This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/86f93b-cd9d-4e82-bef0-9dcf6b3c0797/1/N3G9bi3aX6MFfEvCg_r3E6kVpdk.mft File: N3G9bi3aX6MFfEvCg_r3E6kVpdk.mft (raw, json) Hash identifier: 949a36CbGS+3Uk77N3gOPewZwKVouPw+1eIh58Midxk= Subject key identifier: 76:D0:74:5F:B2:6F:F9:6E:46:3E:E8:C8:2D:FD:FA:1D:31:7E:7F:C0 Authority key identifier: 37:71:BD:6E:2D:DA:5F:A3:05:7C:4B:C2:83:FA:F7:13:A9:15:A5:D9 Certificate issuer: /CN=3771bd6e2dda5fa3057c4bc283faf713a915a5d9 Certificate serial: 019C44DA4F371925D440E4BB47C42655653D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N3G9bi3aX6MFfEvCg_r3E6kVpdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/86f93b-cd9d-4e82-bef0-9dcf6b3c0797/1/N3G9bi3aX6MFfEvCg_r3E6kVpdk.mft Manifest number: 0D1B Signing time: Tue 10 Feb 2026 00:01:23 +0000 Manifest this update: Tue 10 Feb 2026 00:01:23 +0000 Manifest next update: Wed 11 Feb 2026 00:01:23 +0000 Files and hashes: 1: N3G9bi3aX6MFfEvCg_r3E6kVpdk.crl (hash: oCKYsvTgIKdCC/oPkGKxYupzfL0cWN7PPclu0jIccBQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/86f93b-cd9d-4e82-bef0-9dcf6b3c0797/1/N3G9bi3aX6MFfEvCg_r3E6kVpdk.crl rsync://rpki.ripe.net/repository/DEFAULT/10/86f93b-cd9d-4e82-bef0-9dcf6b3c0797/1/N3G9bi3aX6MFfEvCg_r3E6kVpdk.mft rsync://rpki.ripe.net/repository/DEFAULT/N3G9bi3aX6MFfEvCg_r3E6kVpdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:da:4f:37:19:25:d4:40:e4:bb:47:c4:26:55:65:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3771bd6e2dda5fa3057c4bc283faf713a915a5d9 Validity Not Before: Feb 10 00:01:23 2026 GMT Not After : Feb 11 00:01:23 2026 GMT Subject: CN=76d0745fb26ff96e463ee8c82dfdfa1d317e7fc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:61:bd:c8:f1:ef:d3:fc:ad:0c:79:28:a7:6c: 78:64:52:ce:1c:a1:85:28:30:86:9a:bf:56:4c:47: 65:a8:86:5a:10:12:7d:4d:63:b9:d0:86:81:b1:e6: ec:30:41:a9:8c:fe:d1:c3:19:11:0a:bb:af:10:2c: 1d:45:f8:3c:f4:18:5e:e6:92:b5:c0:28:88:81:9b: 61:30:f3:08:46:0c:99:e3:54:79:6e:4e:91:ae:82: 62:63:ac:68:31:3e:fa:21:2b:52:e4:47:32:fd:80: e1:9f:8e:aa:80:16:be:23:dc:aa:2a:b7:c3:d7:7d: 6f:74:2b:71:8f:60:5c:99:c1:d9:ed:91:fa:6a:bf: 1b:22:37:6b:87:7c:6b:49:99:28:0c:c8:b7:13:86: 2c:5f:45:52:97:54:b5:13:19:6d:d6:6d:40:42:43: a0:86:0e:5e:de:68:1c:70:67:4e:d9:e9:06:c1:b4: 1f:19:64:34:c9:82:1a:fd:d5:a9:34:7c:b8:c4:43: 34:d8:1d:6b:ca:f8:1c:a0:87:de:65:96:ca:d4:2c: 58:35:cd:69:1c:4e:2c:db:ff:ad:b5:e5:7c:3f:7d: a0:7a:c7:f4:5c:70:f8:a0:6b:12:54:8b:c4:81:16: 47:c4:bb:13:5f:46:a5:51:bc:ca:d5:ac:3f:76:1f: 36:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D0:74:5F:B2:6F:F9:6E:46:3E:E8:C8:2D:FD:FA:1D:31:7E:7F:C0 X509v3 Authority Key Identifier: