This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft File: Pq9YPXwbe09XMQE8iymLpQVGTlI.mft (raw, json) Hash identifier: 57k9UQTRs8cioODp1ipM9qXi7aIeEQickB7erOyiTyM= Subject key identifier: CA:0B:29:11:9F:77:BD:F4:27:28:92:4D:88:1B:B3:7A:0E:AA:E4:07 Authority key identifier: 3E:AF:58:3D:7C:1B:7B:4F:57:31:01:3C:8B:29:8B:A5:05:46:4E:52 Certificate issuer: /CN=3eaf583d7c1b7b4f5731013c8b298ba505464e52 Certificate serial: 019C427D0AA1DDF86D8B394A6DFFD2A34453 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft Manifest number: 1429 Signing time: Mon 09 Feb 2026 13:00:16 +0000 Manifest this update: Mon 09 Feb 2026 13:00:16 +0000 Manifest next update: Tue 10 Feb 2026 13:00:16 +0000 Files and hashes: 1: Pq9YPXwbe09XMQE8iymLpQVGTlI.crl (hash: rwmFw9sxUHwpnKTl6nWFVJ5s7B8hS9+xbhRCDBNhccY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:0a:a1:dd:f8:6d:8b:39:4a:6d:ff:d2:a3:44:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3eaf583d7c1b7b4f5731013c8b298ba505464e52 Validity Not Before: Feb 9 13:00:16 2026 GMT Not After : Feb 10 13:00:16 2026 GMT Subject: CN=ca0b29119f77bdf42728924d881bb37a0eaae407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:34:d5:e6:a8:2d:4e:4c:8a:65:e2:c5:15:a9: 93:26:d1:f8:55:37:ba:73:9f:58:d6:08:79:9e:21: 8c:95:66:4a:a2:86:10:35:93:c0:45:9a:02:af:cf: ad:c5:b3:6f:f2:60:5d:2d:00:f9:b9:3a:5c:c9:a1: d8:a3:f2:da:32:f9:11:1f:8f:51:62:fe:f3:94:fd: 6f:4e:32:71:03:75:1f:d8:b5:69:78:8c:da:e8:6f: 55:be:52:f3:ec:75:80:f4:19:21:a2:85:61:59:86: 96:f5:75:9a:4f:f5:fa:1f:70:71:27:3d:15:83:3e: f1:9f:5f:b2:16:0d:fd:bb:99:e0:68:c7:71:38:65: 29:63:80:b1:2e:4c:41:f6:49:90:3e:39:3b:e2:bc: dd:9b:3b:fb:58:48:d8:cd:0f:b5:3e:ef:66:71:5b: a3:b5:d9:9d:0f:cd:dc:b0:2b:a1:1b:47:07:ea:5e: 96:b9:38:ca:80:b0:aa:bd:2a:c1:b8:4c:31:1c:be: af:b6:25:dc:45:d4:75:ce:85:0d:41:87:99:2e:4d: d4:5d:b1:38:96:15:7d:8e:9f:7f:5b:88:89:80:c5: 56:70:d3:46:f4:0e:48:3d:90:8d:8b:e1:ef:fc:0c: 54:db:36:47:f5:53:e0:92:6b:e2:2d:c5:0f:d4:45: 25:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:0B:29:11:9F:77:BD:F4:27:28:92:4D:88:1B:B3:7A:0E:AA:E4:07 X509v3 Authority Key Identifier: keyid:3E:AF:58:3D:7C:1B:7B:4F:57:31:01:3C:8B:29:8B:A5:05:46:4E:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:63:f6:da:9f:3c:ee:59:3e:9f:67:e9:76:59:fc:32:39:26: 31:ed:59:03:7c:3f:00:62:60:de:4b:79:33:61:41:bd:2e:cc: 