This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/399d34-e4d0-4b80-8ecd-b7892f76e8c5/1/N28vTtsjIwxkt5O0GVfvSjI-PFM.mft File: N28vTtsjIwxkt5O0GVfvSjI-PFM.mft (raw, json) Hash identifier: CINmxHsnuYcuRh/zY9PDaiPcXtxXMzxl1A2FrTCLoYQ= Subject key identifier: 80:36:82:0D:26:52:39:BF:6F:43:20:4D:64:F6:F3:B7:34:8C:91:F3 Authority key identifier: 37:6F:2F:4E:DB:23:23:0C:64:B7:93:B4:19:57:EF:4A:32:3E:3C:53 Certificate issuer: /CN=376f2f4edb23230c64b793b41957ef4a323e3c53 Certificate serial: 019C446C80FD416F2157219E809140473C17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N28vTtsjIwxkt5O0GVfvSjI-PFM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/399d34-e4d0-4b80-8ecd-b7892f76e8c5/1/N28vTtsjIwxkt5O0GVfvSjI-PFM.mft Manifest number: 12BC Signing time: Mon 09 Feb 2026 22:01:27 +0000 Manifest this update: Mon 09 Feb 2026 22:01:27 +0000 Manifest next update: Tue 10 Feb 2026 22:01:27 +0000 Files and hashes: 1: N28vTtsjIwxkt5O0GVfvSjI-PFM.crl (hash: 7Yt2oLms1sVA/yCuPl/KOK6OelWYyfe+rka0tR/8/ew=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/399d34-e4d0-4b80-8ecd-b7892f76e8c5/1/N28vTtsjIwxkt5O0GVfvSjI-PFM.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/399d34-e4d0-4b80-8ecd-b7892f76e8c5/1/N28vTtsjIwxkt5O0GVfvSjI-PFM.mft rsync://rpki.ripe.net/repository/DEFAULT/N28vTtsjIwxkt5O0GVfvSjI-PFM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6c:80:fd:41:6f:21:57:21:9e:80:91:40:47:3c:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=376f2f4edb23230c64b793b41957ef4a323e3c53 Validity Not Before: Feb 9 22:01:27 2026 GMT Not After : Feb 10 22:01:27 2026 GMT Subject: CN=8036820d265239bf6f43204d64f6f3b7348c91f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9c:8e:b3:3a:d5:6c:1b:b4:2e:95:64:b0:bd: f1:59:ca:5b:ed:9a:97:b2:cf:32:b1:b7:79:97:42: 48:76:c2:9e:fe:47:2d:ca:4b:de:a1:4f:5d:60:c3: ea:eb:6c:53:a9:54:f8:ba:58:72:d9:02:2b:a4:7f: be:b3:a2:56:3e:8b:64:a9:dc:23:ec:70:ee:44:6e: 02:e2:63:c4:55:91:37:32:ab:dd:c6:c5:e2:5f:61: 78:6f:0d:25:71:b4:3c:60:f6:01:46:c6:23:7f:88: ed:b2:13:de:f6:cf:3e:27:72:76:d3:9f:5f:68:1f: c5:65:a3:49:86:a2:0f:32:a0:03:33:fd:a0:dc:27: 38:0a:9a:99:7b:97:e2:76:7e:34:d2:4b:69:8b:c7: de:b1:97:44:de:17:3f:7e:d9:6d:24:b7:16:90:35: b1:9c:a8:ac:82:63:49:38:2e:f5:c3:57:f9:87:a2: a4:5b:67:e2:6a:10:92:f5:09:e1:f3:43:f1:0c:55: ab:9d:63:a5:cc:a9:04:ca:e3:b2:f4:df:8b:0e:68: 8f:0c:9c:63:3c:20:3b:52:b8:4e:60:32:1a:1a:04: 66:03:55:78:f6:b9:4e:84:b9:e5:a7:07:4a:f2:70: 16:b4:28:f9:55:00:3a:a0:a0:57:af:0d:de:87:50: 04:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:36:82:0D:26:52:39:BF:6F:43:20:4D:64:F6:F3:B7:34:8C:91:F3 X509v3 Authority Key Identifier: