This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft File: PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft (raw, json) Hash identifier: IDHV5FyNmmaECs7DuHE5We+CPHtI9St+g2Rb9JyKbFs= Subject key identifier: A7:BB:9F:BC:84:A3:05:CC:66:69:E3:93:52:91:B2:43:94:45:EE:92 Authority key identifier: 3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF Certificate issuer: /CN=3eabe028f3be7ee072885d02bbd7b62a652425ef Certificate serial: 019C4390B7124328E86B97EF3F447E5DA74D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft Manifest number: 0E23 Signing time: Mon 09 Feb 2026 18:01:23 +0000 Manifest this update: Mon 09 Feb 2026 18:01:23 +0000 Manifest next update: Tue 10 Feb 2026 18:01:23 +0000 Files and hashes: 1: 66CPSBvOBs6dFqzBnItMz4Q213g.roa (hash: b1rR7/NAs6w4yv3zdYzfmRYRTyFpzzr69EUW9oij5uE=) 2: PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl (hash: S5pOukz/qjffbuejAFnaMB82bG0e/Yl8lLfTZdzHoJk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:b7:12:43:28:e8:6b:97:ef:3f:44:7e:5d:a7:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3eabe028f3be7ee072885d02bbd7b62a652425ef Validity Not Before: Feb 9 18:01:23 2026 GMT Not After : Feb 10 18:01:23 2026 GMT Subject: CN=a7bb9fbc84a305cc6669e3935291b2439445ee92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c1:e9:32:89:e9:ad:92:4a:40:01:c4:71:04: df:19:9b:1c:9d:50:66:1b:c1:af:f5:d6:9d:2c:d3: bd:5f:3f:23:9c:6b:c6:49:7c:e7:f1:68:1f:d1:65: c3:cb:0b:ca:10:c1:c0:7d:06:fd:61:0d:7b:b1:6c: bb:2b:ce:36:8f:fc:19:c6:9d:55:45:ee:29:42:bb: 01:05:39:43:db:76:a8:fc:73:40:12:78:8a:6c:30: bf:10:a6:1a:cc:9e:a1:75:bf:07:96:3a:70:48:7a: 44:fe:80:8c:34:f3:16:34:29:a7:66:e6:3d:af:3f: 08:78:5f:1b:8e:98:2c:23:f3:36:8a:91:de:35:a4: aa:78:17:71:0f:64:5b:5b:53:02:a7:d8:36:48:8b: 46:be:91:8c:9b:df:e2:77:d3:a3:b0:98:2f:af:79: 9c:2e:b0:b8:59:12:67:5c:f9:88:18:2b:92:27:b8: 08:bb:2c:4f:78:30:c8:73:b4:54:2b:a7:02:1a:6e: ed:fa:0a:5c:f7:f5:3a:b6:8c:80:31:e7:cb:6a:5a: 1d:1a:13:51:7c:ef:24:4d:8c:ea:91:5e:6e:45:cb: 63:f7:1d:5b:f1:24:a5:bb:6f:11:19:6c:6a:69:0c: 2d:3b:b5:bc:a5:bc:5b:36:1e:ac:a6:0a:a1:c3:f6: ca:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:BB:9F:BC:84:A3:05:CC:66:69:E3:93:52:91:B2:43:94:45:EE:92 X509v3 Authority Key Identifier: keyid:3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:b1:21:24:64:2f:c8:4a:33:c4:66:ad:9d:fd:e6:f6:1d:33: 