This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft File: r433xPeRM3MP4-aJR3enlgSly3k.mft (raw, json) Hash identifier: sjhrQaaxIvCpXS3zc3wMkuj4Mqo4Jq/xwV3noCa8zj0= Subject key identifier: 34:31:AF:56:0E:DA:55:D9:E6:5B:BA:E6:B5:91:03:0B:D1:A1:47:C2 Authority key identifier: AF:8D:F7:C4:F7:91:33:73:0F:E3:E6:89:47:77:A7:96:04:A5:CB:79 Certificate issuer: /CN=af8df7c4f79133730fe3e6894777a79604a5cb79 Certificate serial: 019C43907AE127A06F246EB2464AC985A0F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r433xPeRM3MP4-aJR3enlgSly3k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 18:01:07 +0000 Manifest this update: Mon 09 Feb 2026 18:01:07 +0000 Manifest next update: Tue 10 Feb 2026 18:01:07 +0000 Files and hashes: 1: kuAD5Ak5tICpfFdRaA3UxwlGKQY.roa (hash: LrGV/66Vber5csiZnP6rnRq7f8Ux68WVAZ/WZeDwWRw=) 2: r433xPeRM3MP4-aJR3enlgSly3k.crl (hash: erCU56S5cieN5PfQ+AwAEP1YbaODn+oN5PGcdRtBSiU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.crl rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft rsync://rpki.ripe.net/repository/DEFAULT/r433xPeRM3MP4-aJR3enlgSly3k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:7a:e1:27:a0:6f:24:6e:b2:46:4a:c9:85:a0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af8df7c4f79133730fe3e6894777a79604a5cb79 Validity Not Before: Feb 9 18:01:07 2026 GMT Not After : Feb 10 18:01:07 2026 GMT Subject: CN=3431af560eda55d9e65bbae6b591030bd1a147c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7c:c8:79:86:c4:44:36:c1:f2:12:64:dc:06: e0:ab:59:59:dd:b4:3b:f9:9e:06:ad:22:c9:9d:b8: ae:61:84:73:c1:ad:34:41:9c:47:34:a6:74:67:74: e3:01:f2:50:9e:5e:a3:92:c8:ea:fa:da:4c:4b:68: b5:76:e6:f8:ed:d4:78:58:55:95:f4:33:13:0a:27: 67:00:d9:98:bd:c1:ce:36:77:45:33:76:74:1d:a7: 15:04:5b:58:a0:36:2f:1d:70:fc:c1:b3:11:c0:b8: 31:71:db:54:c3:35:84:9e:fe:73:4b:b3:b2:fc:e2: 32:b7:92:1f:fa:86:da:99:57:fe:37:3f:c4:09:d2: 2e:9f:f2:fc:4f:66:1f:7f:b3:06:d8:fa:91:3e:33: 78:5e:39:55:d4:5e:90:51:43:01:68:34:81:2d:81: c3:6a:60:4d:32:65:ec:7b:67:4e:fc:75:4e:8a:11: 28:f5:34:ec:50:5f:1c:48:73:c3:0d:4e:d0:06:47: c7:b7:e4:e5:46:70:72:0a:ae:1d:a7:3f:48:4a:34: 01:ca:f0:5b:4c:1c:71:ce:81:65:5c:82:77:72:36: 62:a5:57:09:f8:dc:83:4e:95:ec:88:10:1d:40:50: b1:0b:b9:fa:f6:a5:8d:d0:35:87:09:1a:26:bb:5c: 54:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:31:AF:56:0E:DA:55:D9:E6:5B:BA:E6:B5:91:03:0B:D1:A1:47:C2 X509v3 Authority Key Identifier: keyid:AF:8D:F7:C4:F7:91:33:73:0F:E3:E6:89:47:77:A7:96:04:A5:CB:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r433xPeRM3MP4-aJR3enlgSly3k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ab:96:c8:61:6b:6e:eb:d8:f9:66:b6:13:3c:89:8e:73:33: d5:4f:65:cf:39:fd:1f:13:41:57:48:17:87:ad:df:06:68:08: 74:b2:7e:4a:29:46:1b:0d:05:92:97:5e:16:a2:9c:3a:a4:ae: 83:7e:d5:e5:05:e0:49:f2:3f:e8:c2:c5:26:2d:a0:4e:89:62: fe:92:1f:2e:c3:cf:51:22:50:6d:51:aa:60:b6:18:ee:40:1c: 02:1c:a9:d3:0f:2d:f1:3c:8a:c0:0e:c1:2d:6d:a7:79:75:c6: 04:d1:70:0a:81:28:7e:ed:c3:a3:d6:a9:03:bc:fa:b9:38:ef: 6e:07:22:cb:93:d7:30:a3:57:5d:ad:5a:ce:47:19:e1:d6:2c: 2a:bf:e7:9f:95:39:3b:f7:15:16:0e:70:ae:59:ce:89:c8:b7: 82:bb:47:76:e0:7c:fa:7d:ee:38:2e:f1:8d:cc:40:51:3a:e1: 81:33:8d:9e:68:e0:af:ea:52:fc:67:93:6b:40:8c:03:16:74: 2e:e0:67:2d:58:42:54:5a:97:1e:df:2c:c0:9f:a4:b3:e9:f2: 0a:c9:ad:c3:29:0f:5c:4c:19:23:17:db:65:15:6f:db:c7:14: 65:f8:1f:5b:b9:37:b2:3e:02:a9:34:9c:a6:bb:20:30:bf:df: 5d:40:d6:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkHrhJ6BvJG6yRkrJhaDzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmOGRmN2M0Zjc5MTMzNzMwZmUzZTY4OTQ3NzdhNzk2MDRh NWNiNzkwHhcNMjYwMjA5MTgwMTA3WhcNMjYwMjEwMTgwMTA3WjAzMTEwLwYDVQQD EygzNDMxYWY1NjBlZGE1NWQ5ZTY1YmJhZTZiNTkxMDMwYmQxYTE0N2MyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3zIeYbERDbB8hJk3Abgq1lZ3bQ7 +Z4GrSLJnbiuYYRzwa00QZxHNKZ0Z3TjAfJQnl6jksjq+tpMS2i1dub47dR4WFWV 9DMTCidnANmYvcHONndFM3Z0HacVBFtYoDYvHXD8wbMRwLgxcdtUwzWEnv5zS7Oy /OIyt5If+obamVf+Nz/ECdIun/L8T2Yff7MG2PqRPjN4XjlV1F6QUUMBaDSBLYHD amBNMmXse2dO/HVOihEo9TTsUF8cSHPDDU7QBkfHt+TlRnByCq4dpz9ISjQByvBb TBxxzoFlXIJ3cjZipVcJ+NyDTpXsiBAdQFCxC7n69qWN0DWHCRomu1xU9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDQxr1YO2lXZ5lu65rWRAwvRoUfCMB8GA1UdIwQY MBaAFK+N98T3kTNzD+PmiUd3p5YEpct5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjQzM3hQZVJNM01QNC1hSlIzZW5sZ1NseTNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC81MGZmMDAtNzc3YS00MTFkLTkzOGIt ZjRkNjBlY2RmMmIyLzEvcjQzM3hQZVJNM01QNC1hSlIzZW5sZ1NseTNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC81MGZmMDAtNzc3YS00MTFkLTkzOGItZjRkNjBlY2RmMmIy LzEvcjQzM3hQZVJNM01QNC1hSlIzZW5sZ1NseTNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfauWyGFr buvY+Wa2EzyJjnMz1U9lzzn9HxNBV0gXh63fBmgIdLJ+SilGGw0FkpdeFqKcOqSu g37V5QXgSfI/6MLFJi2gToli/pIfLsPPUSJQbVGqYLYY7kAcAhyp0w8t8TyKwA7B LW2neXXGBNFwCoEofu3Do9apA7z6uTjvbgciy5PXMKNXXa1azkcZ4dYsKr/nn5U5 O/cVFg5wrlnOici3grtHduB8+n3uOC7xjcxAUTrhgTONnmjgr+pS/GeTa0CMAxZ0 LuBnLVhCVFqXHt8swJ+ks+nyCsmtwykPXEwZIxfbZRVv28cUZfgfW7k3sj4CqTSc prsgML/fXUDWHg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:19 2026 by rpki-client