This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft File: PBnm8n2SgJXlYN52ePKONFnVWUc.mft (raw, json) Hash identifier: jHSdOjfs+t8AyVUwBmaPB5oyNiLHeIor4RPd/0Zil48= Subject key identifier: 0D:B0:99:AE:A0:C4:E2:A5:F3:77:C4:08:42:EB:65:D9:D8:A2:BC:41 Authority key identifier: 3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47 Certificate issuer: /CN=3c19e6f27d928095e560de7678f28e3459d55947 Certificate serial: 019C438FA599504BDEC08A3E375976018890 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft Manifest number: 0324 Signing time: Mon 09 Feb 2026 18:00:13 +0000 Manifest this update: Mon 09 Feb 2026 18:00:13 +0000 Manifest next update: Tue 10 Feb 2026 18:00:13 +0000 Files and hashes: 1: CB5dZw_OUbWQmf6rrxVZ4SzmOPA.roa (hash: 7zRrcVpQEfWDa1cgriGdXYM3UTbJ90zYlGXeGAuJSjI=) 2: PBnm8n2SgJXlYN52ePKONFnVWUc.crl (hash: rJD3Bn08DCVglLNsppX/SMD2D5HeaBb4PXIS4Pwjdk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:a5:99:50:4b:de:c0:8a:3e:37:59:76:01:88:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c19e6f27d928095e560de7678f28e3459d55947 Validity Not Before: Feb 9 18:00:13 2026 GMT Not After : Feb 10 18:00:13 2026 GMT Subject: CN=0db099aea0c4e2a5f377c40842eb65d9d8a2bc41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:60:72:33:85:9d:ee:18:54:44:66:8b:45:de: fa:af:3e:67:2e:29:4e:bb:19:32:25:ad:83:f7:82: 28:d9:09:cb:dc:02:ca:13:5d:66:fa:c2:dc:84:71: 0d:b7:c3:3e:d4:7b:84:74:6e:0b:6d:de:00:99:cd: 97:0d:bf:7f:d6:b3:c5:e0:33:38:c2:d1:3d:b0:b2: d6:48:be:e8:cd:84:13:62:44:9f:03:63:27:08:92: 98:0c:21:0f:aa:8f:29:86:53:a9:77:be:a7:84:93: c0:4a:bc:f6:08:c3:fe:2b:e4:ee:70:6e:d4:bb:fa: a8:e2:dd:55:cd:93:f3:1c:98:07:ca:a1:0c:3d:28: bc:e4:03:42:ab:23:f1:ce:46:e3:5d:de:2a:c5:44: 70:02:d6:c5:4b:a4:4b:d5:ba:78:aa:9f:90:79:f4: 8a:ce:1b:bf:e3:d1:0a:2c:0f:f6:62:34:e9:74:2d: 64:f4:71:a3:2a:d6:ea:e4:cc:d3:69:6d:04:9b:d7: 35:a4:57:35:c7:9c:f2:2e:a9:5b:3b:26:15:a2:44: 06:2e:d9:a2:78:df:a2:b8:8b:f5:d6:0f:b5:39:d5: 6f:e1:36:29:3b:e5:e2:e4:ca:f6:59:cc:93:9e:e1: c2:c3:04:ad:cb:ef:7e:6d:37:d9:d5:cb:fe:f8:20: b8:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:B0:99:AE:A0:C4:E2:A5:F3:77:C4:08:42:EB:65:D9:D8:A2:BC:41 X509v3 Authority Key Identifier: keyid:3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:6e:75:cc:a4:1f:17:a6:45:75:65:c0:32:aa:df:3c:6b:a5: 18:42:10:13:3a:c8:0c:9a:ba:73:a6:1e:23:70:b9:24:04:55: