This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json) Hash identifier: VfQhcp9qtjNNwRMuAvhcn6POHE0Qgt9AblEiSo3RO5Q= Subject key identifier: A0:94:F3:2D:14:0E:67:F7:FB:01:F5:CE:4A:71:D9:11:66:3A:4C:38 Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73 Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773 Certificate serial: 019C427DC6BD453D0958095F38AFA5AD1D4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft Manifest number: 0AD7 Signing time: Mon 09 Feb 2026 13:01:04 +0000 Manifest this update: Mon 09 Feb 2026 13:01:04 +0000 Manifest next update: Tue 10 Feb 2026 13:01:04 +0000 Files and hashes: 1: 0kteYDEknBDxG9W3J3cL9QhFRvc.roa (hash: 1XWojZWd6G7wDLkk3o7HBTuYxtsrR+gEZcfWZE2ZhEU=) 2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: kMzsODIzXjb8nCqzQR7oSnFsiAb1bfVJzBoaOdxIwyc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:c6:bd:45:3d:09:58:09:5f:38:af:a5:ad:1d:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773 Validity Not Before: Feb 9 13:01:04 2026 GMT Not After : Feb 10 13:01:04 2026 GMT Subject: CN=a094f32d140e67f7fb01f5ce4a71d911663a4c38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f3:ee:29:79:3e:4e:50:10:55:b4:bb:c5:42: 0d:86:c0:6a:37:06:35:83:89:05:e8:a9:60:a0:bf: 50:19:49:68:25:94:0a:2c:b8:ac:a8:41:27:fd:2a: fc:dd:b5:bc:5a:9c:25:ed:37:23:26:24:42:ee:a6: fd:fd:27:ae:39:38:3d:df:70:1f:a3:4c:01:10:a2: 6b:ef:cc:5d:97:1b:35:0d:a5:38:9b:a9:e0:ee:76: 37:2d:de:77:bc:84:ad:75:eb:47:a3:33:54:9c:91: f0:7c:7b:0c:01:9d:1f:72:e4:0d:5d:4f:01:57:de: 0a:f9:a7:e2:b2:ee:66:f1:02:c3:26:81:d8:70:70: 81:18:02:e5:9c:a0:18:7c:3c:d9:8d:96:e5:b2:a3: 95:e6:b5:b0:24:4a:19:29:3f:29:14:f7:fd:35:f8: f3:6e:a8:43:31:e7:36:99:7b:58:cc:71:5d:5b:2d: 9c:5a:6c:b2:10:14:f7:8e:7f:01:94:6d:bf:50:75: bb:d2:04:be:fe:43:97:f8:40:53:db:fc:91:a5:1a: d5:75:be:6b:66:2d:3a:b6:1b:b9:68:79:20:da:c8: b4:0b:7f:a2:82:a8:f8:48:69:01:0f:d4:af:78:f5: 7c:62:cc:91:b3:61:bd:31:e3:b5:c7:2e:4d:ea:db: 40:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:94:F3:2D:14:0E:67:F7:FB:01:F5:CE:4A:71:D9:11:66:3A:4C:38 X509v3 Authority Key Identifier: keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:75:79:b5:d8:1c:af:d5:00:f9:ac:9f:84:e3:4e:61:16:c9: 40:de:b3:f7:11:9d:a6:05:cc:c3:e4:50:88:d6:2f:e4:81:59: 74:f7:f9:b8:63:cc:16:b5:65:32:72:69:b1:97:e3:0a:f5:7f: 23:e0:d3:04:9e:68:5b:d3:ef:81:d5:d4:a1:c3:03:2b:df:ef: 5f:8d:17:ed:26:65:b4:6a:b5:70:0f:68:6a:2a:15:b0:d1:3a: ee:74:02:54:98:96:93:bb:f4:db:c1:13:ea:1a:ef:08:1f:3d: f3:4f:90:05:5c:d1:17:64:b3:db:a2:d8:2f:f7:61:25:46:35: 37:d3:95:70:a1:8f:c7:97:26:13:9d:5e:f8:7a:5a:a2:70:c7: ea:5e:b9:73:fe:27:8e:b8:88:09:8d:53:9c:f2:7b:4f:08:c3: ec:d2:42:0b:c3:1e:0f:2f:f8:16:36:ea:a4:2e:ab:5d:7f:9b: 3b:e6:ac:f4:f3:b9:90:03:d9:0d:ef:d1:b7:0f:91:0c:25:cc: 82:a3:4b:72:11:06:c8:6a:70:8f:bb:f1:86:0b:db:ba:49:d7: f1:1f:fc:a2:72:5f:88:9a:4d:62:65:91:9f:c4:08:ac:8f:0e: c8:ab:0a:e5:ef:39:59:2b:e6:4d:2d:fc:96:6d:71:64:7f:45: e6:fa:4b:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfca9RT0JWAlfOK+lrR1LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkODk3YmQ4YzZkZjFjYjcxNDEwZmUxOTRiZWQ3MzlhMmY4 YTY3NzMwHhcNMjYwMjA5MTMwMTA0WhcNMjYwMjEwMTMwMTA0WjAzMTEwLwYDVQQD EyhhMDk0ZjMyZDE0MGU2N2Y3ZmIwMWY1Y2U0YTcxZDkxMTY2M2E0YzM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvfPuKXk+TlAQVbS7xUINhsBqNwY1 g4kF6KlgoL9QGUloJZQKLLisqEEn/Sr83bW8Wpwl7TcjJiRC7qb9/SeuOTg933Af o0wBEKJr78xdlxs1DaU4m6ng7nY3Ld53vIStdetHozNUnJHwfHsMAZ0fcuQNXU8B V94K+afisu5m8QLDJoHYcHCBGALlnKAYfDzZjZblsqOV5rWwJEoZKT8pFPf9Nfjz bqhDMec2mXtYzHFdWy2cWmyyEBT3jn8BlG2/UHW70gS+/kOX+EBT2/yRpRrVdb5r Zi06thu5aHkg2si0C3+igqj4SGkBD9SvePV8YsyRs2G9MeO1xy5N6ttAuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKCU8y0UDmf3+wH1zkpx2RFmOkw4MB8GA1UdIwQY MBaAFD2Je9jG3xy3FBD+GUvtc5ovimdzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi81NDcxZjgtYzkzOC00MGNjLWIxMzkt ZjlmOTIxNTBjZDM5LzEvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi81NDcxZjgtYzkzOC00MGNjLWIxMzktZjlmOTIxNTBjZDM5 LzEvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI3V5tdgc r9UA+ayfhONOYRbJQN6z9xGdpgXMw+RQiNYv5IFZdPf5uGPMFrVlMnJpsZfjCvV/ I+DTBJ5oW9PvgdXUocMDK9/vX40X7SZltGq1cA9oaioVsNE67nQCVJiWk7v028ET 6hrvCB8980+QBVzRF2Sz26LYL/dhJUY1N9OVcKGPx5cmE51e+HpaonDH6l65c/4n jriICY1TnPJ7TwjD7NJCC8MeDy/4FjbqpC6rXX+bO+as9PO5kAPZDe/Rtw+RDCXM gqNLchEGyGpwj7vxhgvbuknX8R/8onJfiJpNYmWRn8QIrI8OyKsK5e85WSvmTS38 lm1xZH9F5vpLUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:34 2026 by rpki-client