This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft File: p3tNEFqlxNZemaq2926tWJ5ih8w.mft (raw, json) Hash identifier: BnwJViuyU2mQTaWLybOxnn0fBq+VuvdPPe+qoxGdM/I= Subject key identifier: 64:8D:44:E5:B6:45:52:78:CE:8B:C7:A0:50:89:9F:38:98:43:43:BE Authority key identifier: A7:7B:4D:10:5A:A5:C4:D6:5E:99:AA:B6:F7:6E:AD:58:9E:62:87:CC Certificate issuer: /CN=a77b4d105aa5c4d65e99aab6f76ead589e6287cc Certificate serial: 019C4390026EC831811873FE6FCBF0AE7054 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p3tNEFqlxNZemaq2926tWJ5ih8w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft Manifest number: 060D Signing time: Mon 09 Feb 2026 18:00:37 +0000 Manifest this update: Mon 09 Feb 2026 18:00:37 +0000 Manifest next update: Tue 10 Feb 2026 18:00:37 +0000 Files and hashes: 1: p3tNEFqlxNZemaq2926tWJ5ih8w.crl (hash: 9xDBQLx5KEgSwZ+B+v4XOjcpV+C5VNTthtKTtFa+Bx4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft rsync://rpki.ripe.net/repository/DEFAULT/p3tNEFqlxNZemaq2926tWJ5ih8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:02:6e:c8:31:81:18:73:fe:6f:cb:f0:ae:70:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a77b4d105aa5c4d65e99aab6f76ead589e6287cc Validity Not Before: Feb 9 18:00:37 2026 GMT Not After : Feb 10 18:00:37 2026 GMT Subject: CN=648d44e5b6455278ce8bc7a050899f38984343be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:15:ca:a1:12:d7:2b:f9:53:d1:a2:e3:dd:59: 07:ea:c2:8b:8b:dd:8d:25:ed:1a:b1:49:d6:c2:9c: 23:6f:20:62:f4:a2:19:5e:1d:9d:18:f5:c1:f0:58: 5e:f8:31:28:d9:b7:c4:ab:75:b2:5e:7d:01:4d:3e: 90:69:fe:45:a9:2b:71:76:93:2b:fa:c3:59:86:33: 50:74:90:6d:35:4b:1f:60:e4:9b:49:75:38:6f:cf: d2:d3:e6:6b:41:6b:53:7e:d4:90:1b:36:6a:b2:8d: a8:85:1d:13:66:73:66:ca:6a:20:b7:b0:a8:7e:fa: 84:4b:17:e6:f1:01:fb:17:88:47:46:e3:5a:c6:d8: 24:7a:97:8e:bd:b0:38:85:0d:e6:36:6b:01:7b:27: c5:ea:e9:20:2d:6c:16:38:80:76:37:04:b7:25:aa: 32:b5:fc:79:0c:a6:f1:bc:5d:56:16:7b:7d:5a:61: 85:2b:75:82:eb:1c:dc:91:21:3e:ac:36:fc:4c:16: 54:a4:01:05:66:d3:f8:c8:19:10:f1:64:e2:19:c4: 74:64:87:7b:22:30:7f:18:43:31:f5:a4:54:1a:dc: ed:e6:34:5a:c1:fe:f1:e7:60:d8:ca:17:fd:72:ba: 58:7e:48:c0:a5:07:cf:35:78:a0:87:01:7a:fa:11: 2f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:8D:44:E5:B6:45:52:78:CE:8B:C7:A0:50:89:9F:38:98:43:43:BE X509v3 Authority Key Identifier: keyid:A7:7B:4D:10:5A:A5:C4:D6:5E:99:AA:B6:F7:6E:AD:58:9E:62:87:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p3tNEFqlxNZemaq2926tWJ5ih8w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:ea:f5:cc:b1:a7:72:a2:02:f7:00:07:a6:90:23:8a:e8:43: