This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.mft File: PQJjyVdcvQESY66Ig5p4iLdPoHY.mft (raw, json) Hash identifier: 1hz9i98ilTODqiqokAViWmKwVn9o1piRAOM56d3IM9I= Subject key identifier: 95:BB:8C:31:EB:94:57:53:4F:8B:06:B8:E5:63:1C:FB:07:8F:59:57 Authority key identifier: 3D:02:63:C9:57:5C:BD:01:12:63:AE:88:83:9A:78:88:B7:4F:A0:76 Certificate issuer: /CN=3d0263c9575cbd011263ae88839a7888b74fa076 Certificate serial: 019C43222D9EE3DDFBABE05B706B893E8A90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PQJjyVdcvQESY66Ig5p4iLdPoHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.mft Manifest number: 133B Signing time: Mon 09 Feb 2026 16:00:39 +0000 Manifest this update: Mon 09 Feb 2026 16:00:39 +0000 Manifest next update: Tue 10 Feb 2026 16:00:39 +0000 Files and hashes: 1: PQJjyVdcvQESY66Ig5p4iLdPoHY.crl (hash: 9gMN0pEuST5jejSW91PDQetHehrzLjKFVcJilEFDaME=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.mft rsync://rpki.ripe.net/repository/DEFAULT/PQJjyVdcvQESY66Ig5p4iLdPoHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:2d:9e:e3:dd:fb:ab:e0:5b:70:6b:89:3e:8a:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d0263c9575cbd011263ae88839a7888b74fa076 Validity Not Before: Feb 9 16:00:39 2026 GMT Not After : Feb 10 16:00:39 2026 GMT Subject: CN=95bb8c31eb9457534f8b06b8e5631cfb078f5957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8a:86:b0:fb:0b:e8:5d:5b:28:1a:56:92:c9: 19:81:a9:ec:8e:6c:24:d9:92:2d:bd:4b:5c:9d:db: 7e:44:a8:4a:55:ce:16:cc:09:f8:b8:f5:42:4d:48: 1f:a5:27:ac:48:aa:af:77:51:3a:b6:1c:c7:5a:9d: e3:46:0a:6c:58:91:4a:b8:b5:d1:b4:6a:79:fe:40: f1:b0:1d:e1:ee:5e:5f:c8:d3:01:29:98:92:72:12: e0:6c:1a:1c:d0:f5:ce:42:55:87:09:d1:70:1e:75: bf:53:f2:a6:1c:0d:52:bc:4e:d1:13:ab:e7:4f:e0: 15:f1:b7:9d:7a:48:b7:e7:7c:ae:d0:62:4b:b5:1b: bb:75:62:6c:f4:bf:11:98:50:f6:9e:36:59:8c:ed: e6:79:b6:6e:f1:14:97:19:a9:2a:91:2a:aa:74:99: c4:6c:e7:cc:d2:06:5f:e1:91:f4:91:2a:5a:ab:c6: 8d:7a:de:8b:e6:d7:fb:ff:74:e4:d4:73:68:24:b2: 10:c4:2a:2a:39:9c:84:36:3c:a7:72:b4:21:b2:6c: a0:b4:9c:6a:cc:a1:a7:51:ca:52:0f:93:92:c7:e5: b4:8c:58:39:dc:69:fb:1f:2f:94:d4:c5:66:cb:13: 38:fa:bc:82:5a:05:a3:4f:04:74:99:63:f9:b3:f9: 2b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:BB:8C:31:EB:94:57:53:4F:8B:06:B8:E5:63:1C:FB:07:8F:59:57 X509v3 Authority Key Identifier: keyid:3D:02:63:C9:57:5C:BD:01:12:63:AE:88:83:9A:78:88:B7:4F:A0:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PQJjyVdcvQESY66Ig5p4iLdPoHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:11:3d:4e:6b:e0:18:d3:1c:af:30:5a:35:02:31:4d:3b:5c: