This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft File: P-XZqjR4a6oW1Fa9857K-12XMPg.mft (raw, json) Hash identifier: 8SkKF9b69QVHTLltzLXfIwRI8q0+MeGwT77f2RvBXdM= Subject key identifier: 54:AC:1B:89:8A:77:AC:27:21:E5:5B:04:78:CF:07:5D:6F:C7:AB:EB Authority key identifier: 3F:E5:D9:AA:34:78:6B:AA:16:D4:56:BD:F3:9E:CA:FB:5D:97:30:F8 Certificate issuer: /CN=3fe5d9aa34786baa16d456bdf39ecafb5d9730f8 Certificate serial: 019C44D9CC6BC0A918FD8AEE181CD08D39AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-XZqjR4a6oW1Fa9857K-12XMPg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft Manifest number: 1810 Signing time: Tue 10 Feb 2026 00:00:50 +0000 Manifest this update: Tue 10 Feb 2026 00:00:50 +0000 Manifest next update: Wed 11 Feb 2026 00:00:50 +0000 Files and hashes: 1: P-XZqjR4a6oW1Fa9857K-12XMPg.crl (hash: mW1ZszUSD5tQxzjj2mApN3P5XOHKDLUG6TBoXPzq7Qs=) 2: g5nPMDhR1xXE3aUl3Zj948mnSZo.roa (hash: hy3Afkla54p1JUhAk/RCQlLZSfZ1AsKTh6gnAbaPJ04=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.crl rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft rsync://rpki.ripe.net/repository/DEFAULT/P-XZqjR4a6oW1Fa9857K-12XMPg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:cc:6b:c0:a9:18:fd:8a:ee:18:1c:d0:8d:39:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fe5d9aa34786baa16d456bdf39ecafb5d9730f8 Validity Not Before: Feb 10 00:00:50 2026 GMT Not After : Feb 11 00:00:50 2026 GMT Subject: CN=54ac1b898a77ac2721e55b0478cf075d6fc7abeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:f0:9d:0f:f5:a7:6d:03:e3:ce:7a:2c:0f:11: 06:7b:5e:1a:f7:02:b2:0c:ca:ba:54:aa:cc:6d:f4: 44:2d:9b:68:83:ce:d2:ce:d4:8e:d5:3f:85:de:08: 0e:4f:1e:9a:27:47:04:81:4a:08:45:28:03:83:c8: a1:1f:95:70:94:15:4f:3c:2c:48:ae:be:89:db:f2: 0a:ea:ee:55:c1:6b:da:56:b1:d2:24:21:6b:59:dc: a4:f2:29:53:2b:1e:44:47:0a:74:93:9b:91:82:0e: b4:c8:db:9c:65:11:1b:7c:e7:95:fd:da:59:ab:c4: 44:33:e6:01:3a:f1:af:43:c4:8e:47:d3:2a:19:57: 06:f9:21:3e:1a:0a:df:ed:a3:c0:46:d0:85:ac:ef: 9d:19:9e:ee:59:53:a9:23:2d:91:02:08:87:a0:48: bc:48:e0:22:68:f2:0a:d4:a7:e5:38:ff:c8:ed:23: 9b:b2:04:cd:37:33:76:9a:8b:94:d2:a5:b9:c6:a6: ce:07:0a:25:de:10:81:c1:a9:b5:41:ec:0a:82:4f: 0e:e9:0e:88:95:93:04:b2:db:d9:5f:72:a1:5c:27: 28:66:59:cb:f9:9a:4d:8f:04:ad:d6:18:00:d7:17: 34:b8:3b:da:af:12:d4:7e:ab:71:cf:6d:67:91:a0: cb:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:AC:1B:89:8A:77:AC:27:21:E5:5B:04:78:CF:07:5D:6F:C7:AB:EB X509v3 Authority Key Identifier: