This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json) Hash identifier: Ir4MRrAeb6OIH+TkJa9GaYc8eVuO52cRbRsO6HeXZds= Subject key identifier: E3:03:28:44:A2:E1:5A:CC:27:7A:48:A5:65:0A:2D:BD:08:BA:B4:45 Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d Certificate serial: 019BF9C04946D647DE72DFC631020DFAC130 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft Manifest number: 027B Signing time: Mon 26 Jan 2026 10:01:26 +0000 Manifest this update: Mon 26 Jan 2026 10:01:26 +0000 Manifest next update: Tue 27 Jan 2026 10:01:26 +0000 Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: 9Cuoyaw6bJ7kLCYybPtjEr/X4UrdPJ/GByTqpdyh6nI=) 2: tW6tlYVnkXnq9oP8owXcbYW47kU.roa (hash: g2+Pc2wN2E52WWpsZZidSy7PbjRy5/I1OGghh4rSkGE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:c0:49:46:d6:47:de:72:df:c6:31:02:0d:fa:c1:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d43340fad246465de8e614d039563a699657d8d Validity Not Before: Jan 26 10:01:26 2026 GMT Not After : Jan 27 10:01:26 2026 GMT Subject: CN=e3032844a2e15acc277a48a5650a2dbd08bab445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:15:62:bd:2c:08:86:76:22:c0:b2:13:e5:28: ef:87:54:97:66:6f:ca:4f:14:b0:58:0f:3c:8a:d7: dd:df:ed:ab:47:0b:a2:33:30:30:40:b5:75:52:b9: d4:7c:0c:31:fd:0a:04:09:a5:27:ef:a7:bd:b0:ec: 02:5e:15:05:aa:d9:47:e0:2e:bb:bb:52:fc:0b:4a: be:72:96:18:16:e6:e0:f1:be:be:e8:27:31:ed:b0: d3:47:ca:af:59:14:76:f7:a2:ac:87:a1:55:ef:cb: 9b:6a:d4:56:2e:6e:81:1a:07:26:e5:42:6b:c3:57: 5a:0c:7a:d5:c7:79:59:4d:ee:49:14:a9:b9:e0:29: 1a:c2:4f:8f:06:d0:fd:b6:7c:64:df:b2:7b:46:5c: df:28:8c:02:c5:ef:80:d4:00:80:f2:f4:cd:56:78: 38:62:75:12:a7:db:96:79:05:78:ce:9f:2c:d5:dd: 0a:01:99:d5:0f:12:38:dd:97:e4:14:36:31:cf:cd: b9:b9:e9:1c:46:32:eb:8f:4c:86:5e:86:40:b1:a7: 95:23:e8:db:db:59:69:a6:cd:f7:bf:4e:3a:f4:94: d4:9f:6c:b3:9b:80:8a:4a:71:dc:5b:70:41:23:4f: 3a:32:95:01:cc:ae:1d:fd:f1:28:67:fd:e2:66:e3: c4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:03:28:44:A2:E1:5A:CC:27:7A:48:A5:65:0A:2D:BD:08:BA:B4:45 X509v3 Authority Key Identifier: keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:09:69:d2:3b:d9:3e:04:e1:fb:d5:60:06:37:b4:f8:cf:ba: 49:7d:2d:6c:4a:e8:36:73:e4:ac:8b:ad:7f:c7:33:a9:54:fa: 0b:73:82:17:6a:68:57:ef:4f:7d:61:39:66:20:53:d9:8e:d2: 10:86:a6:26:31:e4:40:5b:4d:db:e3:9b:b5:12:c8:26:f4:b6: a0:35:f9:d5:27:f4:5f:bf:4e:9a:69:2e:60:6f:32:9f:30:34: b7:f7:00:64:b2:1d:1c:b6:c7:7c:64:9d:13:9d:c1:a6:6a:a5: 98:f9:9e:74:78:4e:b1:13:9e:8c:c6:89:c1:21:9f:f7:d5:14: 91:b2:18:07:3a:93:21:22:55:7f:b6:16:39:23:59:94:9a:48: 74:a5:77:73:89:52:cd:8a:c5:ae:aa:ce:1b:be:15:8b:f2:eb: f6:74:79:38:62:28:82:40:c8:96:b1:43:8f:a6:a2:9c:0f:55: ff:08:28:96:26:ae:ad:63:d6:8f:9c:ba:ba:90:4f:63:46:32: fe:54:97:7b:b2:3f:9d:8e:30:f4:ed:78:c5:59:e4:a4:b9:d4: 44:fe:d4:40:ab:49:c2:66:e4:e7:a1:f1:cc:f9:55:66:29:09: b3:eb:f7:9f:34:b3:16:71:13:d6:2a:ce:99:34:d1:b3:6c:c8: f8:e1:a0:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5wElG1kfect/GMQIN+sEwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkNDMzNDBmYWQyNDY0NjVkZThlNjE0ZDAzOTU2M2E2OTk2 NTdkOGQwHhcNMjYwMTI2MTAwMTI2WhcNMjYwMTI3MTAwMTI2WjAzMTEwLwYDVQQD EyhlMzAzMjg0NGEyZTE1YWNjMjc3YTQ4YTU2NTBhMmRiZDA4YmFiNDQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5xVivSwIhnYiwLIT5Sjvh1SXZm/K TxSwWA88itfd3+2rRwuiMzAwQLV1UrnUfAwx/QoECaUn76e9sOwCXhUFqtlH4C67 u1L8C0q+cpYYFubg8b6+6Ccx7bDTR8qvWRR296Ksh6FV78ubatRWLm6BGgcm5UJr w1daDHrVx3lZTe5JFKm54Ckawk+PBtD9tnxk37J7RlzfKIwCxe+A1ACA8vTNVng4 YnUSp9uWeQV4zp8s1d0KAZnVDxI43ZfkFDYxz825uekcRjLrj0yGXoZAsaeVI+jb 21lpps33v0469JTUn2yzm4CKSnHcW3BBI086MpUBzK4d/fEoZ/3iZuPEWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOMDKESi4VrMJ3pIpWUKLb0IurRFMB8GA1UdIwQY MBaAFD1DNA+tJGRl3o5hTQOVY6aZZX2NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82Y2U5MjItY2RjZS00YzdhLWIzNDYt YTQzN2NlODkyODQxLzEvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS82Y2U5MjItY2RjZS00YzdhLWIzNDYtYTQzN2NlODkyODQx LzEvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjglp0jvZ PgTh+9VgBje0+M+6SX0tbEroNnPkrIutf8czqVT6C3OCF2poV+9PfWE5ZiBT2Y7S EIamJjHkQFtN2+ObtRLIJvS2oDX51Sf0X79OmmkuYG8ynzA0t/cAZLIdHLbHfGSd E53BpmqlmPmedHhOsROejMaJwSGf99UUkbIYBzqTISJVf7YWOSNZlJpIdKV3c4lS zYrFrqrOG74Vi/Lr9nR5OGIogkDIlrFDj6ainA9V/wgoliaurWPWj5y6upBPY0Yy /lSXe7I/nY4w9O14xVnkpLnURP7UQKtJwmbk56HxzPlVZikJs+v3nzSzFnET1irO mTTRs2zI+OGgGA== -----END CERTIFICATE-----Generated at Mon Jan 26 14:10:42 2026 by rpki-client