This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/5177fd-89ed-4e6f-8c3d-23b8611cce23/1/PP7M1r9kBrDPRPaCuTzYbjNGUko.mft File: PP7M1r9kBrDPRPaCuTzYbjNGUko.mft (raw, json) Hash identifier: 4pcAF3ErRo23wS+qZ7jRof2aqTj5zyFLjDNYW7Dd+sc= Subject key identifier: ED:5E:19:CA:17:7A:4C:05:99:8A:7C:F9:85:D2:EA:D6:7A:D7:9C:F2 Authority key identifier: 3C:FE:CC:D6:BF:64:06:B0:CF:44:F6:82:B9:3C:D8:6E:33:46:52:4A Certificate issuer: /CN=3cfeccd6bf6406b0cf44f682b93cd86e3346524a Certificate serial: 019C4321DDEF7B94A6D80899515F9BBECA29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PP7M1r9kBrDPRPaCuTzYbjNGUko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/5177fd-89ed-4e6f-8c3d-23b8611cce23/1/PP7M1r9kBrDPRPaCuTzYbjNGUko.mft Manifest number: 1386 Signing time: Mon 09 Feb 2026 16:00:18 +0000 Manifest this update: Mon 09 Feb 2026 16:00:18 +0000 Manifest next update: Tue 10 Feb 2026 16:00:18 +0000 Files and hashes: 1: PP7M1r9kBrDPRPaCuTzYbjNGUko.crl (hash: 9EKbGc4OUIdGKQRGJxtHUIsj8bpdbePOzEV6jGjPcX4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/5177fd-89ed-4e6f-8c3d-23b8611cce23/1/PP7M1r9kBrDPRPaCuTzYbjNGUko.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/5177fd-89ed-4e6f-8c3d-23b8611cce23/1/PP7M1r9kBrDPRPaCuTzYbjNGUko.mft rsync://rpki.ripe.net/repository/DEFAULT/PP7M1r9kBrDPRPaCuTzYbjNGUko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:dd:ef:7b:94:a6:d8:08:99:51:5f:9b:be:ca:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3cfeccd6bf6406b0cf44f682b93cd86e3346524a Validity Not Before: Feb 9 16:00:18 2026 GMT Not After : Feb 10 16:00:18 2026 GMT Subject: CN=ed5e19ca177a4c05998a7cf985d2ead67ad79cf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c7:b5:4c:ba:91:a6:ce:66:21:0e:6a:4a:e0: e7:92:0e:98:fa:27:14:6a:a0:a0:ba:a9:9d:97:e9: 83:5a:90:b8:92:5e:d3:24:95:3f:72:df:7f:18:0a: 93:1f:13:b7:00:19:7f:b3:2b:ce:51:7b:69:88:ec: 34:02:67:ac:7a:3f:5b:97:78:ba:b1:31:e6:ec:73: da:84:d6:f4:b6:f1:f5:75:86:7e:20:cb:fd:e7:35: 08:19:84:5f:88:e0:f5:ae:00:4e:f6:1d:fc:64:29: 39:5e:97:c5:2a:7f:44:66:50:92:70:69:d8:1e:e9: 51:ea:5c:e7:76:52:ec:ba:77:36:74:90:4a:42:5b: 89:0f:b5:43:8c:71:f9:76:aa:b3:4a:fc:4f:dc:a8: bc:10:50:c7:57:05:d8:94:b2:8e:ba:9d:96:26:59: 9d:70:7b:55:6f:44:d7:fe:43:f8:c1:76:3e:86:43: 11:18:1b:b1:d8:65:9f:dd:ee:0f:aa:bc:fb:0d:1e: 83:5a:77:b6:61:6d:a8:71:76:27:94:18:4e:0a:ec: 35:e9:d1:e9:23:1a:d2:c4:0d:20:c2:a3:f8:b5:7c: c6:77:49:51:d0:40:34:41:2d:47:29:76:1d:96:2a: ff:17:4a:0c:e3:ec:89:bc:5d:17:72:3c:48:7e:5c: 7c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:5E:19:CA:17:7A:4C:05:99:8A:7C:F9:85:D2:EA:D6:7A:D7:9C:F2 X509v3 Authority Key Identifier: keyid:3C:FE:CC:D6:BF:64:06:B0:CF:44:F6:82:B9:3C:D8:6E:33:46:52:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PP7M1r9kBrDPRPaCuTzYbjNGUko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5177fd-89ed-4e6f-8c3d-23b8611cce23/1/PP7M1r9kBrDPRPaCuTzYbjNGUko.