This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.mft File: PRf0av89iyHwD-6PY16uNKf0pNc.mft (raw, json) Hash identifier: 3OHXOZ38QrXTdiitX2NDewcgPsBYQXV8nowp4n0egZ0= Subject key identifier: 18:E2:9B:B9:9E:21:34:DA:6E:80:FD:CB:EB:01:A3:13:AA:D5:49:33 Authority key identifier: 3D:17:F4:6A:FF:3D:8B:21:F0:0F:EE:8F:63:5E:AE:34:A7:F4:A4:D7 Certificate issuer: /CN=3d17f46aff3d8b21f00fee8f635eae34a7f4a4d7 Certificate serial: 019C4321D73A55336E499466037D8AE59665 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRf0av89iyHwD-6PY16uNKf0pNc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.mft Manifest number: 0CFE Signing time: Mon 09 Feb 2026 16:00:17 +0000 Manifest this update: Mon 09 Feb 2026 16:00:17 +0000 Manifest next update: Tue 10 Feb 2026 16:00:17 +0000 Files and hashes: 1: PRf0av89iyHwD-6PY16uNKf0pNc.crl (hash: LmHj6XtZ8kCzPZcZTUfmMjhAuXqzc89ksuCbtkNH2co=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.mft rsync://rpki.ripe.net/repository/DEFAULT/PRf0av89iyHwD-6PY16uNKf0pNc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:d7:3a:55:33:6e:49:94:66:03:7d:8a:e5:96:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d17f46aff3d8b21f00fee8f635eae34a7f4a4d7 Validity Not Before: Feb 9 16:00:17 2026 GMT Not After : Feb 10 16:00:17 2026 GMT Subject: CN=18e29bb99e2134da6e80fdcbeb01a313aad54933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:83:96:01:85:78:08:2c:2e:05:e6:09:ad:34: 0a:3c:2d:ab:35:12:aa:81:61:0b:48:3d:a1:3d:80: b4:0d:e4:7c:cb:38:9a:ee:26:aa:a5:cf:bb:1f:dd: a4:df:2e:69:77:8c:f0:67:20:2f:9b:85:c1:51:1f: af:56:30:bd:2d:b4:fd:3b:2d:c3:ef:9e:e5:dc:c1: f5:52:c0:30:f9:a5:b1:ec:81:ab:56:b6:ff:24:81: f6:25:4d:37:63:f6:e0:1d:fa:83:73:57:9d:3f:8c: 89:fb:5e:80:c1:32:53:d6:fa:c4:6b:88:e6:d6:82: 1f:07:46:95:5a:b4:50:85:6f:65:95:f9:f3:f1:0e: cc:fc:84:fd:79:b2:03:0b:e2:e0:b0:f3:c3:f6:04: 79:63:54:18:9c:62:cb:36:d6:66:3b:23:7e:f4:2f: 71:93:ea:f6:ee:cc:b9:1b:4a:ed:dd:b0:43:38:da: fb:e6:e5:84:4d:2d:c0:c5:09:bd:48:45:a6:3d:90: 21:e6:70:b3:4d:ea:7f:bf:a4:9e:e4:51:44:a3:7f: 97:fa:0c:4b:8c:a3:05:19:5b:99:0e:ea:ca:d0:77: 4c:16:dd:0a:e7:54:50:cd:e3:3f:57:6e:0a:95:ef: c0:0a:ef:52:fc:7b:5a:dd:8b:41:15:99:ac:1d:bc: dd:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E2:9B:B9:9E:21:34:DA:6E:80:FD:CB:EB:01:A3:13:AA:D5:49:33 X509v3 Authority Key Identifier: keyid:3D:17:F4:6A:FF:3D:8B:21:F0:0F:EE:8F:63:5E:AE:34:A7:F4:A4:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRf0av89iyHwD-6PY16uNKf0pNc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:e7:25:72:fc:09:88:63:42:12:15:3f:c7:01:81:14:85:62: c1:37:7a:1d:a8:21:53:59:54:cd:b4:07:54:1a:b4:e6:16:07: 02:b8:18:83:12:11:1e:33:bf:18:b6:39:88:ff:b2:2c:b1:8b: bc:45:0f:7a:76:a6:01:b5:b6:2c:9e:bf:ad:dd:7f:ab:d0:8c: f3:6a:36:31:30:a0:3d:fa:72:f8:e1:51:73:3b:ed:6f:0d:13: d4:74:eb:95:01:d3:be:37:ac:52:95:6f:27:8a:fe:7b:09:44: 1c:c7:02:ab:98:66:49:56:58:1a:2a:d6:bf:96:30:09:a0:01: 6b:2c:1b:f9:fc:d1:be:d8:59:35:bf:81:f4:55:42:6a:84:da: de:78:86:2c:00:4d:40:1b:12:64:bd:40:80:cc:57:0d:f9:84: 9c:77:80:63:70:cf:5a:b1:04:f1:4e:63:bc:6c:e1:2d:61:94: 3d:95:d6:84:29:88:c8:6a:35:65:85:70:b2:3f:4f:c5:a2:ce: 2a:05:f3:04:a3:11:6d:4b:50:66:66:ca:fb:96:65:ef:8c:8c: 87:d9:8b:99:62:dd:b2:e6:ea:c6:60:65:c3:6f:95:15:1a:b0: 61:cb:86:84:88:7e:e4:05:95:65:a4:27:1d:12:9b:50:1e:a4: fc:a9:87:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdc6VTNuSZRmA32K5ZZlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkMTdmNDZhZmYzZDhiMjFmMDBmZWU4ZjYzNWVhZTM0YTdm NGE0ZDcwHhcNMjYwMjA5MTYwMDE3WhcNMjYwMjEwMTYwMDE3WjAzMTEwLwYDVQQD EygxOGUyOWJiOTllMjEzNGRhNmU4MGZkY2JlYjAxYTMxM2FhZDU0OTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3oOWAYV4CCwuBeYJrTQKPC2rNRKq gWELSD2hPYC0DeR8yzia7iaqpc+7H92k3y5pd4zwZyAvm4XBUR+vVjC9LbT9Oy3D 757l3MH1UsAw+aWx7IGrVrb/JIH2JU03Y/bgHfqDc1edP4yJ+16AwTJT1vrEa4jm 1oIfB0aVWrRQhW9llfnz8Q7M/IT9ebIDC+LgsPPD9gR5Y1QYnGLLNtZmOyN+9C9x k+r27sy5G0rt3bBDONr75uWETS3AxQm9SEWmPZAh5nCzTep/v6Se5FFEo3+X+gxL jKMFGVuZDurK0HdMFt0K51RQzeM/V24Kle/ACu9S/Hta3YtBFZmsHbzdZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBjim7meITTaboD9y+sBoxOq1UkzMB8GA1UdIwQY MBaAFD0X9Gr/PYsh8A/uj2NerjSn9KTXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFJmMGF2ODlpeUh3RC02UFkxNnVOS2YwcE5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9iMjgxYzctY2Q5YS00Mzc1LWI4NGEt ODUxZWQ1MjlmMjIyLzEvUFJmMGF2ODlpeUh3RC02UFkxNnVOS2YwcE5jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS9iMjgxYzctY2Q5YS00Mzc1LWI4NGEtODUxZWQ1MjlmMjIy LzEvUFJmMGF2ODlpeUh3RC02UFkxNnVOS2YwcE5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAheclcvwJ iGNCEhU/xwGBFIViwTd6HaghU1lUzbQHVBq05hYHArgYgxIRHjO/GLY5iP+yLLGL vEUPenamAbW2LJ6/rd1/q9CM82o2MTCgPfpy+OFRczvtbw0T1HTrlQHTvjesUpVv J4r+ewlEHMcCq5hmSVZYGirWv5YwCaABaywb+fzRvthZNb+B9FVCaoTa3niGLABN QBsSZL1AgMxXDfmEnHeAY3DPWrEE8U5jvGzhLWGUPZXWhCmIyGo1ZYVwsj9PxaLO KgXzBKMRbUtQZmbK+5Zl74yMh9mLmWLdsubqxmBlw2+VFRqwYcuGhIh+5AWVZaQn HRKbUB6k/KmHyg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:04 2026 by rpki-client