This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft File: PbbHfudmfXoeivbnKly0P5_DSA4.mft (raw, json) Hash identifier: PRN9CTRDZFypRW+dwYfISCdhkjrAxOK1KdtwBa/ZJvI= Subject key identifier: E0:54:E2:3F:3A:94:36:A5:07:0D:85:0C:C8:E4:32:C1:9C:A7:86:48 Authority key identifier: 3D:B6:C7:7E:E7:66:7D:7A:1E:8A:F6:E7:2A:5C:B4:3F:9F:C3:48:0E Certificate issuer: /CN=3db6c77ee7667d7a1e8af6e72a5cb43f9fc3480e Certificate serial: 019C42B480A12A7DF486EB3A4B0A4B63DF4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PbbHfudmfXoeivbnKly0P5_DSA4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft Manifest number: 027A Signing time: Mon 09 Feb 2026 14:00:51 +0000 Manifest this update: Mon 09 Feb 2026 14:00:51 +0000 Manifest next update: Tue 10 Feb 2026 14:00:51 +0000 Files and hashes: 1: PbbHfudmfXoeivbnKly0P5_DSA4.crl (hash: HRbBaRA2xz5pHBEXipbNyMs5o1+6FYdL0iMLTbeVYDo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft rsync://rpki.ripe.net/repository/DEFAULT/PbbHfudmfXoeivbnKly0P5_DSA4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:80:a1:2a:7d:f4:86:eb:3a:4b:0a:4b:63:df:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3db6c77ee7667d7a1e8af6e72a5cb43f9fc3480e Validity Not Before: Feb 9 14:00:51 2026 GMT Not After : Feb 10 14:00:51 2026 GMT Subject: CN=e054e23f3a9436a5070d850cc8e432c19ca78648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:99:d9:d5:2d:6e:0e:61:fb:22:aa:e0:62:89: 3d:c8:87:d8:a9:b6:5d:d3:ab:e6:5a:56:60:6f:f1: bd:d2:fb:25:5e:f9:15:66:e9:f2:f3:82:87:b4:16: 5a:3d:4f:ad:7f:f3:3e:39:38:ac:f3:f7:60:ca:cf: 92:56:04:53:3a:65:13:7e:18:1f:e8:25:0e:0d:31: eb:7e:bc:62:bf:64:d9:b6:63:56:b5:6b:83:58:4f: c6:26:69:8c:ca:cd:b1:f7:8f:5a:16:b9:04:b8:00: 5a:16:29:ae:49:d9:40:d7:4d:4d:a3:30:1a:df:44: b8:19:b7:31:07:ac:51:3f:58:58:dc:75:ea:86:c7: 8b:51:a4:c5:bd:39:d6:f8:96:76:97:62:fa:16:f8: 50:1e:25:fc:cd:8c:b9:fe:a4:0e:94:c0:d7:51:32: f7:74:91:8a:f0:78:3b:36:2b:2b:b4:a9:81:94:b4: 8f:74:aa:78:f0:d6:e1:0d:de:ec:16:01:ce:85:3d: 1f:6a:60:25:1f:06:2b:16:31:f8:67:5b:6c:76:da: 90:ed:47:04:d9:9b:5d:3b:e1:98:60:73:64:db:82: 0c:48:12:72:74:22:04:9d:aa:e2:a9:a5:17:0b:50: 57:98:71:50:98:fd:52:e2:1d:f8:26:eb:f6:8c:57: 40:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:54:E2:3F:3A:94:36:A5:07:0D:85:0C:C8:E4:32:C1:9C:A7:86:48 X509v3 Authority Key Identifier: keyid:3D:B6:C7:7E:E7:66:7D:7A:1E:8A:F6:E7:2A:5C:B4:3F:9F:C3:48:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PbbHfudmfXoeivbnKly0P5_DSA4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:5e:d9:c5:b9:95:11:c7:87:44:7c:3a:24:68:fd:9a:ac:40: a8:32:94:a8:c7:66:81:13:d2:ec:ad:6b:fd:3e:e2:1f:8e:cc: c4:4c:e9:80:ff:26:c1:cc:62:7c:cd:c1:25:33:57:8f:0c:31: 19:45:96:54:99:52:b9:ba:d5:3c:0c:d7:7a:6b:62:7f:0c:28: bf:35:c7:11:a1:f1:63:08:32:b3:80:0c:a6:9e:97:64:9b:60: cf:0c:34:bc:0c:97:a7:a0:d7:67:fe:dc:6e:53:d0:a4:1b:41: 94:d2:08:8d:2d:26:d7:79:65:46:e9:a9:a4:31:29:3f:62:c8: 08:3a:d3:92:1d:e6:e8:73:43:69:86:e9:5f:61:43:19:81:c0: 9e:b4:c2:31:f1:07:b8:61:b7:78:6b:8b:b6:39:61:36:75:10: c0:a6:8c:59:2a:80:6e:32:2c:1e:16:e5:db:5b:08:a5:a9:ef: 5d:7e:e2:df:c3:fe:fa:de:37:b1:1d:0f:14:1a:d2:10:91:17: c7:c0:5e:81:9a:07:34:bd:1a:5d:3c:a9:54:82:3d:0d:f3:02: 45:b1:84:0f:6b:3c:23:3b:87:59:cb:5d:36:6e:2a:57:6b:07: 8a:3f:ad:91:a1:db:3a:36:f5:e2:23:ad:9f:5a:88:c0:45:cd: 56:8d:b8:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtIChKn30hus6SwpLY99OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkYjZjNzdlZTc2NjdkN2ExZThhZjZlNzJhNWNiNDNmOWZj MzQ4MGUwHhcNMjYwMjA5MTQwMDUxWhcNMjYwMjEwMTQwMDUxWjAzMTEwLwYDVQQD EyhlMDU0ZTIzZjNhOTQzNmE1MDcwZDg1MGNjOGU0MzJjMTljYTc4NjQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5nZ1S1uDmH7IqrgYok9yIfYqbZd 06vmWlZgb/G90vslXvkVZuny84KHtBZaPU+tf/M+OTis8/dgys+SVgRTOmUTfhgf 6CUODTHrfrxiv2TZtmNWtWuDWE/GJmmMys2x949aFrkEuABaFimuSdlA101NozAa 30S4GbcxB6xRP1hY3HXqhseLUaTFvTnW+JZ2l2L6FvhQHiX8zYy5/qQOlMDXUTL3 dJGK8Hg7NisrtKmBlLSPdKp48NbhDd7sFgHOhT0famAlHwYrFjH4Z1tsdtqQ7UcE 2ZtdO+GYYHNk24IMSBJydCIEnariqaUXC1BXmHFQmP1S4h34Juv2jFdATwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOBU4j86lDalBw2FDMjkMsGcp4ZIMB8GA1UdIwQY MBaAFD22x37nZn16Hor25ypctD+fw0gOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGJiSGZ1ZG1mWG9laXZibktseTBQNV9EU0E0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9mMTBmNDEtNWExNS00ODRkLWI5NWYt ZGY2YmRhMzg5OTA1LzEvUGJiSGZ1ZG1mWG9laXZibktseTBQNV9EU0E0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9mMTBmNDEtNWExNS00ODRkLWI5NWYtZGY2YmRhMzg5OTA1 LzEvUGJiSGZ1ZG1mWG9laXZibktseTBQNV9EU0E0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg17ZxbmV EceHRHw6JGj9mqxAqDKUqMdmgRPS7K1r/T7iH47MxEzpgP8mwcxifM3BJTNXjwwx GUWWVJlSubrVPAzXemtifwwovzXHEaHxYwgys4AMpp6XZJtgzww0vAyXp6DXZ/7c blPQpBtBlNIIjS0m13llRumppDEpP2LICDrTkh3m6HNDaYbpX2FDGYHAnrTCMfEH uGG3eGuLtjlhNnUQwKaMWSqAbjIsHhbl21sIpanvXX7i38P++t43sR0PFBrSEJEX x8BegZoHNL0aXTypVII9DfMCRbGED2s8IzuHWctdNm4qV2sHij+tkaHbOjb14iOt n1qIwEXNVo244g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:38 2026 by rpki-client