This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft File: PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft (raw, json) Hash identifier: 4+/MTjnzBkBrPbwWPJQ3TNQzTbqxO+2eN3QS6cwo6Xg= Subject key identifier: A9:31:F2:8F:D6:D5:6D:16:0B:81:BE:9D:83:6A:EB:D0:B6:BC:41:27 Authority key identifier: 3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08 Certificate issuer: /CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408 Certificate serial: 019C41A225D32C2DAAE605E2DE3028F9FAA2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft Manifest number: 1096 Signing time: Mon 09 Feb 2026 09:01:11 +0000 Manifest this update: Mon 09 Feb 2026 09:01:11 +0000 Manifest next update: Tue 10 Feb 2026 09:01:11 +0000 Files and hashes: 1: 4AdOdTjOjrDpwgtyy4ktcWWGP6A.roa (hash: wU5WQoYZymnHyBEb3RrJmAMH4p714dRTeA6U67NEuks=) 2: PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl (hash: PC4sKO3lm23OQwaNNf4l8xoGVyuXfFPyB7LtsV/Ic90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:25:d3:2c:2d:aa:e6:05:e2:de:30:28:f9:fa:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408 Validity Not Before: Feb 9 09:01:11 2026 GMT Not After : Feb 10 09:01:11 2026 GMT Subject: CN=a931f28fd6d56d160b81be9d836aebd0b6bc4127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:eb:57:28:01:cd:14:53:28:dc:72:fc:cf:86: f3:b8:d8:74:bd:e9:f3:98:ff:16:5b:c9:eb:f1:46: d1:52:05:11:dd:e0:9c:5b:9a:1d:c4:a0:24:07:58: 2c:b1:a7:d6:57:4b:0f:81:17:03:48:cf:03:c8:99: e3:16:95:48:f8:fe:18:14:92:74:8f:5c:be:e1:ee: 87:1b:37:e6:ff:55:f9:ea:11:4a:1e:24:5c:4d:50: 50:37:45:b5:32:34:05:b3:d4:e5:ad:ce:00:d4:c0: 1b:84:77:9f:d8:80:a7:34:9e:13:a8:aa:b2:f4:b7: b6:71:e9:a1:f7:bc:83:18:3b:37:8a:98:4b:81:da: fa:d1:c8:b4:3f:55:2f:ba:7f:2a:a1:97:af:0d:f2: 56:e7:68:c2:da:98:82:ee:29:7a:f1:d3:9e:75:8e: 1b:2c:58:03:42:4f:5f:dd:b4:1b:40:09:64:ce:40: 9b:b9:cc:e9:51:fb:87:13:26:2e:45:23:a3:df:1a: 10:47:ec:40:bf:d1:da:17:c6:90:5d:04:44:6e:10: 89:09:77:29:b0:36:12:b1:de:8d:2b:39:ef:3d:69: a7:f7:7d:8e:ac:1d:1a:07:e3:3d:77:09:d5:d1:0c: d2:8c:ee:06:65:47:85:00:dd:ef:eb:f4:d9:4a:01: 45:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:31:F2:8F:D6:D5:6D:16:0B:81:BE:9D:83:6A:EB:D0:B6:BC:41:27 X509v3 Authority Key Identifier: keyid:3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:7d:15:6d:34:26:ea:ad:cb:f5:d2:6a:a8:44:92:33:51:1c: 48:65:f1:0a:e8:16:67:a6:71:24:5e:ef:b2:05:b9:73:47:ca: 