This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft File: pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft (raw, json) Hash identifier: yJGHwJ30ObgT1fPNgXP2KDoDB/MEZA9A79tD+ZoUbZs= Subject key identifier: 66:A6:CB:E2:23:F6:2E:69:53:36:E3:DC:72:49:AB:63:BE:B1:F6:B1 Authority key identifier: A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1 Certificate issuer: /CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1 Certificate serial: 019C4390BBED11770AFD70DE3D53076F0C6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft Manifest number: 04A4 Signing time: Mon 09 Feb 2026 18:01:24 +0000 Manifest this update: Mon 09 Feb 2026 18:01:24 +0000 Manifest next update: Tue 10 Feb 2026 18:01:24 +0000 Files and hashes: 1: pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl (hash: 4PHIZ5m/hhE3o2xCuK79h86QZ5uuZIt/fIxPNBYNDLw=) 2: t83QwmnsF94N1e2quVeWFqxv3Q4.roa (hash: S00r80MkvAcmYicBdHFKql/0j/7ix5B+Lwxl0Q6uMXI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:bb:ed:11:77:0a:fd:70:de:3d:53:07:6f:0c:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1 Validity Not Before: Feb 9 18:01:24 2026 GMT Not After : Feb 10 18:01:24 2026 GMT Subject: CN=66a6cbe223f62e695336e3dc7249ab63beb1f6b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d5:5c:46:cf:ee:d6:dc:48:12:d2:8b:e3:27: 1c:54:c4:73:04:cf:4a:5a:2a:42:75:cd:26:2b:29: e3:e3:1b:66:cd:62:b3:76:32:ea:6c:7b:10:18:b8: 78:b2:89:18:09:09:6d:36:5a:6d:98:4f:07:e3:ab: 00:03:89:4c:02:fd:90:48:ab:ea:b8:8f:4f:ef:92: 51:09:e7:b9:f8:b5:f4:eb:54:50:1e:cb:84:bf:d1: bd:76:3e:65:10:33:27:b2:3a:3e:9f:88:be:77:0e: fc:77:64:b8:d3:11:54:ba:3a:6f:aa:dc:83:d6:9f: b2:d6:bc:7d:d0:29:f5:6c:73:6a:ea:c8:05:a9:d0: 0c:7a:21:e1:aa:ea:de:ad:1f:ce:94:8f:16:34:f5: e9:89:30:36:c2:af:2e:f8:8c:c1:49:b6:39:64:b5: 0f:ab:14:76:ae:20:c4:4a:6d:d6:84:b8:e2:10:c7: f6:1c:e9:4c:92:1b:92:c7:ab:88:58:31:c1:7e:7e: 26:b7:63:5c:32:36:e8:a0:03:9b:3f:de:c1:52:77: 4c:da:ca:a0:38:15:14:42:a2:f4:a4:c5:eb:a9:7d: 73:c0:5b:fc:39:7f:a3:23:b0:79:68:d3:3a:43:b0: 91:d1:6b:70:aa:22:c6:71:e7:a2:67:93:d1:59:5a: ec:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A6:CB:E2:23:F6:2E:69:53:36:E3:DC:72:49:AB:63:BE:B1:F6:B1 X509v3 Authority Key Identifier: keyid:A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:fb:86:c4:67:6d:74:99:33:52:da:84:08:c1:ac:64:e0:90: c1:6a:ab:6e:60:50:f8:a1:f5:b9:6a:50:c8:42:1e:24:fd:6f: 01:78:b5:b3:38:89:13:98:c2:e5:5c:03:b5:cb:f3:f0:bf:82: c3:b0:7c:89:7a:76:3e:0c:dd:05:9b:54:9d:c2:e0:00:0d:97: ca:99:c0:ea:63:23:23:46:6e:b3:cf:22:a9:89:b3:20:9f:4a: e0:15:01:b4:fb:ca:2e:6d:11:93:26:35:42:b1:13:4e:e5:d5: f5:bf:89:97:00:58:6f:c8:c6:c3:cd:96:f6:54:98:56:7d:a1: cc:00:e3:58:d8:c9:85:a7:62:6d:ed:32:4b:37:ae:f6:02:10: 1e:7a:16:94:a9:b0:93:dc:e4:4d:d4:45:66:0f:6f:4b:bc:79: e7:e0:a8:16:2d:af:43:26:c2:04:ee:91:2f:a5:0a:70:74:3c: b3:f5:cd:76:87:4b:e2:b3:52:2e:4e:bc:07:03:a9:0b:7e:a6: c2:85:79:21:2e:0c:7b:63:b4:ab:c0:90:47:b3:2d:35:30:32: 94:5b:b1:cc:a2:10:e9:fb:b3:55:0c:5d:ef:2e:96:4e:97:8f: a0:f8:12:b6:48:c3:6e:25:b4:be:0a:7e:91:7e:1e:e6:c0:3d: ee:f2:48:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkLvtEXcK/XDePVMHbwxsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZjU1MzNhNTI3YjI2NGNhMmU4MzczMjg1ZDc4MGQzM2Ey YmQwYTEwHhcNMjYwMjA5MTgwMTI0WhcNMjYwMjEwMTgwMTI0WjAzMTEwLwYDVQQD Eyg2NmE2Y2JlMjIzZjYyZTY5NTMzNmUzZGM3MjQ5YWI2M2JlYjFmNmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNVcRs/u1txIEtKL4yccVMRzBM9K WipCdc0mKynj4xtmzWKzdjLqbHsQGLh4sokYCQltNlptmE8H46sAA4lMAv2QSKvq uI9P75JRCee5+LX061RQHsuEv9G9dj5lEDMnsjo+n4i+dw78d2S40xFUujpvqtyD 1p+y1rx90Cn1bHNq6sgFqdAMeiHhqurerR/OlI8WNPXpiTA2wq8u+IzBSbY5ZLUP qxR2riDESm3WhLjiEMf2HOlMkhuSx6uIWDHBfn4mt2NcMjbooAObP97BUndM2sqg OBUUQqL0pMXrqX1zwFv8OX+jI7B5aNM6Q7CR0WtwqiLGceeiZ5PRWVrsEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGamy+Ij9i5pUzbj3HJJq2O+sfaxMB8GA1UdIwQY MBaAFKT1UzpSeyZMoug3MoXXgNM6K9ChMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9hZmMzYzgtZTk1Mi00MDcwLWE1NDYt NDI0NDYyYmM5NDliLzEvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9hZmMzYzgtZTk1Mi00MDcwLWE1NDYtNDI0NDYyYmM5NDli LzEvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABPuGxGdt dJkzUtqECMGsZOCQwWqrbmBQ+KH1uWpQyEIeJP1vAXi1sziJE5jC5VwDtcvz8L+C w7B8iXp2PgzdBZtUncLgAA2XypnA6mMjI0Zus88iqYmzIJ9K4BUBtPvKLm0RkyY1 QrETTuXV9b+JlwBYb8jGw82W9lSYVn2hzADjWNjJhadibe0ySzeu9gIQHnoWlKmw k9zkTdRFZg9vS7x55+CoFi2vQybCBO6RL6UKcHQ8s/XNdodL4rNSLk68BwOpC36m woV5IS4Me2O0q8CQR7MtNTAylFuxzKIQ6fuzVQxd7y6WTpePoPgStkjDbiW0vgp+ kX4e5sA97vJIgA== -----END CERTIFICATE-----Generated at Tue Feb 10 02:58:59 2026 by rpki-client