This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft File: PxP6dbPOiUzEZAQaipX4WffBxNI.mft (raw, json) Hash identifier: uX84RdS1ruUeALNvuVOyG2htzNJo61PULRRLKGnsNcY= Subject key identifier: F2:19:11:3B:B6:2A:61:9E:96:A1:1C:16:E3:99:9C:22:07:AB:53:45 Authority key identifier: 3F:13:FA:75:B3:CE:89:4C:C4:64:04:1A:8A:95:F8:59:F7:C1:C4:D2 Certificate issuer: /CN=3f13fa75b3ce894cc464041a8a95f859f7c1c4d2 Certificate serial: 019C41D84346FC329B0B5194209C303846DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxP6dbPOiUzEZAQaipX4WffBxNI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft Manifest number: 0394 Signing time: Mon 09 Feb 2026 10:00:17 +0000 Manifest this update: Mon 09 Feb 2026 10:00:17 +0000 Manifest next update: Tue 10 Feb 2026 10:00:17 +0000 Files and hashes: 1: PxP6dbPOiUzEZAQaipX4WffBxNI.crl (hash: 6grszOq9J5+UHe4Xs2xvBE+37rVrGsFOA/SZCGGCWbg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.crl rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft rsync://rpki.ripe.net/repository/DEFAULT/PxP6dbPOiUzEZAQaipX4WffBxNI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:43:46:fc:32:9b:0b:51:94:20:9c:30:38:46:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3f13fa75b3ce894cc464041a8a95f859f7c1c4d2 Validity Not Before: Feb 9 10:00:17 2026 GMT Not After : Feb 10 10:00:17 2026 GMT Subject: CN=f219113bb62a619e96a11c16e3999c2207ab5345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cc:4a:3c:87:bb:9f:e9:8f:93:27:5e:9b:fd: cb:1e:ee:dd:10:d6:8e:d5:dc:5e:1b:2d:de:de:11: be:5e:76:2b:b8:3e:50:71:f4:1f:18:da:e3:3f:5e: e2:77:66:94:61:4a:67:2c:89:81:d5:b5:8b:f5:cf: 67:9e:66:54:28:51:5e:2a:3d:bb:25:6f:1d:9d:0d: fa:32:06:ce:c6:1f:4e:98:e6:c7:58:c1:1c:b5:5c: 0d:04:d2:74:09:72:e3:af:e6:b0:df:66:6c:b4:02: e8:b1:b3:f5:b1:eb:06:e7:c4:7b:c4:7e:e2:7e:2a: 4e:46:04:6a:fa:6d:86:1a:af:54:14:1d:1a:43:b6: e9:1d:44:a3:a8:4c:72:15:0f:41:4c:9b:e2:cf:6e: 2a:0a:96:a4:ca:a7:54:be:f3:5c:c1:c4:a7:05:6b: f1:87:cb:4c:e9:df:ed:dc:71:90:80:32:b7:b3:12: 0c:ef:dd:bb:59:32:89:92:2b:5f:f1:32:b7:85:6b: 50:7f:62:77:86:ca:17:a2:21:63:79:8b:fa:a3:c0: 4a:bc:bf:dd:cb:68:da:96:40:49:e0:28:16:cd:aa: 9c:29:94:12:57:e0:cb:2f:7d:37:e8:22:eb:90:c2: 9c:4a:b6:6b:3d:8f:16:b7:c2:13:dc:49:22:e3:2e: 36:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:19:11:3B:B6:2A:61:9E:96:A1:1C:16:E3:99:9C:22:07:AB:53:45 X509v3 Authority Key Identifier: keyid:3F:13:FA:75:B3:CE:89:4C:C4:64:04:1A:8A:95:F8:59:F7:C1:C4:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxP6dbPOiUzEZAQaipX4WffBxNI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:0e:e6:0e:dc:ec:49:db:b5:0d:fa:fc:2f:a4:d3:26:2e:4c: 