This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json) Hash identifier: BgTR9HalqX1d4oZQwA0D56MZMNjwhAQc1Fsv+wrF9tg= Subject key identifier: 4B:87:FB:A1:8D:73:98:A4:C8:96:F2:D1:FC:C7:F9:FF:0D:60:6C:CB Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa Certificate serial: 019C427D45A6AD675E4B57DF9C4331E34554 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft Manifest number: 17A1 Signing time: Mon 09 Feb 2026 13:00:31 +0000 Manifest this update: Mon 09 Feb 2026 13:00:31 +0000 Manifest next update: Tue 10 Feb 2026 13:00:31 +0000 Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: fFM52iFJwx2wllxnCGx5zTtk8FSC6kekSGwZmAUamrM=) 2: FFrrJg1f7sBn9CMNkWOHWkncPKA.roa (hash: RRbiIEi7LB7ItO/8kZqYNCorz0xLwEEZeK7jHRHtAV8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:45:a6:ad:67:5e:4b:57:df:9c:43:31:e3:45:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa Validity Not Before: Feb 9 13:00:31 2026 GMT Not After : Feb 10 13:00:31 2026 GMT Subject: CN=4b87fba18d7398a4c896f2d1fcc7f9ff0d606ccb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9b:5d:b9:92:17:c3:82:98:4d:fa:36:c1:09: 89:e8:96:4b:59:a7:28:05:43:a1:e6:50:fa:e6:f2: f2:67:93:02:bc:c3:04:c6:22:c0:19:54:b9:78:0e: 2a:a0:d4:e3:cc:30:d9:4c:d2:69:68:70:ec:e1:08: 90:07:50:ae:18:ec:01:ce:7c:d4:96:3a:1a:66:4a: 1c:7d:07:af:96:d1:ec:89:fe:49:68:eb:d6:81:5f: 66:86:52:3e:ab:6c:5e:c9:96:81:fd:15:a8:70:00: 11:e5:e6:8b:e5:5d:f0:78:10:a7:8a:e7:dc:01:8a: c3:83:01:90:42:a7:88:f0:1d:53:54:07:34:af:4a: 0e:40:47:2a:7f:d4:35:89:0a:13:df:cf:2d:95:9d: b1:85:cf:3b:5e:c9:98:8d:b7:8e:e4:b1:8a:39:86: 1c:e5:46:68:7e:a1:67:48:c0:5a:68:9a:4b:47:01: 63:8c:56:f2:c6:f1:8b:de:cc:86:29:a1:98:e7:fb: f6:1c:93:72:79:e0:24:02:8d:f3:c3:26:68:6f:fe: 26:cd:4f:55:2b:3a:ab:fc:4e:e2:a0:98:18:60:6e: 6a:76:a2:f9:8f:59:78:4e:6f:e9:59:c8:2a:8a:af: 55:6b:8c:f6:57:13:54:f4:09:dc:4b:ac:52:46:6a: e1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:87:FB:A1:8D:73:98:A4:C8:96:F2:D1:FC:C7:F9:FF:0D:60:6C:CB X509v3 Authority Key Identifier: keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:86:28:73:85:d1:1b:38:e6:d0:16:20:54:4e:c9:9b:ce:78: 0f:34:01:83:fa:5c:12:ca:7e:30:98:80:eb:97:25:b7:e0:d0: 54:6a:e4:80:29:c4:73:b4:24:27:9d:ad:4d:2c:2b:13:d1:b1: 7e:f7:cb:e9:5e:8e:76:f3:86:13:1a:3c:df:c7:a8:97:a7:b3: f8:9b:39:e8:91:e8:8e:1e:15:1f:c6:57:1f:8c:eb:59:fa:9c: 26:d1:ec:09:6b:8c:7a:4e:2b:a3:0c:b4:0f:fb:3f:62:2b:90: 56:42:40:ca:f3:d5:82:45:a4:ec:5d:5d:9a:0d:25:2d:4f:b2: 29:5b:19:e2:6c:f9:33:80:bf:d6:fc:56:2b:de:7c:c0:d7:1c: f4:14:47:90:db:2d:c8:05:4d:94:52:e2:a5:fa:e7:50:0a:d5: f9:19:70:7d:5c:bc:3c:77:c2:bc:35:d7:6f:f3:95:8d:89:2f: 8a:f8:8d:43:6e:9a:40:29:23:7a:52:a4:4b:aa:13:99:71:e3: f3:65:1c:48:83:f8:30:1f:8e:f9:2a:78:11:53:33:5f:0d:35: 50:e2:4f:b4:c1:8d:68:ef:60:ce:37:60:0e:b5:39:51:37:ba: df:89:25:29:2d:f9:2b:84:cc:1c:a7:43:67:64:e0:c9:10:10: 96:11:19:02 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfUWmrWdeS1ffnEMx40VUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNjZkOGI5ZDM4ZDViYjE5Y2ZhMGM0NjQ0YjQ1MjkzZDFl OGI2ZmEwHhcNMjYwMjA5MTMwMDMxWhcNMjYwMjEwMTMwMDMxWjAzMTEwLwYDVQQD Eyg0Yjg3ZmJhMThkNzM5OGE0Yzg5NmYyZDFmY2M3ZjlmZjBkNjA2Y2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1JtduZIXw4KYTfo2wQmJ6JZLWaco BUOh5lD65vLyZ5MCvMMExiLAGVS5eA4qoNTjzDDZTNJpaHDs4QiQB1CuGOwBznzU ljoaZkocfQevltHsif5JaOvWgV9mhlI+q2xeyZaB/RWocAAR5eaL5V3weBCniufc AYrDgwGQQqeI8B1TVAc0r0oOQEcqf9Q1iQoT388tlZ2xhc87XsmYjbeO5LGKOYYc 5UZofqFnSMBaaJpLRwFjjFbyxvGL3syGKaGY5/v2HJNyeeAkAo3zwyZob/4mzU9V Kzqr/E7ioJgYYG5qdqL5j1l4Tm/pWcgqiq9Va4z2VxNU9AncS6xSRmrhbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEuH+6GNc5ikyJby0fzH+f8NYGzLMB8GA1UdIwQY MBaAFNxm2LnTjVuxnPoMRkS0UpPR6Lb6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUt NDc3MWQxYTRkZGYwLzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUtNDc3MWQxYTRkZGYw LzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlIYoc4XR Gzjm0BYgVE7Jm854DzQBg/pcEsp+MJiA65clt+DQVGrkgCnEc7QkJ52tTSwrE9Gx fvfL6V6OdvOGExo838eol6ez+Js56JHojh4VH8ZXH4zrWfqcJtHsCWuMek4rowy0 D/s/YiuQVkJAyvPVgkWk7F1dmg0lLU+yKVsZ4mz5M4C/1vxWK958wNcc9BRHkNst yAVNlFLipfrnUArV+RlwfVy8PHfCvDXXb/OVjYkviviNQ26aQCkjelKkS6oTmXHj 82UcSIP4MB+O+Sp4EVMzXw01UOJPtMGNaO9gzjdgDrU5UTe634klKS35K4TMHKdD Z2TgyRAQlhEZAg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:01:29 2026 by rpki-client