This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft File: pukanXyu9IGGdMXWJigTYVyJ3lY.mft (raw, json) Hash identifier: Amak6s2CPGjFpEPIbReKBH/KaY/EdSTZHx6RmsLApzI= Subject key identifier: 18:61:91:75:4B:3E:0A:71:F1:32:29:E3:B0:0B:26:D2:A4:A2:2F:C7 Authority key identifier: A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56 Certificate issuer: /CN=a6e91a9d7caef4818674c5d6262813615c89de56 Certificate serial: 019C432311D2FAEDAD8139DB3FCE8B6F3B44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft Manifest number: 1183 Signing time: Mon 09 Feb 2026 16:01:37 +0000 Manifest this update: Mon 09 Feb 2026 16:01:37 +0000 Manifest next update: Tue 10 Feb 2026 16:01:37 +0000 Files and hashes: 1: pukanXyu9IGGdMXWJigTYVyJ3lY.crl (hash: s9xYilen4E7hiELBixJFuOmK01e8HAGC0sEQTv2N/ys=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:23:11:d2:fa:ed:ad:81:39:db:3f:ce:8b:6f:3b:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6e91a9d7caef4818674c5d6262813615c89de56 Validity Not Before: Feb 9 16:01:37 2026 GMT Not After : Feb 10 16:01:37 2026 GMT Subject: CN=186191754b3e0a71f13229e3b00b26d2a4a22fc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:70:4a:7b:45:55:9e:fc:70:3d:af:2d:52:0b: 00:d1:ab:3b:13:63:aa:8a:87:db:47:c2:0c:20:d4: f3:fc:45:50:bf:8b:f8:34:48:b7:6e:38:90:ec:99: 49:e4:51:9b:02:6e:bb:ca:6d:d4:08:32:3a:fe:22: b5:ca:c5:9e:f4:74:c4:56:9b:f9:45:6e:f9:9f:be: 36:93:68:00:ce:75:6d:11:59:1f:e5:8b:25:92:50: e2:39:f5:a5:11:72:19:2e:66:3b:87:42:5f:e5:59: 6e:e8:d0:7b:51:05:b9:26:f6:f3:93:f5:6a:d1:2b: df:04:12:22:3e:f6:6d:1f:48:e3:95:78:1b:97:96: 45:0b:72:4b:2d:0f:5c:1e:37:f0:1d:e6:4e:f8:16: 83:b5:4c:09:82:13:6e:9b:8d:34:49:fc:2b:dc:ce: 04:4f:78:9f:43:ee:79:b0:16:1e:d0:19:c0:26:19: b7:cd:54:c2:1d:49:ba:85:4f:0a:20:39:87:53:18: de:92:f7:8e:da:29:25:20:f9:4a:df:ef:a6:fd:8c: 01:41:58:b1:a9:2e:d1:7e:01:db:4a:47:b9:25:2d: b3:c3:b2:c1:c4:4a:2a:c9:ef:d0:4d:03:ca:58:c6: e4:18:1f:2f:50:ad:73:28:0e:2b:ad:66:d4:f8:eb: 4c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:61:91:75:4B:3E:0A:71:F1:32:29:E3:B0:0B:26:D2:A4:A2:2F:C7 X509v3 Authority Key Identifier: keyid:A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:db:91:f0:e9:d4:be:2f:1e:e7:23:9c:8e:ec:c9:23:ec:1d: b0:8c:00:2b:5f:ad:df:a0:82:47:ee:b5:2a:25:05:73:11:c3: 9b:5d:00:b8:2d:27:d2:84:82:4b:42:26:18:0d:1f:6f:c6:a3: 