keyid:37:6F:2F:4E:DB:23:23:0C:64:B7:93:B4:19:57:EF:4A:32:3E:3C:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N28vTtsjIwxkt5O0GVfvSjI-PFM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/399d34-e4d0-4b80-8ecd-b7892f76e8c5/1/N28vTtsjIwxkt5O0GVfvSjI-PFM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/399d34-e4d0-4b80-8ecd-b7892f76e8c5/1/N28vTtsjIwxkt5O0GVfvSjI-PFM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:8f:53:30:5d:4f:e1:48:ff:29:0e:06:47:b1:7f:2c:52:63: 90:65:e2:7c:6f:cd:4a:4f:a6:d7:9f:f7:1f:c6:bb:32:a0:24: e6:d2:70:d8:53:11:6e:21:2a:79:87:36:19:99:cb:fa:1a:59: 84:76:16:43:17:08:2e:39:d1:25:cf:e9:02:0d:29:be:93:81: 78:cc:1a:72:71:c2:75:aa:bd:13:c1:fc:cf:b2:c9:85:aa:0a: d5:72:ef:f3:f4:90:11:77:a7:46:55:d4:b3:0c:b8:29:c6:ad: 8f:b2:83:7c:fb:c1:d4:aa:75:7c:f3:7f:d1:fe:29:02:ea:8f: 46:2e:8d:88:79:f0:42:db:61:d6:74:33:ea:78:5e:b7:2e:ef: 9b:a2:3a:58:72:0c:af:19:e4:f8:79:bf:4d:2f:54:0f:f7:95: d1:5f:8f:ae:08:fb:7a:34:ca:48:03:01:16:eb:47:d6:10:57: 16:6c:01:df:28:e7:29:34:61:de:98:89:74:b1:10:49:7d:4f: 3b:71:cc:e5:67:90:41:bc:69:fc:ac:52:c5:7e:38:36:e5:62: 7a:36:92:94:fd:0f:c6:51:d7:21:bf:e9:7b:47:9d:e4:5d:60: 98:bd:87:34:78:91:9f:60:f2:41:13:13:7c:7e:fe:41:ea:1f: c1:c9:7d:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEbID9QW8hVyGegJFARzwXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3NmYyZjRlZGIyMzIzMGM2NGI3OTNiNDE5NTdlZjRhMzIz ZTNjNTMwHhcNMjYwMjA5MjIwMTI3WhcNMjYwMjEwMjIwMTI3WjAzMTEwLwYDVQQD Eyg4MDM2ODIwZDI2NTIzOWJmNmY0MzIwNGQ2NGY2ZjNiNzM0OGM5MWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2pyOszrVbBu0LpVksL3xWcpb7ZqX ss8ysbd5l0JIdsKe/kctykveoU9dYMPq62xTqVT4ulhy2QIrpH++s6JWPotkqdwj 7HDuRG4C4mPEVZE3MqvdxsXiX2F4bw0lcbQ8YPYBRsYjf4jtshPe9s8+J3J2059f aB/FZaNJhqIPMqADM/2g3Cc4CpqZe5fidn400ktpi8fesZdE3hc/ftltJLcWkDWx nKisgmNJOC71w1f5h6KkW2fiahCS9Qnh80PxDFWrnWOlzKkEyuOy9N+LDmiPDJxj PCA7UrhOYDIaGgRmA1V49rlOhLnlpwdK8nAWtCj5VQA6oKBXrw3eh1AEJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIA2gg0mUjm/b0MgTWT287c0jJHzMB8GA1UdIwQY MBaAFDdvL07bIyMMZLeTtBlX70oyPjxTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjI4dlR0c2pJd3hrdDVPMEdWZnZTakktUEZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi8zOTlkMzQtZTRkMC00YjgwLThlY2Qt Yjc4OTJmNzZlOGM1LzEvTjI4dlR0c2pJd3hrdDVPMEdWZnZTakktUEZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi8zOTlkMzQtZTRkMC00YjgwLThlY2QtYjc4OTJmNzZlOGM1 LzEvTjI4dlR0c2pJd3hrdDVPMEdWZnZTakktUEZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARo9TMF1P 4Uj/KQ4GR7F/LFJjkGXifG/NSk+m15/3H8a7MqAk5tJw2FMRbiEqeYc2GZnL+hpZ hHYWQxcILjnRJc/pAg0pvpOBeMwacnHCdaq9E8H8z7LJhaoK1XLv8/SQEXenRlXU swy4Kcatj7KDfPvB1Kp1fPN/0f4pAuqPRi6NiHnwQtth1nQz6nhety7vm6I6WHIM rxnk+Hm/TS9UD/eV0V+Prgj7ejTKSAMBFutH1hBXFmwB3yjnKTRh3piJdLEQSX1P O3HM5WeQQbxp/KxSxX44NuViejaSlP0PxlHXIb/pe0ed5F1gmL2HNHiRn2DyQRMT fH7+Qeofwcl9Vg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:21:08 2026 by rpki-client