This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.mft File: PO7GxHlRspnHCAZYPXkdUM2BbF8.mft (raw, json) Hash identifier: Ja0mJui1gd+yuBvyxAj9wfW6xJcsAhtQtTjm+AS1L3Q= Subject key identifier: 75:BC:8D:EA:70:54:2D:2A:AF:1D:16:CC:56:82:57:FB:C4:F5:25:E6 Authority key identifier: 3C:EE:C6:C4:79:51:B2:99:C7:08:06:58:3D:79:1D:50:CD:81:6C:5F Certificate issuer: /CN=3ceec6c47951b299c70806583d791d50cd816c5f Certificate serial: 019C42EB0B52DEEF09A90BBD408D7D6C33E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PO7GxHlRspnHCAZYPXkdUM2BbF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.mft Manifest number: 045F Signing time: Mon 09 Feb 2026 15:00:25 +0000 Manifest this update: Mon 09 Feb 2026 15:00:25 +0000 Manifest next update: Tue 10 Feb 2026 15:00:25 +0000 Files and hashes: 1: PO7GxHlRspnHCAZYPXkdUM2BbF8.crl (hash: sqJMEnh5Y5gLHJOjEeWyas9Rk2wc7iLY2VMjpnTPB8I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.crl rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.mft rsync://rpki.ripe.net/repository/DEFAULT/PO7GxHlRspnHCAZYPXkdUM2BbF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:0b:52:de:ef:09:a9:0b:bd:40:8d:7d:6c:33:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ceec6c47951b299c70806583d791d50cd816c5f Validity Not Before: Feb 9 15:00:25 2026 GMT Not After : Feb 10 15:00:25 2026 GMT Subject: CN=75bc8dea70542d2aaf1d16cc568257fbc4f525e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b5:83:8e:15:c1:21:31:39:bb:25:c7:1a:28: f8:f3:ce:3a:03:94:66:71:21:40:8b:40:43:5b:50: b9:12:f8:06:83:9c:32:c0:1b:9e:7c:f3:fd:d6:e5: 0f:22:27:c4:51:aa:61:aa:f8:86:72:23:dd:50:e3: 45:0a:bb:dc:4c:d2:5d:ca:c4:0a:af:89:0a:ec:b5: 1e:f9:63:15:d3:76:51:3a:6a:6a:3c:d3:51:85:ca: 73:fa:d6:ce:3e:af:43:71:18:c6:52:2c:b4:dd:1a: 0c:f4:50:ad:ac:96:74:7b:2d:4f:8b:80:d2:78:11: 49:c1:b4:01:c7:dd:47:1f:a7:eb:b7:8f:db:8a:0f: ed:ee:8e:15:60:6e:68:5f:c9:16:71:89:98:5a:7a: dd:58:d3:9a:79:c5:c3:74:67:a6:7d:94:e1:68:50: fa:e8:b6:ea:e9:58:4b:c2:f2:83:3c:31:64:d6:81: d2:a9:40:41:16:6a:cb:07:fe:0c:e9:30:86:5f:48: cf:cc:58:03:90:54:0b:fb:9e:3f:4c:7e:d0:93:1f: c5:1d:7a:03:6a:97:73:15:18:bf:22:0f:04:12:0d: 06:cd:5a:8d:c4:4d:ba:d6:f5:4d:34:23:13:e9:ba: 58:63:ca:6c:b1:11:9c:39:0f:5f:d8:66:9c:60:0b: c8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BC:8D:EA:70:54:2D:2A:AF:1D:16:CC:56:82:57:FB:C4:F5:25:E6 X509v3 Authority Key Identifier: keyid:3C:EE:C6:C4:79:51:B2:99:C7:08:06:58:3D:79:1D:50:CD:81:6C:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PO7GxHlRspnHCAZYPXkdUM2BbF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:46:e1:97:cf:36:46:22:55:96:f8:b6:b8:8b:93:96:92:c2: 