7d:66:2b:48:1b:6a:de:c4:0b:44:f3:c9:c8:33:be:2e:bb:1c: 29:93:06:b9:89:14:67:62:df:c8:a5:f2:9b:87:80:8a:69:eb: 3e:b9:08:3a:68:0d:56:f9:22:c7:b8:96:56:af:d0:ed:f9:fd: 4d:04:b2:51:56:05:1f:22:71:2d:95:d9:db:e4:a1:5b:bf:c3: ab:ef:01:f6:5f:bf:21:b8:63:f3:80:5a:c3:87:42:e0:39:37: 62:5a:9b:93:ed:2d:e0:2f:ff:fe:2b:57:f5:9a:27:3d:c1:aa: bb:7b:8f:4b:0b:5a:41:6d:96:66:b2:ac:1c:2e:3b:c2:54:69: 91:2e:e3:da:d1:3f:8c:fb:ee:62:3f:c4:b6:66:55:0d:63:16: bc:6f:e6:9b:88:47:25:0e:b0:6a:d9:d9:ad:17:83:91:62:00: 26:d5:c1:a7:21:6d:94:db:23:ed:24:90:e5:82:83:e8:db:ba: ba:a2:d1:cf:95:a3:6b:02:33:3b:93:2a:07:01:4e:b2:cb:d2: cb:9c:0f:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIxHS+u2tgTnbP86LbztEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2ZTkxYTlkN2NhZWY0ODE4Njc0YzVkNjI2MjgxMzYxNWM4 OWRlNTYwHhcNMjYwMjA5MTYwMTM3WhcNMjYwMjEwMTYwMTM3WjAzMTEwLwYDVQQD EygxODYxOTE3NTRiM2UwYTcxZjEzMjI5ZTNiMDBiMjZkMmE0YTIyZmM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi3BKe0VVnvxwPa8tUgsA0as7E2Oq iofbR8IMINTz/EVQv4v4NEi3bjiQ7JlJ5FGbAm67ym3UCDI6/iK1ysWe9HTEVpv5 RW75n742k2gAznVtEVkf5YslklDiOfWlEXIZLmY7h0Jf5Vlu6NB7UQW5Jvbzk/Vq 0SvfBBIiPvZtH0jjlXgbl5ZFC3JLLQ9cHjfwHeZO+BaDtUwJghNum400Sfwr3M4E T3ifQ+55sBYe0BnAJhm3zVTCHUm6hU8KIDmHUxjekveO2iklIPlK3++m/YwBQVix qS7RfgHbSke5JS2zw7LBxEoqye/QTQPKWMbkGB8vUK1zKA4rrWbU+OtMQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBhhkXVLPgpx8TIp47ALJtKkoi/HMB8GA1UdIwQY MBaAFKbpGp18rvSBhnTF1iYoE2Fcid5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHVrYW5YeXU5SUdHZE1YV0ppZ1RZVnlKM2xZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81NWRlOTAtYmNmNi00MWE2LWE5ZTgt NDA4MjI5ZjBiYWYxLzEvcHVrYW5YeXU5SUdHZE1YV0ppZ1RZVnlKM2xZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny81NWRlOTAtYmNmNi00MWE2LWE5ZTgtNDA4MjI5ZjBiYWYx LzEvcHVrYW5YeXU5SUdHZE1YV0ppZ1RZVnlKM2xZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALNuR8OnU vi8e5yOcjuzJI+wdsIwAK1+t36CCR+61KiUFcxHDm10AuC0n0oSCS0ImGA0fb8aj fWYrSBtq3sQLRPPJyDO+LrscKZMGuYkUZ2LfyKXym4eAimnrPrkIOmgNVvkix7iW Vq/Q7fn9TQSyUVYFHyJxLZXZ2+ShW7/Dq+8B9l+/Ibhj84Baw4dC4Dk3Ylqbk+0t 4C///itX9ZonPcGqu3uPSwtaQW2WZrKsHC47wlRpkS7j2tE/jPvuYj/EtmZVDWMW vG/mm4hHJQ6watnZrReDkWIAJtXBpyFtlNsj7SSQ5YKD6Nu6uqLRz5WjawIzO5Mq BwFOssvSy5wP/Q== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:18 2026 by rpki-client