This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft File: pHFXAbAK3kiVo5p2oNgQDsleq-M.mft (raw, json) Hash identifier: OhZILzqD9y1xxr0muENtYnF48mR1UmgE3Fz9kSJ5vMk= Subject key identifier: 03:4F:B2:83:DC:FF:1E:75:BE:3D:65:22:6A:98:44:A5:AE:B0:61:52 Authority key identifier: A4:71:57:01:B0:0A:DE:48:95:A3:9A:76:A0:D8:10:0E:C9:5E:AB:E3 Certificate issuer: /CN=a4715701b00ade4895a39a76a0d8100ec95eabe3 Certificate serial: 019C42B4060D4F950AE32169BA83D0E80D7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHFXAbAK3kiVo5p2oNgQDsleq-M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft Manifest number: 0461 Signing time: Mon 09 Feb 2026 14:00:20 +0000 Manifest this update: Mon 09 Feb 2026 14:00:20 +0000 Manifest next update: Tue 10 Feb 2026 14:00:20 +0000 Files and hashes: 1: pHFXAbAK3kiVo5p2oNgQDsleq-M.crl (hash: uox7daNTKVOQcpCz7KLDQPWFiltcEhalAyP7odT/hHw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.crl rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft rsync://rpki.ripe.net/repository/DEFAULT/pHFXAbAK3kiVo5p2oNgQDsleq-M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:06:0d:4f:95:0a:e3:21:69:ba:83:d0:e8:0d:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4715701b00ade4895a39a76a0d8100ec95eabe3 Validity Not Before: Feb 9 14:00:20 2026 GMT Not After : Feb 10 14:00:20 2026 GMT Subject: CN=034fb283dcff1e75be3d65226a9844a5aeb06152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:89:38:c6:d0:a2:e1:49:e6:6b:6d:d6:bf:13: 15:82:78:5a:19:92:83:e3:0f:f1:a8:1e:c0:66:8b: b4:f3:4a:6b:03:02:aa:a2:6f:7a:e4:b0:62:0c:15: 56:97:05:8b:ab:f8:37:29:6a:5a:5d:71:60:3e:9c: e1:77:ee:94:b2:f7:7d:26:58:6c:29:4e:e3:b9:e4: 7b:fa:03:5f:ff:dd:e7:af:37:4c:0a:cf:4d:f5:65: 4e:1d:ff:13:52:75:88:f0:63:1c:69:f9:d4:93:e0: 88:de:f7:e0:4e:ac:41:66:55:8c:cd:4c:c9:60:44: b8:eb:0e:9c:73:72:41:20:c9:fb:3c:66:11:bb:f7: c3:0c:a4:f4:f9:01:e7:4b:0c:d5:e2:5f:a9:98:34: 3a:7f:b7:ec:b6:79:6e:a3:d8:86:d6:8a:91:d8:0d: ac:d4:ef:8b:ce:13:b9:03:7a:99:df:5d:07:88:a1: c6:89:a8:70:75:4b:1a:d1:86:50:b2:4e:f0:72:2e: 55:4a:d1:66:b2:f7:eb:99:05:17:f0:7f:cf:40:8f: 7b:6f:09:ef:b8:8a:0b:08:31:28:50:e7:18:2f:b4: cc:82:aa:e5:37:97:25:c1:a0:73:07:b7:63:d3:b5: 98:f4:ef:a1:56:8f:7a:21:bb:b4:01:77:a3:1e:eb: 43:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4F:B2:83:DC:FF:1E:75:BE:3D:65:22:6A:98:44:A5:AE:B0:61:52 X509v3 Authority Key Identifier: keyid:A4:71:57:01:B0:0A:DE:48:95:A3:9A:76:A0:D8:10:0E:C9:5E:AB:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHFXAbAK3kiVo5p2oNgQDsleq-M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:c2:57:5a:cd:e7:99:d8:62:40:c7:e8:a0:73:58:c1:41:50: 