This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft File: PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft (raw, json) Hash identifier: mVfXReVZPz2Q6jiLPPDfNtYTjbCfouIVV2nY4xQ6mZU= Subject key identifier: 13:E9:79:BF:58:DB:6B:3C:B2:72:1A:FA:B6:A8:30:58:41:19:D3:B7 Authority key identifier: 3D:1B:67:CC:DA:49:C8:DE:48:92:93:41:F6:DE:8A:2B:60:25:B3:A6 Certificate issuer: /CN=3d1b67ccda49c8de48929341f6de8a2b6025b3a6 Certificate serial: 019C4322933E34CB5305822A9517F63EC395 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft Manifest number: 0594 Signing time: Mon 09 Feb 2026 16:01:05 +0000 Manifest this update: Mon 09 Feb 2026 16:01:05 +0000 Manifest next update: Tue 10 Feb 2026 16:01:05 +0000 Files and hashes: 1: PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl (hash: 3Ao30GvClYNuTrI5NRJDH1o1uPIxAf9/I+ru9/3PWmE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:93:3e:34:cb:53:05:82:2a:95:17:f6:3e:c3:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d1b67ccda49c8de48929341f6de8a2b6025b3a6 Validity Not Before: Feb 9 16:01:05 2026 GMT Not After : Feb 10 16:01:05 2026 GMT Subject: CN=13e979bf58db6b3cb2721afab6a830584119d3b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:87:af:3d:8d:ac:1e:a5:c9:4d:73:ac:6a:fa: 79:18:32:b8:39:0d:80:ed:f9:81:47:3b:cd:a9:f4: 2d:2a:a8:af:ef:82:b9:77:84:06:96:92:4d:e8:b0: c8:0a:7e:75:d4:d8:ee:1d:bb:42:54:c7:aa:79:49: 34:e1:5b:ef:ce:37:80:d7:0d:6f:64:2f:91:49:47: 96:99:bc:98:0f:05:c2:df:68:a2:91:f4:37:9c:3c: 94:ca:75:74:ca:35:9e:62:89:97:da:2e:f1:70:8c: 0b:af:4e:ab:1c:aa:c7:17:3d:83:b7:d3:80:69:70: b0:32:8f:a1:e5:90:ce:77:3f:52:8b:fd:21:3a:a1: 5a:c5:0a:71:05:ba:f0:2f:e9:71:04:25:82:69:ca: aa:62:0e:fa:a9:3c:59:6c:b9:d5:02:79:30:d2:f8: 38:d7:b0:e0:6a:b7:38:60:e0:90:a8:ea:13:0e:52: e2:56:30:fe:5b:d2:11:20:ae:ad:7b:fa:c3:fe:f6: 32:e8:4d:67:3a:d4:42:1d:f3:63:7e:fe:d2:dc:35: d0:04:e4:58:87:a0:8a:ff:a9:77:3c:99:09:c8:a8: ee:c0:1d:b3:70:5f:ed:74:12:9d:7b:65:c7:59:53: 9c:45:b1:a9:0d:81:a2:13:2a:d1:6e:42:39:ed:e7: 97:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E9:79:BF:58:DB:6B:3C:B2:72:1A:FA:B6:A8:30:58:41:19:D3:B7 X509v3 Authority Key Identifier: keyid:3D:1B:67:CC:DA:49:C8:DE:48:92:93:41:F6:DE:8A:2B:60:25:B3:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRtnzNpJyN5IkpNB9t6KK2Als6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d8c098-7862-42cd-ad03-08b24be12689/1/PRtnzNpJyN5IkpNB9t6KK2Als6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:5e:08:2c:03:d9:1a:ef:75:26:f1:2b:62:dd:72:c7:8d:a1: fb:a1:00:7b:e2:5f:05:6d:84:e2:da:0c:d7:19:ae:cf:67:6a: b9:46:ab:65:6a:10:21:26:c2:ce:e8:d6:34:35:30:19:0a:17: b4:f0:d2:a5:eb:bf:a7:2a:6e:c7:7a:84:f0:93:2f:7d:e1:6e: 1b:3e:03:48:2b:90:88:d6:c2:a3:6e:57:dd:33:3b:c2:9a:71: 99:18:aa:a3:20:ea:61:ef:eb:f4:e1:aa:98:d9:80:ee:cc:96: c2:d7:08:ba:5f:05:07:05:ed:0b:1a:10:bd:43:3d:dd:62:7e: 5a:85:15:ab:aa:9a:9a:9d:65:bf:27:25:03:96:d3:78:a7:7d: 09:21:d1:56:37:41:66:88:29:80:76:a2:e8:8f:75:d6:61:c1: 13:3b:63:11:b4:24:1d:4e:c3:42:96:a1:8a:65:97:28:b2:f8: dd:2e:29:7d:2e:e2:02:27:11:67:e8:56:ba:cb:10:32:13:29: 7b:3c:29:fc:dc:66:8e:e9:c6:5b:5b:50:9e:7f:26:91:a7:ab: 30:06:c1:cd:e3:36:8a:9f:a0:ac:30:4e:d1:52:f9:96:bd:e5: eb:53:a8:df:d5:f9:43:43:1f:38:84:02:1a:5a:b6:fd:d2:9f: cc:a2:f3:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIpM+NMtTBYIqlRf2PsOVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkMWI2N2NjZGE0OWM4ZGU0ODkyOTM0MWY2ZGU4YTJiNjAy NWIzYTYwHhcNMjYwMjA5MTYwMTA1WhcNMjYwMjEwMTYwMTA1WjAzMTEwLwYDVQQD EygxM2U5NzliZjU4ZGI2YjNjYjI3MjFhZmFiNmE4MzA1ODQxMTlkM2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6YevPY2sHqXJTXOsavp5GDK4OQ2A 7fmBRzvNqfQtKqiv74K5d4QGlpJN6LDICn511NjuHbtCVMeqeUk04VvvzjeA1w1v ZC+RSUeWmbyYDwXC32iikfQ3nDyUynV0yjWeYomX2i7xcIwLr06rHKrHFz2Dt9OA aXCwMo+h5ZDOdz9Si/0hOqFaxQpxBbrwL+lxBCWCacqqYg76qTxZbLnVAnkw0vg4 17Dgarc4YOCQqOoTDlLiVjD+W9IRIK6te/rD/vYy6E1nOtRCHfNjfv7S3DXQBORY h6CK/6l3PJkJyKjuwB2zcF/tdBKde2XHWVOcRbGpDYGiEyrRbkI57eeXXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBPpeb9Y22s8snIa+raoMFhBGdO3MB8GA1UdIwQY MBaAFD0bZ8zaScjeSJKTQfbeiitgJbOmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFJ0bnpOcEp5TjVJa3BOQjl0NktLMkFsczZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9kOGMwOTgtNzg2Mi00MmNkLWFkMDMt MDhiMjRiZTEyNjg5LzEvUFJ0bnpOcEp5TjVJa3BOQjl0NktLMkFsczZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9kOGMwOTgtNzg2Mi00MmNkLWFkMDMtMDhiMjRiZTEyNjg5 LzEvUFJ0bnpOcEp5TjVJa3BOQjl0NktLMkFsczZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoF4ILAPZ Gu91JvErYt1yx42h+6EAe+JfBW2E4toM1xmuz2dquUarZWoQISbCzujWNDUwGQoX tPDSpeu/pypux3qE8JMvfeFuGz4DSCuQiNbCo25X3TM7wppxmRiqoyDqYe/r9OGq mNmA7syWwtcIul8FBwXtCxoQvUM93WJ+WoUVq6qamp1lvyclA5bTeKd9CSHRVjdB ZogpgHai6I911mHBEztjEbQkHU7DQpahimWXKLL43S4pfS7iAicRZ+hWussQMhMp ezwp/NxmjunGW1tQnn8mkaerMAbBzeM2ip+grDBO0VL5lr3l61Oo39X5Q0MfOIQC Glq2/dKfzKLzrw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:28 2026 by rpki-client