This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft File: POwGHF7VbcoHdT_ktbjAkNl60OE.mft (raw, json) Hash identifier: ZDJuF5X8wlkz0H2MqQa3LlxGDsCMPajVuhjgV8NzplU= Subject key identifier: D9:7A:11:02:85:44:77:16:8E:D8:06:DE:EB:5C:FA:CD:CC:A7:BD:3D Authority key identifier: 3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1 Certificate issuer: /CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1 Certificate serial: 019C4390709DB005BC20CD76E5B715CE570C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft Manifest number: 07B3 Signing time: Mon 09 Feb 2026 18:01:05 +0000 Manifest this update: Mon 09 Feb 2026 18:01:05 +0000 Manifest next update: Tue 10 Feb 2026 18:01:05 +0000 Files and hashes: 1: POwGHF7VbcoHdT_ktbjAkNl60OE.crl (hash: zfV6rkkHlWe3p3IjAb/BXQQgOUSaRG3ebES3vXHkkpw=) 2: cLRoM7XLCk4C31zvG0Wgt7yjUMo.roa (hash: u4HrWzSOjheYxRy02gM2rX531WbutVdizyrj+q6Vb4A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:70:9d:b0:05:bc:20:cd:76:e5:b7:15:ce:57:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1 Validity Not Before: Feb 9 18:01:05 2026 GMT Not After : Feb 10 18:01:05 2026 GMT Subject: CN=d97a1102854477168ed806deeb5cfacdcca7bd3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7f:ae:8a:a7:15:05:b1:0e:91:fa:43:98:c8: e2:73:ab:0d:8c:da:22:fa:fe:54:64:7d:34:d1:e8: 40:54:a7:db:96:72:a2:4f:d7:0b:ab:d7:57:3d:97: 8d:69:f7:0d:b4:c8:25:bf:a9:0c:fc:b3:cf:cc:e4: f5:d1:d2:5f:09:f7:54:75:ff:0f:ea:d9:69:ee:36: 47:5e:18:3d:9a:18:f7:c7:e6:bc:99:d4:4a:5d:11: 9f:ce:ea:84:9c:89:57:32:35:33:f7:49:a4:3d:b4: 8a:ed:22:04:48:e5:fd:97:21:71:f1:48:58:46:61: f5:bf:da:ef:2b:15:6e:7e:e9:42:2d:2a:cf:1d:38: 5c:03:ff:a1:a0:6b:de:8c:2b:65:a2:4b:29:7a:89: 4f:96:c7:0e:71:ca:3e:5f:eb:71:c7:17:c1:9d:1f: 51:27:de:b7:5a:73:59:34:9a:0f:67:78:b7:47:28: 1d:05:36:fd:59:b2:1c:a7:3c:36:ad:34:16:54:5e: 42:74:88:6c:b9:19:c6:31:26:75:d2:15:35:70:94: 4d:b7:19:c5:07:59:b0:7f:2f:ad:00:b1:09:39:83: 7a:13:73:4d:96:7e:24:19:a7:e1:e9:58:50:4f:6c: ac:44:16:c5:e3:c7:e3:85:4b:d5:59:31:75:0f:59: 9e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7A:11:02:85:44:77:16:8E:D8:06:DE:EB:5C:FA:CD:CC:A7:BD:3D X509v3 Authority Key Identifier: keyid:3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:5a:fb:02:15:a2:e9:09:7e:7b:2b:4b:8f:23:96:a2:6c:15: 17:47:9d:e6:95:03:9b:ae:48:9c:0b:dd:70:f7:e7:72:5c:b3: 41:58:a6:b3:fb:ba:56:21:e8:99:b9:cd:7a:67:20:ed:57:56: 14:ac:3c:3c:11:e8:0a:1e:fa:7b:58:54:ff:7a:0f:9e:09:8b: 2b:22:12:7b:66:7d:c1:ed:e2:13:fb:9d:62:9d:ba:f6:34:63: de:13:68:cf:37:d0:5c:61:ae:26:71:95:7f:27:26:14:56:ef: a7:54:6a:9f:9c:30:d1:17:2e:40:4b:f6:08:93:1d:de:88:24: d9:c6:13:6c:c2:d8:de:97:1b:77:59:3f:88:44:04:1f:bb:0c: c4:15:31:62:b1:dc:42:70:50:8c:44:39:74:56:82:34:4e:14: 3a:db:e2:e6:4e:f4:39:e4:c2:d5:3a:43:4a:d0:d3:35:dd:21: ee:25:46:55:74:3c:5b:cf:6b:a8:37:0f:06:72:6c:0d:9c:f9: 2f:fd:91:3a:18:87:d6:42:b3:53:30:31:49:61:43:21:36:0c: 82:8f:88:7d:6a:6b:cf:db:e3:78:2d:3f:ae:19:2a:5e:7d:b2: 65:08:2a:95:74:ac:2d:ac:74:bc:16:e5:1c:09:b8:9e:9d:25: e7:2b:7d:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkHCdsAW8IM125bcVzlcMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjZWMwNjFjNWVkNTZkY2EwNzc1M2ZlNGI1YjhjMDkwZDk3 YWQwZTEwHhcNMjYwMjA5MTgwMTA1WhcNMjYwMjEwMTgwMTA1WjAzMTEwLwYDVQQD EyhkOTdhMTEwMjg1NDQ3NzE2OGVkODA2ZGVlYjVjZmFjZGNjYTdiZDNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA23+uiqcVBbEOkfpDmMjic6sNjNoi +v5UZH000ehAVKfblnKiT9cLq9dXPZeNafcNtMglv6kM/LPPzOT10dJfCfdUdf8P 6tlp7jZHXhg9mhj3x+a8mdRKXRGfzuqEnIlXMjUz90mkPbSK7SIESOX9lyFx8UhY RmH1v9rvKxVufulCLSrPHThcA/+hoGvejCtlokspeolPlscOcco+X+txxxfBnR9R J963WnNZNJoPZ3i3RygdBTb9WbIcpzw2rTQWVF5CdIhsuRnGMSZ10hU1cJRNtxnF B1mwfy+tALEJOYN6E3NNln4kGafh6VhQT2ysRBbF48fjhUvVWTF1D1menwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNl6EQKFRHcWjtgG3utc+s3Mp709MB8GA1UdIwQY MBaAFDzsBhxe1W3KB3U/5LW4wJDZetDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgt ZDY5YzAxMzRmNWE4LzEvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgtZDY5YzAxMzRmNWE4 LzEvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl1r7AhWi 6Ql+eytLjyOWomwVF0ed5pUDm65InAvdcPfnclyzQVims/u6ViHombnNemcg7VdW FKw8PBHoCh76e1hU/3oPngmLKyISe2Z9we3iE/udYp269jRj3hNozzfQXGGuJnGV fycmFFbvp1Rqn5ww0RcuQEv2CJMd3ogk2cYTbMLY3pcbd1k/iEQEH7sMxBUxYrHc QnBQjEQ5dFaCNE4UOtvi5k70OeTC1TpDStDTNd0h7iVGVXQ8W89rqDcPBnJsDZz5 L/2ROhiH1kKzUzAxSWFDITYMgo+IfWprz9vjeC0/rhkqXn2yZQgqlXSsLax0vBbl HAm4np0l5yt9jQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:59 2026 by rpki-client