This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft File: 04G3AXBRkLnOnRsYRTU4TnHKMWU.mft (raw, json) Hash identifier: dR8YqHWU0rA4xk4lOcqXOUcBg61+vQTPF2E60eOh+78= Subject key identifier: 52:D7:BC:8A:70:3A:87:15:02:B7:F0:71:6F:E8:D5:34:9E:B9:99:6F Authority key identifier: D3:81:B7:01:70:51:90:B9:CE:9D:1B:18:45:35:38:4E:71:CA:31:65 Certificate issuer: /CN=d381b701705190b9ce9d1b184535384e71ca3165 Certificate serial: 019C4133BB1F36C9E281F5F59CACCCB0D5CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 07:00:35 +0000 Manifest this update: Mon 09 Feb 2026 07:00:35 +0000 Manifest next update: Tue 10 Feb 2026 07:00:35 +0000 Files and hashes: 1: 04G3AXBRkLnOnRsYRTU4TnHKMWU.crl (hash: FaOpyhy4nUinzlqeQZC6d/uGnQqVMtafS+aR3bQoDJA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:bb:1f:36:c9:e2:81:f5:f5:9c:ac:cc:b0:d5:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d381b701705190b9ce9d1b184535384e71ca3165 Validity Not Before: Feb 9 07:00:35 2026 GMT Not After : Feb 10 07:00:35 2026 GMT Subject: CN=52d7bc8a703a871502b7f0716fe8d5349eb9996f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:08:59:87:8f:80:ff:1e:61:2c:17:13:82:a6: 8d:ce:03:14:c5:79:d3:36:7f:6f:53:6e:2a:8a:82: e3:de:6d:ba:70:fb:c7:c9:ab:a8:a4:1b:4a:b5:9b: 16:1c:9b:4b:7c:93:6d:1c:d9:74:45:94:d0:2f:54: bd:b5:30:42:7f:b2:ae:58:00:ca:c3:61:18:0f:f5: 6b:73:ac:13:ce:04:af:58:dd:9a:9b:a6:77:91:03: dd:18:14:e8:cc:01:0a:3c:a6:04:63:ee:53:b4:9d: 53:70:ff:e9:6b:c5:d8:4e:34:29:83:77:95:41:23: e4:f9:ce:b9:e3:68:c5:3f:98:ea:b0:08:ed:05:87: cb:ff:79:76:f1:96:5b:42:c2:a3:5b:15:cc:d2:e8: 86:6f:83:d1:af:c7:9d:66:80:1d:fe:58:94:a6:92: 0b:3b:cd:b8:d3:ee:34:42:30:a6:00:f4:14:0f:54: 77:ee:b7:38:55:c5:e5:46:b2:a0:98:00:90:82:f4: f4:55:4e:ce:a0:bb:97:9c:52:1c:f4:22:9a:21:29: 7b:e2:aa:88:ca:9c:f9:fc:95:ec:1b:c4:6e:6d:c5: b3:13:b1:60:3b:8f:4b:0f:0f:db:0b:07:4d:13:22: 9e:ce:67:86:08:c3:23:89:bf:4c:3b:c1:d3:41:43: d0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:D7:BC:8A:70:3A:87:15:02:B7:F0:71:6F:E8:D5:34:9E:B9:99:6F X509v3 Authority Key Identifier: keyid:D3:81:B7:01:70:51:90:B9:CE:9D:1B:18:45:35:38:4E:71:CA:31:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:8f:04:18:38:5d:af:55:7a:c2:42:2c:a8:75:ce:f1:7b:8b: 68:ab:35:b6:33:40:5d:77:0d:56:7f:97:79:be:20:96:c5:48: 65:5f:4e:da:ef:58:45:51:e8:fc:44:5d:e5:ab:79:4a:37:a0: 