This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/468e13-a3dc-4c7e-9eb3-832651e60c3b/1/PonHvJeq8NwDF2adR1GxMaqTK40.mft File: PonHvJeq8NwDF2adR1GxMaqTK40.mft (raw, json) Hash identifier: aqSp5z4xCKT/gdK/SaJsxAYYvLi62WX2+Pcmizggwus= Subject key identifier: BE:86:57:D5:7D:AE:D4:6E:46:74:A3:6C:AD:E9:5E:B2:5E:0E:EF:98 Authority key identifier: 3E:89:C7:BC:97:AA:F0:DC:03:17:66:9D:47:51:B1:31:AA:93:2B:8D Certificate issuer: /CN=3e89c7bc97aaf0dc0317669d4751b131aa932b8d Certificate serial: 019C446B91A71F03E1AA79515985D23CC317 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PonHvJeq8NwDF2adR1GxMaqTK40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/468e13-a3dc-4c7e-9eb3-832651e60c3b/1/PonHvJeq8NwDF2adR1GxMaqTK40.mft Manifest number: 0115 Signing time: Mon 09 Feb 2026 22:00:26 +0000 Manifest this update: Mon 09 Feb 2026 22:00:26 +0000 Manifest next update: Tue 10 Feb 2026 22:00:26 +0000 Files and hashes: 1: PonHvJeq8NwDF2adR1GxMaqTK40.crl (hash: iq3YHXQlMTCqtK90zlSYrBf9X6MZh7RYXNqMTmyjJqo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/468e13-a3dc-4c7e-9eb3-832651e60c3b/1/PonHvJeq8NwDF2adR1GxMaqTK40.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/468e13-a3dc-4c7e-9eb3-832651e60c3b/1/PonHvJeq8NwDF2adR1GxMaqTK40.mft rsync://rpki.ripe.net/repository/DEFAULT/PonHvJeq8NwDF2adR1GxMaqTK40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:91:a7:1f:03:e1:aa:79:51:59:85:d2:3c:c3:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e89c7bc97aaf0dc0317669d4751b131aa932b8d Validity Not Before: Feb 9 22:00:26 2026 GMT Not After : Feb 10 22:00:26 2026 GMT Subject: CN=be8657d57daed46e4674a36cade95eb25e0eef98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f1:61:4b:b6:99:cc:b7:b3:4e:0c:0f:71:c8: fc:e2:97:72:77:91:2c:05:66:d2:b7:d6:37:c1:6d: 0a:7e:cd:91:eb:11:3b:e7:71:7d:ad:8f:bc:6a:34: 31:88:94:2e:13:29:5f:39:e7:cc:04:dc:ac:74:27: f2:a0:40:0a:ce:9b:ed:c2:50:01:84:2f:af:18:66: a1:51:31:d8:db:fb:af:43:7a:79:d8:0f:8e:17:61: 0f:5e:34:f2:38:35:93:59:00:b8:bc:59:08:11:78: 29:28:7d:e6:48:57:d5:9a:92:40:c8:56:57:12:e8: f4:d6:bf:b5:3e:a9:4b:c2:87:00:83:be:20:0c:20: fa:c0:9b:28:f5:0d:35:20:88:33:ed:8e:86:fa:d1: d7:64:1f:97:66:01:8b:22:77:d2:cc:16:4b:8e:e6: 17:30:92:bd:90:e6:08:72:3f:a1:3b:23:ac:25:e5: f4:78:60:3d:a0:0b:01:19:68:8f:29:50:97:a9:e1: 5d:21:b6:9d:59:ac:67:cc:34:f8:ac:25:c9:8b:e9: cd:e8:93:3d:c8:35:ae:3d:45:36:6c:a1:32:fb:9d: d9:fc:3c:b3:d5:0d:90:29:93:c5:23:04:60:18:cd: 46:5c:e5:5a:56:00:73:61:0a:ad:08:77:c5:95:64: 7c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:86:57:D5:7D:AE:D4:6E:46:74:A3:6C:AD:E9:5E:B2:5E:0E:EF:98 X509v3 Authority Key Identifier: keyid:3E:89:C7:BC:97:AA:F0:DC:03:17:66:9D:47:51:B1:31:AA:93:2B:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PonHvJeq8NwDF2adR1GxMaqTK40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/468e13-a3dc-4c7e-9eb3-832651e60c3b/1/PonHvJeq8NwDF2adR1GxMaqTK40.