This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft File: PXD-HXX32nbS49w0T7HwsLad4AE.mft (raw, json) Hash identifier: M4H+z5ezLMvk3Ced7nWt2tot+PD3GCLgNygzb5nbxNY= Subject key identifier: B3:56:B9:50:11:BA:4C:00:96:AA:0B:15:25:86:3C:41:B2:57:44:8D Authority key identifier: 3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01 Certificate issuer: /CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001 Certificate serial: 019C427D41F4EBE569B94EB1078C42C8E839 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft Manifest number: 177E Signing time: Mon 09 Feb 2026 13:00:30 +0000 Manifest this update: Mon 09 Feb 2026 13:00:30 +0000 Manifest next update: Tue 10 Feb 2026 13:00:30 +0000 Files and hashes: 1: PXD-HXX32nbS49w0T7HwsLad4AE.crl (hash: OPsNB5bfW9s8+Ywprb7wMYJyCwdmzX7uoDL/NfjFT10=) 2: uJd7RZN3ZAsoJQnJhc2M-mLjChI.roa (hash: /6Alyhe3uGVuPv9iCIcAX55KfuQ8Pqr9aqLM0Vwt394=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:41:f4:eb:e5:69:b9:4e:b1:07:8c:42:c8:e8:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001 Validity Not Before: Feb 9 13:00:30 2026 GMT Not After : Feb 10 13:00:30 2026 GMT Subject: CN=b356b95011ba4c0096aa0b1525863c41b257448d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:40:62:da:0a:a4:74:1a:a4:92:29:f0:13:1b: cb:a7:6f:69:bc:15:63:45:15:e3:0b:53:1f:47:2e: 78:6a:ac:ea:45:1a:17:eb:b5:44:0d:d6:7d:a2:f7: e6:b8:5c:e9:b4:ac:33:43:82:6c:ed:0c:c1:13:ba: 3c:22:15:52:5f:00:8f:32:5c:39:a7:5a:d0:1f:35: d5:ca:87:87:44:c8:5d:26:51:13:58:4c:ad:9f:da: 65:f1:f8:bd:82:fa:f2:27:52:cb:0e:6e:ef:c8:d7: 38:de:e7:c5:65:82:5c:b8:f4:99:f9:4a:0e:f4:69: 4b:5d:e3:6f:12:fc:32:5c:93:4c:ad:40:27:90:5b: 41:14:80:93:77:9b:2e:20:6a:d2:22:6f:89:fd:6d: e1:0b:e6:59:b4:cf:5a:8a:f8:53:28:b3:5f:a2:48: 6c:1d:23:93:c8:94:cc:aa:fc:23:8c:93:c6:0d:8e: 91:18:9f:d4:2a:d4:18:97:b3:cf:35:34:fe:19:bd: a8:3c:73:a4:1c:4d:46:9e:9c:96:a6:64:45:f8:a1: 83:97:be:bd:77:10:08:9e:7b:53:f1:ff:2f:17:dd: 94:5a:d4:2e:20:5a:d1:43:75:24:85:ae:53:74:14: 82:ae:b6:00:92:a5:7f:a4:17:d3:49:95:05:ee:a3: 90:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:56:B9:50:11:BA:4C:00:96:AA:0B:15:25:86:3C:41:B2:57:44:8D X509v3 Authority Key Identifier: keyid:3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:21:5b:0c:54:cf:02:59:d1:fc:99:3a:e3:5d:cf:d3:7b:e2: 58:d6:4f:78:d3:d8:92:9d:54:16:94:c0:e5:53:07:1a:17:2e: 