This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft File: pxErNcd6Sxb761YSHJdNWdVmeEs.mft (raw, json) Hash identifier: 0EwZlbYlWNjyq4ztBYZ5vGbHZ7SpVyvLr+2JmxyR2rI= Subject key identifier: 5D:4B:59:C3:3C:6F:72:96:F3:AC:60:17:FD:FE:05:7A:BA:AD:3F:35 Authority key identifier: A7:11:2B:35:C7:7A:4B:16:FB:EB:56:12:1C:97:4D:59:D5:66:78:4B Certificate issuer: /CN=a7112b35c77a4b16fbeb56121c974d59d566784b Certificate serial: 019C43C71DB0D2C512CE2302DE0C4DA95B77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxErNcd6Sxb761YSHJdNWdVmeEs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 19:00:48 +0000 Manifest this update: Mon 09 Feb 2026 19:00:48 +0000 Manifest next update: Tue 10 Feb 2026 19:00:48 +0000 Files and hashes: 1: j__VlCB-Iaahq6iSGXf82aRhFjE.roa (hash: ZAd0hpXPQxe82r5ai9UhJXs41uTHJvAdkg2oVHWXLpQ=) 2: pxErNcd6Sxb761YSHJdNWdVmeEs.crl (hash: kh2CRtOvQdBBoeIPPQ8W7QyTz0RqntGROFhSTA74zTQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft rsync://rpki.ripe.net/repository/DEFAULT/pxErNcd6Sxb761YSHJdNWdVmeEs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:1d:b0:d2:c5:12:ce:23:02:de:0c:4d:a9:5b:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7112b35c77a4b16fbeb56121c974d59d566784b Validity Not Before: Feb 9 19:00:48 2026 GMT Not After : Feb 10 19:00:48 2026 GMT Subject: CN=5d4b59c33c6f7296f3ac6017fdfe057abaad3f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ee:73:c6:5e:c5:96:01:2c:8b:e0:10:98:b7: 69:3d:6f:52:c4:0f:8c:a0:5a:29:8c:89:61:dc:05: 4f:d2:88:e7:68:c4:39:67:5b:50:94:26:a3:fd:6f: a3:4f:d3:be:c2:f9:2d:49:fb:a1:27:72:cc:0c:0d: 04:bc:bd:27:8a:ed:98:ad:6d:34:e4:2c:f6:5e:22: 6e:71:64:89:94:6a:c3:34:18:6c:19:db:90:9c:83: bb:58:16:59:70:92:d8:2a:34:6a:b7:10:35:75:da: 1e:0b:4b:02:54:aa:cb:3b:69:7d:b2:b9:37:d4:f4: 4e:1e:ae:3e:c8:8f:d0:cf:f8:46:51:de:31:4b:ed: 7c:ff:c4:7a:b3:e2:5b:35:2d:b4:41:ff:25:64:7b: 9a:4f:72:f6:f4:dc:21:e5:58:58:43:14:ba:09:cd: f2:23:f3:88:9f:30:23:a3:50:e6:5a:5e:e4:eb:90: 76:9f:ff:0b:84:0a:23:b4:14:6a:f7:ab:77:a9:ae: 5c:c2:f4:af:50:72:64:f6:e0:70:0a:0a:e8:5c:7b: be:be:a4:90:b3:a4:f3:64:aa:2a:dd:92:11:f7:5b: 5a:b8:6f:08:86:57:27:30:4b:dd:ce:fd:2c:72:27: dd:e2:de:88:e8:e8:7c:58:4b:98:a1:24:1b:52:52: 26:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:4B:59:C3:3C:6F:72:96:F3:AC:60:17:FD:FE:05:7A:BA:AD:3F:35 X509v3 Authority Key Identifier: keyid:A7:11:2B:35:C7:7A:4B:16:FB:EB:56:12:1C:97:4D:59:D5:66:78:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxErNcd6Sxb761YSHJdNWdVmeEs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:52:df:c7:3c:c8:7b:c9:f0:c9:86:e3:27:d1:b0:fd:a9:c8: e0:2c:1e:a8:74:11:36:d5:7c:71:fb:c2:df:9b:97:a1:96:d3: 3e:9c:74:c5:b3:67:8d:1a:e8:71:6c:88:ab:6d:8d:23:37:72: cb:a2:b1:20:e2:c9:60:72:dd:98:d9:4c:9b:ba:ad:f1:d3:75: 8b:a9:42:62:da:25:cc:4e:74:65:f4:84:72:18:80:48:3a:82: 1a:e5:b7:bc:26:78:84:eb:65:c4:93:74:d2:83:d1:81:e2:93: d4:70:ad:38:3a:15:59:bf:7b:00:34:47:41:10:cb:a5:8c:4a: 25:b3:48:1b:6c:64:a3:c0:2b:e1:56:76:29:4a:a2:bb:88:87: ce:a3:3e:54:fb:2e:33:45:ac:4f:b6:55:96:f2:b3:ad:05:84: d9:98:ba:b3:4b:51:50:54:fd:86:ad:66:4c:fa:c2:0a:ce:2f: 2d:d1:3a:e2:ff:3b:cf:46:65:56:6d:91:cd:64:e8:86:68:fa: 3b:2c:84:6f:03:6a:31:19:a1:2d:ed:77:1a:f6:df:8f:6d:f7: c5:89:eb:e5:25:17:6d:1a:83:d3:d8:d6:ae:5a:8e:3f:a8:89: 4f:bb:9d:80:ed:15:ad:1e:ec:4e:4f:e3:6f:47:9d:73:5d:d7: af:83:d3:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxx2w0sUSziMC3gxNqVt3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3MTEyYjM1Yzc3YTRiMTZmYmViNTYxMjFjOTc0ZDU5ZDU2 Njc4NGIwHhcNMjYwMjA5MTkwMDQ4WhcNMjYwMjEwMTkwMDQ4WjAzMTEwLwYDVQQD Eyg1ZDRiNTljMzNjNmY3Mjk2ZjNhYzYwMTdmZGZlMDU3YWJhYWQzZjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0u5zxl7FlgEsi+AQmLdpPW9SxA+M oFopjIlh3AVP0ojnaMQ5Z1tQlCaj/W+jT9O+wvktSfuhJ3LMDA0EvL0niu2YrW00 5Cz2XiJucWSJlGrDNBhsGduQnIO7WBZZcJLYKjRqtxA1ddoeC0sCVKrLO2l9srk3 1PROHq4+yI/Qz/hGUd4xS+18/8R6s+JbNS20Qf8lZHuaT3L29Nwh5VhYQxS6Cc3y I/OInzAjo1DmWl7k65B2n/8LhAojtBRq96t3qa5cwvSvUHJk9uBwCgroXHu+vqSQ s6TzZKoq3ZIR91tauG8IhlcnMEvdzv0scifd4t6I6Oh8WEuYoSQbUlImbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF1LWcM8b3KW86xgF/3+BXq6rT81MB8GA1UdIwQY MBaAFKcRKzXHeksW++tWEhyXTVnVZnhLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHhFck5jZDZTeGI3NjFZU0hKZE5XZFZtZUVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83MWNiZTUtNGEyOS00NTY3LWExZmEt Nzg4ODQyODIyNWI0LzEvcHhFck5jZDZTeGI3NjFZU0hKZE5XZFZtZUVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi83MWNiZTUtNGEyOS00NTY3LWExZmEtNzg4ODQyODIyNWI0 LzEvcHhFck5jZDZTeGI3NjFZU0hKZE5XZFZtZUVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACFLfxzzI e8nwyYbjJ9Gw/anI4CweqHQRNtV8cfvC35uXoZbTPpx0xbNnjRrocWyIq22NIzdy y6KxIOLJYHLdmNlMm7qt8dN1i6lCYtolzE50ZfSEchiASDqCGuW3vCZ4hOtlxJN0 0oPRgeKT1HCtODoVWb97ADRHQRDLpYxKJbNIG2xko8Ar4VZ2KUqiu4iHzqM+VPsu M0WsT7ZVlvKzrQWE2Zi6s0tRUFT9hq1mTPrCCs4vLdE64v87z0ZlVm2RzWTohmj6 OyyEbwNqMRmhLe13Gvbfj233xYnr5SUXbRqD09jWrlqOP6iJT7udgO0VrR7sTk/j b0edc13Xr4PT8g== -----END CERTIFICATE-----Generated at Tue Feb 10 01:31:14 2026 by rpki-client