7e:ab:10:88:c7:4d:02:15:81:ff:07:ac:94:11:31:c1:ca:ac: 3f:07:1b:22:bb:f5:1e:ed:28:25:1e:a8:80:7d:19:16:7d:84: 89:4d:f1:fe:19:b2:79:ab:3f:30:72:e4:20:c6:76:07:4e:4b: 7c:2f:ea:43:42:e4:de:06:39:3b:86:e8:ff:87:81:66:0d:03: 8d:77:e9:72:54:35:db:30:17:66:9b:9b:54:8b:8e:72:c4:26: d8:b7:bb:f9:8a:5c:58:dd:1f:c9:4a:d7:01:66:39:d6:39:d8: 62:f2:97:bc:1a:d2:5a:26:2a:77:78:6e:10:a6:d6:8a:00:df: af:6b:15:78:03:03:25:58:51:a5:0d:37:2b:30:ed:46:f7:02: ce:b1:c3:35:33:79:19:97:6a:15:84:71:8d:7d:a9:92:ac:88: 18:45:e6:a5:70:94:09:21:02:b0:ff:23:e2:73:30:7c:49:61: 46:71:68:01:ca:c7:4c:4e:10:ab:9e:bb:24:d8:62:50:6a:60: a4:f3:ce:da:d7:8c:7f:7c:c7:e7:f8:83:d6:33:6e:37:9c:85: ad:65:74:09:71:c3:ed:b1:7f:ee:be:e7:8f:ae:51:ca:78:8a: 30:46:9e:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtAYNT5UK4yFpuoPQ6A19MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0NzE1NzAxYjAwYWRlNDg5NWEzOWE3NmEwZDgxMDBlYzk1 ZWFiZTMwHhcNMjYwMjA5MTQwMDIwWhcNMjYwMjEwMTQwMDIwWjAzMTEwLwYDVQQD EygwMzRmYjI4M2RjZmYxZTc1YmUzZDY1MjI2YTk4NDRhNWFlYjA2MTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ok4xtCi4Unma23WvxMVgnhaGZKD 4w/xqB7AZou080prAwKqom965LBiDBVWlwWLq/g3KWpaXXFgPpzhd+6Usvd9Jlhs KU7jueR7+gNf/93nrzdMCs9N9WVOHf8TUnWI8GMcafnUk+CI3vfgTqxBZlWMzUzJ YES46w6cc3JBIMn7PGYRu/fDDKT0+QHnSwzV4l+pmDQ6f7fstnluo9iG1oqR2A2s 1O+LzhO5A3qZ310HiKHGiahwdUsa0YZQsk7wci5VStFmsvfrmQUX8H/PQI97bwnv uIoLCDEoUOcYL7TMgqrlN5clwaBzB7dj07WY9O+hVo96Ibu0AXejHutDJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFANPsoPc/x51vj1lImqYRKWusGFSMB8GA1UdIwQY MBaAFKRxVwGwCt5IlaOadqDYEA7JXqvjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcEhGWEFiQUsza2lWbzVwMm9OZ1FEc2xlcS1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi82MDM3YTUtNTY0MC00YjQxLTkyZTkt ZjZmMjU0NmJjNjBlLzEvcEhGWEFiQUsza2lWbzVwMm9OZ1FEc2xlcS1NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi82MDM3YTUtNTY0MC00YjQxLTkyZTktZjZmMjU0NmJjNjBl LzEvcEhGWEFiQUsza2lWbzVwMm9OZ1FEc2xlcS1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN8JXWs3n mdhiQMfooHNYwUFQfqsQiMdNAhWB/weslBExwcqsPwcbIrv1Hu0oJR6ogH0ZFn2E iU3x/hmyeas/MHLkIMZ2B05LfC/qQ0Lk3gY5O4bo/4eBZg0DjXfpclQ12zAXZpub VIuOcsQm2Le7+YpcWN0fyUrXAWY51jnYYvKXvBrSWiYqd3huEKbWigDfr2sVeAMD JVhRpQ03KzDtRvcCzrHDNTN5GZdqFYRxjX2pkqyIGEXmpXCUCSECsP8j4nMwfElh RnFoAcrHTE4Qq567JNhiUGpgpPPO2teMf3zH5/iD1jNuN5yFrWV0CXHD7bF/7r7n j65RyniKMEaeYg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:01:01 2026 by rpki-client