This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft File: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft (raw, json) Hash identifier: 5CcwmxrNqAzUIIJvnbHSJLHUxRQspFj44yePMYD/8Uw= Subject key identifier: E2:E4:16:34:A2:96:FA:70:44:E8:06:36:48:BA:A5:11:62:55:93:ED Authority key identifier: A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0 Certificate issuer: /CN=a408fc9246042751110d2ec5065d0c47d1d43cd0 Certificate serial: 019C41A2503FD0CA4A84CF2EDA2F7D242EFF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft Manifest number: 0D92 Signing time: Mon 09 Feb 2026 09:01:22 +0000 Manifest this update: Mon 09 Feb 2026 09:01:22 +0000 Manifest next update: Tue 10 Feb 2026 09:01:22 +0000 Files and hashes: 1: Z8sIth2fuLtbZU5YZYofujl3N3Q.roa (hash: OuZ+DZI7vPFF2f+5cYLFAwbQ08o0C2E+Uzidod1oA7I=) 2: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl (hash: pwCia6rhmlioQAomINrGNnMhLpnPph7ovL4qC0ZcHxg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:50:3f:d0:ca:4a:84:cf:2e:da:2f:7d:24:2e:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a408fc9246042751110d2ec5065d0c47d1d43cd0 Validity Not Before: Feb 9 09:01:22 2026 GMT Not After : Feb 10 09:01:22 2026 GMT Subject: CN=e2e41634a296fa7044e8063648baa511625593ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bb:95:8b:9d:4c:31:bc:01:32:de:d7:5a:98: bc:e6:e6:a4:90:78:2a:27:c7:ed:2d:34:5b:77:61: ef:13:29:b4:28:9d:25:7f:5a:39:8b:4a:de:82:d3: ad:35:17:92:9f:1d:dc:ad:d1:14:73:54:16:2a:00: 50:a2:b8:4b:56:30:7f:df:69:33:1c:cb:a4:31:0b: 27:00:f9:29:04:95:ff:2c:53:25:93:ad:71:d3:14: aa:d8:8e:b9:42:3c:4b:8d:d2:e1:6a:03:59:e9:22: 8f:2e:81:6f:3e:f0:d2:d6:73:54:7e:b4:17:04:e1: 0f:54:42:96:11:32:e5:90:d1:5d:b2:16:70:ab:ed: f9:c4:8c:41:a8:c1:d7:20:25:33:4e:ee:e8:4a:c6: cc:84:1b:df:c7:55:04:c6:81:a2:b9:15:23:1a:03: 6c:06:fe:3e:6a:f4:d7:fb:b1:27:db:d4:65:9a:43: c4:0e:7d:6a:08:bd:17:91:14:73:5e:41:3e:39:a8: f8:84:79:78:78:55:30:72:1d:98:06:03:a9:ea:03: 2e:15:bb:25:89:86:44:de:15:3e:30:38:6e:09:d5: 42:3a:ba:14:59:43:8b:3b:64:7f:33:43:8d:58:f7: d8:77:a7:1d:b1:da:68:04:ed:da:f8:f0:19:ee:52: eb:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E4:16:34:A2:96:FA:70:44:E8:06:36:48:BA:A5:11:62:55:93:ED X509v3 Authority Key Identifier: keyid:A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:1f:bb:3b:56:f9:96:36:ea:5d:65:55:d7:b5:9a:2b:30:35: a8:7b:c8:49:72:59:1d:33:c6:fc:a5:0f:e6:50:ae:e8:e9:78: