This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft File: 3tRskpaCjJwCVTCqaEFgmt8FaaA.mft (raw, json) Hash identifier: VniTR+2a4FTjB8Gxrl/NjjviHE7SyAFw5Yxyd99RS3U= Subject key identifier: 4F:15:9A:CA:8E:ED:31:86:37:92:BD:64:BB:26:7E:DE:A2:A9:5C:5E Authority key identifier: DE:D4:6C:92:96:82:8C:9C:02:55:30:AA:68:41:60:9A:DF:05:69:A0 Certificate issuer: /CN=ded46c9296828c9c025530aa6841609adf0569a0 Certificate serial: 019C42462AFC1585B234C095F87B55DEEB2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft Manifest number: 0527 Signing time: Mon 09 Feb 2026 12:00:20 +0000 Manifest this update: Mon 09 Feb 2026 12:00:20 +0000 Manifest next update: Tue 10 Feb 2026 12:00:20 +0000 Files and hashes: 1: 3tRskpaCjJwCVTCqaEFgmt8FaaA.crl (hash: odZflbgUyQ5xRdWCXNbym5/imDcDD1NyNHUI/9rEAWw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:2a:fc:15:85:b2:34:c0:95:f8:7b:55:de:eb:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ded46c9296828c9c025530aa6841609adf0569a0 Validity Not Before: Feb 9 12:00:20 2026 GMT Not After : Feb 10 12:00:20 2026 GMT Subject: CN=4f159aca8eed31863792bd64bb267edea2a95c5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:cf:f8:81:4e:44:f8:45:89:3a:10:ad:21:53: 2f:37:82:f3:a6:c4:cc:7e:63:c5:ff:23:7e:97:88: f8:d0:f4:35:f4:2c:d3:3c:6e:04:d3:8f:af:a5:3a: ad:bc:6e:85:26:60:68:66:90:17:02:92:e5:a3:42: 31:03:02:de:a7:21:0e:d5:10:9f:31:60:d6:7d:e3: fe:8e:60:66:d1:be:36:f0:e8:8c:86:29:a8:0a:09: 1e:68:43:1d:f5:db:e3:9d:5b:58:32:88:b7:1a:c6: e9:f8:e2:c7:a9:9a:4c:a4:a8:21:d8:a5:60:42:36: 9d:bc:70:6d:6d:f2:f0:11:e0:25:80:9f:dc:cb:c5: 90:34:54:dc:c8:24:c0:5e:c5:f9:bc:6f:af:31:be: ea:e5:d9:19:ee:28:8c:0d:a5:b5:b6:32:50:4d:d1: d9:1e:4b:5c:ce:48:af:62:91:1c:9e:50:6a:c9:8b: b8:1b:f5:d5:ac:08:d5:a6:1c:f3:8c:e6:f4:05:f8: b8:94:3c:4d:83:8d:fe:6e:db:1f:a5:dd:c8:f2:47: d2:5a:26:bb:04:ee:ad:29:b8:dd:60:c4:cd:d2:b8: 49:66:e5:91:0f:69:a4:4d:3a:42:2d:e2:31:17:c7: f2:eb:2d:a3:18:b1:0a:21:eb:24:8d:09:9f:5f:37: 7f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:15:9A:CA:8E:ED:31:86:37:92:BD:64:BB:26:7E:DE:A2:A9:5C:5E X509v3 Authority Key Identifier: keyid:DE:D4:6C:92:96:82:8C:9C:02:55:30:AA:68:41:60:9A:DF:05:69:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:af:7b:1f:24:82:c7:79:cd:59:15:27:a6:23:ff:e2:0a:c8: 