This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
File:                     3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft (raw, json)
Hash identifier:          CD6PIzfZh/OVRa6sKy1YIuHNPLapLv/ALGQOye+d0LQ=
Subject key identifier:   DB:AF:3B:9E:DD:7B:FA:55:7F:62:EE:80:08:75:A4:E2:13:DD:11:84
Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
Certificate issuer:       /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Certificate serial:       6B69190111C783BEA8921B5857E1D21F724B98D4
Authority info access:    rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject info access:      rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
Manifest number:          02DB
Signing time:             Tue 27 Jan 2026 10:09:43 +0000
Manifest this update:     Tue 27 Jan 2026 10:04:43 +0000
Manifest next update:     Wed 28 Jan 2026 11:47:43 +0000
Files and hashes:         1: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl (hash: YQhxt6HHOK14D70Ba//cq2kbMV6f5zZPIFFZjGcQq1c=)
                          2: 326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa (hash: b4lO7qQITmIuTe+1DZpcfLD2H0yGfI8Xz4qwvBeBNzo=)
                          3: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (hash: onhCLB3gV3HdQhsHYazqCSyNdZ/2h865cbuFqj2YlvA=)
                          4: 326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa (hash: scCBjh8HfhV3GwKDOrHZF1YXj718at6+uNm0y/KBmOw=)
                          5: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (hash: Kgbp0+Zk4p3tpOkyAtCJ3HEWdnZBbzm3NgMcGrByxQs=)
                          6: 326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa (hash: fW3/1bM6uuAVh4/BqcyWFGfZeggD1zO77SW4GWfaw4U=)
                          7: 326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa (hash: pRpvcvkpUIjn6KDjm+Ywf0niLgvvVoNWrBKMV64s3Gs=)
Validation:               OK
Signature path:           rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl
                          rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 28 Jan 2026 11:47:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6b:69:19:01:11:c7:83:be:a8:92:1b:58:57:e1:d2:1f:72:4b:98:d4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
        Validity
            Not Before: Jan 27 10:04:43 2026 GMT
            Not After : Jan 28 11:47:43 2026 GMT
        Subject: CN=DBAF3B9EDD7BFA557F62EE800875A4E213DD1184
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:15:90:1a:a0:d0:51:c5:ef:ea:59:eb:b0:72:
                    b3:24:5e:df:fb:70:9e:5a:76:54:00:14:71:07:9f:
                    ee:c6:13:bd:15:96:52:58:a6:58:ba:78:94:f8:20:
                    e8:a0:ce:b0:16:d3:45:59:82:3b:79:8e:b8:5a:0c:
                    b6:fb:ac:96:06:b9:1e:cc:17:07:d8:60:b7:b0:bf:
                    09:bc:c0:4d:1f:ec:0b:f1:da:db:17:d1:8a:e5:a4:
                    fb:c2:04:00:d5:8e:fc:bf:19:9a:d0:a2:95:de:18:
                    db:9d:3d:a2:a7:b8:dd:f7:1f:e0:f9:87:45:23:53:
                    66:78:fc:1e:11:57:6c:d0:14:80:7c:5f:a3:d6:04:
                    fe:7b:6c:c3:ae:5c:15:2c:af:96:69:9c:18:2e:5c:
                    76:a7:7a:b2:f9:d5:b3:34:ee:d5:0c:80:61:7d:16:
                    de:58:18:f0:f4:9a:23:e2:85:ee:4c:71:a3:4e:73:
                    79:10:e8:55:ab:10:a6:f2:cc:40:b4:33:c4:df:0e:
                    cf:91:0b:49:bc:bc:6d:fb:c1:08:a5:74:ea:b5:df:
                    68:45:53:94:f7:95:d6:24:ca:e5:87:67:e4:72:00:
                    02:31:cd:4b:0d:e5:14:a9:5f:9d:06:33:d4:d8:53:
                    e6:3c:61:e7:f1:cc:25:b1:bf:f7:ef:6d:58:ae:a9:
                    e0:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:AF:3B:9E:DD:7B:FA:55:7F:62:EE:80:08:75:A4:E2:13:DD:11:84
            X509v3 Authority Key Identifier:
                keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:f9:61:8e:0f:16:65:18:9a:fe:22:82:d6:51:22:76:55:9c:
         19:d4:50:32:cb:b8:19:15:b5:ee:70:91:7e:b3:2b:d6:fd:29:
         21:5c:40:a3:d5:d5:c7:71:b6:1a:6a:71:00:e9:0d:86:bf:e2:
         72:0d:35:00:87:5f:a9:b1:bb:13:d5:23:22:07:31:b7:1e:08:
         98:90:51:f1:b0:85:3b:bd:f5:fe:d3:56:04:6a:73:13:32:c8:
         0f:92:8d:43:1a:2b:8d:cb:cb:38:e7:7c:8e:d5:65:0f:6e:34:
         d6:be:33:b0:79:99:fb:86:a7:b1:cd:a7:77:b6:7f:27:9a:87:
         f7:4a:34:f4:1e:95:91:b6:a6:59:1d:1e:31:0d:b1:36:33:27:
         1f:63:1d:be:41:9a:a8:f4:a6:5c:27:76:2e:6e:7c:c7:48:e8:
         64:0c:c9:20:9a:ff:9f:f6:d5:78:6e:04:43:15:ce:71:c3:d5:
         a4:f6:86:4a:4b:63:77:71:98:14:dc:4e:88:bf:2d:dc:b6:9c:
         ac:0d:0e:9b:b8:f6:ac:99:e7:c7:77:f1:55:04:2b:cc:90:c6:
         64:35:07:60:1b:9e:4b:8a:b4:87:35:5b:e6:2b:0b:47:c1:17:
         e4:9c:ba:9e:72:11:ba:fc:ed:86:3e:7b:44:19:d5:28:b6:a6:
         db:da:3f:b7
-----BEGIN CERTIFICATE-----
MIIFbjCCBFagAwIBAgIUa2kZARHHg76okhtYV+HSH3JLmNQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx
MkQwQTU3ODAeFw0yNjAxMjcxMDA0NDNaFw0yNjAxMjgxMTQ3NDNaMDMxMTAvBgNV
BAMTKERCQUYzQjlFREQ3QkZBNTU3RjYyRUU4MDA4NzVBNEUyMTNERDExODQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnFZAaoNBRxe/qWeuwcrMkXt/7
cJ5adlQAFHEHn+7GE70VllJYpli6eJT4IOigzrAW00VZgjt5jrhaDLb7rJYGuR7M
FwfYYLewvwm8wE0f7Avx2tsX0YrlpPvCBADVjvy/GZrQopXeGNudPaKnuN33H+D5
h0UjU2Z4/B4RV2zQFIB8X6PWBP57bMOuXBUsr5ZpnBguXHanerL51bM07tUMgGF9
Ft5YGPD0miPihe5McaNOc3kQ6FWrEKbyzEC0M8TfDs+RC0m8vG37wQildOq132hF
U5T3ldYkyuWHZ+RyAAIxzUsN5RSpX50GM9TYU+Y8YefxzCWxv/fvbViuqeD9AgMB
AAGjggJ4MIICdDAdBgNVHQ4EFgQU2687nt17+lV/Yu6ACHWk4hPdEYQwHwYDVR0j
BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV
HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv
cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv
M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G
CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz
LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh
MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1
NjEyRDBBNTc4LmNlcjCBmgYIKwYBBQUHAQsEgY0wgYowgYcGCCsGAQUFBzALhnty
c3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQvcmVwby9ycGtpX2NhXzI1NDA1
Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAvM0I4NkE0QTQ1MzgwQzZENDU1
Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF
BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF
BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAHj5YY4PFmUYmv4igtZR
InZVnBnUUDLLuBkVte5wkX6zK9b9KSFcQKPV1cdxthpqcQDpDYa/4nINNQCHX6mx
uxPVIyIHMbceCJiQUfGwhTu99f7TVgRqcxMyyA+SjUMaK43LyzjnfI7VZQ9uNNa+
M7B5mfuGp7HNp3e2fyeah/dKNPQelZG2plkdHjENsTYzJx9jHb5Bmqj0plwndi5u
fMdI6GQMySCa/5/21XhuBEMVznHD1aT2hkpLY3dxmBTcToi/Ldy2nKwNDpu49qyZ
58d38VUEK8yQxmQ1B2AbnkuKtIc1W+YrC0fBF+Scup5yEbr87YY+e0QZ1Si2ptva
P7c=
-----END CERTIFICATE-----