keyid:3F:E5:D9:AA:34:78:6B:AA:16:D4:56:BD:F3:9E:CA:FB:5D:97:30:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-XZqjR4a6oW1Fa9857K-12XMPg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:7d:74:d3:53:58:61:da:de:cd:17:0d:b9:9e:a7:dc:0a:8d: 7e:16:32:7d:77:0a:ed:35:5a:bb:78:29:4b:f5:96:b0:e3:9d: b5:4b:c1:84:78:60:da:b2:90:69:73:e0:98:1d:1a:6c:d4:5a: 28:cc:ad:20:e4:b5:5f:71:c4:63:ee:93:13:b7:56:84:6e:2f: c2:4c:4d:6c:3a:96:1f:18:fb:01:a8:87:fe:f2:cd:c6:ce:af: 56:8a:7a:db:8c:0e:74:11:b0:8e:f1:19:68:12:9b:32:ef:eb: 8a:a5:d9:e9:73:6f:ce:a1:2b:6e:f1:25:fc:2c:e1:02:72:55: 20:c0:35:01:06:e6:fd:38:a8:39:a9:0d:8e:bc:af:78:d7:0b: 93:62:bf:86:f4:47:65:87:cb:a1:21:be:22:fc:2d:29:e7:86: 8c:d3:a6:45:c5:19:b4:16:6e:eb:2c:a7:77:8a:85:2c:82:0b: 95:65:80:55:0b:25:d0:86:8a:c1:27:a3:cc:84:13:02:93:16: 2a:55:90:14:b8:4f:a8:3d:e0:9b:10:2f:45:aa:99:5f:60:12: 95:23:14:2b:f4:fc:fd:e0:1f:b9:44:83:99:59:9c:e9:6d:c3: 60:ee:37:ca:75:38:00:45:fe:3e:f9:59:58:2c:ff:92:d4:48: 10:bf:0f:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2cxrwKkY/YruGBzQjTmqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZTVkOWFhMzQ3ODZiYWExNmQ0NTZiZGYzOWVjYWZiNWQ5 NzMwZjgwHhcNMjYwMjEwMDAwMDUwWhcNMjYwMjExMDAwMDUwWjAzMTEwLwYDVQQD Eyg1NGFjMWI4OThhNzdhYzI3MjFlNTViMDQ3OGNmMDc1ZDZmYzdhYmViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9PCdD/WnbQPjznosDxEGe14a9wKy DMq6VKrMbfRELZtog87SztSO1T+F3ggOTx6aJ0cEgUoIRSgDg8ihH5VwlBVPPCxI rr6J2/IK6u5VwWvaVrHSJCFrWdyk8ilTKx5ERwp0k5uRgg60yNucZREbfOeV/dpZ q8REM+YBOvGvQ8SOR9MqGVcG+SE+Ggrf7aPARtCFrO+dGZ7uWVOpIy2RAgiHoEi8 SOAiaPIK1KflOP/I7SObsgTNNzN2mouU0qW5xqbOBwol3hCBwam1QewKgk8O6Q6I lZMEstvZX3KhXCcoZlnL+ZpNjwSt1hgA1xc0uDvarxLUfqtxz21nkaDLZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFSsG4mKd6wnIeVbBHjPB11vx6vrMB8GA1UdIwQY MBaAFD/l2ao0eGuqFtRWvfOeyvtdlzD4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUC1YWnFqUjRhNm9XMUZhOTg1N0stMTJYTVBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9hMmZlNjgtNzYxZC00ZTZjLTlkY2Qt NTk0YzFhY2Q5ZGFmLzEvUC1YWnFqUjRhNm9XMUZhOTg1N0stMTJYTVBnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9hMmZlNjgtNzYxZC00ZTZjLTlkY2QtNTk0YzFhY2Q5ZGFm LzEvUC1YWnFqUjRhNm9XMUZhOTg1N0stMTJYTVBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALH1001NY YdrezRcNuZ6n3AqNfhYyfXcK7TVau3gpS/WWsOOdtUvBhHhg2rKQaXPgmB0abNRa KMytIOS1X3HEY+6TE7dWhG4vwkxNbDqWHxj7AaiH/vLNxs6vVop624wOdBGwjvEZ aBKbMu/riqXZ6XNvzqErbvEl/CzhAnJVIMA1AQbm/TioOakNjryveNcLk2K/hvRH ZYfLoSG+IvwtKeeGjNOmRcUZtBZu6yynd4qFLIILlWWAVQsl0IaKwSejzIQTApMW KlWQFLhPqD3gmxAvRaqZX2ASlSMUK/T8/eAfuUSDmVmc6W3DYO43ynU4AEX+PvlZ WCz/ktRIEL8PCg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:21:07 2026 by rpki-client