This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json) Hash identifier: nh2IMayNipUJIDdikMeKk2nsfEO7r3Kehin8FA1r+G4= Subject key identifier: 86:3A:38:B0:5A:FD:F4:53:FD:05:79:1D:F7:DB:A6:E2:1C:4E:80:1F Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde Certificate serial: 019C420F7B79EBD629057413EF4E6FFD70D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft Manifest number: 0A97 Signing time: Mon 09 Feb 2026 11:00:36 +0000 Manifest this update: Mon 09 Feb 2026 11:00:36 +0000 Manifest next update: Tue 10 Feb 2026 11:00:36 +0000 Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: v+WYFqE/OiedZW3N1P7OdiflJ29p4Zb984Hf3ZmLW6A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:7b:79:eb:d6:29:05:74:13:ef:4e:6f:fd:70:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde Validity Not Before: Feb 9 11:00:36 2026 GMT Not After : Feb 10 11:00:36 2026 GMT Subject: CN=863a38b05afdf453fd05791df7dba6e21c4e801f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f3:3c:00:9f:4f:80:ce:8a:55:59:c4:b5:39: d3:1d:00:ca:b8:a1:1c:f3:ee:91:6e:df:8c:7f:2c: 87:9b:ab:cf:01:7b:92:10:ee:86:1c:ab:8b:e4:2b: e3:89:7d:a2:a6:19:4d:21:6f:77:ba:64:a5:71:e5: b7:a0:e0:34:a7:28:79:dc:96:1c:0a:04:ca:1e:d7: 05:96:50:cb:e3:e2:2e:b0:32:44:63:a6:e5:16:bb: 9e:ad:68:0d:f5:51:71:94:36:9e:f7:9a:cf:d5:9b: f4:f0:49:8a:5a:18:30:6a:7f:c1:2b:80:4e:8f:2f: cf:f6:1a:ca:48:f9:95:b7:a8:b1:d3:1c:fd:f1:b4: d6:d8:f0:80:5e:dd:01:1f:57:b8:f4:ca:61:ae:15: 14:dc:25:80:6b:cc:81:29:50:a6:57:ca:a9:42:34: 5e:9f:cb:9a:ac:6e:37:c4:25:66:aa:d1:c3:ef:ec: 36:e6:88:5a:a7:e2:6a:be:cc:25:8f:68:04:b7:3f: 74:2b:5b:7b:b0:62:03:45:a2:81:a1:ef:4d:c9:dc: 8b:01:5f:f1:49:88:57:cd:57:41:fb:ae:6f:fe:3e: ab:a6:51:33:9c:08:76:2a:6e:ac:4d:ba:10:73:98: ac:33:19:99:a6:e7:c9:e8:d9:11:7f:8c:d2:65:c2: 2c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3A:38:B0:5A:FD:F4:53:FD:05:79:1D:F7:DB:A6:E2:1C:4E:80:1F X509v3 Authority Key Identifier: keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:16:6d:38:4c:04:54:b5:6f:92:03:3e:8d:84:63:5f:f2:f8: a3:70:1a:48:75:92:0c:91:5b:fa:4a:2f:11:95:a8:d0:a6:48: db:11:48:3e:68:9f:95:3d:33:ef:fc:f3:68:54:a8:4b:5a:f2: 10:dc:f1:e4:39:26:e9:93:99:57:b8:0f:55:f2:6c:8c:85:40: 04:31:d3:15:b8:89:d3:cc:2a:8c:c6:d9:69:8f:c5:6b:82:a0: aa:17:8b:50:1c:cc:c6:df:0b:86:56:62:e0:d6:e4:3e:43:70: 0c:83:63:29:b6:2b:da:55:e2:56:9c:de:f4:23:b0:0d:58:35: b1:be:30:c6:8a:2b:bd:e4:5c:e6:3e:ea:d6:17:32:28:ae:51: b1:43:be:0f:70:22:38:2e:d1:30:fe:72:8f:01:29:99:5b:9b: 1f:ca:ef:9b:05:a4:8e:a9:ae:ab:92:b1:8f:27:c6:c0:6c:81: c5:ff:40:a4:fb:2f:20:b5:c9:2a:f5:26:1e:a8:74:b1:b8:3d: 5b:2e:dd:7b:84:68:61:1c:da:18:b0:f4:ae:1a:95:fa:7a:07: 2d:b3:2e:d3:19:3c:a3:43:50:eb:9b:de:c5:8b:03:da:4d:0a: 54:50:99:46:0d:10:22:e6:b3:a6:d1:4b:ab:0b:f8:bc:09:e4: 52:78:3d:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD3t569YpBXQT705v/XDQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0Zjg2YTlhM2M0MjljMWJjMjZlYzA2YTNhZTRlNDE3Y2E3 NGRmZGUwHhcNMjYwMjA5MTEwMDM2WhcNMjYwMjEwMTEwMDM2WjAzMTEwLwYDVQQD Eyg4NjNhMzhiMDVhZmRmNDUzZmQwNTc5MWRmN2RiYTZlMjFjNGU4MDFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/M8AJ9PgM6KVVnEtTnTHQDKuKEc 8+6Rbt+MfyyHm6vPAXuSEO6GHKuL5CvjiX2iphlNIW93umSlceW3oOA0pyh53JYc CgTKHtcFllDL4+IusDJEY6blFruerWgN9VFxlDae95rP1Zv08EmKWhgwan/BK4BO jy/P9hrKSPmVt6ix0xz98bTW2PCAXt0BH1e49MphrhUU3CWAa8yBKVCmV8qpQjRe n8uarG43xCVmqtHD7+w25ohap+Jqvswlj2gEtz90K1t7sGIDRaKBoe9NydyLAV/x SYhXzVdB+65v/j6rplEznAh2Km6sTboQc5isMxmZpufJ6NkRf4zSZcIsewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIY6OLBa/fRT/QV5HffbpuIcToAfMB8GA1UdIwQY MBaAFNT4apo8Qpwbwm7Aajrk5BfKdN/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVBocW1qeENuQnZDYnNCcU91VGtGOHAwMzk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9hNWU1MzEtMWEwOC00MzM2LWIwZDgt NDgzMjY1OTk5NGNiLzEvMVBocW1qeENuQnZDYnNCcU91VGtGOHAwMzk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9hNWU1MzEtMWEwOC00MzM2LWIwZDgtNDgzMjY1OTk5NGNi LzEvMVBocW1qeENuQnZDYnNCcU91VGtGOHAwMzk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMRZtOEwE VLVvkgM+jYRjX/L4o3AaSHWSDJFb+kovEZWo0KZI2xFIPmiflT0z7/zzaFSoS1ry ENzx5Dkm6ZOZV7gPVfJsjIVABDHTFbiJ08wqjMbZaY/Fa4KgqheLUBzMxt8LhlZi 4NbkPkNwDINjKbYr2lXiVpze9COwDVg1sb4wxoorveRc5j7q1hcyKK5RsUO+D3Ai OC7RMP5yjwEpmVubH8rvmwWkjqmuq5KxjyfGwGyBxf9ApPsvILXJKvUmHqh0sbg9 Wy7de4RoYRzaGLD0rhqV+noHLbMu0xk8o0NQ65vexYsD2k0KVFCZRg0QIuazptFL qwv4vAnkUng9TA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:43 2026 by rpki-client