This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/30a86d-b972-415e-b8fa-6624691f6f13/1/P9WU69efjdhbR5LpUzvkaBaohgY.mft File: P9WU69efjdhbR5LpUzvkaBaohgY.mft (raw, json) Hash identifier: JwitoC88EouRthtYIhJXkyJy33Au0yxEgz3keWJE2tM= Subject key identifier: C2:41:C7:35:75:B5:4B:0A:62:2C:EC:50:3B:C8:87:5E:DB:16:E0:1D Authority key identifier: 3F:D5:94:EB:D7:9F:8D:D8:5B:47:92:E9:53:3B:E4:68:16:A8:86:06 Certificate issuer: /CN=3fd594ebd79f8dd85b4792e9533be46816a88606 Certificate serial: 019C427DD081E6CAA3BF3971BAE3CD2398BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9WU69efjdhbR5LpUzvkaBaohgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/30a86d-b972-415e-b8fa-6624691f6f13/1/P9WU69efjdhbR5LpUzvkaBaohgY.mft Manifest number: 138E Signing time: Mon 09 Feb 2026 13:01:07 +0000 Manifest this update: Mon 09 Feb 2026 13:01:07 +0000 Manifest next update: Tue 10 Feb 2026 13:01:07 +0000 Files and hashes: 1: P9WU69efjdhbR5LpUzvkaBaohgY.crl (hash: zC0ueN1fz+9oo42tGrkL6goQDUsRnnfk77eF0NXTmPA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/30a86d-b972-415e-b8fa-6624691f6f13/1/P9WU69efjdhbR5LpUzvkaBaohgY.crl rsync://rpki.ripe.net/repository/DEFAULT/19/30a86d-b972-415e-b8fa-6624691f6f13/1/P9WU69efjdhbR5LpUzvkaBaohgY.mft rsync://rpki.ripe.net/repository/DEFAULT/P9WU69efjdhbR5LpUzvkaBaohgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:d0:81:e6:ca:a3:bf:39:71:ba:e3:cd:23:98:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fd594ebd79f8dd85b4792e9533be46816a88606 Validity Not Before: Feb 9 13:01:07 2026 GMT Not After : Feb 10 13:01:07 2026 GMT Subject: CN=c241c73575b54b0a622cec503bc8875edb16e01d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:59:92:03:da:74:e0:44:73:0b:70:42:ca: 7e:db:d0:86:e6:10:fa:7b:fb:f1:3e:4f:2f:dc:57: 8a:0b:b8:99:4b:66:a0:8a:53:af:db:56:14:cb:88: 47:8c:5f:f6:f2:e4:49:f7:89:38:bf:03:95:da:31: 30:7b:cf:f3:46:bf:06:11:2c:e1:6a:e0:42:83:60: 0c:0d:72:bb:bd:f2:6e:45:06:4a:c5:f4:04:b6:af: ab:4f:4e:d3:fe:58:e0:6e:28:c2:11:80:72:72:6b: 67:94:0b:2f:59:98:9b:38:8c:a3:43:4a:d3:9f:9c: d3:15:b3:a1:52:be:33:4e:52:8d:90:af:d0:4d:6b: 5d:d6:eb:ff:4a:35:1a:18:5b:3f:07:e0:08:8c:46: 66:a6:bd:d6:c2:38:c6:bc:ec:53:20:67:0e:d8:cc: 98:8a:e5:ca:25:e8:84:3e:cb:36:d2:c4:86:61:1a: c2:da:d2:08:84:d5:ef:c4:30:b6:0d:9e:32:be:66: 1d:5c:a9:59:3e:04:dc:40:bb:57:ff:70:f2:79:d3: cd:f2:de:04:14:8d:6f:34:3b:86:8c:06:b2:6c:e3: 87:8c:3b:fe:0d:40:2f:d2:4f:07:c8:09:d7:61:07: fa:63:1b:bd:5f:8f:44:81:7a:0e:03:6d:3d:ce:37: bf:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:41:C7:35:75:B5:4B:0A:62:2C:EC:50:3B:C8:87:5E:DB:16:E0:1D X509v3 Authority Key Identifier: