This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft File: PS60FH7nv8a6cvwDSUU0mPAA5YE.mft (raw, json) Hash identifier: AuyzGO33848nT3yWr0unIq4tS12X2kpaKwqR8k2bjYk= Subject key identifier: FD:FE:4B:84:14:22:03:3A:4A:EF:0F:C9:7B:40:83:FE:E1:63:1B:0E Authority key identifier: 3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81 Certificate issuer: /CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581 Certificate serial: 019C2FD2698B9ED9E6A8C4867E5B12F3729E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft Manifest number: 04FA Signing time: Thu 05 Feb 2026 22:00:44 +0000 Manifest this update: Thu 05 Feb 2026 22:00:44 +0000 Manifest next update: Fri 06 Feb 2026 22:00:44 +0000 Files and hashes: 1: PS60FH7nv8a6cvwDSUU0mPAA5YE.crl (hash: 158RtC/NqakQmotJJsyqT2v0P/A/5huizUMD2nIqTPc=) 2: ycAuPmO_sLVvMbeFsggXQjZ-bEc.roa (hash: IOeAqOcXQYE9MbdToOk7llMBN5GYLYRtb8t8JnGE6Kk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 21:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:2f:d2:69:8b:9e:d9:e6:a8:c4:86:7e:5b:12:f3:72:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581 Validity Not Before: Feb 5 22:00:44 2026 GMT Not After : Feb 6 22:00:44 2026 GMT Subject: CN=fdfe4b841422033a4aef0fc97b4083fee1631b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:90:9c:bd:6a:97:0b:aa:5b:fe:31:f3:80:89: b7:61:68:63:7e:fa:0a:8e:6b:4e:11:0f:64:1e:23: 2c:46:69:36:9c:6c:79:02:bc:e1:5b:a0:64:37:5d: 21:e3:87:15:e3:a6:8a:b7:25:4f:35:33:00:de:6a: 23:9e:81:ad:c7:95:a2:56:68:56:5a:d0:06:d8:9f: a2:ce:52:aa:d3:25:5b:f1:27:d0:41:19:9a:42:b5: d7:3b:9e:46:9e:8c:82:9e:48:d3:7f:ae:10:71:92: 83:2f:d4:81:16:e1:ca:6a:57:20:2d:e6:d3:ab:20: 2b:f0:3a:82:94:02:a0:a4:fd:1e:44:73:4e:81:fd: 36:ab:48:63:80:5b:b6:be:09:91:c0:5b:36:a4:b3: 90:0e:4f:20:2b:6c:2d:c5:ea:ab:db:43:69:b8:63: 34:86:f9:5a:ce:da:d8:3f:96:11:2a:44:3f:f2:7c: 6d:2f:12:ed:ae:15:74:db:cd:ad:5b:b9:a1:8f:a2: 82:7f:44:72:e5:a7:e7:ee:a8:3a:50:8a:96:06:66: ac:4b:96:a5:88:0a:58:db:7c:92:2c:31:ba:1b:df: 8b:42:eb:b7:df:8a:14:5a:f1:22:79:51:26:c3:de: a3:b2:40:07:23:7f:ff:fc:40:cd:3c:f8:02:db:73: d4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:FE:4B:84:14:22:03:3A:4A:EF:0F:C9:7B:40:83:FE:E1:63:1B:0E X509v3 Authority Key Identifier: keyid:3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:3d:8f:e8:e7:ab:eb:52:4a:23:53:65:7b:8d:0b:fd:85:af: dc:66:fb:37:21:db:0c:2f:3a:df:ba:af:9e:f7:af:02:28:f2: