This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft File: Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft (raw, json) Hash identifier: s7walDkB916zv/U6HLNHFTa2mBDCXDblAliR7Zc0Y/E= Subject key identifier: 3F:C2:DC:47:C6:67:CD:94:3B:00:B2:6D:C5:A0:F9:78:C8:C7:BB:61 Authority key identifier: 3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77 Certificate issuer: /CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877 Certificate serial: 019C43C70E3C59A6295FE78244570ADF0AAC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft Manifest number: 068F Signing time: Mon 09 Feb 2026 19:00:44 +0000 Manifest this update: Mon 09 Feb 2026 19:00:44 +0000 Manifest next update: Tue 10 Feb 2026 19:00:44 +0000 Files and hashes: 1: Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl (hash: 59ky4fddzO49Y5JLeth4MYmtVIN64rox6adx+u0y5kk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:0e:3c:59:a6:29:5f:e7:82:44:57:0a:df:0a:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877 Validity Not Before: Feb 9 19:00:44 2026 GMT Not After : Feb 10 19:00:44 2026 GMT Subject: CN=3fc2dc47c667cd943b00b26dc5a0f978c8c7bb61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f1:74:7a:f8:92:03:f2:28:ae:f6:b1:ab:5b: a8:db:b3:b5:fb:d7:bf:9b:5b:58:d2:c8:30:d6:5d: 7e:db:3f:f6:a2:e3:89:ed:56:c6:49:f1:15:3e:4c: ac:f2:87:4f:ba:87:f3:fe:7c:2c:33:bb:34:5b:6f: 0b:ff:7f:4c:25:33:ff:bb:4c:38:9c:98:97:e7:ef: ed:24:43:b8:0c:c2:d5:54:40:ed:63:70:18:bf:21: 0d:2c:6f:5a:6c:ee:69:fd:fa:20:28:80:93:e0:4d: f1:ca:15:0f:b1:c3:85:84:04:59:55:6b:de:cf:fb: e2:d9:51:45:fc:70:56:83:ab:c6:ac:f9:46:60:0f: ec:63:8d:c9:ed:81:76:ba:8c:43:d9:8c:84:c2:48: 85:aa:42:04:94:ce:cc:0d:85:71:bc:16:0e:3f:2e: b4:c9:23:65:99:28:83:32:96:3a:ea:c7:87:4f:3d: 3f:5e:38:2f:a4:57:7a:3a:9b:2d:db:17:4a:bf:00: 76:c8:79:8a:e0:35:7f:dd:c0:fb:aa:d7:8a:c9:6d: 2a:3a:c6:a1:14:96:91:03:4a:1b:74:cc:8b:e8:a3: cb:e4:18:bc:83:a0:f2:61:69:61:93:44:16:55:6f: d4:a6:c2:77:50:c6:fb:1e:a4:78:47:35:77:97:d9: 28:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C2:DC:47:C6:67:CD:94:3B:00:B2:6D:C5:A0:F9:78:C8:C7:BB:61 X509v3 Authority Key Identifier: keyid:3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:37:03:4a:8f:98:b5:e7:40:b1:ac:e2:0e:56:99:46:b5:17: b1:f5:e0:2e:49:20:5f:45:d1:f3:70:d1:ed:84:c5:be:0e:bc: 8e:70:12:2d:11:96:c7:0b:72:ef:03:cc:18:ee:66:54:ec:d5: 13:34:0a:38:b3:4b:15:35:d6:85:92:5f:31:7f:00:2b:4a:06: 82:70:29:d7:a3:67:7a:de:0f:aa:19:fd:b3:bd:56:6d:33:3c: 74:78:6f:25:7f:45:81:cf:53:b6:85:55:9e:fc:3d:51:75:55: d4:0b:21:fe:cf:25:23:84:54:26:ba:93:71:98:90:db:61:ca: 93:2c:00:70:f2:d4:30:db:39:c7:e1:b8:85:6b:90:64:ff:79: 81:54:41:20:b2:a8:a5:8a:77:c2:e2:76:79:76:3b:91:e0:82: b3:f6:ec:4c:c5:9f:db:5f:47:f3:8a:80:78:20:6e:54:b8:27: 86:17:72:da:3a:7e:70:6b:66:73:a7:c5:57:bf:a9:23:98:56: ca:75:02:22:ee:47:89:b5:2b:81:3e:d2:0d:91:2b:01:b4:b6: 71:ef:88:e9:26:40:5c:6e:17:c1:04:84:c9:4d:8a:43:19:bf: 75:a1:7c:81:58:92:e9:58:91:0c:26:b7:73:7a:a9:ae:33:0e: 40:53:76:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxw48WaYpX+eCRFcK3wqsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMGFiYTMwZjRiNDA0ZmY0ZGVjOWZjMDAxNmMwYmJlZTRi NmI4NzcwHhcNMjYwMjA5MTkwMDQ0WhcNMjYwMjEwMTkwMDQ0WjAzMTEwLwYDVQQD EygzZmMyZGM0N2M2NjdjZDk0M2IwMGIyNmRjNWEwZjk3OGM4YzdiYjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfF0eviSA/Iorvaxq1uo27O1+9e/ m1tY0sgw1l1+2z/2ouOJ7VbGSfEVPkys8odPuofz/nwsM7s0W28L/39MJTP/u0w4 nJiX5+/tJEO4DMLVVEDtY3AYvyENLG9abO5p/fogKICT4E3xyhUPscOFhARZVWve z/vi2VFF/HBWg6vGrPlGYA/sY43J7YF2uoxD2YyEwkiFqkIElM7MDYVxvBYOPy60 ySNlmSiDMpY66seHTz0/XjgvpFd6Opst2xdKvwB2yHmK4DV/3cD7qteKyW0qOsah FJaRA0obdMyL6KPL5Bi8g6DyYWlhk0QWVW/UpsJ3UMb7HqR4RzV3l9kokwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD/C3EfGZ82UOwCybcWg+XjIx7thMB8GA1UdIwQY MBaAFD4KujD0tAT/TeyfwAFsC77ktrh3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGdxNk1QUzBCUDlON0pfQUFXd0x2dVMydUhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9kNGU1NTctMDY0MC00OGQzLTg3ZDYt NTkwMjlhOGI1MzNhLzEvUGdxNk1QUzBCUDlON0pfQUFXd0x2dVMydUhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9kNGU1NTctMDY0MC00OGQzLTg3ZDYtNTkwMjlhOGI1MzNh LzEvUGdxNk1QUzBCUDlON0pfQUFXd0x2dVMydUhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARDcDSo+Y tedAsaziDlaZRrUXsfXgLkkgX0XR83DR7YTFvg68jnASLRGWxwty7wPMGO5mVOzV EzQKOLNLFTXWhZJfMX8AK0oGgnAp16Nnet4Pqhn9s71WbTM8dHhvJX9Fgc9TtoVV nvw9UXVV1Ash/s8lI4RUJrqTcZiQ22HKkywAcPLUMNs5x+G4hWuQZP95gVRBILKo pYp3wuJ2eXY7keCCs/bsTMWf219H84qAeCBuVLgnhhdy2jp+cGtmc6fFV7+pI5hW ynUCIu5HibUrgT7SDZErAbS2ce+I6SZAXG4XwQSEyU2KQxm/daF8gViS6ViRDCa3 c3qprjMOQFN2uw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:03 2026 by rpki-client