This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft File: praJ3e9Y8KM4Pi71qjonxP5FMY4.mft (raw, json) Hash identifier: KoksnBmK1T5oNIel8ChrXKn0Q3384+IHjeARnaXy87Y= Subject key identifier: 6A:49:5E:5B:12:3F:23:9C:23:5C:71:50:54:A2:E2:FC:15:9C:3C:41 Authority key identifier: A6:B6:89:DD:EF:58:F0:A3:38:3E:2E:F5:AA:3A:27:C4:FE:45:31:8E Certificate issuer: /CN=a6b689ddef58f0a3383e2ef5aa3a27c4fe45318e Certificate serial: 019C4434E11084EBD3F8B45E078F186D2E7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 21:00:42 +0000 Manifest this update: Mon 09 Feb 2026 21:00:42 +0000 Manifest next update: Tue 10 Feb 2026 21:00:42 +0000 Files and hashes: 1: jaVGzqMMffQE3Q_SdkkikAb_ifw.roa (hash: ACXMwRTCTN9KdhkKmZ8r5uOME2aL+5i4OAjE14uGMqo=) 2: praJ3e9Y8KM4Pi71qjonxP5FMY4.crl (hash: Gi4mjpgHsT6VJORrawhsT9yIlY/hQVrpy/J7nle9HeA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.crl rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:e1:10:84:eb:d3:f8:b4:5e:07:8f:18:6d:2e:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6b689ddef58f0a3383e2ef5aa3a27c4fe45318e Validity Not Before: Feb 9 21:00:42 2026 GMT Not After : Feb 10 21:00:42 2026 GMT Subject: CN=6a495e5b123f239c235c715054a2e2fc159c3c41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:92:5b:1a:f6:5a:f4:31:bd:56:81:09:54:6f: c9:0f:ce:5b:40:d9:13:bd:21:1c:48:05:f1:e5:ac: 5b:5c:21:d7:aa:f4:fe:00:34:4a:0c:57:18:16:a5: 71:f4:54:a2:d3:ef:14:9c:84:1b:80:b1:21:ec:62: f7:5a:e0:43:8c:15:e9:1c:47:87:09:07:d9:ab:70: da:e2:94:10:c5:14:3e:4e:48:7d:79:98:52:56:8b: 7f:6e:36:f0:d0:19:d4:f8:b4:de:f9:0f:3b:2f:6b: 7e:4d:a1:3d:db:00:25:c9:62:d2:1f:8b:aa:6c:d1: 16:22:d4:da:09:ca:8e:08:5e:90:85:61:e6:98:1b: ef:c7:f1:f6:8f:a9:52:18:b0:c8:4f:94:c4:a5:fe: 79:a1:34:27:db:dd:45:0c:95:41:bd:cc:96:d9:a5: b2:c9:81:ed:07:61:de:d0:72:54:d5:87:73:f0:5c: 56:b0:0e:18:c0:25:ee:e3:e2:63:1f:58:44:b6:a3: 4e:25:ec:e5:8f:fe:fd:a4:cc:8c:4c:e1:c5:da:21: e9:fb:f7:98:13:85:dc:86:09:88:f0:86:40:96:bd: f5:65:3f:79:80:b1:80:d1:3c:0b:49:ed:9f:dc:40: 21:de:ac:33:27:2c:9f:32:7c:6f:ea:bb:3c:e6:fc: c6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:49:5E:5B:12:3F:23:9C:23:5C:71:50:54:A2:E2:FC:15:9C:3C:41 X509v3 Authority Key Identifier: keyid:A6:B6:89:DD:EF:58:F0:A3:38:3E:2E:F5:AA:3A:27:C4:FE:45:31:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:9f:ec:8d:50:14:6a:20:8f:75:a6:1e:7a:96:ac:f5:fb:a9: 