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/468e13-a3dc-4c7e-9eb3-832651e60c3b/1/PonHvJeq8NwDF2adR1GxMaqTK40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:fb:aa:fd:fa:e2:d1:6b:62:ca:e3:aa:9f:23:a6:80:38:3d: 79:b5:37:da:11:8e:6d:55:23:51:dd:f7:73:f8:33:11:f2:e5: 4d:55:7c:64:74:ba:e1:ad:10:2e:91:76:5d:a5:be:dc:20:b6: 9a:03:a4:8b:19:8f:9d:97:6d:e8:2c:06:f6:2d:a3:89:dc:da: 25:83:dc:40:15:ab:7c:56:fb:03:bd:ee:2d:96:62:bf:cb:85: f5:7e:f0:40:09:48:95:76:c4:7e:40:6b:48:81:ef:3e:f6:c5: e3:b6:a5:c7:13:86:dc:c9:ab:70:91:71:f4:5d:60:c2:bb:20: 2b:eb:96:7d:4b:7b:ba:1e:12:c6:14:02:1d:31:bf:9c:fc:b2: 15:ff:bd:9a:ca:f2:6a:2a:eb:83:91:9b:c2:c6:b9:56:f0:90: 4e:01:9f:2b:2d:86:8a:da:40:f9:b4:8c:8a:04:76:ca:31:d6: 23:14:03:3f:08:84:fe:7e:78:8b:1f:c2:ea:ec:e5:77:67:3d: 37:0b:d1:b5:b2:57:5b:52:09:ea:e0:e8:24:30:33:7f:5d:5d: f7:92:8a:10:96:b9:d9:6a:b5:63:5a:0e:80:08:30:74:20:bb: e8:71:40:d8:8c:72:3f:f3:73:88:d5:26:d8:fd:93:f4:f9:7a: 76:12:d4:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa5GnHwPhqnlRWYXSPMMXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlODljN2JjOTdhYWYwZGMwMzE3NjY5ZDQ3NTFiMTMxYWE5 MzJiOGQwHhcNMjYwMjA5MjIwMDI2WhcNMjYwMjEwMjIwMDI2WjAzMTEwLwYDVQQD EyhiZTg2NTdkNTdkYWVkNDZlNDY3NGEzNmNhZGU5NWViMjVlMGVlZjk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAovFhS7aZzLezTgwPccj84pdyd5Es BWbSt9Y3wW0Kfs2R6xE753F9rY+8ajQxiJQuEylfOefMBNysdCfyoEAKzpvtwlAB hC+vGGahUTHY2/uvQ3p52A+OF2EPXjTyODWTWQC4vFkIEXgpKH3mSFfVmpJAyFZX Euj01r+1PqlLwocAg74gDCD6wJso9Q01IIgz7Y6G+tHXZB+XZgGLInfSzBZLjuYX MJK9kOYIcj+hOyOsJeX0eGA9oAsBGWiPKVCXqeFdIbadWaxnzDT4rCXJi+nN6JM9 yDWuPUU2bKEy+53Z/Dyz1Q2QKZPFIwRgGM1GXOVaVgBzYQqtCHfFlWR8qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL6GV9V9rtRuRnSjbK3pXrJeDu+YMB8GA1UdIwQY MBaAFD6Jx7yXqvDcAxdmnUdRsTGqkyuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG9uSHZKZXE4TndERjJhZFIxR3hNYXFUSzQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi80NjhlMTMtYTNkYy00YzdlLTllYjMt ODMyNjUxZTYwYzNiLzEvUG9uSHZKZXE4TndERjJhZFIxR3hNYXFUSzQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi80NjhlMTMtYTNkYy00YzdlLTllYjMtODMyNjUxZTYwYzNi LzEvUG9uSHZKZXE4TndERjJhZFIxR3hNYXFUSzQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT/uq/fri 0WtiyuOqnyOmgDg9ebU32hGObVUjUd33c/gzEfLlTVV8ZHS64a0QLpF2XaW+3CC2 mgOkixmPnZdt6CwG9i2jidzaJYPcQBWrfFb7A73uLZZiv8uF9X7wQAlIlXbEfkBr SIHvPvbF47alxxOG3MmrcJFx9F1gwrsgK+uWfUt7uh4SxhQCHTG/nPyyFf+9msry airrg5Gbwsa5VvCQTgGfKy2GitpA+bSMigR2yjHWIxQDPwiE/n54ix/C6uzld2c9 NwvRtbJXW1IJ6uDoJDAzf11d95KKEJa52Wq1Y1oOgAgwdCC76HFA2IxyP/NziNUm 2P2T9Pl6dhLUQA== -----END CERTIFICATE-----Generated at Tue Feb 10 04:19:51 2026 by rpki-client