This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft File: pxzA1YsWrbv3-lwv28Nln5xzx7o.mft (raw, json) Hash identifier: Y9hxEWFBBIpNbovFcCOksHxVc5eD9hnWtTlsE/ECO9g= Subject key identifier: 02:72:65:3E:D2:04:59:72:2E:0E:FD:AF:95:A3:1F:18:14:E0:E1:4A Authority key identifier: A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA Certificate issuer: /CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba Certificate serial: 019C1DCCFF4B33F2F9E48A64B85F98FDD469 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft Manifest number: 15D4 Signing time: Mon 02 Feb 2026 10:01:39 +0000 Manifest this update: Mon 02 Feb 2026 10:01:39 +0000 Manifest next update: Tue 03 Feb 2026 10:01:39 +0000 Files and hashes: 1: KDQ-cFcPwQDy3bGFF_WSaIsvNNQ.roa (hash: nE15hquAwl/5m54NEuxKdixrl7Q9eNfNpFSjwL6hasY=) 2: ekbIvq4xoQE_G2aZ6OBWbjCke00.roa (hash: CDCAAwMBxMHZc9k/9U2grgMxj6swO3W7TTk/XqEYqRY=) 3: m7QfGcH9ehj8zUctNJKORHfF7YQ.roa (hash: jEz2eC4AxW2xJSso0f7640cBfazPEGudZTNrPpOM8vo=) 4: pxzA1YsWrbv3-lwv28Nln5xzx7o.crl (hash: XI/JXvkBV9AsSTib5X7bCGxdnPMNiUXbtDdOgItWf1E=) 5: xXThYeFskZa8CsEFNdXzq9WOPuU.roa (hash: cncRVt5HZa39EbyA1UHTjl7763HCDtgzdQM7tatOGC8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 10:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1d:cc:ff:4b:33:f2:f9:e4:8a:64:b8:5f:98:fd:d4:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba Validity Not Before: Feb 2 10:01:39 2026 GMT Not After : Feb 3 10:01:39 2026 GMT Subject: CN=0272653ed20459722e0efdaf95a31f1814e0e14a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f9:c2:61:fd:2b:c1:54:13:40:8b:42:22:2e: b1:a9:48:fd:4d:bc:66:07:83:77:a3:d0:07:11:6b: 77:d4:f6:50:24:51:3e:8e:dd:8f:a4:78:ee:75:cd: 0c:bb:a2:68:6d:d3:90:02:41:96:9c:6f:ff:36:d0: 88:a3:c6:9a:f8:fe:3a:fc:cc:69:5a:a3:ba:5c:85: ea:19:9f:e1:b3:0a:eb:4c:c6:50:3d:ee:a8:b8:f4: ca:6b:27:ae:c2:6c:b4:1f:dc:29:1e:2b:bc:9d:c2: 8f:75:40:e8:75:59:7b:e0:a9:27:cb:b9:17:84:b1: 10:a2:20:f3:5d:82:a8:c3:22:a9:6a:49:73:20:07: bc:5b:2a:fc:d8:a6:9d:0b:ee:d1:27:97:08:cd:bd: 5e:48:2a:88:c4:7d:e5:35:9f:73:6b:2f:e9:db:b0: af:b5:ac:92:36:6a:d1:85:82:a4:71:67:81:a6:87: 0a:ec:aa:e5:a1:01:e3:3a:40:a8:b6:d5:ad:a9:67: d7:27:60:4e:77:b3:26:3e:4d:db:0f:17:3e:be:5d: f6:5c:36:0e:de:a9:f2:92:3b:77:e4:9a:f5:59:3d: 5f:ad:82:e4:ba:5f:09:0d:cb:de:b0:24:2b:ac:d0: 76:99:2c:a0:a4:c0:04:ed:66:89:a6:7a:fd:2a:ac: 53:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:72:65:3E:D2:04:59:72:2E:0E:FD:AF:95:A3:1F:18:14:E0:E1:4A X509v3 Authority Key Identifier: keyid:A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d9:6b:79:3f:d1:b3:31:5a:d5:64:ee:3b:09:66:ea:bb:d1:b2: 6a:1d:f3:8d:2c:9a:a4:13:74:50:99:55:d6:8a:c9:fc:78:3d: 47:58:64:80:b8:82:ae:f1:d6:41:9a:3f:99:40:cf:63:88:4a: ff:fb:b6:4e:f0:d8:a3:c1:fb:82:16:77:e0:c4:ce:4e:6e:35: ef:95:52:e4:2d:88:23:1e:c5:ab:85:aa:3e:37:f9:a7:42:a2: a7:29:40:79:58:35:6b:a6:29:46:95:7f:19:e5:a1:c2:15:7c: b8:55:37:64:f1:83:d9:76:34:d7:a5:38:74:36:15:47:92:ea: 4f:22:d0:56:f3:67:10:f3:0b:57:92:79:f8:66:96:9c:99:40: f3:f8:5e:dc:2f:de:74:6a:c5:cf:d0:fe:b2:9b:46:90:92:f4: 00:f2:6f:a9:d8:34:56:15:ee:16:e9:93:aa:2e:68:5e:e3:be: 6f:f3:e3:38:54:9c:b4:d0:7e:6a:d6:42:92:12:18:86:69:fd: 30:9d:34:7d:af:e9:42:25:0b:4e:46:c2:b4:52:19:1b:5c:b7: ac:74:22:b4:85:71:b7:f7:55:7b:b5:d5:73:9a:9e:21:a7:45: e7:92:72:d3:5c:47:f1:a5:69:d1:6c:26:11:1a:7f:86:43:9c: d1:d5:2b:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwdzP9LM/L55IpkuF+Y/dRpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3MWNjMGQ1OGIxNmFkYmJmN2ZhNWMyZmRiYzM2NTlmOWM3 M2M3YmEwHhcNMjYwMjAyMTAwMTM5WhcNMjYwMjAzMTAwMTM5WjAzMTEwLwYDVQQD EygwMjcyNjUzZWQyMDQ1OTcyMmUwZWZkYWY5NWEzMWYxODE0ZTBlMTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/nCYf0rwVQTQItCIi6xqUj9Tbxm B4N3o9AHEWt31PZQJFE+jt2PpHjudc0Mu6JobdOQAkGWnG//NtCIo8aa+P46/Mxp WqO6XIXqGZ/hswrrTMZQPe6ouPTKayeuwmy0H9wpHiu8ncKPdUDodVl74Kkny7kX hLEQoiDzXYKowyKpaklzIAe8Wyr82KadC+7RJ5cIzb1eSCqIxH3lNZ9zay/p27Cv taySNmrRhYKkcWeBpocK7KrloQHjOkCottWtqWfXJ2BOd7MmPk3bDxc+vl32XDYO 3qnykjt35Jr1WT1frYLkul8JDcvesCQrrNB2mSygpMAE7WaJpnr9KqxT5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAJyZT7SBFlyLg79r5WjHxgU4OFKMB8GA1UdIwQY MBaAFKccwNWLFq279/pcL9vDZZ+cc8e6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHh6QTFZc1dyYnYzLWx3djI4TmxuNXh6eDdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS81ZjVhNjAtOTAyNi00YjY2LWJhYWEt ZGU2NDBkMDEyMDY1LzEvcHh6QTFZc1dyYnYzLWx3djI4TmxuNXh6eDdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS81ZjVhNjAtOTAyNi00YjY2LWJhYWEtZGU2NDBkMDEyMDY1 LzEvcHh6QTFZc1dyYnYzLWx3djI4TmxuNXh6eDdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2Wt5P9Gz MVrVZO47CWbqu9Gyah3zjSyapBN0UJlV1orJ/Hg9R1hkgLiCrvHWQZo/mUDPY4hK //u2TvDYo8H7ghZ34MTOTm4175VS5C2IIx7Fq4WqPjf5p0KipylAeVg1a6YpRpV/ GeWhwhV8uFU3ZPGD2XY016U4dDYVR5LqTyLQVvNnEPMLV5J5+GaWnJlA8/he3C/e dGrFz9D+sptGkJL0APJvqdg0VhXuFumTqi5oXuO+b/PjOFSctNB+atZCkhIYhmn9 MJ00fa/pQiULTkbCtFIZG1y3rHQitIVxt/dVe7XVc5qeIadF55Jy01xH8aVp0Wwm ERp/hkOc0dUrAw== -----END CERTIFICATE-----Generated at Mon Feb 2 20:56:56 2026 by rpki-client