This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft File: 407DAF8DC897D3F1C43D866EA945305303AD73ED.mft (raw, json) Hash identifier: kRGqXVm6GhjrtjRZFzKWTd4Jwz9qrF92to2QpWB32/g= Subject key identifier: 3C:F4:1D:EA:E4:C0:6D:59:EB:CC:19:76:08:83:67:EF:5A:96:5B:F2 Authority key identifier: 40:7D:AF:8D:C8:97:D3:F1:C4:3D:86:6E:A9:45:30:53:03:AD:73:ED Certificate issuer: /CN=407daf8dc897d3f1c43d866ea945305303ad73ed Certificate serial: 7750423A6D65479EE09335A3366D44907CE6FACD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft Manifest number: 76 Signing time: Mon 09 Feb 2026 14:12:50 +0000 Manifest this update: Mon 09 Feb 2026 14:07:50 +0000 Manifest next update: Tue 10 Feb 2026 15:42:50 +0000 Files and hashes: 1: 323030313a3637383a6531303a3a2f34382d3438203d3e20323038393135.roa (hash: Q+rBjBtdmpkMnJJ1scyQFgFf7p0XTL49lt2rh8zsejE=) 2: 407DAF8DC897D3F1C43D866EA945305303AD73ED.crl (hash: 6cSCAwOas5lbhLiaEtyVQM1saimCmlPYfjiYPyxgM6Y=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.crl rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:50:42:3a:6d:65:47:9e:e0:93:35:a3:36:6d:44:90:7c:e6:fa:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=407daf8dc897d3f1c43d866ea945305303ad73ed Validity Not Before: Feb 9 14:07:50 2026 GMT Not After : Feb 10 15:42:50 2026 GMT Subject: CN=3CF41DEAE4C06D59EBCC1976088367EF5A965BF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6a:55:53:38:f3:65:99:06:cb:e0:59:70:01: 25:ea:b1:49:a9:a4:7a:70:30:de:6a:f0:2e:38:b0: f4:b7:d4:98:58:00:35:83:9f:0d:a4:c1:c4:1b:c8: 1c:c2:db:d9:06:ac:02:34:cb:51:dd:0a:e9:48:17: 92:bf:b8:bc:0e:6d:b3:59:89:8a:e7:61:47:ab:d5: 9f:eb:89:bf:f0:f8:f9:24:60:58:b5:7c:62:0c:16: 83:44:4f:5d:ed:29:b3:0d:0e:fa:ef:ec:74:5d:24: 01:f2:07:b0:c9:c1:61:41:e8:5d:0a:67:3c:c0:1b: 0e:fb:ef:0f:93:2d:41:76:fd:65:14:c7:a9:21:e5: 05:2a:75:15:37:f9:c7:89:b7:f5:0c:a8:ef:de:63: 5b:42:c4:fb:95:59:4e:8d:16:fc:7f:10:ae:9f:1a: 4c:9d:ce:54:36:a2:ae:eb:dd:29:45:f0:a5:a0:d7: 00:1b:ca:1e:5e:a4:cf:9e:13:a5:28:fa:d2:9b:b8: 8c:47:f8:8f:58:4d:dc:08:0e:2f:fc:a0:1c:3e:bc: 04:f8:2a:c0:26:07:f2:ef:9f:fc:f8:0a:0a:2a:58: 8f:f9:a3:01:4c:54:01:2e:8c:8b:15:bf:7c:ed:06: 95:2f:68:d0:35:66:eb:a0:59:13:d2:16:c2:c3:a5: 61:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F4:1D:EA:E4:C0:6D:59:EB:CC:19:76:08:83:67:EF:5A:96:5B:F2 X509v3 Authority Key Identifier: keyid:40:7D:AF:8D:C8:97:D3:F1:C4:3D:86:6E:A9:45:30:53:03:AD:73:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:a6:dc:0f:3a:55:02:65:4f:1c:73:bb:a5:57:79:c7:eb:22: