This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft File: PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft (raw, json) Hash identifier: 8kD2ThJAhbWLatd2+OM3cDhycgmLf8KEL1PwRwH0IgU= Subject key identifier: 56:AD:E2:00:F6:8C:F5:E9:D2:15:32:29:23:95:1D:35:8C:4B:C8:01 Authority key identifier: 3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8 Certificate issuer: /CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8 Certificate serial: 019C1B6FCA79FD98A26A28DD761F6A7A19DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft Manifest number: 17F8 Signing time: Sun 01 Feb 2026 23:00:36 +0000 Manifest this update: Sun 01 Feb 2026 23:00:36 +0000 Manifest next update: Mon 02 Feb 2026 23:00:36 +0000 Files and hashes: 1: PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl (hash: R4TBNvYG2Myrfh1WYCzdm/klrHEmCk53u/unZb8YbEI=) 2: ZyRogeaonWCDX6YHI-BEV3oTgbo.asa (hash: UhcSgiJzCKNgPVuyaZNIhdxTbMyFoRx3xZ1V9omPKtY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1b:6f:ca:79:fd:98:a2:6a:28:dd:76:1f:6a:7a:19:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8 Validity Not Before: Feb 1 23:00:36 2026 GMT Not After : Feb 2 23:00:36 2026 GMT Subject: CN=56ade200f68cf5e9d215322923951d358c4bc801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:98:dc:b2:de:90:52:3a:98:cc:f9:d1:bb:84: 4d:db:c1:fd:1d:d7:a9:94:01:df:37:13:93:f5:8a: 46:ab:49:91:82:7c:62:b1:fe:33:13:6a:06:9c:73: a0:ad:b8:34:19:01:5c:6c:00:ce:da:c1:5c:02:7b: 46:05:7e:5d:54:18:7d:5a:e9:1e:60:22:79:dc:42: e5:31:f6:de:2a:8f:3f:29:d8:b5:90:15:91:c0:9a: 64:6d:b0:68:0f:df:da:e9:de:81:bb:ff:fe:f0:5f: 4a:f2:22:e8:30:21:62:f1:f1:0e:ba:41:28:4c:59: 20:28:d7:83:4c:34:69:ed:1f:02:62:ff:3b:19:38: 62:d9:a8:8b:bb:5a:7b:55:df:da:35:4a:9c:d6:fc: 6e:00:5d:cb:68:ba:bf:93:bf:99:cb:f6:25:f7:7d: 4b:b7:85:75:5b:c7:46:c0:4e:24:89:95:ac:86:f4: 6c:cb:3a:21:fc:d7:66:79:5e:c3:f6:66:e2:e4:e5: 4c:a8:4d:7b:f4:02:9e:f0:1a:96:30:2c:2f:03:21: f9:b0:03:03:aa:5c:c2:e1:47:0a:fa:31:d0:be:88: c4:4a:51:36:01:a0:a5:ca:5d:3e:d4:4c:19:60:94: 45:b8:c6:f9:f1:70:ce:ee:1a:a8:e5:9f:3e:bf:66: 7f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:AD:E2:00:F6:8C:F5:E9:D2:15:32:29:23:95:1D:35:8C:4B:C8:01 X509v3 Authority Key Identifier: keyid:3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:a6:d3:17:53:82:48:b3:56:36:2b:5b:59:98:3a:4f:1a:6c: a5:ec:75:31:84:6e:5e:48:2e:24:e4:2b:72:64:ed:52:65:25: ce:3f:aa:a9:05:88:dd:39:24:57:41:45:7d:57:a0:19:a0:04: b3:b3:4c:1c:a2:e1:0f:fd:aa:55:ef:7a:fe:04:e1:25:40:47: 13:82:90:77:b8:ed:d7:46:0d:d5:9e:58:f4:08:23:d4:7f:30: 88:64:63:2b:dd:8c:f4:a2:57:b7:09:cf:24:81:f0:12:50:a4: c5:13:6a:8a:b4:f4:d9:24:21:db:47:5e:b5:c4:51:26:6a:e7: f7:79:60:99:4e:b7:b4:54:1a:c9:cc:1b:d4:68:dd:16:b1:3c: 43:d7:a3:50:5d:78:97:b6:66:7d:a0:72:3b:39:ec:4f:59:46: c2:d7:90:61:26:1d:9e:41:71:15:9c:f0:76:f2:4d:b2:9b:ce: 52:38:93:99:e5:15:2f:28:ed:47:46:c2:3e:4e:61:5b:9d:9a: 75:c5:c1:8a:f5:37:8a:5f:1b:1b:84:97:2c:06:6d:cf:3f:b7: 9a:a7:93:0c:10:6f:cd:2e:bc:50:cb:0b:42:40:1c:51:55:39: af:4d:6e:40:23:81:f0:aa:6c:a0:a5:b5:51:48:52:10:a8:4d: 0c:97:27:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwbb8p5/Ziiaijddh9qehneMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkNzJhNWY0YmY3NDY2YTYxNDYyYWNiODg4MDhjN2YwMzZk NGQ2ZDgwHhcNMjYwMjAxMjMwMDM2WhcNMjYwMjAyMjMwMDM2WjAzMTEwLwYDVQQD Eyg1NmFkZTIwMGY2OGNmNWU5ZDIxNTMyMjkyMzk1MWQzNThjNGJjODAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZjcst6QUjqYzPnRu4RN28H9Hdep lAHfNxOT9YpGq0mRgnxisf4zE2oGnHOgrbg0GQFcbADO2sFcAntGBX5dVBh9Wuke YCJ53ELlMfbeKo8/Kdi1kBWRwJpkbbBoD9/a6d6Bu//+8F9K8iLoMCFi8fEOukEo TFkgKNeDTDRp7R8CYv87GThi2aiLu1p7Vd/aNUqc1vxuAF3LaLq/k7+Zy/Yl931L t4V1W8dGwE4kiZWshvRsyzoh/NdmeV7D9mbi5OVMqE179AKe8BqWMCwvAyH5sAMD qlzC4UcK+jHQvojESlE2AaClyl0+1EwZYJRFuMb58XDO7hqo5Z8+v2Z/iwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFat4gD2jPXp0hUyKSOVHTWMS8gBMB8GA1UdIwQY MBaAFD1ypfS/dGamFGKsuIgIx/A21NbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFhLbDlMOTBacVlVWXF5NGlBakg4RGJVMXRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9lODlhYTktYTNjYi00Zjc1LWE0NDIt ODBjMGYxNGVkYWUxLzEvUFhLbDlMOTBacVlVWXF5NGlBakg4RGJVMXRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9lODlhYTktYTNjYi00Zjc1LWE0NDItODBjMGYxNGVkYWUx LzEvUFhLbDlMOTBacVlVWXF5NGlBakg4RGJVMXRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc6bTF1OC SLNWNitbWZg6Txpspex1MYRuXkguJOQrcmTtUmUlzj+qqQWI3TkkV0FFfVegGaAE s7NMHKLhD/2qVe96/gThJUBHE4KQd7jt10YN1Z5Y9Agj1H8wiGRjK92M9KJXtwnP JIHwElCkxRNqirT02SQh20detcRRJmrn93lgmU63tFQaycwb1GjdFrE8Q9ejUF14 l7ZmfaByOznsT1lGwteQYSYdnkFxFZzwdvJNspvOUjiTmeUVLyjtR0bCPk5hW52a dcXBivU3il8bG4SXLAZtzz+3mqeTDBBvzS68UMsLQkAcUVU5r01uQCOB8KpsoKW1 UUhSEKhNDJcnog== -----END CERTIFICATE-----Generated at Mon Feb 2 08:17:12 2026 by rpki-client