This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/710b27-f68b-436f-bcef-2d65e06687de/1/pffZAsirU0AJh6GIKrJ_fPoBt0A.mft File: pffZAsirU0AJh6GIKrJ_fPoBt0A.mft (raw, json) Hash identifier: sUuSqQqA+K684/9t38pSqUhiCvw8JX1wM+c5BlnTIuI= Subject key identifier: B3:3A:0F:DD:1E:EE:F0:16:68:D3:62:99:0F:A8:76:B6:CC:75:08:4E Authority key identifier: A5:F7:D9:02:C8:AB:53:40:09:87:A1:88:2A:B2:7F:7C:FA:01:B7:40 Certificate issuer: /CN=a5f7d902c8ab53400987a1882ab27f7cfa01b740 Certificate serial: 019C41D86726B92CFF2B310332C6EF3DDF87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pffZAsirU0AJh6GIKrJ_fPoBt0A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/710b27-f68b-436f-bcef-2d65e06687de/1/pffZAsirU0AJh6GIKrJ_fPoBt0A.mft Manifest number: 0468 Signing time: Mon 09 Feb 2026 10:00:26 +0000 Manifest this update: Mon 09 Feb 2026 10:00:26 +0000 Manifest next update: Tue 10 Feb 2026 10:00:26 +0000 Files and hashes: 1: pffZAsirU0AJh6GIKrJ_fPoBt0A.crl (hash: vqf04EPURr2Co6n+HvDgcfPsX7yQUTbOAkr76NH+t+o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/710b27-f68b-436f-bcef-2d65e06687de/1/pffZAsirU0AJh6GIKrJ_fPoBt0A.crl rsync://rpki.ripe.net/repository/DEFAULT/64/710b27-f68b-436f-bcef-2d65e06687de/1/pffZAsirU0AJh6GIKrJ_fPoBt0A.mft rsync://rpki.ripe.net/repository/DEFAULT/pffZAsirU0AJh6GIKrJ_fPoBt0A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:67:26:b9:2c:ff:2b:31:03:32:c6:ef:3d:df:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5f7d902c8ab53400987a1882ab27f7cfa01b740 Validity Not Before: Feb 9 10:00:26 2026 GMT Not After : Feb 10 10:00:26 2026 GMT Subject: CN=b33a0fdd1eeef01668d362990fa876b6cc75084e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:59:2d:b2:d9:c0:28:2d:53:1e:e3:11:d6:27: 83:1d:1e:c4:63:89:61:0d:20:4b:d5:c2:86:82:d5: 60:37:41:52:b8:5f:b9:06:44:b1:c8:57:25:fd:52: da:3c:91:6f:ac:c0:0a:ff:ce:72:a5:9a:63:19:db: a6:14:1c:15:62:0a:22:a1:35:e2:ef:f6:3e:b3:a8: 78:94:19:48:11:86:c2:be:20:28:4a:a1:f7:14:30: 74:4f:e2:7f:44:ed:f6:f6:00:33:57:2b:f0:a6:23: d2:df:2f:a5:d3:d7:81:71:1b:58:95:c0:1d:6c:b5: 4a:6d:33:f5:e7:fd:1b:0d:1f:c3:08:e2:2f:2a:20: 9a:9b:ba:87:73:b1:c1:42:38:49:34:8e:d6:a0:8e: 7e:69:63:ac:a6:15:6d:b8:20:d5:0d:88:98:d7:d8: 41:c3:88:7f:60:48:7e:cb:d4:bf:57:85:89:9d:03: 94:9f:ab:ae:3d:bc:c3:b3:63:f3:c6:3d:e6:a1:c6: c6:92:45:f9:fa:9b:4b:32:59:0d:3d:f2:b5:85:86: 19:26:e2:4c:b7:42:f0:1a:79:83:aa:6d:61:cd:2c: e0:e0:38:55:47:d0:46:27:8e:4c:5c:fb:87:36:22: 59:09:d9:72:b5:db:97:90:ed:aa:2f:ed:2e:20:41: fc:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:3A:0F:DD:1E:EE:F0:16:68:D3:62:99:0F:A8:76:B6:CC:75:08:4E X509v3 Authority Key Identifier: keyid:A5:F7:D9:02:C8:AB:53:40:09:87:A1:88:2A:B2:7F:7C:FA:01:B7:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pffZAsirU0AJh6GIKrJ_fPoBt0A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/710b27-f68b-436f-bcef-2d65e06687de/1/pffZAsirU0AJh6GIKrJ_fPoBt0A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/710b27-f68b-436f-bcef-2d65e06687de/1/pffZAsirU0AJh6GIKrJ_fPoBt0A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:95:61:e2:33:64:65:61:a9:92:30:bf:20:9e:ee:d7:6e:ff: 66:50:9b:ff:ef:44:f4:1f:23:14:50:d3:fd:6f:84:de:b8:20: 5b:23:ab:be:f4:b6:52:93:00:4b:6c:39:02:a7:2b:a8:15:3f: 6f:20:e5:ef:4e:4f:59:74:b6:4e:ce:3c:71:5e:8c:b7:69:58: 6a:2f:64:84:96:19:fd:f0:dd:d2:4f:f3:e5:7b:a3:1c:d0:0c: 93:6b:17:dc:b1:8a:79:6f:3c:3a:62:0a:24:67:dc:b8:0f:95: 06:23:88:f5:9b:88:dc:f1:67:d3:26:5f:0c:9c:f8:66:07:d3: af:81:e4:80:36:b7:51:49:d5:1e:5d:07:7c:5a:f8:0d:37:a3: da:94:33:ec:f9:54:a6:89:d6:51:30:9c:b9:6c:78:39:24:75: 36:07:b8:af:43:a3:42:8c:67:42:d0:51:13:3f:ad:24:fb:67: b7:da:6c:59:3f:d5:1d:03:d9:3b:57:c4:b7:86:d8:0f:4f:f7: b5:ae:1d:ce:d8:49:ee:31:67:57:c4:03:6b:0a:4e:77:41:3e: 8e:c2:17:33:5b:a8:80:bf:cc:c7:27:4b:9e:0c:22:29:ba:59: d0:eb:61:93:d9:2f:55:c7:93:c6:10:5a:77:bb:77:1a:29:b0: 24:cb:ab:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2GcmuSz/KzEDMsbvPd+HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1ZjdkOTAyYzhhYjUzNDAwOTg3YTE4ODJhYjI3ZjdjZmEw MWI3NDAwHhcNMjYwMjA5MTAwMDI2WhcNMjYwMjEwMTAwMDI2WjAzMTEwLwYDVQQD EyhiMzNhMGZkZDFlZWVmMDE2NjhkMzYyOTkwZmE4NzZiNmNjNzUwODRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFktstnAKC1THuMR1ieDHR7EY4lh DSBL1cKGgtVgN0FSuF+5BkSxyFcl/VLaPJFvrMAK/85ypZpjGdumFBwVYgoioTXi 7/Y+s6h4lBlIEYbCviAoSqH3FDB0T+J/RO329gAzVyvwpiPS3y+l09eBcRtYlcAd bLVKbTP15/0bDR/DCOIvKiCam7qHc7HBQjhJNI7WoI5+aWOsphVtuCDVDYiY19hB w4h/YEh+y9S/V4WJnQOUn6uuPbzDs2Pzxj3mocbGkkX5+ptLMlkNPfK1hYYZJuJM t0LwGnmDqm1hzSzg4DhVR9BGJ45MXPuHNiJZCdlytduXkO2qL+0uIEH81wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLM6D90e7vAWaNNimQ+odrbMdQhOMB8GA1UdIwQY MBaAFKX32QLIq1NACYehiCqyf3z6AbdAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGZmWkFzaXJVMEFKaDZHSUtySl9mUG9CdDBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC83MTBiMjctZjY4Yi00MzZmLWJjZWYt MmQ2NWUwNjY4N2RlLzEvcGZmWkFzaXJVMEFKaDZHSUtySl9mUG9CdDBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC83MTBiMjctZjY4Yi00MzZmLWJjZWYtMmQ2NWUwNjY4N2Rl LzEvcGZmWkFzaXJVMEFKaDZHSUtySl9mUG9CdDBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtZVh4jNk ZWGpkjC/IJ7u127/ZlCb/+9E9B8jFFDT/W+E3rggWyOrvvS2UpMAS2w5AqcrqBU/ byDl705PWXS2Ts48cV6Mt2lYai9khJYZ/fDd0k/z5XujHNAMk2sX3LGKeW88OmIK JGfcuA+VBiOI9ZuI3PFn0yZfDJz4ZgfTr4HkgDa3UUnVHl0HfFr4DTej2pQz7PlU ponWUTCcuWx4OSR1Nge4r0OjQoxnQtBREz+tJPtnt9psWT/VHQPZO1fEt4bYD0/3 ta4dzthJ7jFnV8QDawpOd0E+jsIXM1uogL/MxydLngwiKbpZ0Othk9kvVceTxhBa d7t3GimwJMurbg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:01:58 2026 by rpki-client