This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft File: PHQZW9u2a2A65joVGPBm-gsRUfU.mft (raw, json) Hash identifier: ms2xmhm+9dNsrF3ieAZl2qyFpdwyt6PslEnakZQwDmI= Subject key identifier: BE:E0:35:0B:E5:DF:CE:36:93:58:71:13:E4:E8:9E:0D:A8:65:A2:87 Authority key identifier: 3C:74:19:5B:DB:B6:6B:60:3A:E6:3A:15:18:F0:66:FA:0B:11:51:F5 Certificate issuer: /CN=3c74195bdbb66b603ae63a1518f066fa0b1151f5 Certificate serial: 019C432274C8F97E35A80AC92CE64FC454D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft Manifest number: 0B42 Signing time: Mon 09 Feb 2026 16:00:57 +0000 Manifest this update: Mon 09 Feb 2026 16:00:57 +0000 Manifest next update: Tue 10 Feb 2026 16:00:57 +0000 Files and hashes: 1: PHQZW9u2a2A65joVGPBm-gsRUfU.crl (hash: 2GTHGF3jOB9YY4tLp862neAhvJwvs44Knygp8YPFY/w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:74:c8:f9:7e:35:a8:0a:c9:2c:e6:4f:c4:54:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c74195bdbb66b603ae63a1518f066fa0b1151f5 Validity Not Before: Feb 9 16:00:57 2026 GMT Not After : Feb 10 16:00:57 2026 GMT Subject: CN=bee0350be5dfce3693587113e4e89e0da865a287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1d:33:2d:81:8e:0e:8a:8c:a4:4c:df:1b:04: bb:61:77:59:8e:dc:67:6c:6f:92:8d:5b:6c:01:84: 56:3c:eb:21:38:b2:8d:36:70:d8:0d:58:eb:14:64: a5:69:95:56:9d:ca:1b:82:33:1e:a5:8d:59:e5:c7: 2d:ea:50:c2:72:8d:d8:c5:9f:1f:67:9b:d3:1c:a7: 24:30:41:e6:ce:0a:8c:ca:db:63:f1:3f:7b:30:27: 24:1c:d9:fb:64:20:1c:14:69:64:a8:a4:2a:10:ed: 73:e1:b2:38:c3:24:ca:6f:f9:1d:bd:13:20:c8:ea: 7d:5b:d6:31:e3:8a:5b:52:6d:53:82:56:28:78:a2: 7f:20:88:b6:56:f5:24:ef:af:7e:62:ca:16:7b:d1: 27:f6:31:be:ff:df:a5:fa:68:f2:3f:67:4c:68:ea: 9d:6e:c2:cc:54:0b:42:4f:5f:fe:69:ea:08:4b:d6: 47:bf:bd:3e:23:d8:b0:de:96:62:9d:ce:04:cd:60: 31:0c:08:64:58:bb:05:c1:a3:09:06:58:05:23:f2: af:ac:55:0d:07:44:84:44:f4:1b:e7:a3:c3:f0:3f: 07:eb:e7:7e:74:3a:51:5f:aa:bb:e3:53:f8:b5:2b: 54:cd:c4:3e:c2:ba:d5:10:1a:a8:b5:c9:3b:d0:74: a9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E0:35:0B:E5:DF:CE:36:93:58:71:13:E4:E8:9E:0D:A8:65:A2:87 X509v3 Authority Key Identifier: keyid:3C:74:19:5B:DB:B6:6B:60:3A:E6:3A:15:18:F0:66:FA:0B:11:51:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:6e:74:30:db:c8:b7:47:c0:8d:49:1a:89:3d:cc:5b:5b:77: 7b:67:f3:37:9f:9a:27:bb:2a:3c:f0:3a:6b:bb:7a:34:e2:ef: 