This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.mft File: pgkmXYlPp5_NZUL6zAujiXOMhFk.mft (raw, json) Hash identifier: eYZd/Awam7GWiTprq1dM+INAFxBLqpen7+wZI3GV0CE= Subject key identifier: 2C:6D:A9:1B:1B:7B:F5:DF:E5:04:E7:DF:21:55:50:69:8A:70:CF:16 Authority key identifier: A6:09:26:5D:89:4F:A7:9F:CD:65:42:FA:CC:0B:A3:89:73:8C:84:59 Certificate issuer: /CN=a609265d894fa79fcd6542facc0ba389738c8459 Certificate serial: 019C4322D84CBB1161356B9A3BCAC4C2EE83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgkmXYlPp5_NZUL6zAujiXOMhFk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.mft Manifest number: 0B28 Signing time: Mon 09 Feb 2026 16:01:22 +0000 Manifest this update: Mon 09 Feb 2026 16:01:22 +0000 Manifest next update: Tue 10 Feb 2026 16:01:22 +0000 Files and hashes: 1: pgkmXYlPp5_NZUL6zAujiXOMhFk.crl (hash: pTURfiL4v6Sjk/yJAom7BoNWitlP+8SUGcta+R9R+5w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.crl rsync://rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.mft rsync://rpki.ripe.net/repository/DEFAULT/pgkmXYlPp5_NZUL6zAujiXOMhFk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:d8:4c:bb:11:61:35:6b:9a:3b:ca:c4:c2:ee:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a609265d894fa79fcd6542facc0ba389738c8459 Validity Not Before: Feb 9 16:01:22 2026 GMT Not After : Feb 10 16:01:22 2026 GMT Subject: CN=2c6da91b1b7bf5dfe504e7df215550698a70cf16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6b:33:a7:61:48:5c:c1:f6:c0:a2:aa:c3:dd: ef:a4:6e:58:66:dd:b0:38:49:a8:f7:9a:ca:cc:73: 0b:2a:ac:46:d3:76:b7:53:05:79:98:5a:4b:f2:09: 4b:57:33:a8:d1:79:44:f7:9a:e7:43:9a:2d:e1:e9: 47:5c:b8:4a:5a:bc:11:f1:57:ff:0a:ea:50:06:69: 82:1f:02:5c:e8:0a:d0:f6:75:3b:12:2b:18:52:ab: 84:1f:e7:59:53:98:97:3f:62:60:01:15:38:d6:73: b4:9c:8e:8c:4e:3a:93:eb:15:2f:37:d0:45:99:52: 30:e7:f6:4f:ec:10:7f:df:5a:e7:82:d4:eb:30:cf: e6:0e:2d:49:a5:ed:37:a9:c8:e5:e4:dd:fb:52:76: 77:90:fb:fe:04:da:2c:fd:15:18:a8:63:81:4c:d0: ba:17:41:cd:aa:58:ca:2e:7d:ed:e2:86:81:b7:46: 59:1b:9e:df:dd:95:5e:e9:fd:86:f3:af:e3:2c:24: 32:98:fc:94:af:cb:11:bf:2b:98:e2:59:b6:8d:cf: 63:6b:aa:01:14:b8:b1:55:35:a6:49:77:dd:5c:0e: 1a:c4:e4:73:20:62:09:2b:22:77:72:9b:01:99:61: d6:11:a2:7a:bd:fb:ac:2f:a2:d9:2f:4d:97:fb:75: ba:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:6D:A9:1B:1B:7B:F5:DF:E5:04:E7:DF:21:55:50:69:8A:70:CF:16 X509v3 Authority Key Identifier: keyid:A6:09:26:5D:89:4F:A7:9F:CD:65:42:FA:CC:0B:A3:89:73:8C:84:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgkmXYlPp5_NZUL6zAujiXOMhFk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:da:77:b3:d3:ad:3a:4b:dd:7c:1c:84:9c:bb:05:72:cb:1e: 