This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft File: pnUQ3cUswCV-TCVS9b1XVURUxgs.mft (raw, json) Hash identifier: MiUPRLZkIUpUejnn62v/Uf6n5iioV9zEQHG2MAzm/Jw= Subject key identifier: B0:CA:93:F6:6D:C3:C0:62:B4:BA:D9:B9:96:58:BC:43:07:79:F8:EC Authority key identifier: A6:75:10:DD:C5:2C:C0:25:7E:4C:25:52:F5:BD:57:55:44:54:C6:0B Certificate issuer: /CN=a67510ddc52cc0257e4c2552f5bd57554454c60b Certificate serial: 019C41D8B141697FE10860FD9131FE5881A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft Manifest number: 078D Signing time: Mon 09 Feb 2026 10:00:45 +0000 Manifest this update: Mon 09 Feb 2026 10:00:45 +0000 Manifest next update: Tue 10 Feb 2026 10:00:45 +0000 Files and hashes: 1: pnUQ3cUswCV-TCVS9b1XVURUxgs.crl (hash: luWDmH3JMD+wSfFCgOMqPSULnyT1rAhrCrc8by9lU64=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:b1:41:69:7f:e1:08:60:fd:91:31:fe:58:81:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a67510ddc52cc0257e4c2552f5bd57554454c60b Validity Not Before: Feb 9 10:00:45 2026 GMT Not After : Feb 10 10:00:45 2026 GMT Subject: CN=b0ca93f66dc3c062b4bad9b99658bc430779f8ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:21:a8:bd:ed:af:66:32:f2:75:93:37:fe:8f: 53:9b:6b:3b:d3:80:60:32:80:c8:03:df:af:35:24: 43:14:f4:a2:4a:b4:9e:97:60:85:6e:2a:72:70:53: 3d:11:3b:05:83:f8:ce:70:d0:07:d0:e0:b8:5e:8c: cb:b4:1c:f9:22:87:84:c1:34:06:9e:27:7d:ae:4a: 77:a6:19:ee:3f:ff:e1:a9:10:45:7c:86:90:78:c5: 5f:ed:8b:69:84:2e:ca:cf:58:0b:9b:5c:f9:13:9b: 63:ba:74:5c:0c:e0:83:f1:39:4b:11:8d:ba:ec:45: 6e:69:6f:e2:77:9c:b3:69:8e:1c:42:80:ba:52:f7: 71:a5:fa:67:aa:a1:4e:23:c3:51:90:75:b9:00:2f: 56:d6:7c:47:df:ba:3f:1d:39:e7:f4:51:e8:ee:20: 9f:51:b1:b1:2f:94:a7:f5:8d:90:13:db:a0:bb:a0: 8a:4c:ac:94:f3:f3:63:00:27:a1:e2:77:32:cd:ff: f5:fe:a3:1b:9c:a3:a9:b2:99:ae:a8:84:7a:d7:54: df:88:86:fc:4f:55:27:bd:1b:d5:f6:ad:b6:ed:5b: 32:31:b4:4e:91:2e:e2:87:11:13:65:f2:ac:7b:6b: e0:5b:ba:62:2f:d7:58:1b:b7:45:cf:fd:5f:09:56: 6c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CA:93:F6:6D:C3:C0:62:B4:BA:D9:B9:96:58:BC:43:07:79:F8:EC X509v3 Authority Key Identifier: keyid:A6:75:10:DD:C5:2C:C0:25:7E:4C:25:52:F5:BD:57:55:44:54:C6:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:7c:85:4b:b1:2f:cd:f7:39:a2:b7:65:b1:29:d3:37:e1:c7: 50:0b:d8:b3:64:3a:83:33:8d:d1:41:6b:35:9c:87:2d:f5:92: 