59:e5:fb:e2:5f:f4:62:e7:bf:5b:b2:d1:cf:b3:d4:fc:e5:71: d7:4f:c3:73:84:fd:ab:2d:76:52:0e:ce:5e:26:81:8e:a8:7b: 56:6e:ff:40:88:b0:52:4a:8d:b8:dc:b1:f9:e3:4a:c8:1c:20: c4:f2:b4:2e:fa:39:e2:13:d1:77:98:8a:fe:04:67:ba:1e:80: a0:5d:46:39:22:16:a5:ee:8c:af:b5:5b:06:61:ce:91:ad:94: fc:20:19:33:95:6d:b7:5f:ca:53:7a:63:c7:83:fb:02:17:85: e7:70:ce:ad:3b:bb:8a:24:0e:5c:42:3d:f0:f2:3b:6d:b8:90: 8e:ec:95:d7:97:81:e4:30:10:44:e8:3b:a5:b9:80:da:4e:8b: 8b:d5:55:c9:fb:62:ec:21:03:17:00:d0:15:0c:99:b0:1d:98: 89:dc:d0:22:1e:f3:e4:5d:b5:34:53:9a:21:e3:91:66:68:d7: ea:51:2e:9c:c5:0e:60:37:ac:f7:f3:d3:f7:fe:e0:cf:dd:bc: 22:6f:04:87:91:33:c4:14:a4:a9:3c:8c:31:b4:9d:5f:cf:8a: ae:31:2e:60:6c:88:48:60:fb:c5:0e:b9:30:ab:3b:26:0e:7a: 19:5a:52:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6wtS3u8JqQu9QI19bDPmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjZWVjNmM0Nzk1MWIyOTljNzA4MDY1ODNkNzkxZDUwY2Q4 MTZjNWYwHhcNMjYwMjA5MTUwMDI1WhcNMjYwMjEwMTUwMDI1WjAzMTEwLwYDVQQD Eyg3NWJjOGRlYTcwNTQyZDJhYWYxZDE2Y2M1NjgyNTdmYmM0ZjUyNWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7WDjhXBITE5uyXHGij48846A5Rm cSFAi0BDW1C5EvgGg5wywBuefPP91uUPIifEUaphqviGciPdUONFCrvcTNJdysQK r4kK7LUe+WMV03ZROmpqPNNRhcpz+tbOPq9DcRjGUiy03RoM9FCtrJZ0ey1Pi4DS eBFJwbQBx91HH6frt4/big/t7o4VYG5oX8kWcYmYWnrdWNOaecXDdGemfZThaFD6 6Lbq6VhLwvKDPDFk1oHSqUBBFmrLB/4M6TCGX0jPzFgDkFQL+54/TH7Qkx/FHXoD apdzFRi/Ig8EEg0GzVqNxE261vVNNCMT6bpYY8pssRGcOQ9f2GacYAvIawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHW8jepwVC0qrx0WzFaCV/vE9SXmMB8GA1UdIwQY MBaAFDzuxsR5UbKZxwgGWD15HVDNgWxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUE83R3hIbFJzcG5IQ0FaWVBYa2RVTTJCYkY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9iMzMwYzctZmRhYy00MDBhLTk2N2It YTcyZWFkMjk1MzI1LzEvUE83R3hIbFJzcG5IQ0FaWVBYa2RVTTJCYkY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC9iMzMwYzctZmRhYy00MDBhLTk2N2ItYTcyZWFkMjk1MzI1 LzEvUE83R3hIbFJzcG5IQ0FaWVBYa2RVTTJCYkY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmUbhl882 RiJVlvi2uIuTlpLCWeX74l/0Yue/W7LRz7PU/OVx10/Dc4T9qy12Ug7OXiaBjqh7 Vm7/QIiwUkqNuNyx+eNKyBwgxPK0Lvo54hPRd5iK/gRnuh6AoF1GOSIWpe6Mr7Vb BmHOka2U/CAZM5Vtt1/KU3pjx4P7AheF53DOrTu7iiQOXEI98PI7bbiQjuyV15eB 5DAQROg7pbmA2k6Li9VVyfti7CEDFwDQFQyZsB2YidzQIh7z5F21NFOaIeORZmjX 6lEunMUOYDes9/PT9/7gz928Im8Eh5EzxBSkqTyMMbSdX8+KrjEuYGyISGD7xQ65 MKs7Jg56GVpSXg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:52:53 2026 by rpki-client