27:6e:66:81:07:18:77:a3:88:c3:27:92:bf:09:21:46:93:ab: bc:b2:c3:7b:33:ea:05:16:da:9f:d6:f0:e7:67:66:e3:0a:d5: 1f:62:e7:61:f0:fe:9c:e7:f4:0b:80:8e:70:2c:42:50:64:0a: 52:46:d2:3d:64:18:94:d1:40:7d:bc:2d:3d:89:a0:91:08:51: 98:ca:a7:cc:fb:29:75:5a:2f:2e:39:b1:74:fa:79:52:84:5b: 7d:ac:bd:72:fa:01:4d:ba:84:74:d9:4a:a6:9d:ce:48:69:45: 8b:cc:4e:03:38:c4:6c:bf:ff:43:ff:d2:92:fc:bf:3c:d5:c3: d6:28:bf:58:7f:76:78:33:0f:78:e1:f0:8d:bd:52:05:f0:d5: cf:e4:1a:99:a5:65:97:d0:d8:5c:f6:ca:e3:cb:6a:5b:76:66: c6:6b:e9:42:e5:52:b6:6a:48:88:53:55:0b:2b:8f:6d:14:b8: 40:4e:e1:02:e6:4a:e3:7a:ba:bc:a2:79:33:44:87:d6:ed:88: 14:6e:53:ed:12:a4:79:93:81:5e:06:aa:be:76:ab:79:b1:76: 5f:3e:d5:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoiXTLC2q5gXi3jAo+fqiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkNzY3ZDVmZTdlZjNmMjI4YmRkYmRlNWEwZTVjMTgwMDZm NzU0MDgwHhcNMjYwMjA5MDkwMTExWhcNMjYwMjEwMDkwMTExWjAzMTEwLwYDVQQD EyhhOTMxZjI4ZmQ2ZDU2ZDE2MGI4MWJlOWQ4MzZhZWJkMGI2YmM0MTI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuutXKAHNFFMo3HL8z4bzuNh0venz mP8WW8nr8UbRUgUR3eCcW5odxKAkB1gssafWV0sPgRcDSM8DyJnjFpVI+P4YFJJ0 j1y+4e6HGzfm/1X56hFKHiRcTVBQN0W1MjQFs9Tlrc4A1MAbhHef2ICnNJ4TqKqy 9Le2cemh97yDGDs3iphLgdr60ci0P1Uvun8qoZevDfJW52jC2piC7il68dOedY4b LFgDQk9f3bQbQAlkzkCbuczpUfuHEyYuRSOj3xoQR+xAv9HaF8aQXQREbhCJCXcp sDYSsd6NKznvPWmn932OrB0aB+M9dwnV0QzSjO4GZUeFAN3v6/TZSgFFLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKkx8o/W1W0WC4G+nYNq69C2vEEnMB8GA1UdIwQY MBaAFD12fV/n7z8ii9295aDlwYAG91QIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFhaOVgtZnZQeUtMM2IzbG9PWEJnQWIzVkFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8wNzQ5ODItZGIwMS00NzQ3LTlkMTIt ZmY3MmU0ZmE5M2E1LzEvUFhaOVgtZnZQeUtMM2IzbG9PWEJnQWIzVkFnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS8wNzQ5ODItZGIwMS00NzQ3LTlkMTItZmY3MmU0ZmE5M2E1 LzEvUFhaOVgtZnZQeUtMM2IzbG9PWEJnQWIzVkFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP30VbTQm 6q3L9dJqqESSM1EcSGXxCugWZ6ZxJF7vsgW5c0fKJ25mgQcYd6OIwyeSvwkhRpOr vLLDezPqBRban9bw52dm4wrVH2LnYfD+nOf0C4COcCxCUGQKUkbSPWQYlNFAfbwt PYmgkQhRmMqnzPspdVovLjmxdPp5UoRbfay9cvoBTbqEdNlKpp3OSGlFi8xOAzjE bL//Q//Skvy/PNXD1ii/WH92eDMPeOHwjb1SBfDVz+QamaVll9DYXPbK48tqW3Zm xmvpQuVStmpIiFNVCyuPbRS4QE7hAuZK43q6vKJ5M0SH1u2IFG5T7RKkeZOBXgaq vnarebF2Xz7Vdw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:50 2026 by rpki-client