4d:50:e6:fa:31:2e:fc:e0:c4:35:a2:c2:33:28:1a:0a:b8:4a: 72:3f:c6:56:b2:25:4d:08:46:c1:42:f0:ea:43:d9:ed:6c:d0: 94:5a:2f:67:bf:c9:92:02:2a:d2:c4:62:ac:49:7a:a7:88:27: 87:21:c9:b3:3e:40:9c:ea:1f:68:73:7e:08:63:7a:b0:2e:aa: 04:c8:05:54:51:7a:3e:8c:ae:30:a3:cf:f3:83:60:47:66:b7: 13:60:27:d8:94:22:93:7a:e3:bd:75:3d:8a:ba:8b:a8:0d:2d: 72:7d:2c:dd:91:fa:24:7d:71:80:68:98:7d:56:66:e7:de:aa: 02:03:82:58:46:09:15:16:62:a0:56:50:0c:99:1d:ba:39:5a: 08:94:a9:e3:7f:74:fd:6c:1b:8c:fe:ff:bf:3f:22:64:65:6f: da:de:bc:93:67:6e:d0:8d:19:1f:67:65:68:54:0c:24:31:7e: 96:43:48:b3:92:ab:2e:e5:c1:13:a8:91:76:60:9d:f2:3b:34: 38:2d:ad:d4:b6:78:89:6a:26:88:c2:eb:a6:86:b6:5a:72:b2: 97:53:bc:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2LFBaX/hCGD9kTH+WIGlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2NzUxMGRkYzUyY2MwMjU3ZTRjMjU1MmY1YmQ1NzU1NDQ1 NGM2MGIwHhcNMjYwMjA5MTAwMDQ1WhcNMjYwMjEwMTAwMDQ1WjAzMTEwLwYDVQQD EyhiMGNhOTNmNjZkYzNjMDYyYjRiYWQ5Yjk5NjU4YmM0MzA3NzlmOGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5CGove2vZjLydZM3/o9Tm2s704Bg MoDIA9+vNSRDFPSiSrSel2CFbipycFM9ETsFg/jOcNAH0OC4XozLtBz5IoeEwTQG nid9rkp3phnuP//hqRBFfIaQeMVf7YtphC7Kz1gLm1z5E5tjunRcDOCD8TlLEY26 7EVuaW/id5yzaY4cQoC6UvdxpfpnqqFOI8NRkHW5AC9W1nxH37o/HTnn9FHo7iCf UbGxL5Sn9Y2QE9ugu6CKTKyU8/NjACeh4ncyzf/1/qMbnKOpspmuqIR611TfiIb8 T1UnvRvV9q227VsyMbROkS7ihxETZfKse2vgW7piL9dYG7dFz/1fCVZs9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLDKk/Ztw8BitLrZuZZYvEMHefjsMB8GA1UdIwQY MBaAFKZ1EN3FLMAlfkwlUvW9V1VEVMYLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5VUTNjVXN3Q1YtVENWUzliMVhWVVJVeGdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9lMzFmNzgtNjhiYi00NzI5LWJkNjUt NjBkMjU1YmUwNDc5LzEvcG5VUTNjVXN3Q1YtVENWUzliMVhWVVJVeGdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi9lMzFmNzgtNjhiYi00NzI5LWJkNjUtNjBkMjU1YmUwNDc5 LzEvcG5VUTNjVXN3Q1YtVENWUzliMVhWVVJVeGdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnHyFS7Ev zfc5ordlsSnTN+HHUAvYs2Q6gzON0UFrNZyHLfWSTVDm+jEu/ODENaLCMygaCrhK cj/GVrIlTQhGwULw6kPZ7WzQlFovZ7/JkgIq0sRirEl6p4gnhyHJsz5AnOofaHN+ CGN6sC6qBMgFVFF6PoyuMKPP84NgR2a3E2An2JQik3rjvXU9irqLqA0tcn0s3ZH6 JH1xgGiYfVZm596qAgOCWEYJFRZioFZQDJkdujlaCJSp4390/WwbjP7/vz8iZGVv 2t68k2du0I0ZH2dlaFQMJDF+lkNIs5KrLuXBE6iRdmCd8js0OC2t1LZ4iWomiMLr poa2WnKyl1O83Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:08 2026 by rpki-client