This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft File: PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft (raw, json) Hash identifier: pMuTECHUCmTZ+yo/ozr8R4o/syKda9GcSRuiy1Aq/9Y= Subject key identifier: 05:C7:F1:7C:BD:28:8C:AC:D0:85:10:62:D5:C3:8E:1C:46:D5:33:01 Authority key identifier: 3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78 Certificate issuer: /CN=3d4fb91656dded5a0afaf0710d26a8df636ee078 Certificate serial: 019C43FDCDCBD2AD2EEE204D47E02BAA59E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft Manifest number: 06FC Signing time: Mon 09 Feb 2026 20:00:32 +0000 Manifest this update: Mon 09 Feb 2026 20:00:32 +0000 Manifest next update: Tue 10 Feb 2026 20:00:32 +0000 Files and hashes: 1: PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl (hash: ziF+VFXYO4MHYnWgqvvq2sP/XL5p1x2+CGDEvyw0ePQ=) 2: ZOFtNvohh1GT6QmRpbTj8yFColo.roa (hash: icnN57OgCydR3QaLKU2WG6f0DKQefqL0klzmHG6LRNw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:cd:cb:d2:ad:2e:ee:20:4d:47:e0:2b:aa:59:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d4fb91656dded5a0afaf0710d26a8df636ee078 Validity Not Before: Feb 9 20:00:32 2026 GMT Not After : Feb 10 20:00:32 2026 GMT Subject: CN=05c7f17cbd288cacd0851062d5c38e1c46d53301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4f:4f:b9:76:6b:f6:99:63:44:aa:cd:f1:39: 83:7b:d5:a6:80:89:b0:ec:06:a4:5a:4b:f5:24:94: 3c:ef:15:03:73:77:84:68:72:93:67:34:52:68:4c: 6f:6c:29:3d:15:c4:31:c7:e7:e2:ae:09:29:f1:ea: 6e:f8:ab:65:e5:ce:ce:bc:f7:44:16:25:a7:08:65: c4:5e:36:0e:65:fa:d1:8a:a4:db:81:55:3b:c8:8a: f9:90:d2:c3:67:fc:50:41:78:35:ab:7e:c5:64:1a: ea:f9:10:5f:20:98:d7:e5:d2:50:d4:9b:94:23:57: 1d:44:15:a9:c9:42:b7:3f:16:c8:df:93:0e:e1:ff: fa:90:2a:dc:47:83:41:3b:b2:33:43:93:0c:f4:35: 1b:a8:f4:90:b5:c6:e0:da:cf:72:9c:d9:13:82:59: ba:fb:d1:9a:e4:7c:22:16:d1:48:5b:e4:d8:97:f3: 51:56:fb:8c:f5:94:a7:68:0d:bc:f6:6b:3e:ae:2d: 37:b5:47:46:00:4b:ee:c5:8e:fa:ac:b1:9b:13:1a: a1:45:37:18:0a:93:43:3a:51:32:13:04:1d:d6:3e: 91:93:dc:fe:bb:0a:77:ec:0a:7e:e6:61:fe:ee:b0: 02:ab:10:a8:72:69:1c:95:62:2f:22:ba:10:f9:3d: 34:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C7:F1:7C:BD:28:8C:AC:D0:85:10:62:D5:C3:8E:1C:46:D5:33:01 X509v3 Authority Key Identifier: keyid:3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:7b:e7:1c:bf:a2:15:cc:47:21:58:48:37:dd:b8:11:72:84: 23:9b:bf:8b:61:c9:86:a8:9d:8e:c3:b8:c8:a0:9e:e6:4e:0e: 8d:fe:41:69:52:c9:7c:82:e5:73:c7:ff:aa:99:be:56:09:3a: 61:60:4d:8d:f6:b4:a1:5f:ba:32:f8:9b:a5:8d:71:c9:a6:ba: 76:91:b6:e6:c1:72:a0:00:cc:04:11:94:20:d5:15:53:bb:b1: db:83:c9:a0:81:58:48:92:cc:0b:64:f5:7f:76:98:84:72:ef: 1f:c4:c3:5f:c4:03:0b:04:66:8b:6c:91:33:57:7f:a5:2e:99: cc:de:31:f1:3f:df:67:99:1e:e0:64:c1:c6:9c:ba:49:80:4b: ce:39:32:62:f7:fb:6e:c5:d2:b4:a6:9e:f4:85:fc:fc:bb:11: f1:25:6d:ea:a7:6a:fc:ca:bb:e6:e1:a2:f7:d4:af:35:51:98: 27:ec:fa:a9:f5:9a:2f:81:cc:b3:8d:a1:98:61:a9:de:6a:25: f8:f0:a4:2d:d5:c8:a5:d6:b7:a3:2a:a0:b8:ca:47:52:bc:02: c3:11:fa:eb:e3:78:82:1f:bc:ba:0b:22:b4:09:e3:43:52:d4: 98:f0:90:01:0b:bb:1b:81:06:10:87:fc:f1:08:6d:d5:16:77: 48:fe:6f:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/c3L0q0u7iBNR+ArqlnmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkNGZiOTE2NTZkZGVkNWEwYWZhZjA3MTBkMjZhOGRmNjM2 ZWUwNzgwHhcNMjYwMjA5MjAwMDMyWhcNMjYwMjEwMjAwMDMyWjAzMTEwLwYDVQQD EygwNWM3ZjE3Y2JkMjg4Y2FjZDA4NTEwNjJkNWMzOGUxYzQ2ZDUzMzAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA109PuXZr9pljRKrN8TmDe9WmgImw 7AakWkv1JJQ87xUDc3eEaHKTZzRSaExvbCk9FcQxx+firgkp8epu+Ktl5c7OvPdE FiWnCGXEXjYOZfrRiqTbgVU7yIr5kNLDZ/xQQXg1q37FZBrq+RBfIJjX5dJQ1JuU I1cdRBWpyUK3PxbI35MO4f/6kCrcR4NBO7IzQ5MM9DUbqPSQtcbg2s9ynNkTglm6 +9Ga5HwiFtFIW+TYl/NRVvuM9ZSnaA289ms+ri03tUdGAEvuxY76rLGbExqhRTcY CpNDOlEyEwQd1j6Rk9z+uwp37Ap+5mH+7rACqxCocmkclWIvIroQ+T00HQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAXH8Xy9KIys0IUQYtXDjhxG1TMBMB8GA1UdIwQY MBaAFD1PuRZW3e1aCvrwcQ0mqN9jbuB4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi85MmUwNjgtNGM5ZC00YTdlLWE5MmYt NTJiODVjZjNmYjc4LzEvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi85MmUwNjgtNGM5ZC00YTdlLWE5MmYtNTJiODVjZjNmYjc4 LzEvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuHvnHL+i FcxHIVhIN924EXKEI5u/i2HJhqidjsO4yKCe5k4Ojf5BaVLJfILlc8f/qpm+Vgk6 YWBNjfa0oV+6MvibpY1xyaa6dpG25sFyoADMBBGUINUVU7ux24PJoIFYSJLMC2T1 f3aYhHLvH8TDX8QDCwRmi2yRM1d/pS6ZzN4x8T/fZ5ke4GTBxpy6SYBLzjkyYvf7 bsXStKae9IX8/LsR8SVt6qdq/Mq75uGi99SvNVGYJ+z6qfWaL4HMs42hmGGp3mol +PCkLdXIpda3oyqguMpHUrwCwxH66+N4gh+8ugsitAnjQ1LUmPCQAQu7G4EGEIf8 8Qht1RZ3SP5vzQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:45:19 2026 by rpki-client