53:2e:87:8f:e5:44:cb:4d:a7:4b:f8:de:d3:50:ff:23:27:23: 70:03:b5:4b:c3:01:77:b5:12:f1:93:5d:1e:a6:9e:8e:3b:13: c2:16:88:0a:f8:86:64:40:ab:e2:81:9e:35:36:0e:b8:37:3e: 72:4d:d3:06:fe:d7:44:cf:c5:6d:b0:fb:2e:2c:6a:ec:16:1f: 90:dc:8f:1c:49:98:9b:6b:42:c8:eb:f9:81:8f:b7:c8:1e:d8: 65:ca:05:69:07:95:92:ac:27:b2:5b:95:3e:f4:b7:17:a1:d0: ac:e3:5b:0c:b8:9f:54:8a:d6:ac:76:cd:5d:04:2f:3d:91:13: 5a:de:2a:c3:88:d6:83:a8:4a:7f:c8:95:de:f5:a6:ad:7d:bc: 6e:2d:44:a6:42:83:b8:73:4f:7d:2f:31:18:16:00:26:a8:e4: af:6b:a4:8c:21:f6:3c:69:68:1e:c5:0a:dd:5c:1d:3f:eb:46: 7d:8a:b4:83:34:66:69:d0:8b:68:32:f4:53:73:52:67:b0:c2: 67:3e:c7:19:03:f0:e4:08:ca:20:3c:da:d2:62:0b:76:2b:c5: ab:1c:b7:7c:11:30:ea:84:b4:18:f5:12:ea:38:49:f5:e6:0b: 20:2f:3f:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRir8FYWyNMCV+HtV3ustMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlZDQ2YzkyOTY4MjhjOWMwMjU1MzBhYTY4NDE2MDlhZGYw NTY5YTAwHhcNMjYwMjA5MTIwMDIwWhcNMjYwMjEwMTIwMDIwWjAzMTEwLwYDVQQD Eyg0ZjE1OWFjYThlZWQzMTg2Mzc5MmJkNjRiYjI2N2VkZWEyYTk1YzVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnc/4gU5E+EWJOhCtIVMvN4LzpsTM fmPF/yN+l4j40PQ19CzTPG4E04+vpTqtvG6FJmBoZpAXApLlo0IxAwLepyEO1RCf MWDWfeP+jmBm0b428OiMhimoCgkeaEMd9dvjnVtYMoi3Gsbp+OLHqZpMpKgh2KVg QjadvHBtbfLwEeAlgJ/cy8WQNFTcyCTAXsX5vG+vMb7q5dkZ7iiMDaW1tjJQTdHZ HktczkivYpEcnlBqyYu4G/XVrAjVphzzjOb0Bfi4lDxNg43+btsfpd3I8kfSWia7 BO6tKbjdYMTN0rhJZuWRD2mkTTpCLeIxF8fy6y2jGLEKIeskjQmfXzd/QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE8VmsqO7TGGN5K9ZLsmft6iqVxeMB8GA1UdIwQY MBaAFN7UbJKWgoycAlUwqmhBYJrfBWmgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC85MzZmOTMtMDkyMi00ZjVkLThlM2Et YTAwMDdiZDVhY2U3LzEvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC85MzZmOTMtMDkyMi00ZjVkLThlM2EtYTAwMDdiZDVhY2U3 LzEvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACa97HySC x3nNWRUnpiP/4grIUy6Hj+VEy02nS/je01D/IycjcAO1S8MBd7US8ZNdHqaejjsT whaICviGZECr4oGeNTYOuDc+ck3TBv7XRM/FbbD7Lixq7BYfkNyPHEmYm2tCyOv5 gY+3yB7YZcoFaQeVkqwnsluVPvS3F6HQrONbDLifVIrWrHbNXQQvPZETWt4qw4jW g6hKf8iV3vWmrX28bi1EpkKDuHNPfS8xGBYAJqjkr2ukjCH2PGloHsUK3VwdP+tG fYq0gzRmadCLaDL0U3NSZ7DCZz7HGQPw5AjKIDza0mILdivFqxy3fBEw6oS0GPUS 6jhJ9eYLIC8/tw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:12 2026 by rpki-client