This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft File: PxyTi7IGo4ltBkwIUvqYhf8s69k.mft (raw, json) Hash identifier: RXFDjZFuLgpgmucs/fpuiTdot2FGgWxUZ94WiatIAIk= Subject key identifier: E8:6B:4D:3D:4D:C6:31:32:E7:3E:DE:47:D3:67:AF:C9:BC:5A:A2:9E Authority key identifier: 3F:1C:93:8B:B2:06:A3:89:6D:06:4C:08:52:FA:98:85:FF:2C:EB:D9 Certificate issuer: /CN=3f1c938bb206a3896d064c0852fa9885ff2cebd9 Certificate serial: 019C41A20EA3BE033A8E371DC676374139AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft Manifest number: 053F Signing time: Mon 09 Feb 2026 09:01:05 +0000 Manifest this update: Mon 09 Feb 2026 09:01:05 +0000 Manifest next update: Tue 10 Feb 2026 09:01:05 +0000 Files and hashes: 1: PxyTi7IGo4ltBkwIUvqYhf8s69k.crl (hash: y74dJkFHprGUoY+2K3hUXzXdJLF3nmdKFyguyuuu4yA=) 2: gJih9xv-CWYQaALlecQOJ_TACmo.roa (hash: 9e9Q4Zs2imMTV1ntB9s+yN3H0/1A7f9/M0HJ8dsTuhg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.crl rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:0e:a3:be:03:3a:8e:37:1d:c6:76:37:41:39:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3f1c938bb206a3896d064c0852fa9885ff2cebd9 Validity Not Before: Feb 9 09:01:05 2026 GMT Not After : Feb 10 09:01:05 2026 GMT Subject: CN=e86b4d3d4dc63132e73ede47d367afc9bc5aa29e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ea:f0:56:d4:aa:b0:d7:a6:da:51:d6:dd:aa: ec:ee:68:86:d5:2a:53:3d:23:cb:c9:21:51:b4:c2: 76:ab:9a:2c:6a:5c:3a:53:59:ff:5e:28:dc:ed:25: 6d:16:b4:fe:a1:eb:77:e7:04:71:00:cc:e0:ca:38: c5:5e:0e:48:b3:31:55:bc:14:9c:43:6c:11:8a:ec: 4f:a8:fb:0a:e4:62:1f:5b:9c:2e:79:cd:bc:34:cc: 67:43:e7:2d:c3:4f:bb:a8:c9:8d:45:ef:82:45:f0: c2:ce:e9:22:cb:dc:36:c7:68:46:11:a3:9b:a7:6a: 47:7f:2b:8e:91:a0:00:e3:25:06:0b:77:cc:0f:1c: 91:fe:ac:70:be:6c:4d:67:98:e6:24:e5:8a:4a:cc: 5b:8e:ab:22:19:a4:74:c6:9f:31:d9:a4:6e:c3:13: bd:69:7c:53:be:c9:43:7c:5d:7d:4c:27:42:94:53: 29:fc:e1:29:6e:b4:a1:b7:ba:cd:56:e4:87:8d:b6: e8:e7:cf:09:81:f7:c8:e8:9a:27:7e:c0:7e:32:ad: 06:9f:dc:b7:73:67:30:4c:57:21:24:d5:e2:9e:2d: 5b:ca:69:2b:3a:dc:a3:26:8c:55:fd:76:93:a4:16: 12:86:64:da:29:ad:4f:ec:1b:ca:f5:07:ec:56:fb: 87:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:6B:4D:3D:4D:C6:31:32:E7:3E:DE:47:D3:67:AF:C9:BC:5A:A2:9E X509v3 Authority Key Identifier: keyid:3F:1C:93:8B:B2:06:A3:89:6D:06:4C:08:52:FA:98:85:FF:2C:EB:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:39:cf:34:0d:ad:e0:a2:bd:00:fc:6c:1e:eb:24:4c:46:20: 