This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft File: PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft (raw, json) Hash identifier: mDjIFDB9m47bOKj6Y1C1SQpjZ5rGXH4psAXWM0UMppw= Subject key identifier: 7A:DD:7A:3F:F2:64:86:D3:36:8E:50:D3:69:CA:21:47:59:E0:ED:87 Authority key identifier: 3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB Certificate issuer: /CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab Certificate serial: 019C4322261AECE00FE93AD27EB748C4649E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 16:00:37 +0000 Manifest this update: Mon 09 Feb 2026 16:00:37 +0000 Manifest next update: Tue 10 Feb 2026 16:00:37 +0000 Files and hashes: 1: 9_KMCCpdv__dNX3XCcGQGoY_t7E.roa (hash: 4J310WOIoaFhdk7Rws5ylL5JHddp0w2bpHJlXbfEDWM=) 2: PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl (hash: nkJ5f95TVJl5RiwaColiw4YbYPnR1P+9i1cQOF2Q9QM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:26:1a:ec:e0:0f:e9:3a:d2:7e:b7:48:c4:64:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab Validity Not Before: Feb 9 16:00:37 2026 GMT Not After : Feb 10 16:00:37 2026 GMT Subject: CN=7add7a3ff26486d3368e50d369ca214759e0ed87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b4:7c:e2:90:6f:09:66:3b:7b:d6:99:83:90: 84:06:3c:f4:f6:c1:de:de:16:ca:36:70:1c:67:25: a3:b3:d6:d6:33:f0:31:0b:4f:52:13:ea:a4:b8:85: ae:d6:c9:56:3b:1b:8c:be:43:36:0e:b5:70:ae:3d: 17:b1:3c:13:1e:23:44:c0:b4:db:45:c9:ec:1e:3a: e2:57:da:24:ed:e3:98:1e:10:4d:2a:77:d2:67:c8: 97:a6:3d:7c:d4:39:06:49:9d:bd:f0:48:aa:46:0b: fd:09:4b:87:55:ef:b3:5d:95:81:9c:ef:19:49:10: 9e:ba:7d:6e:78:4e:5e:27:24:5d:08:f3:ec:08:9d: 1d:eb:8b:78:f7:81:9c:f9:a2:5f:1e:ee:90:98:01: c4:5a:2d:7c:2c:20:08:d7:49:ee:14:52:7c:2e:b5: 93:38:e1:c0:52:c7:28:33:6c:ea:5f:e2:f9:4a:69: 17:06:7d:98:41:2f:21:d7:4f:e1:f1:81:a9:f9:bd: 79:65:38:78:82:0b:77:fa:28:81:76:7d:b3:b0:13: 61:06:c8:50:08:a2:75:3a:b7:5e:85:44:dc:5f:81: 36:fd:6e:7d:b1:37:f5:22:52:e6:7a:18:58:a9:5c: b6:39:c8:64:f7:6b:06:14:b1:f8:90:2c:1d:74:db: aa:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:DD:7A:3F:F2:64:86:D3:36:8E:50:D3:69:CA:21:47:59:E0:ED:87 X509v3 Authority Key Identifier: keyid:3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:b3:23:76:4c:9b:14:a6:7b:e0:47:e4:c9:6a:31:61:57:2b: f8:38:c7:22:a4:31:33:30:67:be:3b:91:1d:fc:96:7d:fe:05: 2f:29:68:c6:e0:5a:c7:6f:36:fb:2d:2e:c1:fa:31:59:fc:f5: 2c:1b:90:ee:f0:9c:c4:e4:a7:6f:86:be:01:5f:eb:98:e6:4b: 62:b1:d2:5a:c1:58:ee:cb:12:d8:93:5e:12:37:e9:14:1c:58: a1:ed:2c:bd:ea:46:c1:4a:82:b8:c0:5b:e2:7b:5f:68:4f:cf: 60:84:32:4f:f1:0e:a7:40:74:ad:3d:bb:3c:60:79:bc:31:57: 84:93:2f:be:b9:03:10:e1:45:b1:fd:c8:61:d0:a9:c3:36:00: 0b:24:2a:ab:0c:61:7b:c9:90:ef:14:97:b6:d6:36:45:45:31: b7:eb:9f:49:02:9f:55:1e:12:4f:f4:81:2f:c3:65:a1:82:55: a7:8a:6c:1b:f1:be:77:a6:8c:95:ea:20:9b:c5:bc:a9:0c:cd: b8:07:fe:20:95:b6:93:70:b6:53:a7:0c:06:6d:71:22:e3:35: 16:9f:36:d6:f8:64:d7:6a:af:54:89:40:c0:ed:90:5d:5e:25: b8:5f:c5:0b:7e:1d:17:74:39:c7:48:db:24:16:87:a0:e3:e7: 53:87:54:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIiYa7OAP6TrSfrdIxGSeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkMGVmNDM1OGFkYjA0MGYzMzNkOTM2MWE0MjYxZWEwZTUw ZDM4YWIwHhcNMjYwMjA5MTYwMDM3WhcNMjYwMjEwMTYwMDM3WjAzMTEwLwYDVQQD Eyg3YWRkN2EzZmYyNjQ4NmQzMzY4ZTUwZDM2OWNhMjE0NzU5ZTBlZDg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzbR84pBvCWY7e9aZg5CEBjz09sHe 3hbKNnAcZyWjs9bWM/AxC09SE+qkuIWu1slWOxuMvkM2DrVwrj0XsTwTHiNEwLTb RcnsHjriV9ok7eOYHhBNKnfSZ8iXpj181DkGSZ298EiqRgv9CUuHVe+zXZWBnO8Z SRCeun1ueE5eJyRdCPPsCJ0d64t494Gc+aJfHu6QmAHEWi18LCAI10nuFFJ8LrWT OOHAUscoM2zqX+L5SmkXBn2YQS8h10/h8YGp+b15ZTh4ggt3+iiBdn2zsBNhBshQ CKJ1OrdehUTcX4E2/W59sTf1IlLmehhYqVy2Ochk92sGFLH4kCwddNuqkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHrdej/yZIbTNo5Q02nKIUdZ4O2HMB8GA1UdIwQY MBaAFD0O9DWK2wQPMz2TYaQmHqDlDTirMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFE3ME5ZcmJCQTh6UFpOaHBDWWVvT1VOT0tzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9mOTQ2ZWYtOTYxOS00YmRkLTlmNDct ZDJiYzk2YTk4YTE4LzEvUFE3ME5ZcmJCQTh6UFpOaHBDWWVvT1VOT0tzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy9mOTQ2ZWYtOTYxOS00YmRkLTlmNDctZDJiYzk2YTk4YTE4 LzEvUFE3ME5ZcmJCQTh6UFpOaHBDWWVvT1VOT0tzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlbMjdkyb FKZ74EfkyWoxYVcr+DjHIqQxMzBnvjuRHfyWff4FLyloxuBax282+y0uwfoxWfz1 LBuQ7vCcxOSnb4a+AV/rmOZLYrHSWsFY7ssS2JNeEjfpFBxYoe0svepGwUqCuMBb 4ntfaE/PYIQyT/EOp0B0rT27PGB5vDFXhJMvvrkDEOFFsf3IYdCpwzYACyQqqwxh e8mQ7xSXttY2RUUxt+ufSQKfVR4ST/SBL8NloYJVp4psG/G+d6aMleogm8W8qQzN uAf+IJW2k3C2U6cMBm1xIuM1Fp821vhk12qvVIlAwO2QXV4luF/FC34dF3Q5x0jb JBaHoOPnU4dUDQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:51 2026 by rpki-client