04:e0:89:38:a3:d8:fb:48:e4:f3:d4:b0:50:0c:4e:e1:c7:c0: 74:fc:fc:5a:28:da:52:aa:47:d4:ce:ce:14:96:dd:b5:33:91: 5e:e5:6e:d9:ca:72:bc:03:c6:e9:eb:37:81:e7:9e:ef:1b:5b: 7e:ff:f2:56:0c:af:3a:ec:b6:32:50:59:68:d0:ff:ff:8d:fc: 16:4c:d9:26:26:c8:80:d1:b1:2f:a0:fd:67:8c:3c:07:c0:79: 2a:00:6c:d9:16:92:ba:df:19:ed:69:59:66:b4:86:d4:d0:b9: 1c:87:14:8e:62:19:92:7d:3e:b0:9f:03:72:45:45:2d:e2:1d: 52:e3:fc:22:0b:af:87:35:61:df:07:45:81:95:0c:90:65:e6: d1:c0:16:df:36:e5:a1:1e:4a:c9:f4:81:1c:de:12:5f:66:c0: e6:57:04:83:15:a3:3c:af:e9:f5:1f:ab:d6:60:67:8a:a0:e8: ee:6f:7e:cb:31:c6:2c:86:07:61:09:3d:f0:62:d3:1c:b5:48: 5b:3b:45:a5:e7:9d:29:34:fa:11:9b:77:da:cd:19:91:82:3e: 29:b2:dc:79:7d:58:93:60:8b:20:79:30:2e:87:7f:a1:c4:ba: d3:14:71:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIthMuxFhNWuaO8rEwu6DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2MDkyNjVkODk0ZmE3OWZjZDY1NDJmYWNjMGJhMzg5NzM4 Yzg0NTkwHhcNMjYwMjA5MTYwMTIyWhcNMjYwMjEwMTYwMTIyWjAzMTEwLwYDVQQD EygyYzZkYTkxYjFiN2JmNWRmZTUwNGU3ZGYyMTU1NTA2OThhNzBjZjE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Wszp2FIXMH2wKKqw93vpG5YZt2w OEmo95rKzHMLKqxG03a3UwV5mFpL8glLVzOo0XlE95rnQ5ot4elHXLhKWrwR8Vf/ CupQBmmCHwJc6ArQ9nU7EisYUquEH+dZU5iXP2JgARU41nO0nI6MTjqT6xUvN9BF mVIw5/ZP7BB/31rngtTrMM/mDi1Jpe03qcjl5N37UnZ3kPv+BNos/RUYqGOBTNC6 F0HNqljKLn3t4oaBt0ZZG57f3ZVe6f2G86/jLCQymPyUr8sRvyuY4lm2jc9ja6oB FLixVTWmSXfdXA4axORzIGIJKyJ3cpsBmWHWEaJ6vfusL6LZL02X+3W6LwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCxtqRsbe/Xf5QTn3yFVUGmKcM8WMB8GA1UdIwQY MBaAFKYJJl2JT6efzWVC+swLo4lzjIRZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGdrbVhZbFBwNV9OWlVMNnpBdWppWE9NaEZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS83MzBkNGQtZDRhYi00Mjc5LWIyMjUt NmRjMGRhMWY1ZGVlLzEvcGdrbVhZbFBwNV9OWlVMNnpBdWppWE9NaEZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS83MzBkNGQtZDRhYi00Mjc5LWIyMjUtNmRjMGRhMWY1ZGVl LzEvcGdrbVhZbFBwNV9OWlVMNnpBdWppWE9NaEZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs9p3s9Ot OkvdfByEnLsFcsseBOCJOKPY+0jk89SwUAxO4cfAdPz8WijaUqpH1M7OFJbdtTOR XuVu2cpyvAPG6es3geee7xtbfv/yVgyvOuy2MlBZaND//438FkzZJibIgNGxL6D9 Z4w8B8B5KgBs2RaSut8Z7WlZZrSG1NC5HIcUjmIZkn0+sJ8DckVFLeIdUuP8Iguv hzVh3wdFgZUMkGXm0cAW3zbloR5KyfSBHN4SX2bA5lcEgxWjPK/p9R+r1mBniqDo 7m9+yzHGLIYHYQk98GLTHLVIWztFpeedKTT6EZt32s0ZkYI+KbLceX1Yk2CLIHkw Lod/ocS60xRx6w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:24 2026 by rpki-client