This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft File: PflufaVJi3Djuxe24YoxE3EtMrY.mft (raw, json) Hash identifier: emgGyRXXW2pDQm3DlykE6R8usWsh6IGPrewByIdT/ZI= Subject key identifier: FE:BC:C4:5B:39:1F:57:28:5C:DF:04:97:D1:DE:1A:24:BC:42:88:D5 Authority key identifier: 3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6 Certificate issuer: /CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6 Certificate serial: 019C420FE4AE62A679383134F43BCFD9E895 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft Manifest number: 11F8 Signing time: Mon 09 Feb 2026 11:01:03 +0000 Manifest this update: Mon 09 Feb 2026 11:01:03 +0000 Manifest next update: Tue 10 Feb 2026 11:01:03 +0000 Files and hashes: 1: FU4n6XNa33EeNcK1pVjnryUAJ6g.roa (hash: vAyZ21gv2CupNTDwhYo/hiCxZiQKD0Xxe9J+fN5P0S8=) 2: PflufaVJi3Djuxe24YoxE3EtMrY.crl (hash: TXKpmX7CNwEcVKj9wuNQDqsoihs2YGLXepa4geY4ewM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:e4:ae:62:a6:79:38:31:34:f4:3b:cf:d9:e8:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6 Validity Not Before: Feb 9 11:01:03 2026 GMT Not After : Feb 10 11:01:03 2026 GMT Subject: CN=febcc45b391f57285cdf0497d1de1a24bc4288d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3b:74:40:25:d7:7a:23:33:e1:f0:37:5e:bf: 05:b7:f0:5b:da:f6:08:85:d1:c4:d2:d4:27:5e:bf: 7a:2a:df:3e:6b:12:6c:ea:fe:43:ad:7e:99:5a:df: 1a:b1:1e:b9:9c:30:80:94:29:e9:c4:f7:d9:5a:cb: 0f:fe:d5:44:8d:f6:8c:45:3e:3f:0c:9e:65:a1:23: a0:04:e9:33:6e:c7:bd:29:e8:d7:85:7b:eb:26:03: 80:e1:b4:35:93:f4:d5:cb:f2:f6:eb:b5:97:7f:fc: 76:96:09:70:1c:81:97:a4:67:41:43:7a:41:db:d8: cd:06:e8:8d:ee:1e:97:4a:93:10:54:45:75:18:6b: 40:e2:17:78:00:96:c3:14:14:7e:d3:9f:0b:15:ed: 45:51:31:18:0d:93:a9:ab:2e:16:c5:8a:ef:3a:8d: aa:f7:18:ab:5f:24:f2:01:6b:2a:c8:a0:96:b5:ec: 2e:14:25:e6:1b:c0:7c:05:0d:9e:63:ca:2a:49:8d: ee:84:dd:d1:c3:86:c7:93:6e:a5:85:02:67:19:00: 47:37:4e:2e:2a:09:7a:12:54:11:8b:61:56:ae:5f: 4f:2d:f4:fc:c2:99:01:e7:4a:91:6f:5d:76:54:c5: c5:eb:39:8a:90:24:5c:f5:f6:0c:91:f7:38:a9:d4: d2:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BC:C4:5B:39:1F:57:28:5C:DF:04:97:D1:DE:1A:24:BC:42:88:D5 X509v3 Authority Key Identifier: keyid:3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:9c:8b:b3:76:b8:a0:f3:a0:16:a6:98:d5:46:91:e1:a2:81: 94:b2:ce:3c:0b:95:37:fc:de:66:37:37:0a:ee:20:62:62:56: 94:53:8b:7f:c9:26:92:8d:83:97:bd:7b:d4:e1:04:28:71:d3: 53:07:ad:26:6d:18:df:58:d3:40:4e:26:7b:94:e4:8d:ee:3a: 66:7a:82:8f:1c:11:61:01:66:3f:7c:ca:29:2c:47:1e:a8:b4: da:cf:73:ef:34:4b:17:5a:a0:1e:bb:fa:cb:27:03:31:c9:78: 02:5e:35:57:00:df:ac:39:25:df:c0:11:10:89:96:06:e2:33: f4:49:7a:b3:ee:cc:e7:ea:6d:c3:28:23:a5:56:b3:03:d9:3a: 91:62:34:ee:1d:fa:2b:03:f7:f7:41:5e:11:ba:55:a7:c8:16: a4:7f:cb:ab:38:12:cd:32:68:79:97:d4:19:27:67:b3:07:39: ee:9a:b0:f7:72:6d:06:fb:9e:84:5d:71:f6:7b:f4:32:ca:77: 59:58:74:02:14:40:48:02:a0:98:81:53:35:f8:a7:b8:ba:ee: 9c:6d:b0:0d:e9:4e:5b:f6:fa:a3:87:50:25:60:ec:a7:89:7c: d2:7f:63:89:f4:ca:7a:13:58:0d:b8:79:7e:e9:f8:21:05:2b: e2:06:ff:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD+SuYqZ5ODE09DvP2eiVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkZjk2ZTdkYTU0OThiNzBlM2JiMTdiNmUxOGEzMTEzNzEy ZDMyYjYwHhcNMjYwMjA5MTEwMTAzWhcNMjYwMjEwMTEwMTAzWjAzMTEwLwYDVQQD EyhmZWJjYzQ1YjM5MWY1NzI4NWNkZjA0OTdkMWRlMWEyNGJjNDI4OGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6jt0QCXXeiMz4fA3Xr8Ft/Bb2vYI hdHE0tQnXr96Kt8+axJs6v5DrX6ZWt8asR65nDCAlCnpxPfZWssP/tVEjfaMRT4/ DJ5loSOgBOkzbse9KejXhXvrJgOA4bQ1k/TVy/L267WXf/x2lglwHIGXpGdBQ3pB 29jNBuiN7h6XSpMQVEV1GGtA4hd4AJbDFBR+058LFe1FUTEYDZOpqy4WxYrvOo2q 9xirXyTyAWsqyKCWtewuFCXmG8B8BQ2eY8oqSY3uhN3Rw4bHk26lhQJnGQBHN04u Kgl6ElQRi2FWrl9PLfT8wpkB50qRb112VMXF6zmKkCRc9fYMkfc4qdTS8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP68xFs5H1coXN8El9HeGiS8QojVMB8GA1UdIwQY MBaAFD35bn2lSYtw47sXtuGKMRNxLTK2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC84ODMxZDktMzkzMy00ODNhLWI5YWYt MzZlODg1MDY2ODBlLzEvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC84ODMxZDktMzkzMy00ODNhLWI5YWYtMzZlODg1MDY2ODBl LzEvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnZyLs3a4 oPOgFqaY1UaR4aKBlLLOPAuVN/zeZjc3Cu4gYmJWlFOLf8kmko2Dl7171OEEKHHT UwetJm0Y31jTQE4me5Tkje46ZnqCjxwRYQFmP3zKKSxHHqi02s9z7zRLF1qgHrv6 yycDMcl4Al41VwDfrDkl38AREImWBuIz9El6s+7M5+ptwygjpVazA9k6kWI07h36 KwP390FeEbpVp8gWpH/LqzgSzTJoeZfUGSdnswc57pqw93JtBvuehF1x9nv0Msp3 WVh0AhRASAKgmIFTNfinuLrunG2wDelOW/b6o4dQJWDsp4l80n9jifTKehNYDbh5 fun4IQUr4gb/EQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:09 2026 by rpki-client