4f:c2:a2:7c:03:62:43:4a:ba:d0:39:bd:4b:1c:8b:61:fe:26: 70:d6:bc:74:f5:8e:17:ea:a0:79:5f:e0:90:59:ee:27:c4:d4: 27:bd:fe:1f:f5:13:80:62:eb:ba:bf:c1:47:98:f7:59:0b:70: 22:e7:27:a6:a6:1c:43:9c:b5:97:40:c8:e7:1c:bb:48:96:45: 2e:c5:90:fa:da:07:9a:fb:07:20:cf:a3:25:c5:46:c6:66:99: 0a:b7:58:da:1a:19:55:a5:b5:e8:df:68:87:69:76:68:88:3d: 1c:0e:00:08:48:20:64:1e:9a:6f:0c:10:d3:b4:db:a0:43:bc: 3a:70:3f:c6:9b:bc:fb:2a:d1:58:31:27:95:6b:57:7d:ac:82: 8a:ba:ea:c2:1e:94:c7:3f:72:26:2b:b5:a5:c6:3f:2d:75:e4: a6:67:82:ae:d8:7d:30:dc:50:86:c5:ec:2d:2c:1a:90:c9:59: 82:60:1b:85:b2:34:6c:49:de:69:15:e6:ff:0f:c0:a3:f1:6c: bc:03:8a:85:78:a7:3e:50:e2:0b:c9:1d:dc:cf:bc:a1:1c:62: 64:10:df:6f:37:5e:89:53:1e:f5:d9:4a:91:67:b0:f0:2d:b8: 59:9b:16:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkLcSQyjoa5fvP0R+XadNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlYWJlMDI4ZjNiZTdlZTA3Mjg4NWQwMmJiZDdiNjJhNjUy NDI1ZWYwHhcNMjYwMjA5MTgwMTIzWhcNMjYwMjEwMTgwMTIzWjAzMTEwLwYDVQQD EyhhN2JiOWZiYzg0YTMwNWNjNjY2OWUzOTM1MjkxYjI0Mzk0NDVlZTkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscHpMonprZJKQAHEcQTfGZscnVBm G8Gv9dadLNO9Xz8jnGvGSXzn8Wgf0WXDywvKEMHAfQb9YQ17sWy7K842j/wZxp1V Re4pQrsBBTlD23ao/HNAEniKbDC/EKYazJ6hdb8HljpwSHpE/oCMNPMWNCmnZuY9 rz8IeF8bjpgsI/M2ipHeNaSqeBdxD2RbW1MCp9g2SItGvpGMm9/id9OjsJgvr3mc LrC4WRJnXPmIGCuSJ7gIuyxPeDDIc7RUK6cCGm7t+gpc9/U6toyAMefLalodGhNR fO8kTYzqkV5uRctj9x1b8SSlu28RGWxqaQwtO7W8pbxbNh6spgqhw/bKuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKe7n7yEowXMZmnjk1KRskOURe6SMB8GA1UdIwQY MBaAFD6r4Cjzvn7gcohdArvXtiplJCXvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHF2Z0tQTy1mdUJ5aUYwQ3U5ZTJLbVVrSmU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8yYWQ0ZmEtYmQ3Yi00MDdlLWIyNWEt ZGY3NDEwYjJkMjc1LzEvUHF2Z0tQTy1mdUJ5aUYwQ3U5ZTJLbVVrSmU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8yYWQ0ZmEtYmQ3Yi00MDdlLWIyNWEtZGY3NDEwYjJkMjc1 LzEvUHF2Z0tQTy1mdUJ5aUYwQ3U5ZTJLbVVrSmU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs7EhJGQv yEozxGatnf3m9h0zT8KifANiQ0q60Dm9SxyLYf4mcNa8dPWOF+qgeV/gkFnuJ8TU J73+H/UTgGLrur/BR5j3WQtwIucnpqYcQ5y1l0DI5xy7SJZFLsWQ+toHmvsHIM+j JcVGxmaZCrdY2hoZVaW16N9oh2l2aIg9HA4ACEggZB6abwwQ07TboEO8OnA/xpu8 +yrRWDEnlWtXfayCirrqwh6Uxz9yJiu1pcY/LXXkpmeCrth9MNxQhsXsLSwakMlZ gmAbhbI0bEneaRXm/w/Ao/FsvAOKhXinPlDiC8kd3M+8oRxiZBDfbzdeiVMe9dlK kWew8C24WZsWGg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:45:47 2026 by rpki-client