e3:b5:31:d8:3f:21:4b:45:a1:95:a5:88:e5:49:f6:80:74:c7: bf:f1:71:72:44:a5:2d:de:e5:ab:b0:b7:8a:31:2f:2f:84:f3: 94:5a:56:f2:d1:cc:83:58:83:40:0d:0a:e5:de:cb:55:33:5f: 4d:8b:dd:fe:01:85:ad:91:8e:07:d5:15:4f:e6:22:09:d0:e5: b3:c7:16:e4:a8:1f:fd:20:19:d3:72:53:62:27:d2:f9:9e:b9: ae:2a:44:19:2c:8a:e6:c7:01:c1:f2:2e:89:b1:58:66:13:16: 9d:09:56:76:03:fe:d3:75:5a:ca:85:ef:e0:a6:c1:e2:40:81: 9a:b1:8a:4b:53:6a:d6:42:21:b8:3b:b3:27:98:3d:af:a0:73: 9a:4c:5e:e8:4e:e3:ad:17:69:2a:92:19:d1:ae:71:d1:8e:ba: b3:25:9c:c4:a6:59:a6:c9:4d:b4:0a:52:87:76:4e:20:13:ca: 9c:a6:e1:86:98:69:3a:85:9e:25:56:d2:a7:13:ec:b6:14:ad: 03:9d:65:53:62:2d:5c:28:0d:e1:3a:2c:c9:fd:2e:be:2f:54: ee:b4:82:1a:32:a6:1c:85:5d:79:e9:fc:40:1d:73:2c:e8:b1: cb:b0:11:f5 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUd1BCOm1lR57gkzWjNm1EkHzm+s0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA3ZGFmOGRjODk3ZDNmMWM0M2Q4NjZlYTk0NTMwNTMw M2FkNzNlZDAeFw0yNjAyMDkxNDA3NTBaFw0yNjAyMTAxNTQyNTBaMDMxMTAvBgNV BAMTKDNDRjQxREVBRTRDMDZENTlFQkNDMTk3NjA4ODM2N0VGNUE5NjVCRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlalVTOPNlmQbL4FlwASXqsUmp pHpwMN5q8C44sPS31JhYADWDnw2kwcQbyBzC29kGrAI0y1HdCulIF5K/uLwObbNZ iYrnYUer1Z/rib/w+PkkYFi1fGIMFoNET13tKbMNDvrv7HRdJAHyB7DJwWFB6F0K ZzzAGw777w+TLUF2/WUUx6kh5QUqdRU3+ceJt/UMqO/eY1tCxPuVWU6NFvx/EK6f GkydzlQ2oq7r3SlF8KWg1wAbyh5epM+eE6Uo+tKbuIxH+I9YTdwIDi/8oBw+vAT4 KsAmB/Lvn/z4CgoqWI/5owFMVAEujIsVv3ztBpUvaNA1ZuugWRPSFsLDpWEpAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUPPQd6uTAbVnrzBl2CINn71qWW/IwHwYDVR0j BBgwFoAUQH2vjciX0/HEPYZuqUUwUwOtc+0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWRjY2I0YjAtZTMwZS00MjZjLTg0ZGMtNDY0ZmQxODk5 MTE2LzAvNDA3REFGOERDODk3RDNGMUM0M0Q4NjZFQTk0NTMwNTMwM0FENzNFRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FIMnZqY2lYMF9IRVBZWnVxVVV3VXdP dGMtMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS85ZGNjYjRiMC1l MzBlLTQyNmMtODRkYy00NjRmZDE4OTkxMTYvMC80MDdEQUY4REM4OTdEM0YxQzQz RDg2NkVBOTQ1MzA1MzAzQUQ3M0VELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXabcDzpVAmVPHHO7pVd5 x+si47Ux2D8hS0WhlaWI5Un2gHTHv/FxckSlLd7lq7C3ijEvL4TzlFpW8tHMg1iD QA0K5d7LVTNfTYvd/gGFrZGOB9UVT+YiCdDls8cW5Kgf/SAZ03JTYifS+Z65ripE GSyK5scBwfIuibFYZhMWnQlWdgP+03VayoXv4KbB4kCBmrGKS1Nq1kIhuDuzJ5g9 r6Bzmkxe6E7jrRdpKpIZ0a5x0Y66syWcxKZZpslNtApSh3ZOIBPKnKbhhphpOoWe JVbSpxPsthStA51lU2ItXCgN4Tosyf0uvi9U7rSCGjKmHIVdeen8QB1zLOixy7AR 9Q== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:13 2026 by rpki-client