This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft File: PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft (raw, json) Hash identifier: aaKTFWelLCyLqHxAhL8Qe1BS4aGNJbagA/JFON6NxnI= Subject key identifier: 96:5C:7C:AB:9F:E6:CC:57:ED:3B:C9:87:28:F7:C9:FD:77:49:E3:B9 Authority key identifier: 3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8 Certificate issuer: /CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8 Certificate serial: 019C1D5F2F7EAA2ACB0C2962EBF0BB18A846 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft Manifest number: 17F9 Signing time: Mon 02 Feb 2026 08:01:43 +0000 Manifest this update: Mon 02 Feb 2026 08:01:43 +0000 Manifest next update: Tue 03 Feb 2026 08:01:43 +0000 Files and hashes: 1: PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl (hash: QBO5sHrYYkPvEWo2OKl/X3SwPhhjJk7M9mkqs4xjH10=) 2: ZyRogeaonWCDX6YHI-BEV3oTgbo.asa (hash: UhcSgiJzCKNgPVuyaZNIhdxTbMyFoRx3xZ1V9omPKtY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1d:5f:2f:7e:aa:2a:cb:0c:29:62:eb:f0:bb:18:a8:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8 Validity Not Before: Feb 2 08:01:43 2026 GMT Not After : Feb 3 08:01:43 2026 GMT Subject: CN=965c7cab9fe6cc57ed3bc98728f7c9fd7749e3b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6a:46:8d:45:fe:c8:2c:24:a7:67:2c:85:62: ac:3a:9a:a4:f8:03:a5:07:34:c4:6f:bc:bc:37:3c: 19:64:5b:68:06:c5:6b:e2:46:4a:50:3c:21:5e:84: 57:f8:5d:2f:1b:2b:f5:37:f8:53:3a:45:ac:eb:09: 46:06:e6:13:1f:37:c4:a9:00:92:65:4a:47:da:bd: cd:af:b3:ea:a1:18:9c:36:aa:bb:77:be:66:93:5e: 06:d1:c5:15:9c:1c:f3:31:2c:3b:bb:e1:aa:12:b8: 8d:25:48:69:3e:c1:1d:8a:f3:30:3b:9b:bb:eb:85: c2:ec:cd:9a:bd:38:8f:19:ef:3d:b5:40:d3:68:57: 25:74:61:9f:c5:da:25:36:f5:82:20:fc:1d:1c:d2: f2:12:ad:da:51:c3:43:3b:0d:d5:ff:55:c3:6a:4e: 08:80:49:7f:19:c4:ff:48:46:f6:fc:c5:8d:c3:a3: 77:3e:44:12:ee:71:de:4f:49:8c:b9:e7:bd:60:50: cb:1a:12:34:1b:84:aa:c1:ed:58:3e:b0:24:90:d6: 0d:81:56:30:78:79:8f:cf:60:7a:5c:9b:15:ba:6d: 4a:d9:f5:a4:86:51:5f:2c:cc:42:14:fc:df:bb:c7: ea:24:9e:a3:4a:f6:68:9d:50:7c:0a:c9:1e:04:99: e9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:5C:7C:AB:9F:E6:CC:57:ED:3B:C9:87:28:F7:C9:FD:77:49:E3:B9 X509v3 Authority Key Identifier: keyid:3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:25:8f:fd:c4:4e:64:f8:9a:3a:27:1e:c9:9d:e9:c7:26:6f: c8:1d:de:e1:75:21:16:a6:d1:ae:37:b8:39:25:e5:2e:e2:1d: