This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft File: PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft (raw, json) Hash identifier: I/mLlctTCRnZlm2SIL2387+Ne6kCVDZwXSffNvcfeuY= Subject key identifier: 11:35:C5:C0:B2:04:77:7A:AD:AC:CF:60:9B:FA:26:6B:46:10:09:F8 Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48 Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848 Certificate serial: 019C427D8526349D302E5EB58EF4FA78B440 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft Manifest number: 12E3 Signing time: Mon 09 Feb 2026 13:00:48 +0000 Manifest this update: Mon 09 Feb 2026 13:00:48 +0000 Manifest next update: Tue 10 Feb 2026 13:00:48 +0000 Files and hashes: 1: PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl (hash: ICBaIf7089PM5ZZ8ssiHMSun4M178OlhiQOYKiKxW+o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:85:26:34:9d:30:2e:5e:b5:8e:f4:fa:78:b4:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848 Validity Not Before: Feb 9 13:00:48 2026 GMT Not After : Feb 10 13:00:48 2026 GMT Subject: CN=1135c5c0b204777aadaccf609bfa266b461009f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bd:24:a2:9c:d1:d5:80:07:e3:80:7d:11:62: 34:96:0c:1f:ae:57:7b:de:db:b3:64:d4:60:3c:60: 62:db:9e:80:a4:32:15:dd:d3:21:9b:2d:b4:07:f5: 57:c7:7d:4a:d2:86:52:0a:c0:8d:53:b0:5c:e5:55: 49:77:c4:f8:ec:b5:37:26:8f:cd:ff:4b:19:6c:8d: a0:cb:2d:e8:7d:c2:73:f1:20:70:74:05:8c:78:bc: 67:d0:4a:09:88:46:42:03:af:b4:6f:a6:7e:c6:d9: ca:3f:92:3e:bd:b4:8c:32:35:12:b2:bb:d4:6a:cc: 97:9b:ec:ff:79:bc:6c:97:ef:27:85:a1:d9:5b:51: 3e:69:c5:42:bc:6a:06:5a:8d:9a:08:5a:5b:15:c3: 94:f9:af:f8:53:db:0f:c1:c6:39:31:67:6b:a8:86: 4b:03:01:c9:0e:42:65:63:78:d4:fc:44:c3:ad:28: 21:9f:84:cf:75:4a:66:f3:21:c3:36:b1:0c:60:dd: 4d:20:82:f2:10:40:82:81:f5:44:e5:b6:d9:42:e5: c8:46:5b:6a:61:bf:e4:e5:d0:f5:28:69:72:5d:5a: 6d:3d:91:1e:ce:8c:b7:f7:0d:8a:0a:91:13:8d:61: 5d:f3:4e:d0:18:bb:7a:e3:af:5c:0f:ea:c3:a4:0e: 3d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:35:C5:C0:B2:04:77:7A:AD:AC:CF:60:9B:FA:26:6B:46:10:09:F8 X509v3 Authority Key Identifier: keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:bf:d1:31:50:5a:24:02:3b:4e:a0:3e:06:79:74:91:16:f1: 7f:d5:c0:19:9e:54:e6:6e:3b:b5:8e:ee:80:71:ea:d0:9d:b0: d6:cb:9c:6d:1c:57:4d:55:d9:f4:4d:0e:62:e0:fb:62:f8:21: f3:ec:05:71:59:b5:87:b0:4f:bf:c5:09:0a:41:40:cf:5a:28: bf:aa:ef:06:a1:98:4f:18:6c:fc:a3:a8:a5:1f:c7:5c:ea:55: 03:cd:ac:7e:87:9b:82:c8:53:ec:06:bd:be:1f:97:c1:a3:cb: 23:d9:14:63:c4:1f:5d:52:7d:61:ea:35:f9:12:89:00:42:a3: d1:d2:13:9e:12:7c:86:45:12:a1:5f:28:c2:c5:82:9d:33:18: 24:22:e4:15:14:79:31:c7:5a:6a:c6:74:c2:00:01:aa:95:0a: 11:b5:fd:29:53:b8:30:73:65:19:9d:da:35:1d:2f:0d:77:8e: c7:21:58:8a:2c:2c:96:b2:f8:b3:a6:fc:5e:2f:d3:6b:41:22: 3f:ae:16:86:7d:b4:65:0d:74:78:ab:54:94:4b:d1:d6:20:cf: 82:77:4a:4f:b1:2f:ba:12:6f:31:f6:d5:4a:ed:0f:71:37:17: 50:92:ad:dc:0b:0f:bd:ab:83:c9:d5:38:50:10:d3:d7:e5:7f: 47:6a:82:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfYUmNJ0wLl61jvT6eLRAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjNGVkOTQyZTVjNzQyZTc3YmZiOWJlYjk1NGY4NzI1MzRm NTI4NDgwHhcNMjYwMjA5MTMwMDQ4WhcNMjYwMjEwMTMwMDQ4WjAzMTEwLwYDVQQD EygxMTM1YzVjMGIyMDQ3NzdhYWRhY2NmNjA5YmZhMjY2YjQ2MTAwOWY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApL0kopzR1YAH44B9EWI0lgwfrld7 3tuzZNRgPGBi256ApDIV3dMhmy20B/VXx31K0oZSCsCNU7Bc5VVJd8T47LU3Jo/N /0sZbI2gyy3ofcJz8SBwdAWMeLxn0EoJiEZCA6+0b6Z+xtnKP5I+vbSMMjUSsrvU asyXm+z/ebxsl+8nhaHZW1E+acVCvGoGWo2aCFpbFcOU+a/4U9sPwcY5MWdrqIZL AwHJDkJlY3jU/ETDrSghn4TPdUpm8yHDNrEMYN1NIILyEECCgfVE5bbZQuXIRltq Yb/k5dD1KGlyXVptPZEezoy39w2KCpETjWFd807QGLt6469cD+rDpA49dQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBE1xcCyBHd6razPYJv6JmtGEAn4MB8GA1UdIwQY MBaAFDxO2ULlx0Lne/ub65VPhyU09ShIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8xYmI0NWEtNTUxYy00OTY3LTk1Y2Et NzczNDRiY2M5MTkxLzEvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8xYmI0NWEtNTUxYy00OTY3LTk1Y2EtNzczNDRiY2M5MTkx LzEvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoL/RMVBa JAI7TqA+Bnl0kRbxf9XAGZ5U5m47tY7ugHHq0J2w1sucbRxXTVXZ9E0OYuD7Yvgh 8+wFcVm1h7BPv8UJCkFAz1oov6rvBqGYTxhs/KOopR/HXOpVA82sfoebgshT7Aa9 vh+XwaPLI9kUY8QfXVJ9Yeo1+RKJAEKj0dITnhJ8hkUSoV8owsWCnTMYJCLkFRR5 McdaasZ0wgABqpUKEbX9KVO4MHNlGZ3aNR0vDXeOxyFYiiwslrL4s6b8Xi/Ta0Ei P64Whn20ZQ10eKtUlEvR1iDPgndKT7EvuhJvMfbVSu0PcTcXUJKt3AsPvauDydU4 UBDT1+V/R2qCRA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:15 2026 by rpki-client