This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft File: pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft (raw, json) Hash identifier: Q8Dr2zrc2y6B4NtV6p8rjya6SREbeDh4ydtNt9mMeC0= Subject key identifier: 7A:29:81:B6:C8:4B:35:2A:F4:D9:9C:39:83:9D:6F:05:F5:DB:8A:55 Authority key identifier: A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4 Certificate issuer: /CN=a647893fb5b348e68a66d55a28f278cbf3931df4 Certificate serial: 019C420FDEF0ACDE8D5028A115543C7B0B7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft Manifest number: 0C03 Signing time: Mon 09 Feb 2026 11:01:02 +0000 Manifest this update: Mon 09 Feb 2026 11:01:02 +0000 Manifest next update: Tue 10 Feb 2026 11:01:02 +0000 Files and hashes: 1: jbAqNXtEEA5VMmJmYWIDy0wpLeE.roa (hash: heA9ElftnVcEx/Z56cUQXfy2JpdBhi/Gw5ToPa737lc=) 2: pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl (hash: VC0h4q88KJ704KjTzsKYrc3uy5Etc80FSy7tIlQgjTc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:de:f0:ac:de:8d:50:28:a1:15:54:3c:7b:0b:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a647893fb5b348e68a66d55a28f278cbf3931df4 Validity Not Before: Feb 9 11:01:02 2026 GMT Not After : Feb 10 11:01:02 2026 GMT Subject: CN=7a2981b6c84b352af4d99c39839d6f05f5db8a55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:22:5a:75:42:01:68:b9:ff:e7:9c:0a:03:84: 5e:54:3f:c0:52:63:97:40:49:47:0a:5f:07:e1:dc: 61:3d:f5:27:74:30:bc:1f:29:87:fc:4b:0d:2b:79: bc:f4:d8:85:c5:c8:e6:69:cf:05:28:60:ca:e5:23: fb:22:15:e0:f8:fc:c5:8b:74:f4:41:ea:0b:2c:69: 13:a1:f0:7b:29:5e:1c:df:42:af:3e:fe:dd:38:8c: 60:4f:b7:3b:b4:a8:45:4c:84:29:5e:08:fe:47:93: b1:5f:77:07:df:32:81:d3:b1:c2:3e:7f:f7:cc:e7: 33:6d:44:66:fb:da:8f:8e:4b:90:70:63:5b:87:3b: 2b:04:3c:1f:0a:46:06:d4:8d:01:55:5f:41:bb:52: 28:13:fe:f2:32:db:a3:1d:20:d6:8f:2e:88:f7:93: 45:e9:1f:1d:fc:71:db:8e:74:e9:7e:f4:12:fd:87: eb:46:c9:fd:44:49:fd:ac:12:5e:ff:15:41:9b:79: c5:0c:3e:81:96:01:1a:a2:3b:69:0b:6f:37:db:b1: 2a:95:0e:92:66:44:ff:82:f8:ff:c0:a3:a0:82:3b: a7:13:ad:0b:2d:38:85:85:95:07:65:20:26:82:31: a6:89:46:5c:4a:cb:3d:12:60:49:e3:c3:d0:5a:ed: f3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:29:81:B6:C8:4B:35:2A:F4:D9:9C:39:83:9D:6F:05:F5:DB:8A:55 X509v3 Authority Key Identifier: keyid:A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:9f:69:85:c1:4b:e8:12:c5:7f:04:c8:0d:92:e5:ee:b2:b8: 