This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json) Hash identifier: B/fWfoR7/8a3yBQEOtuajGoi5Pt83iEfY9UOfr+zkog= Subject key identifier: 24:4B:D4:1A:C0:02:3D:0C:5C:33:60:26:75:53:9D:C0:E3:17:E6:DA Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c Certificate serial: 019C42B400A0DB31419502A57E07920A4B03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft Manifest number: 1533 Signing time: Mon 09 Feb 2026 14:00:18 +0000 Manifest this update: Mon 09 Feb 2026 14:00:18 +0000 Manifest next update: Tue 10 Feb 2026 14:00:18 +0000 Files and hashes: 1: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: dPCCXoiF932bmplm1DXBI55zrKT42skSrb1rbcn9VR0=) 2: vTL1N_H41HNiNtowQy-zm9gl9aY.roa (hash: JtmrUvutZdfTDVqTi1wCPoFHIXdZTWrvXh0P19O7xN0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:00:a0:db:31:41:95:02:a5:7e:07:92:0a:4b:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c Validity Not Before: Feb 9 14:00:18 2026 GMT Not After : Feb 10 14:00:18 2026 GMT Subject: CN=244bd41ac0023d0c5c33602675539dc0e317e6da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e8:75:d9:8a:c9:c9:cc:c2:c6:6e:1d:f7:d8: 67:6d:0c:8a:cc:bc:dd:c2:d7:a8:b7:1d:67:19:d8: 03:4a:e6:a4:3d:bc:51:21:71:02:0a:7e:5b:fa:77: 0e:cb:71:af:79:f0:7c:af:56:de:93:04:07:34:28: 78:13:0e:85:38:b6:33:7f:73:03:97:c3:f1:be:6e: 66:77:02:2d:20:14:f9:4c:74:f2:c8:08:b6:75:9d: 52:44:be:13:35:c6:8c:1b:f9:1e:73:72:24:81:6a: 37:06:aa:30:3d:bb:b4:cf:5b:76:d3:fd:d4:90:a6: 8e:c2:20:57:79:6a:a2:e8:b8:39:89:7f:4e:ac:54: d7:32:70:6c:26:cc:75:3e:89:49:99:c4:dd:f4:85: ba:fa:93:97:c4:41:7e:7e:82:d6:4c:56:5c:34:a7: e1:b1:83:38:39:4e:56:60:e8:fa:ce:34:b1:18:ac: 01:d8:2e:c3:a9:16:98:4c:dc:f7:71:f3:33:1e:1b: 2e:44:05:8c:f4:15:29:d5:73:a5:14:1a:0c:34:ab: 6a:24:05:07:5c:61:cb:1d:8c:1e:15:37:ed:a7:c0: 42:3d:1d:f6:e6:f1:7f:25:4e:a8:08:d1:d0:b0:81: 63:a0:af:e8:d5:dd:e0:ef:4f:06:ce:a1:f8:a5:f0: 23:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:4B:D4:1A:C0:02:3D:0C:5C:33:60:26:75:53:9D:C0:E3:17:E6:DA X509v3 Authority Key Identifier: keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:21:50:dd:c6:76:5d:ab:c8:a3:1c:2d:12:56:77:53:a6:e5: cb:ed:62:ca:5f:85:af:6b:86:17:80:88:b3:64:96:4b:e0:21: b9:17:88:df:dc:da:7b:65:f2:95:0a:89:f9:c8:07:99:b4:dd: 56:7f:94:aa:49:2a:e3:cb:f1:63:e2:56:2e:60:ad:ea:d7:7a: 2b:e1:9d:be:8f:3b:36:f9:b6:46:c6:ab:63:bb:fb:3c:0d:74: cd:b9:2b:29:18:a4:2b:f7:7e:e4:d5:c0:6b:4b:71:47:77:93: 68:5e:f5:27:56:8c:8e:43:98:2f:1e:76:74:4a:db:8c:83:3c: ee:39:ae:bd:21:74:a1:ca:54:ac:fb:8e:ab:3d:56:dd:98:ee: dd:69:53:2b:55:89:1a:94:bd:d5:f8:b7:a9:e0:23:a6:d2:43: 02:98:05:0d:93:e0:35:fc:2c:82:eb:b9:c6:77:ea:10:a3:74: 4d:ca:21:74:6b:e1:cc:a7:53:44:89:e6:64:bc:7a:33:7a:62: d8:79:df:3d:85:9e:49:12:0b:04:13:29:54:a0:36:46:d7:f2: 6f:8a:0b:f6:a2:9d:f7:28:ab:00:83:0a:4f:db:51:d0:7b:b6: af:0e:7c:f3:40:59:df:4c:b0:64:e0:ad:b3:28:ab:66:37:d4: 7f:59:30:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtACg2zFBlQKlfgeSCksDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMjc2YWM1MWExMzI0MDFkYjRjZDc0MWQ4NjZhNTQ2MjJh MGQxNWMwHhcNMjYwMjA5MTQwMDE4WhcNMjYwMjEwMTQwMDE4WjAzMTEwLwYDVQQD EygyNDRiZDQxYWMwMDIzZDBjNWMzMzYwMjY3NTUzOWRjMGUzMTdlNmRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+h12YrJyczCxm4d99hnbQyKzLzd wteotx1nGdgDSuakPbxRIXECCn5b+ncOy3GvefB8r1bekwQHNCh4Ew6FOLYzf3MD l8Pxvm5mdwItIBT5THTyyAi2dZ1SRL4TNcaMG/kec3IkgWo3BqowPbu0z1t20/3U kKaOwiBXeWqi6Lg5iX9OrFTXMnBsJsx1PolJmcTd9IW6+pOXxEF+foLWTFZcNKfh sYM4OU5WYOj6zjSxGKwB2C7DqRaYTNz3cfMzHhsuRAWM9BUp1XOlFBoMNKtqJAUH XGHLHYweFTftp8BCPR325vF/JU6oCNHQsIFjoK/o1d3g708GzqH4pfAjKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCRL1BrAAj0MXDNgJnVTncDjF+baMB8GA1UdIwQY MBaAFD4nasUaEyQB20zXQdhmpUYioNFcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81Y2FjMWUtODMxZC00ZDllLTlhMjIt MWVlZjExYThkZGRmLzEvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi81Y2FjMWUtODMxZC00ZDllLTlhMjItMWVlZjExYThkZGRm LzEvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmyFQ3cZ2 XavIoxwtElZ3U6bly+1iyl+Fr2uGF4CIs2SWS+AhuReI39zae2XylQqJ+cgHmbTd Vn+Uqkkq48vxY+JWLmCt6td6K+Gdvo87Nvm2RsarY7v7PA10zbkrKRikK/d+5NXA a0txR3eTaF71J1aMjkOYLx52dErbjIM87jmuvSF0ocpUrPuOqz1W3Zju3WlTK1WJ GpS91fi3qeAjptJDApgFDZPgNfwsguu5xnfqEKN0TcohdGvhzKdTRInmZLx6M3pi 2HnfPYWeSRILBBMpVKA2Rtfyb4oL9qKd9yirAIMKT9tR0Hu2rw5880BZ30ywZOCt syirZjfUf1kw7Q== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:59 2026 by rpki-client