d1:06:c0:06:db:c4:f8:6f:03:37:44:69:c8:12:13:43:e8:72: e2:95:26:ab:bb:e2:cf:01:1a:2e:70:57:84:95:90:9a:c1:7a: b5:1d:28:66:f5:9c:43:4a:56:78:98:29:10:d8:91:f3:68:96: c8:7a:74:15:c0:a3:72:c4:1f:a9:45:cf:0a:d2:b4:cf:a2:ad: 89:d2:2b:8e:73:54:02:72:f9:28:0a:ce:0a:e1:89:9e:cd:d1: 31:7a:59:48:46:27:37:12:be:52:5b:58:8d:69:c9:43:c1:53: 23:c0:1a:b5:2c:a6:3d:c4:0b:d4:17:f4:8d:b3:6c:2f:72:1a: ec:74:3b:2b:16:8b:13:bf:ee:5f:e3:80:c2:e8:f4:18:88:1c: bf:09:3c:a4:ea:5e:45:e3:90:b9:4f:0f:23:ea:fa:cd:bd:59: 09:a6:b5:6c:dc:1d:d2:fb:b0:6d:14:19:89:b8:21:9c:14:01: 53:43:03:b7:a3:d5:40:4f:4e:57:6c:f5:53:28:68:8a:97:a7: 66:bb:79:fa:ce:90:70:2e:cc:8f:46:d7:1a:7f:52:a8:aa:0b: 85:b4:75:ef:5b:4c:cb:0e:65:76:29:3f:2b:6b:49:a2:b1:0c: c1:09:74:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIi2e4937q+BbcGuJPoqQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkMDI2M2M5NTc1Y2JkMDExMjYzYWU4ODgzOWE3ODg4Yjc0 ZmEwNzYwHhcNMjYwMjA5MTYwMDM5WhcNMjYwMjEwMTYwMDM5WjAzMTEwLwYDVQQD Eyg5NWJiOGMzMWViOTQ1NzUzNGY4YjA2YjhlNTYzMWNmYjA3OGY1OTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4qGsPsL6F1bKBpWkskZgansjmwk 2ZItvUtcndt+RKhKVc4WzAn4uPVCTUgfpSesSKqvd1E6thzHWp3jRgpsWJFKuLXR tGp5/kDxsB3h7l5fyNMBKZiSchLgbBoc0PXOQlWHCdFwHnW/U/KmHA1SvE7RE6vn T+AV8bedeki353yu0GJLtRu7dWJs9L8RmFD2njZZjO3mebZu8RSXGakqkSqqdJnE bOfM0gZf4ZH0kSpaq8aNet6L5tf7/3Tk1HNoJLIQxCoqOZyENjyncrQhsmygtJxq zKGnUcpSD5OSx+W0jFg53Gn7Hy+U1MVmyxM4+ryCWgWjTwR0mWP5s/kr/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJW7jDHrlFdTT4sGuOVjHPsHj1lXMB8GA1UdIwQY MBaAFD0CY8lXXL0BEmOuiIOaeIi3T6B2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFFKanlWZGN2UUVTWTY2SWc1cDRpTGRQb0hZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8zNzQyM2EtMDUzNy00NWY0LTk5MTUt MTJmNGU2MjczODc3LzEvUFFKanlWZGN2UUVTWTY2SWc1cDRpTGRQb0hZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy8zNzQyM2EtMDUzNy00NWY0LTk5MTUtMTJmNGU2MjczODc3 LzEvUFFKanlWZGN2UUVTWTY2SWc1cDRpTGRQb0hZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHhE9Tmvg GNMcrzBaNQIxTTtc0QbABtvE+G8DN0RpyBITQ+hy4pUmq7vizwEaLnBXhJWQmsF6 tR0oZvWcQ0pWeJgpENiR82iWyHp0FcCjcsQfqUXPCtK0z6KtidIrjnNUAnL5KArO CuGJns3RMXpZSEYnNxK+UltYjWnJQ8FTI8AatSymPcQL1Bf0jbNsL3Ia7HQ7KxaL E7/uX+OAwuj0GIgcvwk8pOpeReOQuU8PI+r6zb1ZCaa1bNwd0vuwbRQZibghnBQB U0MDt6PVQE9OV2z1UyhoipenZrt5+s6QcC7Mj0bXGn9SqKoLhbR171tMyw5ldik/ K2tJorEMwQl0Cg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:30 2026 by rpki-client