e5:36:c6:1b:2d:76:48:20:b0:a2:79:9c:4f:05:51:c4:4b:d3: a1:7a:ea:de:64:68:53:5a:39:18:dd:16:c5:35:f8:da:fe:a3: c5:bd:c4:00:be:80:ad:d4:62:29:f1:c5:b6:e7:a3:32:fd:d3: 81:54:d2:be:4b:67:3d:73:78:86:65:a3:a7:52:71:48:04:a6: f1:63:90:66:70:68:c5:0d:bd:ac:4b:4a:33:3d:ef:0a:0f:5d: f3:5d:b5:d4:04:ec:6e:56:20:58:82:e5:83:9c:68:c5:59:f3: ef:b6:33:1e:ab:29:69:8b:e6:32:ff:fe:6f:1b:81:4e:8e:7a: 11:79:66:8b:7b:33:48:fd:e6:e9:f0:ff:26:90:26:fa:53:c3: 25:08:2f:84:42:97:50:b3:d7:c3:03:cf:c5:35:be:49:75:0c: d6:f3:50:45:83:89:fa:37:60:3f:5e:65:41:31:da:2a:03:ff: 79:b5:c7:da:9f:fb:c9:43:3d:e4:9a:ed:89:23:be:09:63:f7: 5b:a5:17:37:40:5c:b0:fe:b6:22:86:1d:da:c9:84:e1:f8:b3: 53:5d:92:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBolA/0MpKhM8u2i99JC7/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0MDhmYzkyNDYwNDI3NTExMTBkMmVjNTA2NWQwYzQ3ZDFk NDNjZDAwHhcNMjYwMjA5MDkwMTIyWhcNMjYwMjEwMDkwMTIyWjAzMTEwLwYDVQQD EyhlMmU0MTYzNGEyOTZmYTcwNDRlODA2MzY0OGJhYTUxMTYyNTU5M2VkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmLuVi51MMbwBMt7XWpi85uakkHgq J8ftLTRbd2HvEym0KJ0lf1o5i0regtOtNReSnx3crdEUc1QWKgBQorhLVjB/32kz HMukMQsnAPkpBJX/LFMlk61x0xSq2I65QjxLjdLhagNZ6SKPLoFvPvDS1nNUfrQX BOEPVEKWETLlkNFdshZwq+35xIxBqMHXICUzTu7oSsbMhBvfx1UExoGiuRUjGgNs Bv4+avTX+7En29RlmkPEDn1qCL0XkRRzXkE+Oaj4hHl4eFUwch2YBgOp6gMuFbsl iYZE3hU+MDhuCdVCOroUWUOLO2R/M0ONWPfYd6cdsdpoBO3a+PAZ7lLrjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOLkFjSilvpwROgGNki6pRFiVZPtMB8GA1UdIwQY MBaAFKQI/JJGBCdREQ0uxQZdDEfR1DzQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcEFqOGtrWUVKMUVSRFM3RkJsME1SOUhVUE5BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9hNTk3YzUtM2VjNC00YjQ2LThjN2It ZDkyMjQ4YWFiZTJkLzEvcEFqOGtrWUVKMUVSRFM3RkJsME1SOUhVUE5BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9hNTk3YzUtM2VjNC00YjQ2LThjN2ItZDkyMjQ4YWFiZTJk LzEvcEFqOGtrWUVKMUVSRFM3RkJsME1SOUhVUE5BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArB+7O1b5 ljbqXWVV17WaKzA1qHvISXJZHTPG/KUP5lCu6Ol45TbGGy12SCCwonmcTwVRxEvT oXrq3mRoU1o5GN0WxTX42v6jxb3EAL6ArdRiKfHFtuejMv3TgVTSvktnPXN4hmWj p1JxSASm8WOQZnBoxQ29rEtKMz3vCg9d81211ATsblYgWILlg5xoxVnz77YzHqsp aYvmMv/+bxuBTo56EXlmi3szSP3m6fD/JpAm+lPDJQgvhEKXULPXwwPPxTW+SXUM 1vNQRYOJ+jdgP15lQTHaKgP/ebXH2p/7yUM95JrtiSO+CWP3W6UXN0BcsP62IoYd 2smE4fizU12ShA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:48 2026 by rpki-client