keyid:37:71:BD:6E:2D:DA:5F:A3:05:7C:4B:C2:83:FA:F7:13:A9:15:A5:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N3G9bi3aX6MFfEvCg_r3E6kVpdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/86f93b-cd9d-4e82-bef0-9dcf6b3c0797/1/N3G9bi3aX6MFfEvCg_r3E6kVpdk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/86f93b-cd9d-4e82-bef0-9dcf6b3c0797/1/N3G9bi3aX6MFfEvCg_r3E6kVpdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:a8:62:0c:33:14:b0:76:ec:73:fa:1f:b1:11:ab:4c:7c:b8: 22:f9:c7:dd:46:11:30:bf:0d:99:7a:25:41:d7:af:de:15:22: 09:3c:03:48:e0:17:54:fc:26:a5:3e:8a:00:93:6e:bd:0e:19: 78:ee:e2:3f:65:43:ab:a2:78:13:e4:22:7b:ac:12:06:9e:b2: 29:9f:85:c9:d4:b6:5f:c1:d2:d8:2a:da:21:2e:94:77:e5:22: 15:09:47:33:23:ef:34:4f:01:ac:32:59:c7:81:4d:78:a4:09: 1e:e7:71:12:9b:a4:78:ca:61:4b:d2:cd:9a:2c:97:d6:78:7d: 00:3a:32:f0:01:a6:dd:44:6f:9e:c7:ad:2d:4e:78:f2:af:00: 9e:85:68:98:4c:a8:59:8b:c9:67:2a:bb:93:c9:9c:e1:da:3a: 58:ba:eb:ef:3b:c7:52:e6:7f:77:15:5f:86:bd:f8:cb:64:52: ad:6a:43:b3:5e:85:9f:d3:b4:48:c9:bb:b6:62:71:b2:f8:ff: 44:96:45:d5:4a:67:f6:f9:2f:ab:08:7d:b0:42:ac:9a:05:b5: 3d:e6:f8:78:f3:29:15:44:9a:9a:9e:73:db:5b:81:e2:83:a1: af:a7:2a:b9:ff:4e:dc:3b:5d:87:27:71:25:76:58:ac:06:e3: 71:7e:25:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2k83GSXUQOS7R8QmVWU9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3NzFiZDZlMmRkYTVmYTMwNTdjNGJjMjgzZmFmNzEzYTkx NWE1ZDkwHhcNMjYwMjEwMDAwMTIzWhcNMjYwMjExMDAwMTIzWjAzMTEwLwYDVQQD Eyg3NmQwNzQ1ZmIyNmZmOTZlNDYzZWU4YzgyZGZkZmExZDMxN2U3ZmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWG9yPHv0/ytDHkop2x4ZFLOHKGF KDCGmr9WTEdlqIZaEBJ9TWO50IaBsebsMEGpjP7RwxkRCruvECwdRfg89Bhe5pK1 wCiIgZthMPMIRgyZ41R5bk6RroJiY6xoMT76IStS5Ecy/YDhn46qgBa+I9yqKrfD 131vdCtxj2BcmcHZ7ZH6ar8bIjdrh3xrSZkoDMi3E4YsX0VSl1S1Exlt1m1AQkOg hg5e3mgccGdO2ekGwbQfGWQ0yYIa/dWpNHy4xEM02B1ryvgcoIfeZZbK1CxYNc1p HE4s2/+tteV8P32gesf0XHD4oGsSVIvEgRZHxLsTX0alUbzK1aw/dh82DwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHbQdF+yb/luRj7oyC39+h0xfn/AMB8GA1UdIwQY MBaAFDdxvW4t2l+jBXxLwoP69xOpFaXZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjNHOWJpM2FYNk1GZkV2Q2dfcjNFNmtWcGRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC84NmY5M2ItY2Q5ZC00ZTgyLWJlZjAt OWRjZjZiM2MwNzk3LzEvTjNHOWJpM2FYNk1GZkV2Q2dfcjNFNmtWcGRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC84NmY5M2ItY2Q5ZC00ZTgyLWJlZjAtOWRjZjZiM2MwNzk3 LzEvTjNHOWJpM2FYNk1GZkV2Q2dfcjNFNmtWcGRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiahiDDMU sHbsc/ofsRGrTHy4IvnH3UYRML8NmXolQdev3hUiCTwDSOAXVPwmpT6KAJNuvQ4Z eO7iP2VDq6J4E+Qie6wSBp6yKZ+FydS2X8HS2CraIS6Ud+UiFQlHMyPvNE8BrDJZ x4FNeKQJHudxEpukeMphS9LNmiyX1nh9ADoy8AGm3URvnsetLU548q8AnoVomEyo WYvJZyq7k8mc4do6WLrr7zvHUuZ/dxVfhr34y2RSrWpDs16Fn9O0SMm7tmJxsvj/ RJZF1Upn9vkvqwh9sEKsmgW1Peb4ePMpFUSamp5z21uB4oOhr6cquf9O3Dtdhydx JXZYrAbjcX4l1w== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:49 2026 by rpki-client