4a:a5:0e:43:f6:4f:b7:02:13:f5:95:33:ce:30:af:73:32:6c: d4:7e:76:89:34:ee:22:a9:38:01:d6:41:2f:49:0c:63:7c:ef: ea:54:11:1c:26:9c:4e:3e:1a:f2:cf:57:a1:34:5e:86:22:ab: 63:01:52:2e:3c:2c:4c:ad:f9:60:f4:7e:ce:c9:b2:bd:3a:20: a8:92:08:ee:76:32:13:a6:db:dc:d3:22:a6:b1:23:8d:82:d1: a8:33:e1:16:e8:95:f9:5b:29:00:5d:b7:96:6e:1e:b0:c4:a0: e1:2a:af:04:6c:7a:61:bc:16:85:ba:62:15:e7:df:a0:37:c7: 8f:bc:fe:78:d3:08:a3:b4:ed:c4:af:92:6c:55:2a:d3:ca:72: ae:93:70:c6:4a:99:f0:50:18:d7:fb:c9:3a:7a:8d:00:c5:31: 93:0a:28:79:de:18:8c:41:76:be:82:a1:bb:6a:2f:5e:2a:20: da:d0:43:08:b7:51:ed:b7:22:f1:57:7f:fd:bd:ca:be:c4:16: c5:bf:94:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM7sfNsnigfX1nKzMsNXOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzODFiNzAxNzA1MTkwYjljZTlkMWIxODQ1MzUzODRlNzFj YTMxNjUwHhcNMjYwMjA5MDcwMDM1WhcNMjYwMjEwMDcwMDM1WjAzMTEwLwYDVQQD Eyg1MmQ3YmM4YTcwM2E4NzE1MDJiN2YwNzE2ZmU4ZDUzNDllYjk5OTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmghZh4+A/x5hLBcTgqaNzgMUxXnT Nn9vU24qioLj3m26cPvHyauopBtKtZsWHJtLfJNtHNl0RZTQL1S9tTBCf7KuWADK w2EYD/Vrc6wTzgSvWN2am6Z3kQPdGBTozAEKPKYEY+5TtJ1TcP/pa8XYTjQpg3eV QSPk+c6542jFP5jqsAjtBYfL/3l28ZZbQsKjWxXM0uiGb4PRr8edZoAd/liUppIL O8240+40QjCmAPQUD1R37rc4VcXlRrKgmACQgvT0VU7OoLuXnFIc9CKaISl74qqI ypz5/JXsG8RubcWzE7FgO49LDw/bCwdNEyKezmeGCMMjib9MO8HTQUPQLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFLXvIpwOocVArfwcW/o1TSeuZlvMB8GA1UdIwQY MBaAFNOBtwFwUZC5zp0bGEU1OE5xyjFlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDRHM0FYQlJrTG5PblJzWVJUVTRUbkhLTVdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS82MDNjNTgtMTAwMi00MDY5LTg5MTct NzA1NGViMmM0YzAwLzEvMDRHM0FYQlJrTG5PblJzWVJUVTRUbkhLTVdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS82MDNjNTgtMTAwMi00MDY5LTg5MTctNzA1NGViMmM0YzAw LzEvMDRHM0FYQlJrTG5PblJzWVJUVTRUbkhLTVdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn48EGDhd r1V6wkIsqHXO8XuLaKs1tjNAXXcNVn+Xeb4glsVIZV9O2u9YRVHo/ERd5at5Sjeg SqUOQ/ZPtwIT9ZUzzjCvczJs1H52iTTuIqk4AdZBL0kMY3zv6lQRHCacTj4a8s9X oTRehiKrYwFSLjwsTK35YPR+zsmyvTogqJII7nYyE6bb3NMiprEjjYLRqDPhFuiV +VspAF23lm4esMSg4SqvBGx6YbwWhbpiFeffoDfHj7z+eNMIo7TtxK+SbFUq08py rpNwxkqZ8FAY1/vJOnqNAMUxkwooed4YjEF2voKhu2ovXiog2tBDCLdR7bci8Vd/ /b3KvsQWxb+U7A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:51 2026 by rpki-client