15:24:53:00:6e:a0:32:f1:df:1a:30:db:b7:72:c4:1a:10:0d: b2:6f:19:13:d3:b6:9a:e8:2d:db:85:d5:3b:32:fd:ef:2a:ae: 1b:9a:f0:bc:0e:58:1e:b6:53:95:67:6c:24:c8:96:46:d0:15: 19:e9:0c:8b:2e:5c:d9:fc:7a:71:64:d1:64:3e:0e:b3:b6:20: 4a:28:3c:1d:d3:34:f7:ff:23:49:54:14:04:6d:e6:62:30:3a: ad:66:2b:05:34:4b:4c:08:53:2e:4c:a7:bc:61:85:91:ec:07: 18:24:fa:55:04:19:72:0f:e9:2a:59:d7:7d:84:22:93:41:24: b4:a5:e8:c4:cb:fe:b9:d1:6b:8e:25:50:b7:a6:33:ef:7c:45: 0e:94:72:aa:2f:1b:2c:be:22:2a:58:56:eb:56:c6:8c:44:31: c5:8e:78:1c:23:f0:57:25:6a:fe:66:33:ab:27:34:1d:f4:25: 15:f5:64:20:2d:60:c4:0b:d8:41:ed:db:df:4a:66:db:62:1b: b0:6f:65:c4:d1:e2:11:09:00:39:f2:af:2c:58:25:91:de:57: c1:3b:b3:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfUH06+VpuU6xB4xCyOg5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkNzBmZTFkNzVmN2RhNzZkMmUzZGMzNDRmYjFmMGIwYjY5 ZGUwMDEwHhcNMjYwMjA5MTMwMDMwWhcNMjYwMjEwMTMwMDMwWjAzMTEwLwYDVQQD EyhiMzU2Yjk1MDExYmE0YzAwOTZhYTBiMTUyNTg2M2M0MWIyNTc0NDhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1kBi2gqkdBqkkinwExvLp29pvBVj RRXjC1MfRy54aqzqRRoX67VEDdZ9ovfmuFzptKwzQ4Js7QzBE7o8IhVSXwCPMlw5 p1rQHzXVyoeHRMhdJlETWEytn9pl8fi9gvryJ1LLDm7vyNc43ufFZYJcuPSZ+UoO 9GlLXeNvEvwyXJNMrUAnkFtBFICTd5suIGrSIm+J/W3hC+ZZtM9aivhTKLNfokhs HSOTyJTMqvwjjJPGDY6RGJ/UKtQYl7PPNTT+Gb2oPHOkHE1GnpyWpmRF+KGDl769 dxAInntT8f8vF92UWtQuIFrRQ3Ukha5TdBSCrrYAkqV/pBfTSZUF7qOQGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLNWuVARukwAlqoLFSWGPEGyV0SNMB8GA1UdIwQY MBaAFD1w/h1199p20uPcNE+x8LC2neABMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFhELUhYWDMybmJTNDl3MFQ3SHdzTGFkNEFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8yNDU2ZTUtNjFkZC00YWUzLWEyNGYt Yjg1MmJkODEyM2YwLzEvUFhELUhYWDMybmJTNDl3MFQ3SHdzTGFkNEFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC8yNDU2ZTUtNjFkZC00YWUzLWEyNGYtYjg1MmJkODEyM2Yw LzEvUFhELUhYWDMybmJTNDl3MFQ3SHdzTGFkNEFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHiFbDFTP AlnR/Jk6413P03viWNZPeNPYkp1UFpTA5VMHGhcuFSRTAG6gMvHfGjDbt3LEGhAN sm8ZE9O2mugt24XVOzL97yquG5rwvA5YHrZTlWdsJMiWRtAVGekMiy5c2fx6cWTR ZD4Os7YgSig8HdM09/8jSVQUBG3mYjA6rWYrBTRLTAhTLkynvGGFkewHGCT6VQQZ cg/pKlnXfYQik0EktKXoxMv+udFrjiVQt6Yz73xFDpRyqi8bLL4iKlhW61bGjEQx xY54HCPwVyVq/mYzqyc0HfQlFfVkIC1gxAvYQe3b30pm22IbsG9lxNHiEQkAOfKv LFglkd5XwTuzOw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:30 2026 by rpki-client