This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft File: PZlE6PVlGxvS8KngBoZfOmuB62E.mft (raw, json) Hash identifier: T+2r/HYuNcUcBBokVdKeCHIqdDMP3laBzWNTUBq0A9c= Subject key identifier: 60:95:A5:F5:63:11:7F:9F:DA:B4:31:74:12:17:84:84:5C:A2:42:1B Authority key identifier: 3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61 Certificate issuer: /CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61 Certificate serial: 019C40FD3A1678F94DA546205CDFC5F6BA6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 06:01:03 +0000 Manifest this update: Mon 09 Feb 2026 06:01:03 +0000 Manifest next update: Tue 10 Feb 2026 06:01:03 +0000 Files and hashes: 1: PZlE6PVlGxvS8KngBoZfOmuB62E.crl (hash: 6XINmrsSnebnLn/+EjlzBLKkT3XF3QRxTDzO/SrHqpQ=) 2: zdHtSRxpJBMjN_Z0z26JXK0mycs.roa (hash: lc2L7OCAHky1r/MwYr4M0nrrYwYly2np0Be8FYu8I7k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:3a:16:78:f9:4d:a5:46:20:5c:df:c5:f6:ba:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61 Validity Not Before: Feb 9 06:01:03 2026 GMT Not After : Feb 10 06:01:03 2026 GMT Subject: CN=6095a5f563117f9fdab43174121784845ca2421b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3c:e9:03:16:71:d8:0c:8d:d6:63:d2:42:3d: 48:5c:58:38:5c:47:32:a1:48:91:15:22:ec:4d:8d: fd:a2:f8:6a:d0:65:0b:9c:a9:bd:5f:e0:7e:6a:28: 31:45:95:cd:0b:ea:c0:14:2e:11:c0:8c:b5:02:ff: 04:38:08:cf:5d:76:96:ce:ff:a4:36:0e:23:0e:80: bc:b8:95:c7:63:47:c1:aa:be:e0:67:a0:b7:67:8d: d0:38:0d:0e:94:7c:1e:4f:47:72:5f:7b:ba:b6:65: 2c:ba:73:11:7b:26:f6:1d:46:f8:62:c4:01:2c:9a: f2:e4:0c:09:76:c6:4d:d0:8a:8b:44:4a:ac:15:83: 82:4b:b7:07:8a:3f:49:8c:46:8a:fd:e3:d2:66:57: b5:67:2d:b1:d6:92:9c:50:be:32:d8:4d:c3:65:d5: 89:da:3b:fd:d1:52:57:f3:87:04:3d:d9:8a:d1:26: 40:c4:d9:de:18:25:17:9a:16:e3:40:b0:d2:f2:73: d7:7c:66:03:4e:71:fe:a1:45:5f:42:09:fe:e9:37: 9f:fd:2f:38:6f:60:48:2e:28:f5:19:46:6b:17:85: 4e:c6:27:37:02:9c:c4:f4:80:40:9c:5a:40:c1:be: 44:c8:3e:9b:21:57:c0:e6:6c:33:cd:b9:02:55:91: 8f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:95:A5:F5:63:11:7F:9F:DA:B4:31:74:12:17:84:84:5C:A2:42:1B X509v3 Authority Key Identifier: keyid:3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:c8:a8:fa:4c:20:dc:03:6a:6c:1f:cf:00:c5:ad:e8:00:49: 69:39:67:fb:15:70:5e:67:96:0a:8b:ea:e3:f6:21:08:2e:e8: e4:41:a1:9f:ad:67:47:84:d3:45:2d:59:c4:18:d3:fb:57:c0: