This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft File: Pn1HTATkiliTr3HDWnfN1oJv0zk.mft (raw, json) Hash identifier: azjcdoWre/DAUFwYGsaoFQG+6AefxsHbtbX1a5Fw5IQ= Subject key identifier: 5C:02:34:1F:FA:27:BB:DD:B8:52:AD:AA:B4:13:0A:E9:CC:42:93:36 Authority key identifier: 3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39 Certificate issuer: /CN=3e7d474c04e48a5893af71c35a77cdd6826fd339 Certificate serial: 019C1C4BF3257AAA9D95DFDEB1563564859A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft Manifest number: 06A9 Signing time: Mon 02 Feb 2026 03:01:05 +0000 Manifest this update: Mon 02 Feb 2026 03:01:05 +0000 Manifest next update: Tue 03 Feb 2026 03:01:05 +0000 Files and hashes: 1: Pn1HTATkiliTr3HDWnfN1oJv0zk.crl (hash: Uvn1MLcQq2l8MUfUd9Ae3k5lCgOZI6xS2xWzVHajR6A=) 2: kq527hgVr7ukC92yfbPMdR4xku4.asa (hash: LvIhj4F/rl2CGQnbgEZFLJhN4x8R+m0+ZkR3noVX8AQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 03:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:4b:f3:25:7a:aa:9d:95:df:de:b1:56:35:64:85:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e7d474c04e48a5893af71c35a77cdd6826fd339 Validity Not Before: Feb 2 03:01:05 2026 GMT Not After : Feb 3 03:01:05 2026 GMT Subject: CN=5c02341ffa27bbddb852adaab4130ae9cc429336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e7:fc:e0:86:e5:e3:99:bb:fd:eb:1f:73:bd: 05:4b:db:18:54:d1:ac:b9:20:83:d6:6e:2e:2e:e4: f7:06:37:eb:cf:b8:0b:56:bb:99:02:ab:45:0f:51: 61:b5:48:bd:de:15:66:34:e1:d3:ef:8a:dd:3b:df: 1c:83:34:d4:21:19:1e:ff:cc:ff:d9:d0:3d:ea:d7: 91:14:19:93:6e:0b:79:fa:63:88:9b:41:f4:78:9b: 6f:2b:5a:47:ac:26:11:c7:7e:ab:22:fc:26:b7:ea: 52:cd:36:96:84:5d:f9:7f:f4:17:de:15:62:b2:59: e9:35:de:76:0b:ed:68:c3:33:fc:36:fb:90:29:29: f6:7e:7a:b5:9e:4b:30:86:50:3a:f5:db:b6:da:08: 12:d0:96:e6:b8:7a:2c:d0:c2:0c:96:ec:99:e6:84: 2c:06:35:4e:53:0d:82:f1:20:5a:d8:01:6d:b0:79: c7:d8:dc:91:03:e3:ec:7f:34:74:83:11:73:21:64: 7c:a3:d0:a9:d8:34:69:0f:08:3e:96:70:c4:79:59: b9:4b:da:36:10:36:78:91:bc:ac:35:19:54:ac:b0: 36:ba:93:8e:13:5e:7f:f0:ab:1b:3f:99:e1:ea:ac: 27:07:dc:38:e9:ed:61:87:be:9f:89:80:0b:79:00: b8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:02:34:1F:FA:27:BB:DD:B8:52:AD:AA:B4:13:0A:E9:CC:42:93:36 X509v3 Authority Key Identifier: keyid:3E:7D:47:4C:04:E4:8A:58:93:AF:71:C3:5A:77:CD:D6:82:6F:D3:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pn1HTATkiliTr3HDWnfN1oJv0zk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7e30e8-b835-44af-a44b-903e4f5e1225/1/Pn1HTATkiliTr3HDWnfN1oJv0zk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:8e:29:84:07:e8:02:0f:7f:10:5e:d3:de:ef:b3:c8:d1:0a: 