This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json) Hash identifier: 2lQf7tsB0Ac4QEGVuADj8HznCZiE1xKiz8oFo3ZE7HA= Subject key identifier: DC:78:35:16:BB:DA:02:1D:61:EE:DD:9F:3E:2D:92:09:79:94:0C:EC Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d Certificate serial: 019C4322C8F04A42581FDCF770927DDD2FF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft Manifest number: 02A1 Signing time: Mon 09 Feb 2026 16:01:18 +0000 Manifest this update: Mon 09 Feb 2026 16:01:18 +0000 Manifest next update: Tue 10 Feb 2026 16:01:18 +0000 Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: VqKlXK+Dtw0h9xhYQcU+TGsiJUqgJQHqCCZnob4mL2I=) 2: tW6tlYVnkXnq9oP8owXcbYW47kU.roa (hash: g2+Pc2wN2E52WWpsZZidSy7PbjRy5/I1OGghh4rSkGE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:c8:f0:4a:42:58:1f:dc:f7:70:92:7d:dd:2f:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d43340fad246465de8e614d039563a699657d8d Validity Not Before: Feb 9 16:01:18 2026 GMT Not After : Feb 10 16:01:18 2026 GMT Subject: CN=dc783516bbda021d61eedd9f3e2d920979940cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:74:83:99:3e:29:a7:40:4d:39:3c:5a:41:a9: 53:4e:32:c8:c7:21:b1:b3:34:58:a9:52:df:f2:24: d1:5b:49:1d:d0:93:ec:9d:0a:c8:ab:67:9b:f0:c1: a7:f4:0b:7a:69:7c:5e:78:cc:54:8e:db:41:f9:b0: 5f:4e:ca:16:66:52:32:fa:b8:83:4d:72:31:94:5e: 30:09:3a:d8:44:11:09:9a:5b:57:ac:d2:d8:5f:5c: e6:e8:ea:ce:d6:b4:da:d3:76:7b:c8:58:03:5b:6e: be:ac:12:c7:4c:af:d4:03:b1:c0:92:14:9d:39:b7: 2a:b6:9a:2c:21:95:1d:bd:d6:e2:c9:a8:f3:90:9d: 20:90:12:32:24:55:c5:72:7d:2b:7b:78:44:fe:1c: d1:24:3a:7a:2b:6a:32:1a:32:3d:21:44:99:82:d8: 7d:bb:92:84:5e:6c:52:b8:cb:74:e4:ad:5e:a4:b5: ca:c7:d5:59:af:a8:56:33:bb:9c:d5:97:0e:21:93: 4a:7e:c7:e6:b8:ed:56:b1:3a:58:99:45:b7:6b:4f: 6a:0b:5b:57:56:ce:f6:08:ab:7f:f7:c3:b4:2a:a2: e4:af:9a:f8:6e:f8:4e:84:ea:cd:a0:0d:7d:dd:a4: 67:1b:b6:03:fb:2d:ad:69:c6:50:54:d0:2d:84:55: d3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:78:35:16:BB:DA:02:1D:61:EE:DD:9F:3E:2D:92:09:79:94:0C:EC X509v3 Authority Key Identifier: keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:4c:17:aa:10:a2:0b:8c:f4:d1:2f:d3:ce:a1:d6:8a:a6:8e: 52:8e:ef:70:51:87:63:86:3c:dd:9f:e4:84:c2:f9:50:33:c6: 27:2f:ad:bb:3d:2b:f1:66:0a:65:22:02:91:e4:bb:06:ef:ef: e1:99:49:e8:2c:66:2e:2d:eb:e3:80:f5:ba:31:af:45:d7:c8: e3:fb:11:69:5d:5b:21:ff:28:83:82:6c:32:42:89:53:a3:c8: 23:b7:82:41:ee:cb:9b:e0:9b:a4:d6:5b:d4:2c:99:5c:8c:26: 0e:25:dd:df:8a:9d:2b:5c:0e:43:57:d9:ca:cd:16:eb:d7:e1: bc:4d:2f:1a:ad:4c:be:de:58:ef:c1:a8:72:7a:98:cd:fc:25: 6e:31:97:db:b8:a4:28:f0:06:37:6d:da:33:d1:40:5e:ad:12: f8:70:1c:1d:d5:08:fb:a9:8b:b5:8b:e5:7b:8c:d4:cb:38:51: 1c:31:52:ee:ec:7a:50:3f:77:ae:1d:08:ad:dd:4b:5d:b5:e7: 18:7a:48:1c:b0:00:ca:3e:b0:dc:97:b3:0c:68:ed:af:d4:1b: 06:a4:4a:23:dc:07:37:8d:17:3c:37:1a:7d:f1:3d:f2:e1:24: 3a:ae:94:6e:20:4d:5a:a1:22:ea:45:ec:8d:79:7b:d8:d4:be: 2d:fb:2d:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIsjwSkJYH9z3cJJ93S/0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkNDMzNDBmYWQyNDY0NjVkZThlNjE0ZDAzOTU2M2E2OTk2 NTdkOGQwHhcNMjYwMjA5MTYwMTE4WhcNMjYwMjEwMTYwMTE4WjAzMTEwLwYDVQQD EyhkYzc4MzUxNmJiZGEwMjFkNjFlZWRkOWYzZTJkOTIwOTc5OTQwY2VjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnSDmT4pp0BNOTxaQalTTjLIxyGx szRYqVLf8iTRW0kd0JPsnQrIq2eb8MGn9At6aXxeeMxUjttB+bBfTsoWZlIy+riD TXIxlF4wCTrYRBEJmltXrNLYX1zm6OrO1rTa03Z7yFgDW26+rBLHTK/UA7HAkhSd ObcqtposIZUdvdbiyajzkJ0gkBIyJFXFcn0re3hE/hzRJDp6K2oyGjI9IUSZgth9 u5KEXmxSuMt05K1epLXKx9VZr6hWM7uc1ZcOIZNKfsfmuO1WsTpYmUW3a09qC1tX Vs72CKt/98O0KqLkr5r4bvhOhOrNoA193aRnG7YD+y2tacZQVNAthFXTpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNx4NRa72gIdYe7dnz4tkgl5lAzsMB8GA1UdIwQY MBaAFD1DNA+tJGRl3o5hTQOVY6aZZX2NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82Y2U5MjItY2RjZS00YzdhLWIzNDYt YTQzN2NlODkyODQxLzEvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS82Y2U5MjItY2RjZS00YzdhLWIzNDYtYTQzN2NlODkyODQx LzEvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjEwXqhCi C4z00S/TzqHWiqaOUo7vcFGHY4Y83Z/khML5UDPGJy+tuz0r8WYKZSICkeS7Bu/v 4ZlJ6CxmLi3r44D1ujGvRdfI4/sRaV1bIf8og4JsMkKJU6PII7eCQe7Lm+CbpNZb 1CyZXIwmDiXd34qdK1wOQ1fZys0W69fhvE0vGq1Mvt5Y78GocnqYzfwlbjGX27ik KPAGN23aM9FAXq0S+HAcHdUI+6mLtYvle4zUyzhRHDFS7ux6UD93rh0Ird1LXbXn GHpIHLAAyj6w3JezDGjtr9QbBqRKI9wHN40XPDcaffE98uEkOq6UbiBNWqEi6kXs jXl72NS+Lfstng== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:20 2026 by rpki-client