bc:73:bc:d7:a1:ed:95:b2:ba:a6:02:c0:d0:3e:a0:3f:d0:4b: b5:60:75:c6:c0:7f:e4:f9:f3:65:57:58:40:71:e7:38:4d:27: a0:98:fa:36:cf:b9:f2:00:c7:ec:b7:55:6e:30:1e:e1:7a:7c: 9e:c4:59:40:b6:30:ac:50:cf:4b:07:89:8f:9e:72:99:98:dd: 5b:0f:5d:ed:dd:78:c1:62:62:22:56:0d:6e:9c:33:cb:8f:13: 4f:b0:af:bc:42:1d:d6:62:63:4c:42:70:73:08:b1:70:7f:c4: e6:24:d8:47:8f:3d:75:56:b6:ad:14:0d:cc:48:1e:c2:35:b4: 6d:6b:8e:69:a8:f1:9c:8a:8e:ff:0c:15:c9:74:cd:dd:db:c0: a4:c5:2e:15:14:46:e0:79:c4:e9:14:a4:58:18:59:c9:98:b8: 9f:2b:8c:1d:78:0a:7f:c4:07:88:08:eb:0a:06:23:4c:de:51: 1f:25:2c:69:c6:b6:52:4a:f8:23:a7:fd:23:fc:d5:dc:5b:98: c9:cb:7c:56:87:83:99:ee:14:99:8d:1c:4d:1a:4a:fc:fd:a3: 1a:2c:30:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj6WZUEvewIo+N1l2AYiQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjMTllNmYyN2Q5MjgwOTVlNTYwZGU3Njc4ZjI4ZTM0NTlk NTU5NDcwHhcNMjYwMjA5MTgwMDEzWhcNMjYwMjEwMTgwMDEzWjAzMTEwLwYDVQQD EygwZGIwOTlhZWEwYzRlMmE1ZjM3N2M0MDg0MmViNjVkOWQ4YTJiYzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWByM4Wd7hhURGaLRd76rz5nLilO uxkyJa2D94Io2QnL3ALKE11m+sLchHENt8M+1HuEdG4Lbd4Amc2XDb9/1rPF4DM4 wtE9sLLWSL7ozYQTYkSfA2MnCJKYDCEPqo8phlOpd76nhJPASrz2CMP+K+TucG7U u/qo4t1VzZPzHJgHyqEMPSi85ANCqyPxzkbjXd4qxURwAtbFS6RL1bp4qp+QefSK zhu/49EKLA/2YjTpdC1k9HGjKtbq5MzTaW0Em9c1pFc1x5zyLqlbOyYVokQGLtmi eN+iuIv11g+1OdVv4TYpO+Xi5Mr2WcyTnuHCwwSty+9+bTfZ1cv++CC4lQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA2wma6gxOKl83fECELrZdnYorxBMB8GA1UdIwQY MBaAFDwZ5vJ9koCV5WDednjyjjRZ1VlHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUEJubThuMlNnSlhsWU41MmVQS09ORm5WV1VjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS8yMzliNzMtN2FhNy00YjU4LWIxMmMt NzkyN2RlNTM5MzY0LzEvUEJubThuMlNnSlhsWU41MmVQS09ORm5WV1VjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS8yMzliNzMtN2FhNy00YjU4LWIxMmMtNzkyN2RlNTM5MzY0 LzEvUEJubThuMlNnSlhsWU41MmVQS09ORm5WV1VjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdW51zKQf F6ZFdWXAMqrfPGulGEIQEzrIDJq6c6YeI3C5JARVvHO816HtlbK6pgLA0D6gP9BL tWB1xsB/5PnzZVdYQHHnOE0noJj6Ns+58gDH7LdVbjAe4Xp8nsRZQLYwrFDPSweJ j55ymZjdWw9d7d14wWJiIlYNbpwzy48TT7CvvEId1mJjTEJwcwixcH/E5iTYR489 dVa2rRQNzEgewjW0bWuOaajxnIqO/wwVyXTN3dvApMUuFRRG4HnE6RSkWBhZyZi4 nyuMHXgKf8QHiAjrCgYjTN5RHyUsaca2Ukr4I6f9I/zV3FuYyct8VoeDme4UmY0c TRpK/P2jGiwwaw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:25 2026 by rpki-client