This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft File: Po3UOSjt-xIA77xixEH5zSkEhYU.mft (raw, json) Hash identifier: bB1SpA0pAm0QLgk7CXDJrALOOHJxL713exCuo64I7ZM= Subject key identifier: A5:27:A8:1D:DB:1F:E5:A1:13:0C:26:6E:6F:EC:E3:D2:21:90:1F:C4 Authority key identifier: 3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85 Certificate issuer: /CN=3e8dd43928edfb1200efbc62c441f9cd29048585 Certificate serial: 019C41A1CFE9C6DBFB9632D109A395C82885 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 09:00:49 +0000 Manifest this update: Mon 09 Feb 2026 09:00:49 +0000 Manifest next update: Tue 10 Feb 2026 09:00:49 +0000 Files and hashes: 1: 0U1eG0GsSbCnBwGZ5F2Z5gLSu9Y.roa (hash: Fhy27ODXOo/iYcrRT3EoyxFDPguM4gwg2roTVU5BtKk=) 2: Po3UOSjt-xIA77xixEH5zSkEhYU.crl (hash: VcsFjkpk5N/HvfYax5qynmL+hT7RcZdNSS1yEALJFcM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:cf:e9:c6:db:fb:96:32:d1:09:a3:95:c8:28:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e8dd43928edfb1200efbc62c441f9cd29048585 Validity Not Before: Feb 9 09:00:49 2026 GMT Not After : Feb 10 09:00:49 2026 GMT Subject: CN=a527a81ddb1fe5a1130c266e6fece3d221901fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:11:76:c2:08:0d:b0:24:00:2f:ee:1a:46:e6: 3c:6d:b4:b6:94:22:e7:99:03:92:78:fb:0b:f0:40: bd:1f:86:5c:51:4e:f4:72:b8:8e:d4:7d:75:83:48: 50:df:7d:0f:50:8a:37:35:54:c0:89:40:fa:a1:c2: cc:eb:e3:fc:fa:a0:5a:2c:cc:ad:78:f4:3d:68:2f: 31:cf:8a:f1:4d:d8:b8:fd:4e:33:87:5f:25:ad:3f: 9c:05:0f:c2:22:79:a3:1f:40:51:50:d8:a8:e7:8e: a7:5a:02:bf:b6:45:94:1f:d8:f7:a6:4b:bd:50:70: 1f:1e:a0:b4:d5:1a:7b:cd:8d:e6:6b:d3:2a:51:d9: 43:ce:b0:cf:52:e4:08:5c:89:5c:78:be:25:a9:b6: 93:34:fd:19:35:ac:9b:b6:58:0a:22:1a:ea:1b:81: 68:33:16:f6:13:a4:a4:61:a1:59:0d:94:bc:33:4e: ec:76:a0:ce:f9:b8:7c:e0:d8:b2:41:32:f0:5d:21: ec:6d:73:06:8f:a7:da:ff:bd:9e:23:a8:4b:4f:53: 80:86:a6:9c:ed:d7:60:e7:ab:6f:6d:04:07:e7:4c: e9:ba:1a:df:f4:4e:d4:12:f5:25:64:99:64:14:a5: 4e:20:a5:b1:2e:31:50:d5:63:5a:82:b2:a0:5d:0c: 6b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:27:A8:1D:DB:1F:E5:A1:13:0C:26:6E:6F:EC:E3:D2:21:90:1F:C4 X509v3 Authority Key Identifier: keyid:3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:61:a6:3b:63:2c:41:c4:00:96:98:85:9f:ed:cb:88:fc:b6: f1:18:9a:90:91:8e:81:71:89:19:72:b5:75:04:c7:a6:b3:35: a9:5b:bc:09:c7:ca:3f:a2:91:68:2b:b3:45:d2:46:ab:5e:bc: 2b:ea:ce:c3:46:88:84:10:e1:32:aa:0b:77:fb:7b:00:3a:8e: db:c1:cb:8a:1b:1a:8a:ab:96:ca:23:2d:d9:14:1c:39:1d:04: 8f:d3:e7:b6:14:80:9b:67:1b:81:b2:e2:9f:92:c0:5d:25:74: 0d:38:19:12:71:22:c2:e0:18:27:ee:ce:70:47:36:2c:61:28: 50:ef:b3:9a:49:62:71:84:52:cd:c4:2b:5f:e1:dd:13:e1:d4: 7e:be:54:16:f2:55:9e:d3:6a:dc:d4:8b:e5:70:d6:e2:56:eb: a3:47:52:e3:22:92:b5:5e:ec:ed:b9:f8:6f:f2:39:62:72:8a: 38:49:15:6d:c2:33:7d:3a:30:2f:b2:45:d7:31:f3:c2:4e:0b: 35:2c:ef:bc:41:b3:f0:f4:4e:7b:74:0e:f9:1a:38:64:41:b3: f0:77:8f:e5:d6:40:f9:f1:b7:66:77:21:a7:98:56:5d:c0:7b: 08:98:6a:8c:22:ea:ed:cf:dc:cb:64:06:b7:1b:24:81:d1:00: 2e:02:a6:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoc/pxtv7ljLRCaOVyCiFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlOGRkNDM5MjhlZGZiMTIwMGVmYmM2MmM0NDFmOWNkMjkw NDg1ODUwHhcNMjYwMjA5MDkwMDQ5WhcNMjYwMjEwMDkwMDQ5WjAzMTEwLwYDVQQD EyhhNTI3YTgxZGRiMWZlNWExMTMwYzI2NmU2ZmVjZTNkMjIxOTAxZmM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyRF2wggNsCQAL+4aRuY8bbS2lCLn mQOSePsL8EC9H4ZcUU70criO1H11g0hQ330PUIo3NVTAiUD6ocLM6+P8+qBaLMyt ePQ9aC8xz4rxTdi4/U4zh18lrT+cBQ/CInmjH0BRUNio546nWgK/tkWUH9j3pku9 UHAfHqC01Rp7zY3ma9MqUdlDzrDPUuQIXIlceL4lqbaTNP0ZNaybtlgKIhrqG4Fo Mxb2E6SkYaFZDZS8M07sdqDO+bh84NiyQTLwXSHsbXMGj6fa/72eI6hLT1OAhqac 7ddg56tvbQQH50zpuhrf9E7UEvUlZJlkFKVOIKWxLjFQ1WNagrKgXQxr/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKUnqB3bH+WhEwwmbm/s49IhkB/EMB8GA1UdIwQY MBaAFD6N1Dko7fsSAO+8YsRB+c0pBIWFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG8zVU9TanQteElBNzd4aXhFSDV6U2tFaFlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mN2VjYjctZmY2ZC00NWUwLTk4ZDYt Yzc3YmFlM2QzZWQxLzEvUG8zVU9TanQteElBNzd4aXhFSDV6U2tFaFlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS9mN2VjYjctZmY2ZC00NWUwLTk4ZDYtYzc3YmFlM2QzZWQx LzEvUG8zVU9TanQteElBNzd4aXhFSDV6U2tFaFlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYmGmO2Ms QcQAlpiFn+3LiPy28RiakJGOgXGJGXK1dQTHprM1qVu8CcfKP6KRaCuzRdJGq168 K+rOw0aIhBDhMqoLd/t7ADqO28HLihsaiquWyiMt2RQcOR0Ej9PnthSAm2cbgbLi n5LAXSV0DTgZEnEiwuAYJ+7OcEc2LGEoUO+zmklicYRSzcQrX+HdE+HUfr5UFvJV ntNq3NSL5XDW4lbro0dS4yKStV7s7bn4b/I5YnKKOEkVbcIzfTowL7JF1zHzwk4L NSzvvEGz8PROe3QO+Ro4ZEGz8HeP5dZA+fG3Znchp5hWXcB7CJhqjCLq7c/cy2QG txskgdEALgKmAQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:49 2026 by rpki-client