bf:ac:af:1c:be:ca:48:33:2e:a8:c9:49:22:18:73:32:fd:88: 42:99:a9:9d:d9:56:7c:65:80:6d:23:de:c0:97:6a:cd:71:dc: c4:aa:e9:a4:74:1a:1c:02:3c:f8:fc:df:6f:b9:28:55:f2:6b: 9f:37:82:15:14:b5:c8:68:3a:fd:ec:57:39:69:dc:32:4c:6f: de:64:81:5b:3e:ff:79:89:40:fa:7e:99:01:63:14:04:49:21: e1:f5:71:bd:13:9d:22:7d:59:c0:7d:26:18:45:78:a7:f1:a8: 6d:11:a0:33:5f:30:2a:78:c8:34:1f:e6:38:b6:24:42:80:66: c7:0c:97:88:00:57:8d:a2:1c:df:76:ac:a9:67:b7:58:e9:2b: 4a:fd:db:9c:a3:7c:14:7f:5d:3b:cb:e1:20:78:aa:f4:81:a3: 10:e7:ce:39:3c:a2:8e:7f:6d:26:02:34:37:f9:53:8c:ae:ec: f8:ca:91:e4:07:a0:8b:51:88:fd:26:62:e4:71:5f:10:5a:8e: f9:8a:4c:3c:a9:2a:bb:e7:5a:3e:35:64:63:d9:a5:17:3a:3e: fb:c9:5b:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwdXy9+qirLDCli6/C7GKhGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkNzJhNWY0YmY3NDY2YTYxNDYyYWNiODg4MDhjN2YwMzZk NGQ2ZDgwHhcNMjYwMjAyMDgwMTQzWhcNMjYwMjAzMDgwMTQzWjAzMTEwLwYDVQQD Eyg5NjVjN2NhYjlmZTZjYzU3ZWQzYmM5ODcyOGY3YzlmZDc3NDllM2I5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2pGjUX+yCwkp2cshWKsOpqk+AOl BzTEb7y8NzwZZFtoBsVr4kZKUDwhXoRX+F0vGyv1N/hTOkWs6wlGBuYTHzfEqQCS ZUpH2r3Nr7PqoRicNqq7d75mk14G0cUVnBzzMSw7u+GqEriNJUhpPsEdivMwO5u7 64XC7M2avTiPGe89tUDTaFcldGGfxdolNvWCIPwdHNLyEq3aUcNDOw3V/1XDak4I gEl/GcT/SEb2/MWNw6N3PkQS7nHeT0mMuee9YFDLGhI0G4Sqwe1YPrAkkNYNgVYw eHmPz2B6XJsVum1K2fWkhlFfLMxCFPzfu8fqJJ6jSvZonVB8CskeBJnp+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJZcfKuf5sxX7TvJhyj3yf13SeO5MB8GA1UdIwQY MBaAFD1ypfS/dGamFGKsuIgIx/A21NbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFhLbDlMOTBacVlVWXF5NGlBakg4RGJVMXRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9lODlhYTktYTNjYi00Zjc1LWE0NDIt ODBjMGYxNGVkYWUxLzEvUFhLbDlMOTBacVlVWXF5NGlBakg4RGJVMXRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9lODlhYTktYTNjYi00Zjc1LWE0NDItODBjMGYxNGVkYWUx LzEvUFhLbDlMOTBacVlVWXF5NGlBakg4RGJVMXRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhSWP/cRO ZPiaOiceyZ3pxyZvyB3e4XUhFqbRrje4OSXlLuIdv6yvHL7KSDMuqMlJIhhzMv2I QpmpndlWfGWAbSPewJdqzXHcxKrppHQaHAI8+Pzfb7koVfJrnzeCFRS1yGg6/exX OWncMkxv3mSBWz7/eYlA+n6ZAWMUBEkh4fVxvROdIn1ZwH0mGEV4p/GobRGgM18w KnjINB/mOLYkQoBmxwyXiABXjaIc33asqWe3WOkrSv3bnKN8FH9dO8vhIHiq9IGj EOfOOTyijn9tJgI0N/lTjK7s+MqR5Aegi1GI/SZi5HFfEFqO+YpMPKkqu+daPjVk Y9mlFzo++8lb+A== -----END CERTIFICATE-----Generated at Mon Feb 2 09:45:19 2026 by rpki-client