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5177fd-89ed-4e6f-8c3d-23b8611cce23/1/PP7M1r9kBrDPRPaCuTzYbjNGUko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:28:79:d3:0d:a6:1c:de:41:48:c7:79:e8:b6:4a:2e:79:9f: a7:4b:ce:71:cb:b1:f9:46:5a:11:7f:88:b4:94:ee:a4:5e:b1: 13:00:c6:91:a1:dc:f5:7b:e0:2a:b5:62:14:58:53:f3:1e:fd: 95:83:38:56:50:a8:85:1b:82:04:1c:7f:51:f1:cd:f3:02:08: 6c:13:0a:a0:4f:bc:c7:a8:09:ff:4f:f6:a0:21:53:f6:bc:b3: c5:1a:0a:52:96:f1:a1:1b:5e:c5:d3:84:2e:9c:19:fd:a6:9b: b0:4e:63:5a:b0:d4:f2:91:f1:30:5c:63:24:d5:15:dc:b4:17: f1:1b:90:d8:75:98:1d:7a:97:0f:a1:ea:15:15:4c:03:a3:6c: 07:e8:35:fe:80:24:06:87:98:fc:49:fa:ab:49:10:0a:fd:f6: af:1a:b3:d9:4a:e8:e2:8e:58:e8:3b:a9:fa:95:f2:ee:73:4b: e7:fb:3a:29:16:a8:55:0d:05:02:78:07:2d:87:17:9a:1b:92: a0:9e:5b:98:9a:de:54:ca:5e:36:d4:b7:53:65:39:f9:3a:64: f9:e9:72:ed:9e:17:83:2f:1f:a9:dd:34:ae:20:b9:95:78:33: e2:61:e9:9b:68:1b:b1:1a:27:bb:aa:81:b4:4d:e8:92:73:a7: b1:c9:e7:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDId3ve5Sm2AiZUV+bvsopMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjZmVjY2Q2YmY2NDA2YjBjZjQ0ZjY4MmI5M2NkODZlMzM0 NjUyNGEwHhcNMjYwMjA5MTYwMDE4WhcNMjYwMjEwMTYwMDE4WjAzMTEwLwYDVQQD EyhlZDVlMTljYTE3N2E0YzA1OTk4YTdjZjk4NWQyZWFkNjdhZDc5Y2YyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8e1TLqRps5mIQ5qSuDnkg6Y+icU aqCguqmdl+mDWpC4kl7TJJU/ct9/GAqTHxO3ABl/syvOUXtpiOw0Amesej9bl3i6 sTHm7HPahNb0tvH1dYZ+IMv95zUIGYRfiOD1rgBO9h38ZCk5XpfFKn9EZlCScGnY HulR6lzndlLsunc2dJBKQluJD7VDjHH5dqqzSvxP3Ki8EFDHVwXYlLKOup2WJlmd cHtVb0TX/kP4wXY+hkMRGBux2GWf3e4Pqrz7DR6DWne2YW2ocXYnlBhOCuw16dHp IxrSxA0gwqP4tXzGd0lR0EA0QS1HKXYdlir/F0oM4+yJvF0XcjxIflx8HwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO1eGcoXekwFmYp8+YXS6tZ615zyMB8GA1UdIwQY MBaAFDz+zNa/ZAawz0T2grk82G4zRlJKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFA3TTFyOWtCckRQUlBhQ3VUelliak5HVWtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy81MTc3ZmQtODllZC00ZTZmLThjM2Qt MjNiODYxMWNjZTIzLzEvUFA3TTFyOWtCckRQUlBhQ3VUelliak5HVWtvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy81MTc3ZmQtODllZC00ZTZmLThjM2QtMjNiODYxMWNjZTIz LzEvUFA3TTFyOWtCckRQUlBhQ3VUelliak5HVWtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWCh50w2m HN5BSMd56LZKLnmfp0vOccux+UZaEX+ItJTupF6xEwDGkaHc9XvgKrViFFhT8x79 lYM4VlCohRuCBBx/UfHN8wIIbBMKoE+8x6gJ/0/2oCFT9ryzxRoKUpbxoRtexdOE LpwZ/aabsE5jWrDU8pHxMFxjJNUV3LQX8RuQ2HWYHXqXD6HqFRVMA6NsB+g1/oAk BoeY/En6q0kQCv32rxqz2Uro4o5Y6Dup+pXy7nNL5/s6KRaoVQ0FAngHLYcXmhuS oJ5bmJreVMpeNtS3U2U5+Tpk+ely7Z4Xgy8fqd00riC5lXgz4mHpm2gbsRonu6qB tE3oknOnscnnHg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:49 2026 by rpki-client