This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft File: PzTUjYQaUqQifUn6PvhbpavyIkg.mft (raw, json) Hash identifier: +t23zfUy++YG7IJTUqEhzmcTSu5DT1aBlwn6D3VqDw8= Subject key identifier: F2:AA:B9:DF:72:62:04:5B:5A:6A:B7:4A:0D:D2:49:FA:F7:D6:3E:31 Authority key identifier: 3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48 Certificate issuer: /CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248 Certificate serial: 019C43C6FD2D829CA26BF6A7608E9ACD6954 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft Manifest number: 0727 Signing time: Mon 09 Feb 2026 19:00:40 +0000 Manifest this update: Mon 09 Feb 2026 19:00:40 +0000 Manifest next update: Tue 10 Feb 2026 19:00:40 +0000 Files and hashes: 1: PzTUjYQaUqQifUn6PvhbpavyIkg.crl (hash: +xUQOJrqR7xEYqZPP8/jHTg80oPN4GB4vJrq77jwqnw=) 2: VJDz-qaUophwYHtBPQA4i8cS3MA.roa (hash: V9aVBC2KoE26lQ0VCkG45owqJDBEmBnHXtHFUy4VDVA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:fd:2d:82:9c:a2:6b:f6:a7:60:8e:9a:cd:69:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248 Validity Not Before: Feb 9 19:00:40 2026 GMT Not After : Feb 10 19:00:40 2026 GMT Subject: CN=f2aab9df7262045b5a6ab74a0dd249faf7d63e31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b4:7a:a6:c0:ab:5f:77:2d:cc:ff:bf:92:87: 35:ea:72:12:68:c5:9a:3c:d4:3b:29:ec:e8:d7:81: a0:72:00:6d:82:39:b7:54:8a:eb:18:6e:e9:e2:66: 3f:a9:eb:f2:d3:bb:87:5e:4e:3e:6a:8e:de:37:62: 30:50:f3:8e:29:fd:01:f7:fa:0d:6d:e6:05:4c:5d: 31:cd:5b:d9:05:89:59:a5:b2:26:3b:ba:46:21:18: 98:73:34:54:4e:ad:43:e1:b6:85:23:5b:85:32:79: a1:b8:47:dd:48:09:c1:14:4b:64:5c:4b:8a:c8:8f: 81:0d:49:3c:c9:23:8f:6c:11:11:42:a5:34:d3:2d: 8f:6b:ba:33:97:e0:08:ce:d9:70:5c:cf:52:06:93: 87:bc:1e:8e:8d:66:c5:10:de:da:de:a3:a0:50:db: cd:26:1c:fc:9b:28:68:1b:d7:82:81:74:5f:0d:14: 8b:6c:bc:30:f9:2a:a8:46:cf:07:76:74:b3:2e:88: 4c:ed:6b:a0:60:62:d6:30:9d:69:34:b5:43:5f:da: 62:c7:97:3a:6e:b2:8c:2a:76:e1:3f:c5:17:b3:a4: c2:f5:e7:5b:5c:1f:70:fb:54:c1:d3:33:52:26:e8: 60:29:9a:64:f8:c6:f0:09:06:bb:98:c4:22:6a:8e: e3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:AA:B9:DF:72:62:04:5B:5A:6A:B7:4A:0D:D2:49:FA:F7:D6:3E:31 X509v3 Authority Key Identifier: keyid:3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:87:eb:c2:0c:33:a3:57:55:63:e4:85:7e:9c:59:53:8c:6c: ee:e5:bd:f2:81:7c:d1:d6:89:7f:d6:05:27:27:02:ff:5f:0f: f9:a6:00:7c:14:aa:1a:8e:83:b1:ea:ba:20:1b:62:e6:99:ec: bf:38:c5:99:0c:ee:46:36:7f:b5:cf:77:93:fa:d4:13:89:43: 55:fc:70:17:0d:68:26:54:25:98:59:a8:76:9a:e0:33:93:30: 98:cd:b7:7e:6f:ad:39:e0:17:14:7e:e6:65:e2:5e:f5:1d:f8: 0e:1d:f7:ba:87:d0:62:de:8e:cd:7d:f1:93:dd:8d:5e:0c:97: 24:54:a8:f6:c9:ac:8c:d8:55:07:c3:0a:27:a0:69:9f:4e:98: e3:52:5b:44:07:25:30:92:64:c6:8c:4f:ba:fb:93:65:18:3d: 46:3b:1f:f0:80:13:35:8a:34:85:60:f8:a7:b3:ec:0e:8b:21: 3d:67:95:e3:19:9f:65:15:f6:ab:0f:26:57:8d:31:d6:03:36: 3e:97:46:48:d3:00:f3:00:0e:e7:d6:e4:4a:fb:a2:92:e6:4f: 6d:8a:ad:9e:57:09:40:c9:ba:bc:29:80:77:be:a9:f7:d7:f9: 77:80:16:7b:6a:9c:9c:37:33:e9:6c:69:22:d8:02:2d:b5:01: 40:73:5d:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxv0tgpyia/anYI6azWlUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmMzRkNDhkODQxYTUyYTQyMjdkNDlmYTNlZjg1YmE1YWJm MjIyNDgwHhcNMjYwMjA5MTkwMDQwWhcNMjYwMjEwMTkwMDQwWjAzMTEwLwYDVQQD EyhmMmFhYjlkZjcyNjIwNDViNWE2YWI3NGEwZGQyNDlmYWY3ZDYzZTMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7R6psCrX3ctzP+/koc16nISaMWa PNQ7Kezo14GgcgBtgjm3VIrrGG7p4mY/qevy07uHXk4+ao7eN2IwUPOOKf0B9/oN beYFTF0xzVvZBYlZpbImO7pGIRiYczRUTq1D4baFI1uFMnmhuEfdSAnBFEtkXEuK yI+BDUk8ySOPbBERQqU00y2Pa7ozl+AIztlwXM9SBpOHvB6OjWbFEN7a3qOgUNvN Jhz8myhoG9eCgXRfDRSLbLww+SqoRs8HdnSzLohM7WugYGLWMJ1pNLVDX9pix5c6 brKMKnbhP8UXs6TC9edbXB9w+1TB0zNSJuhgKZpk+MbwCQa7mMQiao7jgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPKqud9yYgRbWmq3Sg3SSfr31j4xMB8GA1UdIwQY MBaAFD801I2EGlKkIn1J+j74W6Wr8iJIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHpUVWpZUWFVcVFpZlVuNlB2aGJwYXZ5SWtnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lYjcwMzctZGVlZC00YTIzLWIzYTQt MDQ1OGMxNWNmZDBiLzEvUHpUVWpZUWFVcVFpZlVuNlB2aGJwYXZ5SWtnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC9lYjcwMzctZGVlZC00YTIzLWIzYTQtMDQ1OGMxNWNmZDBi LzEvUHpUVWpZUWFVcVFpZlVuNlB2aGJwYXZ5SWtnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeIfrwgwz o1dVY+SFfpxZU4xs7uW98oF80daJf9YFJycC/18P+aYAfBSqGo6Dseq6IBti5pns vzjFmQzuRjZ/tc93k/rUE4lDVfxwFw1oJlQlmFmodprgM5MwmM23fm+tOeAXFH7m ZeJe9R34Dh33uofQYt6OzX3xk92NXgyXJFSo9smsjNhVB8MKJ6Bpn06Y41JbRAcl MJJkxoxPuvuTZRg9Rjsf8IATNYo0hWD4p7PsDoshPWeV4xmfZRX2qw8mV40x1gM2 PpdGSNMA8wAO59bkSvuikuZPbYqtnlcJQMm6vCmAd76p99f5d4AWe2qcnDcz6Wxp ItgCLbUBQHNdJA== -----END CERTIFICATE-----Generated at Mon Feb 9 23:58:44 2026 by rpki-client