fe:0f:88:a2:70:77:91:5b:24:b4:5e:96:0c:52:1a:b6:90:25: 11:ce:21:f5:28:74:7c:02:da:44:17:85:99:c2:ba:9a:0e:a2: ed:6e:df:6c:72:9a:01:2e:a0:db:82:33:99:04:d6:ba:0a:ab: 4e:3d:5a:ef:8a:89:b7:73:5e:ec:52:bf:bd:0c:11:9c:d9:a0: 87:31:84:03:b2:62:4e:95:5c:43:3f:b8:e9:91:15:5f:b4:d6: 07:13:bd:80:51:2f:87:fd:74:e3:96:a7:5e:46:8b:2c:0a:48: 4e:fb:2c:5e:1b:a7:6e:9a:b8:0a:2a:fc:73:c2:ef:67:d9:db: 51:67:37:46:0a:35:5d:d2:2a:10:bf:2c:56:22:43:b4:09:07: 71:31:66:bc:fd:1a:8e:f3:af:e5:43:a5:bd:d8:bd:84:ea:52: cd:bc:f0:81:ef:f5:b4:5d:38:f2:49:f7:61:7d:fa:97:0b:46: 8c:16:3c:9c:0b:bb:f2:e2:c2:0c:4e:24:01:67:28:b8:99:13: e9:78:4c:ec:36:bd:4d:89:7a:3b:2d:75:c2:b9:73:1a:c0:ad: e4:64:e1:d5:b9:98:d0:c0:c8:5e:fc:04:bb:c8:6d:9d:0a:73: 26:7f:44:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkAJuyDGBGHP+b8vwrnBUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3N2I0ZDEwNWFhNWM0ZDY1ZTk5YWFiNmY3NmVhZDU4OWU2 Mjg3Y2MwHhcNMjYwMjA5MTgwMDM3WhcNMjYwMjEwMTgwMDM3WjAzMTEwLwYDVQQD Eyg2NDhkNDRlNWI2NDU1Mjc4Y2U4YmM3YTA1MDg5OWYzODk4NDM0M2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtRXKoRLXK/lT0aLj3VkH6sKLi92N Je0asUnWwpwjbyBi9KIZXh2dGPXB8Fhe+DEo2bfEq3WyXn0BTT6Qaf5FqStxdpMr +sNZhjNQdJBtNUsfYOSbSXU4b8/S0+ZrQWtTftSQGzZqso2ohR0TZnNmymogt7Co fvqESxfm8QH7F4hHRuNaxtgkepeOvbA4hQ3mNmsBeyfF6ukgLWwWOIB2NwS3Jaoy tfx5DKbxvF1WFnt9WmGFK3WC6xzckSE+rDb8TBZUpAEFZtP4yBkQ8WTiGcR0ZId7 IjB/GEMx9aRUGtzt5jRawf7x52DYyhf9crpYfkjApQfPNXighwF6+hEvdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGSNROW2RVJ4zovHoFCJnziYQ0O+MB8GA1UdIwQY MBaAFKd7TRBapcTWXpmqtvdurVieYofMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDN0TkVGcWx4TlplbWFxMjkyNnRXSjVpaDh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81ZWEyYTYtZmYyZi00N2ZkLWI3Yzgt ZjRmNDUwNDNiOGJjLzEvcDN0TkVGcWx4TlplbWFxMjkyNnRXSjVpaDh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81ZWEyYTYtZmYyZi00N2ZkLWI3YzgtZjRmNDUwNDNiOGJj LzEvcDN0TkVGcWx4TlplbWFxMjkyNnRXSjVpaDh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoer1zLGn cqIC9wAHppAjiuhD/g+IonB3kVsktF6WDFIatpAlEc4h9Sh0fALaRBeFmcK6mg6i 7W7fbHKaAS6g24IzmQTWugqrTj1a74qJt3Ne7FK/vQwRnNmghzGEA7JiTpVcQz+4 6ZEVX7TWBxO9gFEvh/1045anXkaLLApITvssXhunbpq4Cir8c8LvZ9nbUWc3Rgo1 XdIqEL8sViJDtAkHcTFmvP0ajvOv5UOlvdi9hOpSzbzwge/1tF048kn3YX36lwtG jBY8nAu78uLCDE4kAWcouJkT6XhM7Da9TYl6Oy11wrlzGsCt5GTh1bmY0MDIXvwE u8htnQpzJn9EmA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:54 2026 by rpki-client