This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft File: PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft (raw, json) Hash identifier: D1BSLwnuK+HvBWhyyyhEnhLXq8jNfkpU/bd3Q0klqgU= Subject key identifier: BA:0C:3F:8A:C8:F2:12:39:4A:93:76:61:E3:5B:36:E7:BB:52:20:A5 Authority key identifier: 3C:A6:FA:99:9E:8A:67:4A:A5:33:2D:EB:71:F1:BA:D0:24:5C:8D:C1 Certificate issuer: /CN=3ca6fa999e8a674aa5332deb71f1bad0245c8dc1 Certificate serial: 019B80F1C6F01F61BF91260DB25AC39B76FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft Manifest number: 0F26 Signing time: Fri 02 Jan 2026 23:01:27 +0000 Manifest this update: Fri 02 Jan 2026 23:01:27 +0000 Manifest next update: Sat 03 Jan 2026 23:01:27 +0000 Files and hashes: 1: 61Tc_pSMqhnofPsV7DrPU_3IvV4.roa (hash: b1b/Y82gxJDN9f/iG4TCunLXSlk+6vM16ISqmCSzCXg=) 2: PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl (hash: w7ifXN3U9MD8xUnUZnkibEK58DDkUc6dIKOtmfmXrFk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:80:f1:c6:f0:1f:61:bf:91:26:0d:b2:5a:c3:9b:76:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ca6fa999e8a674aa5332deb71f1bad0245c8dc1 Validity Not Before: Jan 2 23:01:27 2026 GMT Not After : Jan 3 23:01:27 2026 GMT Subject: CN=ba0c3f8ac8f212394a937661e35b36e7bb5220a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:45:9c:9f:a5:55:46:2a:99:5f:f1:88:68:e9: 09:00:f3:51:08:6f:8d:81:74:44:45:b0:f9:76:bc: 46:36:a5:d7:ea:3e:3c:bb:b7:4e:5b:96:99:2e:71: e9:ac:88:09:4a:94:96:f5:c3:4f:d6:26:0a:75:30: d7:34:55:ff:c9:82:18:ad:9b:5e:64:fe:96:a7:48: 6c:c4:fd:ab:95:c9:b4:4b:11:b4:7d:1d:e2:60:78: 2d:4d:44:64:6c:bd:63:08:95:c1:9e:9e:52:f1:56: eb:61:64:a6:6e:59:5c:d2:82:34:62:d6:7b:b2:e2: 83:2f:82:1f:6e:87:a6:af:c0:0c:9b:08:43:7a:c8: 19:f2:57:71:d8:76:20:2e:22:95:0b:1b:60:09:e1: 52:3f:44:24:17:ef:41:87:ff:41:82:99:1e:2c:d3: a8:2f:2a:36:70:bf:85:33:03:b2:65:42:8f:88:38: 13:72:1f:83:2e:bd:f2:6f:f8:00:08:8f:8a:f6:64: b2:48:dc:88:f4:ed:7b:be:1f:af:e9:d7:af:20:d1: 27:7e:47:af:0b:e6:ab:0e:ea:40:50:3c:fd:6f:ce: 55:37:af:2c:34:9c:ff:46:9d:ba:0a:68:c5:e0:2f: bf:ef:84:df:5b:da:ca:eb:a8:b2:56:0f:c8:59:e5: 25:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:0C:3F:8A:C8:F2:12:39:4A:93:76:61:E3:5B:36:E7:BB:52:20:A5 X509v3 Authority Key Identifier: keyid:3C:A6:FA:99:9E:8A:67:4A:A5:33:2D:EB:71:F1:BA:D0:24:5C:8D:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:71:f8:f7:31:a8:3d:c5:eb:c4:74:63:b9:12:79:b7:b3:8c: b7:42:12:b2:b6:22:f9:a1:ff:d7:d6:04:ff:9b:61:a8:18:e6: 2c:67:76:bd:22:8d:e7:71:f3:77:5e:2f:83:e0:e9:9d:c0:b9: 34:09:4f:87:63:77:12:30:ee:46:be:bb:f4:12:d2:81:cf:20: 16:3c:c2:fd:e4:41:9c:ac:35:c5:72:78:75:d3:a0:db:37:a4: 10:4c:0b:e3:e1:11:4c:e0:a0:52:82:af:1f:73:d6:8f:82:d4: ac:e2:06:f0:62:3a:45:80:91:db:31:c8:77:9c:70:65:59:42: 4d:48:0e:21:fb:7c:42:33:37:fe:eb:a2:bd:86:c2:38:1d:a4: ce:34:22:ca:bb:4a:c5:63:4b:ab:13:07:f2:5f:c7:6c:3f:50: 26:97:48:2e:81:36:54:70:bb:61:85:ec:6d:35:c1:36:73:7d: c4:9e:3b:d0:29:76:88:59:14:df:91:39:13:0b:fa:24:cc:54: e4:56:3e:c5:80:6c:71:bc:f1:e9:f4:84:c4:88:d0:f7:69:8f: a9:a1:af:40:15:c1:d0:3b:94:3c:1d:04:c7:d1:e6:23:5d:45: 75:2c:7f:ea:a6:59:9a:9d:1b:f5:c5:61:d5:89:ad:2e:ad:c3: ca:48:bf:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuA8cbwH2G/kSYNslrDm3b/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjYTZmYTk5OWU4YTY3NGFhNTMzMmRlYjcxZjFiYWQwMjQ1 YzhkYzEwHhcNMjYwMTAyMjMwMTI3WhcNMjYwMTAzMjMwMTI3WjAzMTEwLwYDVQQD EyhiYTBjM2Y4YWM4ZjIxMjM5NGE5Mzc2NjFlMzViMzZlN2JiNTIyMGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz0Wcn6VVRiqZX/GIaOkJAPNRCG+N gXRERbD5drxGNqXX6j48u7dOW5aZLnHprIgJSpSW9cNP1iYKdTDXNFX/yYIYrZte ZP6Wp0hsxP2rlcm0SxG0fR3iYHgtTURkbL1jCJXBnp5S8VbrYWSmbllc0oI0YtZ7 suKDL4Ifboemr8AMmwhDesgZ8ldx2HYgLiKVCxtgCeFSP0QkF+9Bh/9BgpkeLNOo Lyo2cL+FMwOyZUKPiDgTch+DLr3yb/gACI+K9mSySNyI9O17vh+v6devINEnfkev C+arDupAUDz9b85VN68sNJz/Rp26CmjF4C+/74TfW9rK66iyVg/IWeUlkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLoMP4rI8hI5SpN2YeNbNue7UiClMB8GA1UdIwQY MBaAFDym+pmeimdKpTMt63HxutAkXI3BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUEtiNm1aNktaMHFsTXkzcmNmRzYwQ1JjamNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9mOTdkM2QtZWQ2NC00MGI3LThiN2Mt MTUyYjBhYmQ3YzBjLzEvUEtiNm1aNktaMHFsTXkzcmNmRzYwQ1JjamNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9mOTdkM2QtZWQ2NC00MGI3LThiN2MtMTUyYjBhYmQ3YzBj LzEvUEtiNm1aNktaMHFsTXkzcmNmRzYwQ1JjamNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI3H49zGo PcXrxHRjuRJ5t7OMt0ISsrYi+aH/19YE/5thqBjmLGd2vSKN53Hzd14vg+DpncC5 NAlPh2N3EjDuRr679BLSgc8gFjzC/eRBnKw1xXJ4ddOg2zekEEwL4+ERTOCgUoKv H3PWj4LUrOIG8GI6RYCR2zHId5xwZVlCTUgOIft8QjM3/uuivYbCOB2kzjQiyrtK xWNLqxMH8l/HbD9QJpdILoE2VHC7YYXsbTXBNnN9xJ470Cl2iFkU35E5Ewv6JMxU 5FY+xYBscbzx6fSExIjQ92mPqaGvQBXB0DuUPB0Ex9HmI11FdSx/6qZZmp0b9cVh 1YmtLq3Dyki/NA== -----END CERTIFICATE-----Generated at Sat Jan 3 04:17:58 2026 by rpki-client