This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft File: PsfSv8P6eOcQChuJNZBa_3pJa8k.mft (raw, json) Hash identifier: v9XyLP760XMNwoN78HO1anYHteT6zNMOksnuwp5yElg= Subject key identifier: F1:A3:F1:8A:08:C3:84:76:BB:DC:1C:6A:12:EB:4E:75:40:CD:3C:6E Authority key identifier: 3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9 Certificate issuer: /CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9 Certificate serial: 019BF6BF38F3B558565E523B0E3512CA326B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft Manifest number: 0E96 Signing time: Sun 25 Jan 2026 20:01:25 +0000 Manifest this update: Sun 25 Jan 2026 20:01:25 +0000 Manifest next update: Mon 26 Jan 2026 20:01:25 +0000 Files and hashes: 1: 4yIaOD2NMt2VBGmVwUq_OiRtg_A.roa (hash: kgy/jwMb361XAjDurvjXKgIsxESxjz3mkWg8JfDokdo=) 2: PsfSv8P6eOcQChuJNZBa_3pJa8k.crl (hash: 3+H14v7bCt7To0JNlA2h4Atd+j09D+RZOa27SPSMxQ4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:bf:38:f3:b5:58:56:5e:52:3b:0e:35:12:ca:32:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9 Validity Not Before: Jan 25 20:01:25 2026 GMT Not After : Jan 26 20:01:25 2026 GMT Subject: CN=f1a3f18a08c38476bbdc1c6a12eb4e7540cd3c6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:df:30:e3:02:67:70:57:f4:2f:75:8e:68:9c: 9f:e3:b9:81:e2:08:28:a5:f3:00:4f:f1:72:ca:7a: 32:99:9f:a0:c2:45:cf:ae:6b:71:c2:2d:bb:27:e9: dd:68:92:26:04:ba:d4:e9:03:8e:d9:d8:d2:b8:64: 79:59:8d:58:c3:37:55:47:2e:77:25:74:ed:be:8a: dd:54:cd:58:c2:25:78:82:ec:64:18:88:23:b9:ab: 1a:08:b7:14:10:31:8b:41:7b:69:28:af:c7:b0:f7: fb:a0:e8:30:fa:29:a5:e3:aa:fe:16:af:f2:94:08: c7:e2:55:b6:f0:d8:a4:63:08:93:88:2d:2a:f0:e8: a1:4a:fb:1d:86:28:41:f4:16:27:d4:22:a2:3d:ab: 2a:b6:49:67:57:6f:91:5c:c9:fc:37:d8:c8:aa:4b: fc:a1:be:a4:c8:b7:81:b0:f2:db:73:0e:d0:c7:a6: f0:dc:d7:d8:93:44:83:c0:fb:32:f3:a6:93:b4:1e: bb:7a:84:cf:ec:9e:18:89:d7:a2:57:a3:d3:5d:16: 6e:ad:a9:36:b9:0d:f2:01:2e:be:ee:c3:38:b3:59: 1f:5d:2b:7d:0e:2d:fd:b6:e8:31:0e:21:10:89:36: 7e:92:25:3a:9e:6d:a0:64:93:55:70:c1:10:ca:ea: 9b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:A3:F1:8A:08:C3:84:76:BB:DC:1C:6A:12:EB:4E:75:40:CD:3C:6E X509v3 Authority Key Identifier: keyid:3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:db:8c:a7:df:b5:02:d7:20:cc:05:f6:99:cd:e5:4e:05:7d: ac:b8:78:b1:2e:df:84:14:06:57:3d:f1:9c:b7:03:14:0d:45: 83:ff:37:80:92:52:5a:a9:c6:59:8b:c6:ae:cc:0a:35:73:9b: 11:ac:fc:13:15:d3:42:eb:f0:04:58:75:7f:df:99:cb:a2:a5: 9a:f7:d2:e3:11:bd:52:2a:64:2c:3f:b5:13:45:8d:76:b1:3c: e6:18:8b:f7:dd:99:a4:1a:70:08:05:89:e8:83:04:95:ab:0f: af:db:22:d8:28:39:2b:3b:b8:c8:36:99:b6:e0:85:ad:9c:48: 81:d2:fd:ad:cf:74:72:25:be:01:e7:8c:97:d6:f7:52:3d:12: 24:c3:cd:87:04:e9:b0:e7:fd:2a:fd:35:f9:bd:c5:1f:7e:3f: fb:68:5f:20:aa:54:91:ff:3b:e6:4e:cb:ff:9c:29:aa:25:30: bd:c7:ed:6f:f0:a8:70:99:0e:ce:0a:39:66:12:18:bc:2d:7a: 36:28:6b:36:c6:f1:61:b8:b9:7b:54:9d:fe:a1:bf:f4:e6:28: c2:53:70:2e:da:49:90:b3:d4:2e:70:05:6c:b5:30:86:9d:aa: b1:f3:16:fe:5d:69:53:7e:c5:18:9c:47:d4:0a:22:1a:1d:33: ef:cb:79:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vzjztVhWXlI7DjUSyjJrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlYzdkMmJmYzNmYTc4ZTcxMDBhMWI4OTM1OTA1YWZmN2E0 OTZiYzkwHhcNMjYwMTI1MjAwMTI1WhcNMjYwMTI2MjAwMTI1WjAzMTEwLwYDVQQD EyhmMWEzZjE4YTA4YzM4NDc2YmJkYzFjNmExMmViNGU3NTQwY2QzYzZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkd8w4wJncFf0L3WOaJyf47mB4ggo pfMAT/FyynoymZ+gwkXPrmtxwi27J+ndaJImBLrU6QOO2djSuGR5WY1YwzdVRy53 JXTtvordVM1YwiV4guxkGIgjuasaCLcUEDGLQXtpKK/HsPf7oOgw+iml46r+Fq/y lAjH4lW28NikYwiTiC0q8OihSvsdhihB9BYn1CKiPasqtklnV2+RXMn8N9jIqkv8 ob6kyLeBsPLbcw7Qx6bw3NfYk0SDwPsy86aTtB67eoTP7J4YideiV6PTXRZurak2 uQ3yAS6+7sM4s1kfXSt9Di39tugxDiEQiTZ+kiU6nm2gZJNVcMEQyuqb/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPGj8YoIw4R2u9wcahLrTnVAzTxuMB8GA1UdIwQY MBaAFD7H0r/D+njnEAobiTWQWv96SWvJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8zOWJiNzItZjZhZi00YTY3LTljNDQt YmE4ODExMjJjYTYzLzEvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy8zOWJiNzItZjZhZi00YTY3LTljNDQtYmE4ODExMjJjYTYz LzEvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGduMp9+1 AtcgzAX2mc3lTgV9rLh4sS7fhBQGVz3xnLcDFA1Fg/83gJJSWqnGWYvGrswKNXOb Eaz8ExXTQuvwBFh1f9+Zy6KlmvfS4xG9UipkLD+1E0WNdrE85hiL992ZpBpwCAWJ 6IMElasPr9si2Cg5Kzu4yDaZtuCFrZxIgdL9rc90ciW+AeeMl9b3Uj0SJMPNhwTp sOf9Kv01+b3FH34/+2hfIKpUkf875k7L/5wpqiUwvcftb/CocJkOzgo5ZhIYvC16 NihrNsbxYbi5e1Sd/qG/9OYowlNwLtpJkLPULnAFbLUwhp2qsfMW/l1pU37FGJxH 1AoiGh0z78t5pg== -----END CERTIFICATE-----Generated at Mon Jan 26 01:33:07 2026 by rpki-client