da:27:77:e1:9b:44:be:61:6a:d3:eb:4f:bc:79:12:b4:c6:01: e5:ce:07:91:91:64:46:db:ca:2b:dd:e6:20:a4:29:a3:22:77: 7f:18:dc:75:ad:40:48:cf:66:1b:af:0f:82:13:d8:d9:ce:27: 69:22:04:1e:b8:d8:c8:ea:6f:a8:7f:8a:1b:d9:57:15:e0:d8: 49:db:3e:f4:d7:7d:b4:b7:ec:66:eb:94:d2:13:89:74:1e:90: 84:5c:a8:e4:85:66:8d:c8:b4:56:2d:e1:11:d3:cc:95:da:df: 7f:e4:1f:32:3d:bf:02:d2:6e:24:b7:42:71:1f:96:7b:41:b2: 04:45:4a:77:74:0e:5b:c1:a4:e0:08:a8:d6:a5:d6:ee:fa:a2: 30:ac:df:e4:ee:4c:6e:61:97:d7:25:f8:50:65:c9:e9:5a:60: fe:94:cc:89:49:13:38:b0:b1:90:b6:bd:ef:84:0a:db:84:bf: 2a:0e:12:02:59:e8:2b:2b:c9:31:58:4b:47:a8:45:2a:fd:f4: 53:d4:56:89:6f:c8:e6:15:83:c4:dc:e7:94:a2:8b:4c:49:85: 09:bf:6c:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwv0mmLntnmqMSGflsS83KeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkMmViNDE0N2VlN2JmYzZiYTcyZmMwMzQ5NDUzNDk4ZjAw MGU1ODEwHhcNMjYwMjA1MjIwMDQ0WhcNMjYwMjA2MjIwMDQ0WjAzMTEwLwYDVQQD EyhmZGZlNGI4NDE0MjIwMzNhNGFlZjBmYzk3YjQwODNmZWUxNjMxYjBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZCcvWqXC6pb/jHzgIm3YWhjfvoK jmtOEQ9kHiMsRmk2nGx5ArzhW6BkN10h44cV46aKtyVPNTMA3mojnoGtx5WiVmhW WtAG2J+izlKq0yVb8SfQQRmaQrXXO55GnoyCnkjTf64QcZKDL9SBFuHKalcgLebT qyAr8DqClAKgpP0eRHNOgf02q0hjgFu2vgmRwFs2pLOQDk8gK2wtxeqr20NpuGM0 hvlaztrYP5YRKkQ/8nxtLxLtrhV0282tW7mhj6KCf0Ry5afn7qg6UIqWBmasS5al iApY23ySLDG6G9+LQuu334oUWvEieVEmw96jskAHI3///EDNPPgC23PU+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP3+S4QUIgM6Su8PyXtAg/7hYxsOMB8GA1UdIwQY MBaAFD0utBR+57/GunL8A0lFNJjwAOWBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFM2MEZIN252OGE2Y3Z3RFNVVTBtUEFBNVlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9iOGY1M2YtNDY3Zi00NWNmLTgzMDYt NDI5NTFjMmNhNzM4LzEvUFM2MEZIN252OGE2Y3Z3RFNVVTBtUEFBNVlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9iOGY1M2YtNDY3Zi00NWNmLTgzMDYtNDI5NTFjMmNhNzM4 LzEvUFM2MEZIN252OGE2Y3Z3RFNVVTBtUEFBNVlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkz2P6Oer 61JKI1Nle40L/YWv3Gb7NyHbDC8637qvnvevAijy2id34ZtEvmFq0+tPvHkStMYB 5c4HkZFkRtvKK93mIKQpoyJ3fxjcda1ASM9mG68PghPY2c4naSIEHrjYyOpvqH+K G9lXFeDYSds+9Nd9tLfsZuuU0hOJdB6QhFyo5IVmjci0Vi3hEdPMldrff+QfMj2/ AtJuJLdCcR+We0GyBEVKd3QOW8Gk4Aio1qXW7vqiMKzf5O5MbmGX1yX4UGXJ6Vpg /pTMiUkTOLCxkLa974QK24S/Kg4SAlnoKyvJMVhLR6hFKv30U9RWiW/I5hWDxNzn lKKLTEmFCb9s/Q== -----END CERTIFICATE-----Generated at Fri Feb 6 00:34:06 2026 by rpki-client