c8:7d:72:f7:da:00:87:d9:fb:18:cb:46:69:9d:d9:52:08:d8: 5f:9a:9d:5e:f4:49:d9:1d:9b:56:60:33:89:09:d6:5a:a8:e4: 89:48:f1:9f:36:13:e4:57:c7:06:1c:06:95:39:2a:3a:8c:58: 32:7b:d5:b1:0a:93:d6:47:1c:b9:7c:06:3f:8b:74:f5:04:96: 5a:16:28:f0:56:3d:f5:f7:91:1a:a6:e6:68:59:ab:d5:f3:1b: 94:9d:a6:f5:d6:f5:87:6d:b1:7a:da:dc:d6:d7:55:1f:76:63: d3:b1:14:2e:96:ce:2a:d9:b2:21:8c:40:9b:f7:b8:f6:bf:d1: f9:23:c2:d9:64:cf:72:90:f6:ce:51:7f:ed:0b:36:8b:51:d7: 4e:7d:b2:59:33:53:c7:6a:ba:e1:3a:45:19:00:9d:8b:49:9a: 3c:c7:f4:f0:44:4e:71:08:75:76:d9:24:c7:e8:04:5b:d7:7a: c4:62:33:08:5d:ac:d2:0a:8c:7b:b9:05:10:44:b6:7f:e8:7d: dc:5d:2a:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/ToWePlNpUYgXN/F9rptMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkOTk0NGU4ZjU2NTFiMWJkMmYwYTllMDA2ODY1ZjNhNmI4 MWViNjEwHhcNMjYwMjA5MDYwMTAzWhcNMjYwMjEwMDYwMTAzWjAzMTEwLwYDVQQD Eyg2MDk1YTVmNTYzMTE3ZjlmZGFiNDMxNzQxMjE3ODQ4NDVjYTI0MjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozzpAxZx2AyN1mPSQj1IXFg4XEcy oUiRFSLsTY39ovhq0GULnKm9X+B+aigxRZXNC+rAFC4RwIy1Av8EOAjPXXaWzv+k Ng4jDoC8uJXHY0fBqr7gZ6C3Z43QOA0OlHweT0dyX3u6tmUsunMReyb2HUb4YsQB LJry5AwJdsZN0IqLREqsFYOCS7cHij9JjEaK/ePSZle1Zy2x1pKcUL4y2E3DZdWJ 2jv90VJX84cEPdmK0SZAxNneGCUXmhbjQLDS8nPXfGYDTnH+oUVfQgn+6Tef/S84 b2BILij1GUZrF4VOxic3ApzE9IBAnFpAwb5EyD6bIVfA5mwzzbkCVZGPiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGCVpfVjEX+f2rQxdBIXhIRcokIbMB8GA1UdIwQY MBaAFD2ZROj1ZRsb0vCp4AaGXzprgethMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFpsRTZQVmxHeHZTOEtuZ0JvWmZPbXVCNjJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC80YmZmNzItYmE1Yi00NTI4LThjNDIt N2Y2YjlmMTA0MGZkLzEvUFpsRTZQVmxHeHZTOEtuZ0JvWmZPbXVCNjJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC80YmZmNzItYmE1Yi00NTI4LThjNDItN2Y2YjlmMTA0MGZk LzEvUFpsRTZQVmxHeHZTOEtuZ0JvWmZPbXVCNjJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa8io+kwg 3ANqbB/PAMWt6ABJaTln+xVwXmeWCovq4/YhCC7o5EGhn61nR4TTRS1ZxBjT+1fA yH1y99oAh9n7GMtGaZ3ZUgjYX5qdXvRJ2R2bVmAziQnWWqjkiUjxnzYT5FfHBhwG lTkqOoxYMnvVsQqT1kccuXwGP4t09QSWWhYo8FY99feRGqbmaFmr1fMblJ2m9db1 h22xetrc1tdVH3Zj07EULpbOKtmyIYxAm/e49r/R+SPC2WTPcpD2zlF/7Qs2i1HX Tn2yWTNTx2q64TpFGQCdi0maPMf08EROcQh1dtkkx+gEW9d6xGIzCF2s0gqMe7kF EES2f+h93F0qeg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:57:17 2026 by rpki-client