49:f5:97:57:66:01:7a:40:39:96:42:3d:ca:18:5b:03:bc:a9: 3f:48:f5:2f:b0:20:da:34:aa:52:67:45:ee:f8:16:6a:29:4c: 58:dd:66:6c:50:15:57:db:b5:7c:33:5c:98:10:d4:5e:88:ce: 70:9c:a5:84:bf:95:d4:c2:ba:6e:75:cf:5f:60:06:8b:ad:15: 04:35:6f:ed:5a:24:de:a3:c8:15:f1:20:93:48:59:f1:e9:f8: 8a:0e:25:4d:13:57:03:b0:b0:03:f6:6a:ae:08:da:d5:f8:f8: e1:60:11:92:fe:11:c2:8b:3c:b1:57:3f:33:36:3a:17:06:06: c8:ca:d8:fa:c9:ad:4f:f2:50:a9:fd:b3:8e:a7:1a:4c:d4:2c: 70:8e:b8:6b:26:67:1f:62:f5:05:37:eb:a3:09:d5:cc:be:0c: 3c:10:08:03:77:93:b4:62:cd:ce:fa:87:94:36:ba:23:09:83: 16:08:af:1f:0e:09:13:6d:20:00:0b:09:89:53:57:b2:3b:4e: ac:30:e2:ee:fb:76:cd:7e:63:ba:40:f5:c2:ee:43:5f:13:28: 59:7e:54:94:51:c7:7a:24:92:b2:17:d5:e5:85:26:21:52:8c: bb:a8:79:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwcS/Mleqqdld/esVY1ZIWaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlN2Q0NzRjMDRlNDhhNTg5M2FmNzFjMzVhNzdjZGQ2ODI2 ZmQzMzkwHhcNMjYwMjAyMDMwMTA1WhcNMjYwMjAzMDMwMTA1WjAzMTEwLwYDVQQD Eyg1YzAyMzQxZmZhMjdiYmRkYjg1MmFkYWFiNDEzMGFlOWNjNDI5MzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApuf84Ibl45m7/esfc70FS9sYVNGs uSCD1m4uLuT3Bjfrz7gLVruZAqtFD1FhtUi93hVmNOHT74rdO98cgzTUIRke/8z/ 2dA96teRFBmTbgt5+mOIm0H0eJtvK1pHrCYRx36rIvwmt+pSzTaWhF35f/QX3hVi slnpNd52C+1owzP8NvuQKSn2fnq1nkswhlA69du22ggS0JbmuHos0MIMluyZ5oQs BjVOUw2C8SBa2AFtsHnH2NyRA+PsfzR0gxFzIWR8o9Cp2DRpDwg+lnDEeVm5S9o2 EDZ4kbysNRlUrLA2upOOE15/8KsbP5nh6qwnB9w46e1hh76fiYALeQC4uwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFwCNB/6J7vduFKtqrQTCunMQpM2MB8GA1UdIwQY MBaAFD59R0wE5IpYk69xw1p3zdaCb9M5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG4xSFRBVGtpbGlUcjNIRFduZk4xb0p2MHprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi83ZTMwZTgtYjgzNS00NGFmLWE0NGIt OTAzZTRmNWUxMjI1LzEvUG4xSFRBVGtpbGlUcjNIRFduZk4xb0p2MHprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi83ZTMwZTgtYjgzNS00NGFmLWE0NGItOTAzZTRmNWUxMjI1 LzEvUG4xSFRBVGtpbGlUcjNIRFduZk4xb0p2MHprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArI4phAfo Ag9/EF7T3u+zyNEKSfWXV2YBekA5lkI9yhhbA7ypP0j1L7Ag2jSqUmdF7vgWailM WN1mbFAVV9u1fDNcmBDUXojOcJylhL+V1MK6bnXPX2AGi60VBDVv7Vok3qPIFfEg k0hZ8en4ig4lTRNXA7CwA/Zqrgja1fj44WARkv4Rwos8sVc/MzY6FwYGyMrY+smt T/JQqf2zjqcaTNQscI64ayZnH2L1BTfrownVzL4MPBAIA3eTtGLNzvqHlDa6IwmD FgivHw4JE20gAAsJiVNXsjtOrDDi7vt2zX5jukD1wu5DXxMoWX5UlFHHeiSSshfV 5YUmIVKMu6h5/w== -----END CERTIFICATE-----Generated at Mon Feb 2 09:43:15 2026 by rpki-client