5c:2d:89:37:3f:fe:ad:39:b0:f3:49:6d:86:5d:2d:45:3b:e4: 34:99:7a:af:2e:a8:ae:13:07:0d:7e:25:68:13:60:66:90:6d: 50:82:a9:c3:94:44:f4:2f:3f:56:e0:30:23:4a:8f:bb:87:04: 2f:58:da:da:41:18:4b:76:46:00:c7:44:ef:89:84:21:be:ca: f3:34:66:ca:4f:93:c4:e6:15:c4:1d:61:f6:42:65:1b:d0:f1: eb:54:ff:4b:ef:e5:89:6d:4c:a7:14:82:ce:1a:f9:df:35:c2: c6:a5:de:64:92:83:de:5f:a8:ce:9d:9d:2d:ee:71:f9:9b:ca: f3:84:d6:3e:78:55:47:24:dd:5e:28:e1:9d:74:16:47:48:49: 24:c1:77:7a:95:54:a1:b4:1f:b0:61:27:7b:f4:26:e6:c2:79: c2:2d:d3:03:cd:0a:e9:d6:40:ca:21:9f:8c:92:87:89:3c:76: be:7e:f8:22:d0:d1:db:f4:66:1e:91:7b:b2:f7:e5:95:d5:d6: 12:9c:4a:89:32:46:65:bd:dd:28:c3:da:6d:74:dc:9c:c5:b9: a2:fe:3f:c5:84:f1:0e:b3:69:45:2e:2e:29:76:18:4e:e0:47: df:5f:c6:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2ENG/DKbC1GUIJwwOEbeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmMTNmYTc1YjNjZTg5NGNjNDY0MDQxYThhOTVmODU5Zjdj MWM0ZDIwHhcNMjYwMjA5MTAwMDE3WhcNMjYwMjEwMTAwMDE3WjAzMTEwLwYDVQQD EyhmMjE5MTEzYmI2MmE2MTllOTZhMTFjMTZlMzk5OWMyMjA3YWI1MzQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA38xKPIe7n+mPkydem/3LHu7dENaO 1dxeGy3e3hG+XnYruD5QcfQfGNrjP17id2aUYUpnLImB1bWL9c9nnmZUKFFeKj27 JW8dnQ36MgbOxh9OmObHWMEctVwNBNJ0CXLjr+aw32ZstALosbP1sesG58R7xH7i fipORgRq+m2GGq9UFB0aQ7bpHUSjqExyFQ9BTJviz24qCpakyqdUvvNcwcSnBWvx h8tM6d/t3HGQgDK3sxIM7927WTKJkitf8TK3hWtQf2J3hsoXoiFjeYv6o8BKvL/d y2jalkBJ4CgWzaqcKZQSV+DLL3036CLrkMKcSrZrPY8Wt8IT3Eki4y42EQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPIZETu2KmGelqEcFuOZnCIHq1NFMB8GA1UdIwQY MBaAFD8T+nWzzolMxGQEGoqV+Fn3wcTSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHhQNmRiUE9pVXpFWkFRYWlwWDRXZmZCeE5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS84MmMyNjMtNDc5MS00MjIzLTg5NzAt NGFlN2FkNmVhMjg1LzEvUHhQNmRiUE9pVXpFWkFRYWlwWDRXZmZCeE5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS84MmMyNjMtNDc5MS00MjIzLTg5NzAtNGFlN2FkNmVhMjg1 LzEvUHhQNmRiUE9pVXpFWkFRYWlwWDRXZmZCeE5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEQ7mDtzs Sdu1Dfr8L6TTJi5MXC2JNz/+rTmw80lthl0tRTvkNJl6ry6orhMHDX4laBNgZpBt UIKpw5RE9C8/VuAwI0qPu4cEL1ja2kEYS3ZGAMdE74mEIb7K8zRmyk+TxOYVxB1h 9kJlG9Dx61T/S+/liW1MpxSCzhr53zXCxqXeZJKD3l+ozp2dLe5x+ZvK84TWPnhV RyTdXijhnXQWR0hJJMF3epVUobQfsGEne/Qm5sJ5wi3TA80K6dZAyiGfjJKHiTx2 vn74ItDR2/RmHpF7svflldXWEpxKiTJGZb3dKMPabXTcnMW5ov4/xYTxDrNpRS4u KXYYTuBH31/GGA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:46 2026 by rpki-client