81:bc:f9:cf:67:f5:74:fc:6c:a4:e2:76:02:b2:24:a9:4d:cd: 67:ce:0a:3c:aa:3d:ce:93:e7:6c:cd:88:5c:2b:33:cf:1d:01: 00:89:99:52:9e:f1:ac:c3:1a:fd:46:62:ab:0e:ff:f1:14:4a: 3c:de:d5:af:cb:02:7a:49:60:33:d1:3b:3c:1d:75:b0:3a:14: e2:72:11:73:ec:c2:7b:a8:b3:c8:96:1b:c6:ce:2e:bf:ed:89: 50:b8:9d:6c:e3:0c:1f:d6:c5:c6:be:2c:17:ba:da:b1:19:0c: 39:5f:8a:86:1b:04:9c:07:74:15:39:5e:62:ca:34:db:f4:de: f4:8f:9e:cb:7b:c0:af:5d:eb:14:8c:95:db:77:46:14:aa:0f: 47:5a:eb:82:36:6a:91:81:b7:74:01:e0:a0:44:d0:44:a4:a9: e4:04:35:5a:75:b0:d8:96:fc:3e:2a:ca:2a:fa:8f:9e:91:36: 66:98:9b:1e:25:23:58:9a:6d:88:25:2e:71:1c:13:31:e8:50: 18:6c:9a:66:be:db:fd:18:71:ec:15:53:56:82:90:da:4d:f4: 08:fa:99:0d:17:b4:dd:21:a7:a7:3b:31:68:08:2c:6e:98:60: 48:26:25:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBog6jvgM6jjcdxnY3QTmqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmMWM5MzhiYjIwNmEzODk2ZDA2NGMwODUyZmE5ODg1ZmYy Y2ViZDkwHhcNMjYwMjA5MDkwMTA1WhcNMjYwMjEwMDkwMTA1WjAzMTEwLwYDVQQD EyhlODZiNGQzZDRkYzYzMTMyZTczZWRlNDdkMzY3YWZjOWJjNWFhMjllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAperwVtSqsNem2lHW3ars7miG1SpT PSPLySFRtMJ2q5osalw6U1n/Xijc7SVtFrT+oet35wRxAMzgyjjFXg5IszFVvBSc Q2wRiuxPqPsK5GIfW5wuec28NMxnQ+ctw0+7qMmNRe+CRfDCzukiy9w2x2hGEaOb p2pHfyuOkaAA4yUGC3fMDxyR/qxwvmxNZ5jmJOWKSsxbjqsiGaR0xp8x2aRuwxO9 aXxTvslDfF19TCdClFMp/OEpbrSht7rNVuSHjbbo588JgffI6JonfsB+Mq0Gn9y3 c2cwTFchJNXini1bymkrOtyjJoxV/XaTpBYShmTaKa1P7BvK9QfsVvuHJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOhrTT1NxjEy5z7eR9Nnr8m8WqKeMB8GA1UdIwQY MBaAFD8ck4uyBqOJbQZMCFL6mIX/LOvZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHh5VGk3SUdvNGx0Qmt3SVV2cVloZjhzNjlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8zYjI0OWMtYjQwZS00ZmI5LThmZjQt ZTA1MjYwMzNhNDg0LzEvUHh5VGk3SUdvNGx0Qmt3SVV2cVloZjhzNjlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8zYjI0OWMtYjQwZS00ZmI5LThmZjQtZTA1MjYwMzNhNDg0 LzEvUHh5VGk3SUdvNGx0Qmt3SVV2cVloZjhzNjlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADDnPNA2t 4KK9APxsHuskTEYggbz5z2f1dPxspOJ2ArIkqU3NZ84KPKo9zpPnbM2IXCszzx0B AImZUp7xrMMa/UZiqw7/8RRKPN7Vr8sCeklgM9E7PB11sDoU4nIRc+zCe6izyJYb xs4uv+2JULidbOMMH9bFxr4sF7rasRkMOV+KhhsEnAd0FTleYso02/Te9I+ey3vA r13rFIyV23dGFKoPR1rrgjZqkYG3dAHgoETQRKSp5AQ1WnWw2Jb8PirKKvqPnpE2 ZpibHiUjWJptiCUucRwTMehQGGyaZr7b/Rhx7BVTVoKQ2k30CPqZDRe03SGnpzsx aAgsbphgSCYljQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:40:40 2026 by rpki-client