1a:dd:62:99:dd:ec:b1:4c:b3:d9:72:f9:fa:b0:fe:fc:ce:3c: 41:33:3b:1f:bc:20:6c:d0:cb:55:49:d0:ad:c0:73:96:24:1f: 96:93:39:11:cf:84:22:13:c3:c3:a4:b2:d0:56:89:ac:6c:2f: 09:41:7c:89:03:01:9f:89:1c:b4:a7:34:01:09:d4:28:ea:4a: 09:6b:7c:71:36:bb:68:ea:d3:37:be:c7:25:93:41:60:1e:1f: d2:6f:1e:af:be:cd:f1:e2:d7:3a:ac:6c:06:8b:41:42:a9:17: e5:b6:61:05:6c:17:d2:9a:eb:c2:f9:d5:87:bf:33:48:4b:30: 19:d7:46:7d:31:c7:06:49:87:b7:93:33:c8:7b:f8:c5:bb:4c: 1c:e2:2c:24:19:6e:69:5b:50:94:5c:f4:c0:07:f3:55:b9:50: 78:f1:b8:b9:22:04:30:c4:a9:71:82:dd:ca:3c:5d:f2:22:63: 3d:f1:b7:26:72:cb:ac:67:ce:f9:f3:0a:00:9e:79:1e:a0:a2: 01:c2:a0:d8:98:e2:cb:2c:eb:93:88:16:9e:72:04:39:8f:b3: e7:72:8b:d4:03:12:8e:c6:0d:20:43:e0:33:75:e2:19:4c:1e: 3d:1f:6b:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD97wrN6NUCihFVQ8ewt7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2NDc4OTNmYjViMzQ4ZTY4YTY2ZDU1YTI4ZjI3OGNiZjM5 MzFkZjQwHhcNMjYwMjA5MTEwMTAyWhcNMjYwMjEwMTEwMTAyWjAzMTEwLwYDVQQD Eyg3YTI5ODFiNmM4NGIzNTJhZjRkOTljMzk4MzlkNmYwNWY1ZGI4YTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoCJadUIBaLn/55wKA4ReVD/AUmOX QElHCl8H4dxhPfUndDC8HymH/EsNK3m89NiFxcjmac8FKGDK5SP7IhXg+PzFi3T0 QeoLLGkTofB7KV4c30KvPv7dOIxgT7c7tKhFTIQpXgj+R5OxX3cH3zKB07HCPn/3 zOczbURm+9qPjkuQcGNbhzsrBDwfCkYG1I0BVV9Bu1IoE/7yMtujHSDWjy6I95NF 6R8d/HHbjnTpfvQS/YfrRsn9REn9rBJe/xVBm3nFDD6BlgEaojtpC28327EqlQ6S ZkT/gvj/wKOggjunE60LLTiFhZUHZSAmgjGmiUZcSss9EmBJ48PQWu3zqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHopgbbISzUq9NmcOYOdbwX124pVMB8GA1UdIwQY MBaAFKZHiT+1s0jmimbVWijyeMvzkx30MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGtlSlA3V3pTT2FLWnRWYUtQSjR5X09USGZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9kYThjYjEtMWJmYy00M2ZkLWEwZDIt ZDYyNDQ5NmRkY2M4LzEvcGtlSlA3V3pTT2FLWnRWYUtQSjR5X09USGZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9kYThjYjEtMWJmYy00M2ZkLWEwZDItZDYyNDQ5NmRkY2M4 LzEvcGtlSlA3V3pTT2FLWnRWYUtQSjR5X09USGZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS59phcFL 6BLFfwTIDZLl7rK4Gt1imd3ssUyz2XL5+rD+/M48QTM7H7wgbNDLVUnQrcBzliQf lpM5Ec+EIhPDw6Sy0FaJrGwvCUF8iQMBn4kctKc0AQnUKOpKCWt8cTa7aOrTN77H JZNBYB4f0m8er77N8eLXOqxsBotBQqkX5bZhBWwX0prrwvnVh78zSEswGddGfTHH BkmHt5MzyHv4xbtMHOIsJBluaVtQlFz0wAfzVblQePG4uSIEMMSpcYLdyjxd8iJj PfG3JnLLrGfO+fMKAJ55HqCiAcKg2Jjiyyzrk4gWnnIEOY+z53KL1AMSjsYNIEPg M3XiGUwePR9rkQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:22 2026 by rpki-client