This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft File: 3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json) Hash identifier: FnQJNztVtBFxcCWsbXiZFPdWADHiLWQ6AHPs5z7u9/8= Subject key identifier: 3E:7F:BD:4E:BF:CE:05:3A:07:2A:A7:EC:F1:B3:CD:88:E1:9E:D7:34 Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38 Certificate issuer: /CN=debe517e7475e17c069643910fd6f77b317b8538 Certificate serial: 019C446BAE0107E4E889831A4080FEEF60B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft Manifest number: 0AA5 Signing time: Mon 09 Feb 2026 22:00:33 +0000 Manifest this update: Mon 09 Feb 2026 22:00:33 +0000 Manifest next update: Tue 10 Feb 2026 22:00:33 +0000 Files and hashes: 1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: AE+c3kDEnklaDRTSe6PEVGF+1/pQI0nm7/foqP0iQUE=) 2: y8l-GZaij3nY_lsT-zDKBTkrGss.roa (hash: edJk2bhQjppncI7NDvSvP36a6hLKHOIsn+JqFnH50EM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:ae:01:07:e4:e8:89:83:1a:40:80:fe:ef:60:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538 Validity Not Before: Feb 9 22:00:33 2026 GMT Not After : Feb 10 22:00:33 2026 GMT Subject: CN=3e7fbd4ebfce053a072aa7ecf1b3cd88e19ed734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:14:c8:73:73:4a:a0:29:2b:6c:64:e1:0e:7c: f7:b0:fd:23:2b:64:de:4d:53:05:de:9c:4d:ae:53: 30:39:b5:bb:64:40:21:b1:aa:0b:9d:b6:97:5f:2b: df:51:de:ec:ba:2b:8e:0e:b9:fa:48:59:b2:06:0b: 26:15:0e:2b:03:6d:aa:ce:bd:53:c6:81:41:51:28: f7:15:20:5b:ae:06:6f:e6:8c:94:c0:c8:4f:7f:67: 0c:a0:9f:5d:8b:70:5c:56:ba:f2:ae:e0:32:aa:68: 33:53:76:40:79:1a:ad:22:a2:78:b6:ff:90:c4:65: 27:af:58:99:ec:1d:d2:81:97:50:c5:fe:e5:d5:36: fc:0c:75:66:50:b6:91:fb:1d:9f:35:3b:60:85:94: f3:55:76:1b:3c:68:5d:aa:ad:24:a0:e8:b6:27:b2: ef:20:71:1d:6c:9b:54:59:03:e3:83:4b:9f:c8:b9: f0:3f:83:5d:82:fe:9b:d6:38:fd:eb:7f:cf:cd:41: ad:56:8a:51:59:8e:e1:9d:af:f3:4d:42:b0:39:2b: c2:a0:14:09:93:ea:03:a6:1c:57:9f:23:a1:fe:98: 4b:d4:6f:f9:34:d9:cd:a8:f1:78:13:41:b5:ea:12: 77:55:76:39:2e:c2:b2:d3:c1:97:52:ec:a3:5d:fc: 6c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7F:BD:4E:BF:CE:05:3A:07:2A:A7:EC:F1:B3:CD:88:E1:9E:D7:34 X509v3 Authority Key Identifier: keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:e3:58:f5:9e:96:93:51:14:ed:7f:a3:2a:83:e0:a6:d0:94: bd:b7:94:00:73:1a:df:d8:7b:f5:05:f5:ce:81:ad:83:fd:ad: cb:91:9f:3c:61:20:14:50:68:54:08:85:30:76:21:1e:0a:d1: 72:af:96:af:b6:83:a2:93:b2:e7:09:fd:05:8d:b4:fd:c6:26: 21:00:25:65:05:97:8f:39:ad:aa:2e:23:7d:59:94:59:58:f2: 06:9e:26:65:54:43:1a:d8:da:ce:ea:7d:96:5b:5c:ab:02:f3: f0:47:8e:19:9b:c8:d4:46:69:1c:3e:d8:1c:0c:28:f5:15:f0: dd:f5:ab:5c:10:a9:18:5a:72:28:9a:08:ac:b2:b7:a0:05:f0: 66:e4:c2:eb:a7:4c:b8:7f:a4:43:08:f2:ef:da:2f:55:e1:18: 22:6a:af:c1:d1:df:6c:f1:5f:7f:41:64:e0:de:cd:af:59:7c: ef:03:83:3b:43:6b:e5:74:65:a2:46:0c:b1:82:77:30:41:80: 3e:09:9a:f4:bf:5a:7d:94:fb:a1:bc:e4:c3:08:e0:f6:a6:16: 4c:99:8a:b3:32:13:7d:6e:75:c0:a1:56:a3:ae:53:65:00:e2: f5:11:3c:57:d8:94:f5:8e:3b:d0:36:55:97:c4:71:2e:d0:bb: 86:b9:be:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa64BB+ToiYMaQID+72C4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlYmU1MTdlNzQ3NWUxN2MwNjk2NDM5MTBmZDZmNzdiMzE3 Yjg1MzgwHhcNMjYwMjA5MjIwMDMzWhcNMjYwMjEwMjIwMDMzWjAzMTEwLwYDVQQD EygzZTdmYmQ0ZWJmY2UwNTNhMDcyYWE3ZWNmMWIzY2Q4OGUxOWVkNzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRTIc3NKoCkrbGThDnz3sP0jK2Te TVMF3pxNrlMwObW7ZEAhsaoLnbaXXyvfUd7suiuODrn6SFmyBgsmFQ4rA22qzr1T xoFBUSj3FSBbrgZv5oyUwMhPf2cMoJ9di3BcVrryruAyqmgzU3ZAeRqtIqJ4tv+Q xGUnr1iZ7B3SgZdQxf7l1Tb8DHVmULaR+x2fNTtghZTzVXYbPGhdqq0koOi2J7Lv IHEdbJtUWQPjg0ufyLnwP4Ndgv6b1jj963/PzUGtVopRWY7hna/zTUKwOSvCoBQJ k+oDphxXnyOh/phL1G/5NNnNqPF4E0G16hJ3VXY5LsKy08GXUuyjXfxsSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD5/vU6/zgU6Byqn7PGzzYjhntc0MB8GA1UdIwQY MBaAFN6+UX50deF8BpZDkQ/W93sxe4U4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAt ODlmNWM0ZjMyOTcwLzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAtODlmNWM0ZjMyOTcw LzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALeNY9Z6W k1EU7X+jKoPgptCUvbeUAHMa39h79QX1zoGtg/2ty5GfPGEgFFBoVAiFMHYhHgrR cq+Wr7aDopOy5wn9BY20/cYmIQAlZQWXjzmtqi4jfVmUWVjyBp4mZVRDGtjazup9 lltcqwLz8EeOGZvI1EZpHD7YHAwo9RXw3fWrXBCpGFpyKJoIrLK3oAXwZuTC66dM uH+kQwjy79ovVeEYImqvwdHfbPFff0Fk4N7Nr1l87wODO0Nr5XRlokYMsYJ3MEGA Pgma9L9afZT7obzkwwjg9qYWTJmKszITfW51wKFWo65TZQDi9RE8V9iU9Y470DZV l8RxLtC7hrm+XA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:27:57 2026 by rpki-client