27:76:a1:cd:54:69:b2:38:2b:4d:e9:2e:f4:8b:51:65:55:45: be:f9:3a:3f:0c:28:e6:1e:2a:ac:3f:4a:e5:2a:0d:8f:f5:58: 17:31:37:db:d0:bc:50:2a:96:b5:0e:6d:62:d5:2b:9c:d5:0f: 13:6e:da:29:23:60:74:26:03:14:2d:6c:90:22:12:7e:51:8b: 5b:fd:2a:36:7e:bb:20:f4:a6:85:15:bc:b0:20:ad:73:6f:49: 3d:2f:6f:82:95:fa:5e:9f:61:47:8f:90:ab:5c:95:9c:57:0a: f9:e0:6b:b0:c1:e5:3d:ea:b9:82:3f:fa:0b:be:2d:92:c3:cc: 4e:da:d5:1f:cb:72:8d:5d:06:64:5a:24:d8:3a:a2:d2:ba:dc: 75:a1:27:6b:1a:f9:42:f6:30:5b:48:7c:9d:52:f8:5e:b1:d4: 94:2b:b0:17:cd:c1:e8:02:4c:1f:b6:cd:b6:e7:e1:1c:61:16: 0e:48:23:9e:8e:b6:a1:59:98:2d:5a:b4:12:31:b6:87:29:d8: 92:36:03:4a:46:d3:a3:98:6d:a6:4b:b0:51:4b:aa:df:e5:89: e2:43:8d:19:3e:54:53:49:a5:bb:5d:73:f8:e1:92:c3:1c:df: 68:e5:24:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENOEQhOvT+LReB48YbS5/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2YjY4OWRkZWY1OGYwYTMzODNlMmVmNWFhM2EyN2M0ZmU0 NTMxOGUwHhcNMjYwMjA5MjEwMDQyWhcNMjYwMjEwMjEwMDQyWjAzMTEwLwYDVQQD Eyg2YTQ5NWU1YjEyM2YyMzljMjM1YzcxNTA1NGEyZTJmYzE1OWMzYzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJJbGvZa9DG9VoEJVG/JD85bQNkT vSEcSAXx5axbXCHXqvT+ADRKDFcYFqVx9FSi0+8UnIQbgLEh7GL3WuBDjBXpHEeH CQfZq3Da4pQQxRQ+Tkh9eZhSVot/bjbw0BnU+LTe+Q87L2t+TaE92wAlyWLSH4uq bNEWItTaCcqOCF6QhWHmmBvvx/H2j6lSGLDIT5TEpf55oTQn291FDJVBvcyW2aWy yYHtB2He0HJU1Ydz8FxWsA4YwCXu4+JjH1hEtqNOJezlj/79pMyMTOHF2iHp+/eY E4XchgmI8IZAlr31ZT95gLGA0TwLSe2f3EAh3qwzJyyfMnxv6rs85vzGgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGpJXlsSPyOcI1xxUFSi4vwVnDxBMB8GA1UdIwQY MBaAFKa2id3vWPCjOD4u9ao6J8T+RTGOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHJhSjNlOVk4S000UGk3MXFqb254UDVGTVk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC84ZmVmN2YtZDAxMS00Y2RiLWFjMGEt MzE3MDBmMGUxYTYxLzEvcHJhSjNlOVk4S000UGk3MXFqb254UDVGTVk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC84ZmVmN2YtZDAxMS00Y2RiLWFjMGEtMzE3MDBmMGUxYTYx LzEvcHJhSjNlOVk4S000UGk3MXFqb254UDVGTVk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkp/sjVAU aiCPdaYeepas9fupJ3ahzVRpsjgrTeku9ItRZVVFvvk6Pwwo5h4qrD9K5SoNj/VY FzE329C8UCqWtQ5tYtUrnNUPE27aKSNgdCYDFC1skCISflGLW/0qNn67IPSmhRW8 sCCtc29JPS9vgpX6Xp9hR4+Qq1yVnFcK+eBrsMHlPeq5gj/6C74tksPMTtrVH8ty jV0GZFok2Dqi0rrcdaEnaxr5QvYwW0h8nVL4XrHUlCuwF83B6AJMH7bNtufhHGEW Dkgjno62oVmYLVq0EjG2hynYkjYDSkbTo5htpkuwUUuq3+WJ4kONGT5UU0mlu11z +OGSwxzfaOUkOw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:10 2026 by rpki-client