65:7d:83:34:60:ca:19:3a:6b:9a:8c:63:8a:36:a5:14:41:e8: cc:fd:13:25:cd:77:17:b1:80:d3:b1:20:03:4e:1e:ab:0a:b0: a1:7b:e1:15:0b:be:c2:df:da:63:95:c5:40:74:2b:08:b6:70: b0:65:bd:d2:77:84:5e:cd:19:78:29:07:f7:b6:b3:21:85:d5: 3e:5b:11:ef:a7:68:20:8f:33:df:6d:6e:13:03:2a:65:d1:97: 0a:7b:56:8d:2f:a5:4e:5c:63:ba:71:90:6e:2a:f0:de:2b:3d: 77:5d:73:d2:28:22:cb:09:12:00:9b:af:4a:ef:0b:e6:69:4d: 4c:be:6b:11:43:b4:3d:9f:ae:ba:ae:47:68:20:83:74:a8:0a: 15:dc:9f:b7:3d:bd:35:63:60:e5:92:0d:f6:fc:6e:25:c4:7a: 24:ce:2c:83:8d:13:81:5d:b0:6f:c1:7c:10:6a:c8:41:06:88: 03:b4:c2:cb:fd:6a:2c:81:76:5d:3f:78:97:ed:b5:6d:8a:ce: f9:e9:98:02:dd:49:5c:c7:67:a3:02:06:b1:e2:df:25:5f:c3: 27:ad:89:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDInTI+X41qArJLOZPxFTXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjNzQxOTViZGJiNjZiNjAzYWU2M2ExNTE4ZjA2NmZhMGIx MTUxZjUwHhcNMjYwMjA5MTYwMDU3WhcNMjYwMjEwMTYwMDU3WjAzMTEwLwYDVQQD EyhiZWUwMzUwYmU1ZGZjZTM2OTM1ODcxMTNlNGU4OWUwZGE4NjVhMjg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoh0zLYGODoqMpEzfGwS7YXdZjtxn bG+SjVtsAYRWPOshOLKNNnDYDVjrFGSlaZVWncobgjMepY1Z5cct6lDCco3YxZ8f Z5vTHKckMEHmzgqMyttj8T97MCckHNn7ZCAcFGlkqKQqEO1z4bI4wyTKb/kdvRMg yOp9W9Yx44pbUm1TglYoeKJ/IIi2VvUk769+YsoWe9En9jG+/9+l+mjyP2dMaOqd bsLMVAtCT1/+aeoIS9ZHv70+I9iw3pZinc4EzWAxDAhkWLsFwaMJBlgFI/KvrFUN B0SERPQb56PD8D8H6+d+dDpRX6q741P4tStUzcQ+wrrVEBqotck70HSpwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL7gNQvl3842k1hxE+Tong2oZaKHMB8GA1UdIwQY MBaAFDx0GVvbtmtgOuY6FRjwZvoLEVH1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUEhRWlc5dTJhMkE2NWpvVkdQQm0tZ3NSVWZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC83ODU4YTQtMmUzMy00M2M0LWIzM2Qt MWUwNGIyMGQ4NTY3LzEvUEhRWlc5dTJhMkE2NWpvVkdQQm0tZ3NSVWZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC83ODU4YTQtMmUzMy00M2M0LWIzM2QtMWUwNGIyMGQ4NTY3 LzEvUEhRWlc5dTJhMkE2NWpvVkdQQm0tZ3NSVWZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmm50MNvI t0fAjUkaiT3MW1t3e2fzN5+aJ7sqPPA6a7t6NOLvZX2DNGDKGTprmoxjijalFEHo zP0TJc13F7GA07EgA04eqwqwoXvhFQu+wt/aY5XFQHQrCLZwsGW90neEXs0ZeCkH 97azIYXVPlsR76doII8z321uEwMqZdGXCntWjS+lTlxjunGQbirw3is9d11z0igi ywkSAJuvSu8L5mlNTL5rEUO0PZ+uuq5HaCCDdKgKFdyftz29NWNg5ZIN9vxuJcR6 JM4sg40TgV2wb8F8EGrIQQaIA7TCy/1qLIF2XT94l+21bYrO+emYAt1JXMdnowIG seLfJV/DJ62JoQ== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:48 2026 by rpki-client