This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft File: 3DC4_dBG72WGgJfwNrinyFVyqtA.mft (raw, json) Hash identifier: kGZ5j4TgwMnMZ7oFzDyL50VM4EM7Hah2p6JvJxEZZmE= Subject key identifier: 6C:17:04:10:76:1E:B8:A4:B3:E1:B0:E0:50:CC:36:BB:9B:2E:70:5E Authority key identifier: DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0 Certificate issuer: /CN=dc30b8fdd046ef65868097f036b8a7c85572aad0 Certificate serial: 019C438FC9639C5C40C2827CB82527F1E60E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 18:00:22 +0000 Manifest this update: Mon 09 Feb 2026 18:00:22 +0000 Manifest next update: Tue 10 Feb 2026 18:00:22 +0000 Files and hashes: 1: 3DC4_dBG72WGgJfwNrinyFVyqtA.crl (hash: J/66XHf/4zPAfJJ9YxEnTJ/laC1lIWywOdQhpBvLnn4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:c9:63:9c:5c:40:c2:82:7c:b8:25:27:f1:e6:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc30b8fdd046ef65868097f036b8a7c85572aad0 Validity Not Before: Feb 9 18:00:22 2026 GMT Not After : Feb 10 18:00:22 2026 GMT Subject: CN=6c170410761eb8a4b3e1b0e050cc36bb9b2e705e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:12:0a:7a:0d:9f:d1:94:07:1d:42:b4:a4:62: db:b4:7b:0a:1c:81:7c:9d:c1:3d:7b:9c:36:f9:cf: 6d:82:33:7e:8e:2a:75:f7:66:84:35:9e:1a:22:ef: a0:a9:86:ab:4e:1d:aa:38:8d:f9:1b:1a:5a:cb:36: d6:1e:23:e7:de:28:11:b7:c1:00:4e:a1:fc:c2:75: f3:9f:08:2c:ee:7d:82:5b:65:81:8c:81:da:2c:45: 81:62:52:4b:88:1b:7f:7f:7b:5b:f6:33:3d:5e:89: 65:8f:e4:84:88:09:ab:1d:50:4c:19:47:06:9b:13: ed:76:ab:bd:11:e5:e0:6d:a6:d1:9f:c9:25:69:8f: ab:9b:f2:e0:1f:d4:87:be:47:3d:ef:f9:1f:9c:d3: 57:21:49:6a:e2:85:61:dc:41:84:bb:8d:3d:72:77: fa:54:d2:87:b4:ba:87:07:63:fa:0b:8c:e9:27:94: 3d:4f:37:82:fe:c6:4f:8e:e2:37:fa:88:c6:29:82: 15:39:d8:a6:3d:ed:0f:b9:1b:1e:9e:b8:a4:11:cc: d6:d8:52:04:06:71:ad:74:84:e9:5b:14:87:aa:79: b6:6c:e1:4f:a7:15:44:c3:58:96:9c:4e:b3:c6:73: 41:3c:5b:22:e8:c9:fb:be:0c:15:d2:d8:ae:8a:7d: c5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:17:04:10:76:1E:B8:A4:B3:E1:B0:E0:50:CC:36:BB:9B:2E:70:5E X509v3 Authority Key Identifier: keyid:DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:e3:1d:de:4d:c0:b1:69:12:29:83:23:d4:39:b6:97:92:c1: 2d:79:1d:63:3f:37:55:b4:37:02:3b:2c:a8:79:b2:95:fe:8c: 20:7b:65:5d:1e:ef:06:5c:f2:49:56:4b:ed:3d:08:3a:6c:38: f1:1d:fe:d6:67:66:47:b6:93:77:cb:ff:19:b2:16:0d:a6:d3: b9:e2:29:81:51:8c:f6:dd:2f:b9:88:91:4e:ef:44:a8:4c:bf: 8e:21:3a:94:b4:79:69:bd:34:bb:87:a5:1e:73:fd:48:6a:2a: 19:0c:8e:6c:fb:39:74:a2:f4:be:58:e7:72:a1:a5:fb:c2:dc: da:b3:a1:8b:62:2e:47:c6:df:12:f8:d5:80:7f:24:24:2c:c1: 19:14:0f:6d:eb:c7:28:79:26:a4:d0:23:b4:29:1d:5e:78:e0: 3a:07:d2:3f:bc:c6:1c:4a:fe:b1:cc:b8:af:bf:e2:e1:fd:9a: 50:81:3f:47:dd:e9:af:f8:46:44:fc:28:6c:ba:96:98:61:85: 12:16:50:df:3d:50:cf:88:dc:89:f7:30:ef:ae:a7:1f:ba:ea: 8f:41:f5:93:c8:84:56:23:db:fe:c1:0b:bf:f1:c2:24:73:f4: 71:18:f0:a5:42:ad:79:77:90:bb:21:b1:b6:04:e1:18:b3:bf: 7d:5d:e9:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj8ljnFxAwoJ8uCUn8eYOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjMzBiOGZkZDA0NmVmNjU4NjgwOTdmMDM2YjhhN2M4NTU3 MmFhZDAwHhcNMjYwMjA5MTgwMDIyWhcNMjYwMjEwMTgwMDIyWjAzMTEwLwYDVQQD Eyg2YzE3MDQxMDc2MWViOGE0YjNlMWIwZTA1MGNjMzZiYjliMmU3MDVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5RIKeg2f0ZQHHUK0pGLbtHsKHIF8 ncE9e5w2+c9tgjN+jip192aENZ4aIu+gqYarTh2qOI35GxpayzbWHiPn3igRt8EA TqH8wnXznwgs7n2CW2WBjIHaLEWBYlJLiBt/f3tb9jM9Xollj+SEiAmrHVBMGUcG mxPtdqu9EeXgbabRn8klaY+rm/LgH9SHvkc97/kfnNNXIUlq4oVh3EGEu409cnf6 VNKHtLqHB2P6C4zpJ5Q9TzeC/sZPjuI3+ojGKYIVOdimPe0PuRsenrikEczW2FIE BnGtdITpWxSHqnm2bOFPpxVEw1iWnE6zxnNBPFsi6Mn7vgwV0tiuin3F+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGwXBBB2Hriks+Gw4FDMNrubLnBeMB8GA1UdIwQY MBaAFNwwuP3QRu9lhoCX8Da4p8hVcqrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYt MjlhMGFhNmM0YWQxLzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYtMjlhMGFhNmM0YWQx LzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoOMd3k3A sWkSKYMj1Dm2l5LBLXkdYz83VbQ3AjssqHmylf6MIHtlXR7vBlzySVZL7T0IOmw4 8R3+1mdmR7aTd8v/GbIWDabTueIpgVGM9t0vuYiRTu9EqEy/jiE6lLR5ab00u4el HnP9SGoqGQyObPs5dKL0vljncqGl+8Lc2rOhi2IuR8bfEvjVgH8kJCzBGRQPbevH KHkmpNAjtCkdXnjgOgfSP7zGHEr+scy4r7/i4f2aUIE/R93pr/hGRPwobLqWmGGF EhZQ3z1Qz4jcifcw766nH7rqj0H1k8iEViPb/sELv/HCJHP0cRjwpUKteXeQuyGx tgThGLO/fV3prA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:53 2026 by rpki-client