This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft File: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft (raw, json) Hash identifier: Tx8eyLobbDXSf/7ThW2pSGcRdJYdCXyvUtpD1ZVfoRo= Subject key identifier: C3:CB:93:6F:5D:65:FC:A5:F7:6C:94:68:25:FE:08:BC:F2:02:F7:00 Authority key identifier: DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B Certificate issuer: /CN=dea85f21668a98d7e81a74183f0cce513086601b Certificate serial: 019C36B07A85AF67552736E7A5AFAC40EB5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft Manifest number: 079D Signing time: Sat 07 Feb 2026 06:01:01 +0000 Manifest this update: Sat 07 Feb 2026 06:01:01 +0000 Manifest next update: Sun 08 Feb 2026 06:01:01 +0000 Files and hashes: 1: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl (hash: iiK7aUUaiilPt7N8m90p4/llLTCPNoY3j/+1SMX53cQ=) 2: hBUefaIMV4VxrEK-fm1hTMzaWD8.roa (hash: ULTyVqCoLmJTp6EzOZiZ2uvQqGHDruUXv80DgFEK1ug=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 06:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:36:b0:7a:85:af:67:55:27:36:e7:a5:af:ac:40:eb:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dea85f21668a98d7e81a74183f0cce513086601b Validity Not Before: Feb 7 06:01:01 2026 GMT Not After : Feb 8 06:01:01 2026 GMT Subject: CN=c3cb936f5d65fca5f76c946825fe08bcf202f700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:28:31:d8:07:31:10:4b:b1:53:e8:ed:40:0d: 9a:b9:5c:68:3b:08:85:8c:ed:d3:25:9c:27:ce:7d: ac:1b:a3:b9:3b:b1:2a:e1:ce:c9:0c:22:c6:87:73: 0d:c4:8d:30:ea:52:04:a7:3b:c4:b4:5a:37:37:f9: 7c:45:a9:26:26:34:b0:46:2a:41:0d:e0:19:d0:0c: 10:69:16:8e:4d:1d:8e:59:d2:4c:3e:db:57:1d:8b: df:e7:c9:65:28:36:d1:46:1a:30:94:03:7f:cd:28: ca:4d:75:37:78:1e:5f:4a:c3:01:68:33:fd:c5:41: 6a:d6:8d:e8:67:d0:25:7f:1e:c7:fd:29:14:49:9b: 6b:4d:cf:38:fb:ac:84:d2:a2:81:e1:b7:9b:43:fd: b6:3a:29:3e:d9:b3:b6:3e:6d:a1:89:33:05:7e:7b: df:5d:e5:8d:5a:03:2a:c7:f3:b4:d3:50:8e:90:2e: b9:c9:42:34:a4:99:72:c7:ce:b4:aa:01:c1:72:ba: cf:61:67:42:3d:91:8a:df:94:2c:f6:a8:8c:65:8f: 56:e5:bc:5b:e5:7d:b1:7f:c5:4b:01:5d:7d:c5:54: 0c:11:bc:80:47:02:7d:f8:71:51:e0:b4:2e:1e:fb: 79:bf:4e:34:28:df:a1:90:83:9c:a0:9e:f6:fe:bb: 42:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:CB:93:6F:5D:65:FC:A5:F7:6C:94:68:25:FE:08:BC:F2:02:F7:00 X509v3 Authority Key Identifier: keyid:DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:87:57:ec:d5:d7:5e:9f:71:1d:fa:4d:e5:28:77:b6:ff:56: