This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.mft File: 3Rc4MRWBIorSh1OUS-i88hafq6k.mft (raw, json) Hash identifier: jejmmQZn8kGACja1OfC38opmCyEgRPdFUZqyz4nP0Hk= Subject key identifier: 74:F4:5F:5D:37:D9:AF:73:D5:07:BD:94:50:54:16:E4:E8:3C:BA:EE Authority key identifier: DD:17:38:31:15:81:22:8A:D2:87:53:94:4B:E8:BC:F2:16:9F:AB:A9 Certificate issuer: /CN=dd1738311581228ad28753944be8bcf2169faba9 Certificate serial: 019C4322E4C5F907082CC0853E39CF14F9D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Rc4MRWBIorSh1OUS-i88hafq6k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.mft Manifest number: 0FB1 Signing time: Mon 09 Feb 2026 16:01:26 +0000 Manifest this update: Mon 09 Feb 2026 16:01:26 +0000 Manifest next update: Tue 10 Feb 2026 16:01:26 +0000 Files and hashes: 1: 3Rc4MRWBIorSh1OUS-i88hafq6k.crl (hash: /jLaZ9H+b4FGPHdyfwL15N3RQeiEGlmml7/JCUNGbPQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.crl rsync://rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.mft rsync://rpki.ripe.net/repository/DEFAULT/3Rc4MRWBIorSh1OUS-i88hafq6k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:e4:c5:f9:07:08:2c:c0:85:3e:39:cf:14:f9:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd1738311581228ad28753944be8bcf2169faba9 Validity Not Before: Feb 9 16:01:26 2026 GMT Not After : Feb 10 16:01:26 2026 GMT Subject: CN=74f45f5d37d9af73d507bd94505416e4e83cbaee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:21:59:ac:22:49:d6:61:68:1a:c8:86:c6:4f: 8a:b2:04:c9:c5:61:6d:5a:7f:bb:8f:93:b8:df:c7: f0:27:25:e5:41:c8:8e:45:55:98:c0:ea:13:05:63: 69:ed:03:2b:7c:e1:64:5e:09:01:91:ca:8d:cd:ed: d9:03:f4:b5:62:98:37:d0:5a:da:0b:d4:c2:ed:15: 06:2e:c5:02:fe:d7:97:c7:ba:88:17:e9:1a:6e:27: c5:68:5d:16:45:c6:b6:6b:4d:ca:59:e6:e6:42:83: a9:10:94:25:93:f3:2f:12:36:f6:6d:5c:3a:d1:b6: 9f:fd:88:00:f7:37:4a:fe:67:67:90:d2:f4:33:b2: e9:ae:c5:20:95:80:af:0a:b6:1a:b7:1d:db:6b:80: a8:cf:64:ac:8c:16:22:4d:f9:b0:93:40:1e:cf:8c: 85:26:45:17:7b:61:d3:2d:c5:ee:2f:3f:e7:22:eb: 6b:19:e9:18:ff:d6:8d:d0:85:4c:49:4d:6f:28:b4: 12:ca:e3:d6:89:e7:cf:ad:1a:f9:fd:fb:2a:78:15: 9d:1b:c0:b3:93:26:62:95:e3:bb:6b:37:93:70:93: 10:59:bf:fe:e9:05:3a:f1:14:e4:5d:b9:56:c8:3f: a7:35:29:80:39:6b:3f:d5:a5:1e:27:21:e9:a4:dd: d4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F4:5F:5D:37:D9:AF:73:D5:07:BD:94:50:54:16:E4:E8:3C:BA:EE X509v3 Authority Key Identifier: keyid:DD:17:38:31:15:81:22:8A:D2:87:53:94:4B:E8:BC:F2:16:9F:AB:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Rc4MRWBIorSh1OUS-i88hafq6k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c7:e3:af:f0:bd:dd:d9:fd:d9:67:81:c1:e0:2c:e0:9a:01:9c: 