49:0c:d0:d4:17:4c:d3:1a:be:c5:e6:6a:8f:6b:01:5c:95:af: 9e:1f:83:11:8f:b8:94:e0:0b:c8:6e:ea:e0:2a:0f:db:e4:a3: 7b:ff:a5:ce:37:d2:3f:4a:dc:c1:84:cd:60:a1:c4:39:0e:0d: cb:87:a5:fe:b0:ed:a5:fe:d3:4f:dd:34:1d:8e:a1:54:23:18: 77:77:8f:34:59:86:77:2b:0c:3f:49:a7:9b:e7:bc:01:74:7c: ac:aa:68:eb:dd:2f:85:35:fb:78:a4:e0:47:ff:2b:64:31:6e: 83:39:cb:d2:02:c1:44:7a:fc:3b:bb:57:aa:d2:12:35:b6:0f: c9:9a:e9:b5:58:f3:7a:32:01:05:55:26:24:a4:63:a2:2f:2e: 3c:30:e5:c1:0f:76:19:fd:9a:71:f7:6b:a8:8f:93:21:6d:8c: dd:1a:e8:ce:81:75:db:3a:76:e3:a8:ca:e7:16:7b:29:44:32: 8d:a4:bc:73:91:8e:20:26:71:c3:60:42:6d:07:b0:3c:75:41: ca:87:31:39:d9:68:ff:b2:22:fb:7c:8c:f7:3c:68:a1:43:ab: 9a:c3:44:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfQqh3fhtizlKbf/So0RTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlYWY1ODNkN2MxYjdiNGY1NzMxMDEzYzhiMjk4YmE1MDU0 NjRlNTIwHhcNMjYwMjA5MTMwMDE2WhcNMjYwMjEwMTMwMDE2WjAzMTEwLwYDVQQD EyhjYTBiMjkxMTlmNzdiZGY0MjcyODkyNGQ4ODFiYjM3YTBlYWFlNDA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDTV5qgtTkyKZeLFFamTJtH4VTe6 c59Y1gh5niGMlWZKooYQNZPARZoCr8+txbNv8mBdLQD5uTpcyaHYo/LaMvkRH49R Yv7zlP1vTjJxA3Uf2LVpeIza6G9VvlLz7HWA9BkhooVhWYaW9XWaT/X6H3BxJz0V gz7xn1+yFg39u5ngaMdxOGUpY4CxLkxB9kmQPjk74rzdmzv7WEjYzQ+1Pu9mcVuj tdmdD83csCuhG0cH6l6WuTjKgLCqvSrBuEwxHL6vtiXcRdR1zoUNQYeZLk3UXbE4 lhV9jp9/W4iJgMVWcNNG9A5IPZCNi+Hv/AxU2zZH9VPgkmviLcUP1EUl0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMoLKRGfd730JyiSTYgbs3oOquQHMB8GA1UdIwQY MBaAFD6vWD18G3tPVzEBPIspi6UFRk5SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHE5WVBYd2JlMDlYTVFFOGl5bUxwUVZHVGxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9kOThlODYtZTQxYy00NWUxLWJiZTct OGUxOWM0ZGE4Nzk4LzEvUHE5WVBYd2JlMDlYTVFFOGl5bUxwUVZHVGxJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9kOThlODYtZTQxYy00NWUxLWJiZTctOGUxOWM0ZGE4Nzk4 LzEvUHE5WVBYd2JlMDlYTVFFOGl5bUxwUVZHVGxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApWP22p88 7lk+n2fpdln8MjkmMe1ZA3w/AGJg3kt5M2FBvS7MSQzQ1BdM0xq+xeZqj2sBXJWv nh+DEY+4lOALyG7q4CoP2+Sje/+lzjfSP0rcwYTNYKHEOQ4Ny4el/rDtpf7TT900 HY6hVCMYd3ePNFmGdysMP0mnm+e8AXR8rKpo690vhTX7eKTgR/8rZDFugznL0gLB RHr8O7tXqtISNbYPyZrptVjzejIBBVUmJKRjoi8uPDDlwQ92Gf2acfdrqI+TIW2M 3RrozoF12zp246jK5xZ7KUQyjaS8c5GOICZxw2BCbQewPHVByocxOdlo/7Ii+3yM 9zxooUOrmsNElw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:54 2026 by rpki-client