83:34:87:a3:d5: bf:5e:6b:a3:ad:66:e6:71:16:fc:8e:93:53:11:99: b9:93:01:3d:6d:74:a4:b7:00:01:6d:4b:27:e6:7f: 7a:7d:4e:60:13:24:d5:5f:95:71:38:64:87:f5:95: e9:1c:62:3c:fc:1f:c2:a8:0f:14:9f:1a:14:a7:c8: d0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:2C:F9:7E:DB:22:21:08:CA:04:5E:4C:48:75:CB:00:5A:EB:28:9A X509v3 Authority Key Identifier: keyid:3F:B7:8C:D1:A3:10:C9:9D:63:77:14:0E:52:8A:A3:E6:E0:DC:AB:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P7eM0aMQyZ1jdxQOUoqj5uDcq58.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:53:29:07:0a:5e:c8:5f:28:a5:08:31:18:0c:c1:1b:50:55: 21:e7:ac:1c:5c:55:54:8e:8a:00:28:70:34:66:34:00:41:27: 56:9d:93:f1:98:78:db:78:74:47:89:79:7b:47:a1:2a:9b:24: 89:a2:b5:4a:2e:55:74:58:ce:3a:a6:49:56:ce:f7:b7:71:65: a2:ec:3f:27:da:54:00:03:c5:80:6e:21:12:8f:0c:83:c8:86: bb:38:b4:a9:31:c4:1a:d6:e7:0b:0b:0f:8e:82:f0:1c:72:52: 6c:d4:8a:c0:e6:be:23:8e:e4:29:64:fa:94:5b:69:63:5c:93: 3d:4d:22:3d:24:b5:d1:b4:0d:0c:c4:d6:7b:8e:e7:ff:50:43: c3:ef:5f:1b:11:be:af:5d:9f:68:e7:7d:79:ae:d7:f2:d9:93: b7:dc:e6:85:89:91:17:ed:85:02:27:28:76:32:9a:02:d6:be: c9:70:86:ba:55:7e:f5:2c:bd:ba:cc:17:c4:10:c4:8a:7e:11: 49:e9:ad:1b:4b:7b:62:64:25:59:3c:c1:53:31:b9:2a:43:44: 87:62:c0:59:80:91:b7:c8:db:53:96:48:ed:be:50:25:ef:a0: 94:e8:55:f8:b5:0c:38:ab:50:c1:ed:da:e9:ec:19:4d:81:0d: 11:a3:dd:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFfuP/S14ui9ayUisd/En2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmYjc4Y2QxYTMxMGM5OWQ2Mzc3MTQwZTUyOGFhM2U2ZTBk Y2FiOWYwHhcNMjYwMjEwMDMwMTA5WhcNMjYwMjExMDMwMTA5WjAzMTEwLwYDVQQD Eyg5OTJjZjk3ZWRiMjIyMTA4Y2EwNDVlNGM0ODc1Y2IwMDVhZWIyODlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjjwM0VavlQbQUaYkJTcN5uT0lTyN eFQ3dgji0ntTpnFe2Ptm64IVJjQP6V6VNxDVbrGwbK9V7Ww4QgQr7Sp85io/wIMU qLtpxC17lqYzPE2MrI9u41J/4mE0kqR903o/9JrQfqZvtR7I4J3nORNN31Tr5RbO l06C4V2Dl9AyFfjiVb4eizo4ivG4E/EAj0RdgpA+N3yFedW9AbX56J44IHFLeTu0 ciBW1tNw9D56o8RgV8Z2aj7lr4JF6wajgzSHo9W/XmujrWbmcRb8jpNTEZm5kwE9 bXSktwABbUsn5n96fU5gEyTVX5VxOGSH9ZXpHGI8/B/CqA8UnxoUp8jQuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJks+X7bIiEIygReTEh1ywBa6yiaMB8GA1UdIwQY MBaAFD+3jNGjEMmdY3cUDlKKo+bg3KufMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDdlTTBhTVF5WjFqZHhRT1VvcWo1dURjcTU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8zMjNjM2YtYWFiMy00Njg0LTgxYzct YzU4MTUxMThlNTJmLzEvUDdlTTBhTVF5WjFqZHhRT1VvcWo1dURjcTU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi8zMjNjM2YtYWFiMy00Njg0LTgxYzctYzU4MTUxMThlNTJm LzEvUDdlTTBhTVF5WjFqZHhRT1VvcWo1dURjcTU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdlMpBwpe yF8opQgxGAzBG1BVIeesHFxVVI6KAChwNGY0AEEnVp2T8Zh423h0R4l5e0ehKpsk iaK1Si5VdFjOOqZJVs73t3Flouw/J9pUAAPFgG4hEo8Mg8iGuzi0qTHEGtbnCwsP joLwHHJSbNSKwOa+I47kKWT6lFtpY1yTPU0iPSS10bQNDMTWe47n/1BDw+9fGxG+ r12faOd9ea7X8tmTt9zmhYmRF+2FAicodjKaAta+yXCGulV+9Sy9uswXxBDEin4R SemtG0t7YmQlWTzBUzG5KkNEh2LAWYCRt8jbU5ZI7b5QJe+glOhV+LUMOKtQwe3a 6ewZTYENEaPdNw== -----END CERTIFICATE-----Generated at Tue Feb 10 11:37:14 2026 by rpki-client