2e:2e:bb:94:d8:88:17:1a:03:71:3a:0a:f9:70:5a:5a:99:61: 3e:49:21:e7:81:d1:b8:2f:9c:b7:57:fc:1c:f5:06:28:eb:e2: a9:54:c5:4a:36:81:36:91:cb:81:eb:52:51:a4:9f:33:68:06: 8c:da:04:a1:88:26:e1:f2:f7:90:44:33:a6:df:df:0a:fd:2e: cf:d9:81:5f:ef:db:7b:43:84:a4:c9:54:ba:8b:d7:9d:3b:85: cb:8c:62:61:8e:bf:06:58:25:9d:ed:50:bd:e8:d6:e4:35:4e: 35:b6:e8:79:99:1b:5c:16:bf:b0:6f:0f:9a:df:73:05:9f:e8: b9:68:de:64:d5:1c:ae:2d:e9:ae:5a:2f:cb:91:c3:6c:54:42: 06:48:c6:0b:e1:ea:48:07:7b:fc:db:1a:bd:c3:ce:93:b6:db: b0:a4:9d:60:dd:ee:3c:7f:18:e4:19:77:9b:7f:21:34:cc:98: 7c:4d:a6:d4:6f:78:31:36:c8:4a:2a:0f:3b:03:dd:9b:48:98: 16:e5:5f:1d:48:d3:9a:c4:f2:ee:d6:4e:0e:da:7d:35:ec:3e: 6e:14:3d:db:c4:3e:eb:80:b5:f1:86:0e:28:15:44:8a:4c:14: d9:8c:af:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIuTF+QcILMCFPjnPFPnZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkMTczODMxMTU4MTIyOGFkMjg3NTM5NDRiZThiY2YyMTY5 ZmFiYTkwHhcNMjYwMjA5MTYwMTI2WhcNMjYwMjEwMTYwMTI2WjAzMTEwLwYDVQQD Eyg3NGY0NWY1ZDM3ZDlhZjczZDUwN2JkOTQ1MDU0MTZlNGU4M2NiYWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2yFZrCJJ1mFoGsiGxk+KsgTJxWFt Wn+7j5O438fwJyXlQciORVWYwOoTBWNp7QMrfOFkXgkBkcqNze3ZA/S1Ypg30Fra C9TC7RUGLsUC/teXx7qIF+kabifFaF0WRca2a03KWebmQoOpEJQlk/MvEjb2bVw6 0baf/YgA9zdK/mdnkNL0M7LprsUglYCvCrYatx3ba4Coz2SsjBYiTfmwk0Aez4yF JkUXe2HTLcXuLz/nIutrGekY/9aN0IVMSU1vKLQSyuPWiefPrRr5/fsqeBWdG8Cz kyZileO7azeTcJMQWb/+6QU68RTkXblWyD+nNSmAOWs/1aUeJyHppN3UkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHT0X1032a9z1Qe9lFBUFuToPLruMB8GA1UdIwQY MBaAFN0XODEVgSKK0odTlEvovPIWn6upMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1JjNE1SV0JJb3JTaDFPVVMtaTg4aGFmcTZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9iYzQxZjEtY2E3ZS00MjA1LWI4MWIt YmViZmEyZmNhNDZmLzEvM1JjNE1SV0JJb3JTaDFPVVMtaTg4aGFmcTZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS9iYzQxZjEtY2E3ZS00MjA1LWI4MWItYmViZmEyZmNhNDZm LzEvM1JjNE1SV0JJb3JTaDFPVVMtaTg4aGFmcTZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx+Ov8L3d 2f3ZZ4HB4CzgmgGcLi67lNiIFxoDcToK+XBaWplhPkkh54HRuC+ct1f8HPUGKOvi qVTFSjaBNpHLgetSUaSfM2gGjNoEoYgm4fL3kEQzpt/fCv0uz9mBX+/be0OEpMlU uovXnTuFy4xiYY6/Blglne1QvejW5DVONbboeZkbXBa/sG8Pmt9zBZ/ouWjeZNUc ri3prlovy5HDbFRCBkjGC+HqSAd7/NsavcPOk7bbsKSdYN3uPH8Y5Bl3m38hNMyY fE2m1G94MTbISioPOwPdm0iYFuVfHUjTmsTy7tZODtp9New+bhQ928Q+64C18YYO KBVEikwU2Yyv7A== -----END CERTIFICATE-----Generated at Tue Feb 10 01:40:52 2026 by rpki-client