This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/ec6225-d6a7-418a-b02f-6234ea09e186/1/pKgNKvhhtwo37AUOAT5t-6lMiz0.mft File: pKgNKvhhtwo37AUOAT5t-6lMiz0.mft (raw, json) Hash identifier: pY+HKv2Vn1YLBKfTHF2nChkX2lsxDrnfdJB4cJzxdrw= Subject key identifier: C6:A9:68:04:4C:AD:91:B1:EF:88:F8:44:70:E5:9E:BE:D5:01:C6:A6 Authority key identifier: A4:A8:0D:2A:F8:61:B7:0A:37:EC:05:0E:01:3E:6D:FB:A9:4C:8B:3D Certificate issuer: /CN=a4a80d2af861b70a37ec050e013e6dfba94c8b3d Certificate serial: 019C4322D63DFE4E0BBD4A0A990F09124E61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pKgNKvhhtwo37AUOAT5t-6lMiz0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/ec6225-d6a7-418a-b02f-6234ea09e186/1/pKgNKvhhtwo37AUOAT5t-6lMiz0.mft Manifest number: 10B4 Signing time: Mon 09 Feb 2026 16:01:22 +0000 Manifest this update: Mon 09 Feb 2026 16:01:22 +0000 Manifest next update: Tue 10 Feb 2026 16:01:22 +0000 Files and hashes: 1: pKgNKvhhtwo37AUOAT5t-6lMiz0.crl (hash: m9YMZDfjkPMrdBIwF2KEv8WeWFLlgU9obRdr6PJcMdY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/ec6225-d6a7-418a-b02f-6234ea09e186/1/pKgNKvhhtwo37AUOAT5t-6lMiz0.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/ec6225-d6a7-418a-b02f-6234ea09e186/1/pKgNKvhhtwo37AUOAT5t-6lMiz0.mft rsync://rpki.ripe.net/repository/DEFAULT/pKgNKvhhtwo37AUOAT5t-6lMiz0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:d6:3d:fe:4e:0b:bd:4a:0a:99:0f:09:12:4e:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4a80d2af861b70a37ec050e013e6dfba94c8b3d Validity Not Before: Feb 9 16:01:22 2026 GMT Not After : Feb 10 16:01:22 2026 GMT Subject: CN=c6a968044cad91b1ef88f84470e59ebed501c6a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b6:b4:e2:e4:7f:96:9f:ca:9c:c7:29:17:32: bd:a2:8b:d4:66:75:7e:23:e0:88:2f:98:5a:02:ef: 4a:94:08:98:73:7e:7c:d2:8d:cd:01:c2:3f:e9:18: 1d:a8:10:2b:10:f1:7d:ce:82:91:7e:78:15:d0:91: ea:f7:39:07:c6:6d:e8:da:a2:dd:58:5e:33:e4:cb: 4b:27:7c:3b:e4:45:0b:a5:d5:57:b0:14:72:7d:11: 46:06:f2:64:7f:0a:86:a9:fb:c9:4a:a8:08:02:fc: e2:46:cf:fd:4d:c3:21:66:c6:79:e8:5a:63:93:17: ca:00:72:2c:4a:5c:aa:ba:cc:47:c2:bf:63:1d:ed: 43:d8:fa:f1:d1:57:f7:54:4f:ac:0a:d6:46:2e:87: 50:26:03:67:53:14:92:12:29:d7:cb:8c:4a:da:75: d2:bf:51:90:d8:56:54:ab:e5:3b:3f:f4:da:f1:44: 46:e1:cb:10:a1:b1:25:a7:dc:55:f9:b6:52:38:2f: ec:74:2f:9d:a6:d9:cb:ca:fb:b1:bc:4c:1a:5d:17: 32:13:08:28:2d:aa:12:9b:3a:a8:08:e1:d6:65:1e: 07:7a:eb:c3:bd:08:81:f7:35:bd:93:53:d1:2a:f4: bd:a3:33:51:ea:ae:4c:09:d4:77:ac:73:a2:ce:95: 65:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A9:68:04:4C:AD:91:B1:EF:88:F8:44:70:E5:9E:BE:D5:01:C6:A6 X509v3 Authority Key Identifier: keyid:A4:A8:0D:2A:F8:61:B7:0A:37:EC:05:0E:01:3E:6D:FB:A9:4C:8B:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pKgNKvhhtwo37AUOAT5t-6lMiz0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/ec6225-d6a7-418a-b02f-6234ea09e186/1/pKgNKvhhtwo37AUOAT5t-6lMiz0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/ec6225-d6a7-418a-b02f-6234ea09e186/1/pKgNKvhhtwo37AUOAT5t-6lMiz0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:49:b0:84:cb:b9:c8:2e:39:a5:ac:bb:d4:a0:16:da:4c:71: 50:7c:ea:0c:7e:e0:6d:2d:21:c4:9a:ab:e4:72:14:2f:69:95: ba:43:12:ef:3b:c6:60:f9:0e:c6:4b:17:52:65:e7:ae:7f:97: a1:75:91:66:9f:95:a7:5e:6c:b6:60:f9:39:42:41:0b:d0:e2: e0:33:eb:f2:0c:24:08:0a:12:f1:f5:bb:db:3b:df:f8:b0:56: e6:c3:5b:f9:00:27:2f:9e:55:48:38:60:67:c2:33:04:0d:95: f1:f1:12:77:85:5f:8c:db:3a:31:4c:47:97:11:3b:d2:64:84: 42:2e:54:63:65:ba:f1:84:57:2e:d7:48:39:0b:7a:ff:60:63: 0b:e2:cd:6f:a2:ec:ad:4c:9f:83:e3:26:de:77:f0:3c:43:07: 69:70:9a:0a:69:43:d4:b3:ae:e1:25:c6:fc:e6:50:08:18:ba: f7:a0:c2:28:c4:62:a6:92:01:1f:fa:13:b1:b8:69:72:2f:fe: 89:db:64:07:e9:82:7b:9f:76:e8:89:3c:32:44:39:85:e6:e6: 1d:b3:34:34:44:4a:e1:a0:3b:38:88:4e:b0:13:fa:a7:35:9d: 7d:56:70:0c:8b:fa:e9:9c:03:08:32:1a:5e:83:df:08:51:59: d3:71:ac:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDItY9/k4LvUoKmQ8JEk5hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0YTgwZDJhZjg2MWI3MGEzN2VjMDUwZTAxM2U2ZGZiYTk0 YzhiM2QwHhcNMjYwMjA5MTYwMTIyWhcNMjYwMjEwMTYwMTIyWjAzMTEwLwYDVQQD EyhjNmE5NjgwNDRjYWQ5MWIxZWY4OGY4NDQ3MGU1OWViZWQ1MDFjNmE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvba04uR/lp/KnMcpFzK9oovUZnV+ I+CIL5haAu9KlAiYc3580o3NAcI/6RgdqBArEPF9zoKRfngV0JHq9zkHxm3o2qLd WF4z5MtLJ3w75EULpdVXsBRyfRFGBvJkfwqGqfvJSqgIAvziRs/9TcMhZsZ56Fpj kxfKAHIsSlyqusxHwr9jHe1D2Prx0Vf3VE+sCtZGLodQJgNnUxSSEinXy4xK2nXS v1GQ2FZUq+U7P/Ta8URG4csQobElp9xV+bZSOC/sdC+dptnLyvuxvEwaXRcyEwgo LaoSmzqoCOHWZR4HeuvDvQiB9zW9k1PRKvS9ozNR6q5MCdR3rHOizpVlGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMapaARMrZGx74j4RHDlnr7VAcamMB8GA1UdIwQY MBaAFKSoDSr4YbcKN+wFDgE+bfupTIs9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcEtnTkt2aGh0d28zN0FVT0FUNXQtNmxNaXowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9lYzYyMjUtZDZhNy00MThhLWIwMmYt NjIzNGVhMDllMTg2LzEvcEtnTkt2aGh0d28zN0FVT0FUNXQtNmxNaXowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi9lYzYyMjUtZDZhNy00MThhLWIwMmYtNjIzNGVhMDllMTg2 LzEvcEtnTkt2aGh0d28zN0FVT0FUNXQtNmxNaXowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJUmwhMu5 yC45pay71KAW2kxxUHzqDH7gbS0hxJqr5HIUL2mVukMS7zvGYPkOxksXUmXnrn+X oXWRZp+Vp15stmD5OUJBC9Di4DPr8gwkCAoS8fW72zvf+LBW5sNb+QAnL55VSDhg Z8IzBA2V8fESd4VfjNs6MUxHlxE70mSEQi5UY2W68YRXLtdIOQt6/2BjC+LNb6Ls rUyfg+Mm3nfwPEMHaXCaCmlD1LOu4SXG/OZQCBi696DCKMRippIBH/oTsbhpci/+ idtkB+mCe5926Ik8MkQ5hebmHbM0NERK4aA7OIhOsBP6pzWdfVZwDIv66ZwDCDIa XoPfCFFZ03GsYQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:13 2026 by rpki-client