f2:fe:f5:58:24:95:45:06:16:25:23:85:76:d9:df:68:85:c7: 1a:9e:93:22:91:70:e8:48:eb:95:d3:c6:6d:e6:e9:74:64:a1: 7c:58:81:05:72:87:46:8b:07:78:75:63:1b:ee:ba:fb:98:52: d3:8c:f5:3d:8b:a5:d1:ed:5a:20:49:d7:14:fd:96:a5:78:24: e2:ed:e3:20:a1:07:cb:04:3c:b9:d3:fd:8e:1c:42:81:36:e9: 26:69:ee:e4:37:a1:8d:4e:e6:52:3a:87:ef:5c:80:80:86:89: 8f:ca:e7:fb:a5:50:09:47:a8:2f:a6:14:ec:dc:d8:de:51:af: bd:f9:72:d2:c8:20:b8:ce:38:c2:9a:00:55:52:03:f2:bb:9f: b9:9e:18:fc:53:62:75:fc:ea:5c:75:8c:69:53:e6:e5:17:f5: 48:f3:75:48:6b:dd:8d:6a:b8:e3:c0:6b:d7:06:6e:f9:97:b6: 24:0e:6e:36:b0:f9:6d:54:5b:8e:d0:46:40:be:79:bd:b1:7e: 03:14:36:2a:f0:a0:96:67:7d:d3:05:d3:83:cd:7a:85:7f:dd: 51:b1:d0:6c:d5:d7:e4:e0:a7:1f:b2:e1:67:b6:f9:23:10:6a: ca:48:d2:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZw2sHqFr2dVJzbnpa+sQOteMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlYTg1ZjIxNjY4YTk4ZDdlODFhNzQxODNmMGNjZTUxMzA4 NjYwMWIwHhcNMjYwMjA3MDYwMTAxWhcNMjYwMjA4MDYwMTAxWjAzMTEwLwYDVQQD EyhjM2NiOTM2ZjVkNjVmY2E1Zjc2Yzk0NjgyNWZlMDhiY2YyMDJmNzAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCgx2AcxEEuxU+jtQA2auVxoOwiF jO3TJZwnzn2sG6O5O7Eq4c7JDCLGh3MNxI0w6lIEpzvEtFo3N/l8RakmJjSwRipB DeAZ0AwQaRaOTR2OWdJMPttXHYvf58llKDbRRhowlAN/zSjKTXU3eB5fSsMBaDP9 xUFq1o3oZ9Alfx7H/SkUSZtrTc84+6yE0qKB4bebQ/22Oik+2bO2Pm2hiTMFfnvf XeWNWgMqx/O001COkC65yUI0pJlyx860qgHBcrrPYWdCPZGK35Qs9qiMZY9W5bxb 5X2xf8VLAV19xVQMEbyARwJ9+HFR4LQuHvt5v040KN+hkIOcoJ72/rtCEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMPLk29dZfyl92yUaCX+CLzyAvcAMB8GA1UdIwQY MBaAFN6oXyFmipjX6Bp0GD8MzlEwhmAbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM3FoZklXYUttTmZvR25RWVB3ek9VVENHWUJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85NDlkYWEtMWVkMS00MDg4LTljNGIt NTJmOGZmMThkMDY5LzEvM3FoZklXYUttTmZvR25RWVB3ek9VVENHWUJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85NDlkYWEtMWVkMS00MDg4LTljNGItNTJmOGZmMThkMDY5 LzEvM3FoZklXYUttTmZvR25RWVB3ek9VVENHWUJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApodX7NXX Xp9xHfpN5Sh3tv9W8v71WCSVRQYWJSOFdtnfaIXHGp6TIpFw6EjrldPGbebpdGSh fFiBBXKHRosHeHVjG+66+5hS04z1PYul0e1aIEnXFP2WpXgk4u3jIKEHywQ8udP9 jhxCgTbpJmnu5DehjU7mUjqH71yAgIaJj8rn+6VQCUeoL6YU7NzY3lGvvfly0sgg uM44wpoAVVID8rufuZ4Y/FNidfzqXHWMaVPm5Rf1SPN1SGvdjWq448Br1wZu+Ze2 JA5uNrD5bVRbjtBGQL55vbF+AxQ2KvCglmd90wXTg816hX/dUbHQbNXX5OCnH7Lh Z7b5IxBqykjSZQ== -----END CERTIFICATE-----Generated at Sat Feb 7 12:39:18 2026 by rpki-client