keyid:3F:D5:94:EB:D7:9F:8D:D8:5B:47:92:E9:53:3B:E4:68:16:A8:86:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9WU69efjdhbR5LpUzvkaBaohgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/30a86d-b972-415e-b8fa-6624691f6f13/1/P9WU69efjdhbR5LpUzvkaBaohgY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/30a86d-b972-415e-b8fa-6624691f6f13/1/P9WU69efjdhbR5LpUzvkaBaohgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:75:61:09:25:b5:0e:56:e6:40:17:0f:f9:e8:e6:6e:c3:6d: 6a:25:d9:1b:d3:eb:0d:6c:48:0b:44:f4:cf:45:68:83:8f:0a: 59:6e:80:97:e5:3f:ec:64:7b:44:57:0d:de:3e:59:07:39:63: ad:0e:f2:69:3e:4a:71:a4:f0:b2:56:09:e8:fd:a7:eb:e3:17: 1e:1d:32:1a:de:9b:12:7c:fe:44:25:13:e1:aa:2c:d1:c6:bb: 25:76:40:ef:a0:8a:f2:6d:aa:42:8b:b7:32:8b:52:72:d2:d6: b1:3a:5f:cf:83:12:db:22:73:c3:37:51:ae:7f:89:b7:91:ee: 28:c9:cf:f4:91:fd:46:43:24:3b:88:8f:72:40:e8:9c:ba:27: c8:de:0d:80:2e:5f:3f:74:1c:c2:d5:a4:ac:b5:8f:40:2c:17: be:c7:d1:25:79:87:d0:e7:74:bc:28:f5:d0:f6:f6:59:e4:55: 23:ec:ac:4f:22:cc:d6:09:45:12:59:fe:5a:5a:0b:2c:20:99: a6:d6:3a:4f:58:58:79:6c:11:1c:bf:4a:74:9c:f2:44:ae:44: 5d:d8:11:81:ad:8c:2c:65:e6:59:a8:5f:59:4a:6f:f5:45:46: 1f:50:6e:e9:f0:fc:1b:1e:8f:e4:b1:0a:b9:b6:f3:04:51:7c: fa:ca:26:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfdCB5sqjvzlxuuPNI5i/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZDU5NGViZDc5ZjhkZDg1YjQ3OTJlOTUzM2JlNDY4MTZh ODg2MDYwHhcNMjYwMjA5MTMwMTA3WhcNMjYwMjEwMTMwMTA3WjAzMTEwLwYDVQQD EyhjMjQxYzczNTc1YjU0YjBhNjIyY2VjNTAzYmM4ODc1ZWRiMTZlMDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1JZkgPadOBEcwtwQsp+29CG5hD6 e/vxPk8v3FeKC7iZS2agilOv21YUy4hHjF/28uRJ94k4vwOV2jEwe8/zRr8GESzh auBCg2AMDXK7vfJuRQZKxfQEtq+rT07T/ljgbijCEYBycmtnlAsvWZibOIyjQ0rT n5zTFbOhUr4zTlKNkK/QTWtd1uv/SjUaGFs/B+AIjEZmpr3WwjjGvOxTIGcO2MyY iuXKJeiEPss20sSGYRrC2tIIhNXvxDC2DZ4yvmYdXKlZPgTcQLtX/3DyedPN8t4E FI1vNDuGjAaybOOHjDv+DUAv0k8HyAnXYQf6Yxu9X49EgXoOA209zje/rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMJBxzV1tUsKYizsUDvIh17bFuAdMB8GA1UdIwQY MBaAFD/VlOvXn43YW0eS6VM75GgWqIYGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDlXVTY5ZWZqZGhiUjVMcFV6dmthQmFvaGdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zMGE4NmQtYjk3Mi00MTVlLWI4ZmEt NjYyNDY5MWY2ZjEzLzEvUDlXVTY5ZWZqZGhiUjVMcFV6dmthQmFvaGdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8zMGE4NmQtYjk3Mi00MTVlLWI4ZmEtNjYyNDY5MWY2ZjEz LzEvUDlXVTY5ZWZqZGhiUjVMcFV6dmthQmFvaGdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMXVhCSW1 DlbmQBcP+ejmbsNtaiXZG9PrDWxIC0T0z0Vog48KWW6Al+U/7GR7RFcN3j5ZBzlj rQ7yaT5KcaTwslYJ6P2n6+MXHh0yGt6bEnz+RCUT4aos0ca7JXZA76CK8m2qQou3 MotSctLWsTpfz4MS2yJzwzdRrn+Jt5HuKMnP9JH9RkMkO4iPckDonLonyN4NgC5f P3QcwtWkrLWPQCwXvsfRJXmH0Od0vCj10Pb2WeRVI+ysTyLM1glFEln+WloLLCCZ ptY6T1hYeWwRHL9KdJzyRK5EXdgRga2MLGXmWahfWUpv9UVGH1Bu6fD8Gx6P5LEK ubbzBFF8+somNw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:38 2026 by rpki-client