This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json) Hash identifier: 4ptxeqav+gIP/Y4hlBoIvPA+iEaxGdkLDfcwLH8/LvE= Subject key identifier: EC:70:D1:C2:2B:E2:59:E2:0A:CB:E2:C7:85:35:46:3D:0B:3F:7B:91 Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38 Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938 Certificate serial: 019C42102832E9E053DB7037FD3B5A8C90F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft Manifest number: 0C81 Signing time: Mon 09 Feb 2026 11:01:20 +0000 Manifest this update: Mon 09 Feb 2026 11:01:20 +0000 Manifest next update: Tue 10 Feb 2026 11:01:20 +0000 Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: mE3G1uhwF37SckvpbWenkXEjM4bMYkBDeJqBPF9ovds=) 2: _ioUT6ot6spKYeitBH6WHig08aI.roa (hash: lPf90VagjG9YZhFPp1sns8p7TmON2JIuqMSkRErr21k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:28:32:e9:e0:53:db:70:37:fd:3b:5a:8c:90:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938 Validity Not Before: Feb 9 11:01:20 2026 GMT Not After : Feb 10 11:01:20 2026 GMT Subject: CN=ec70d1c22be259e20acbe2c78535463d0b3f7b91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:06:fc:b9:3f:26:cc:4a:b4:78:4c:aa:37:4c: 2d:b6:e7:76:f3:7a:9f:13:f5:1a:40:75:51:10:dd: 2a:a0:f9:0f:c3:1a:22:09:ac:86:c7:45:e1:a0:aa: 6c:55:ed:b8:0f:77:a2:1a:81:4f:72:76:11:7d:58: 90:3c:cb:aa:d5:17:ca:b0:85:d0:78:3b:b7:a0:27: 16:4b:04:3f:7e:53:4d:f1:04:8e:b0:11:eb:e3:40: 15:f7:9d:57:5a:58:dd:67:3a:0f:bd:08:78:41:bc: c4:05:f6:45:3c:41:59:e6:76:82:f9:26:df:1e:94: 37:b0:39:a7:ec:70:58:83:cb:83:4f:41:b1:a3:0a: d2:56:e0:d2:10:c0:cd:3a:28:a6:a6:75:6e:43:5b: 36:5b:4a:ff:e2:55:c7:d5:fd:71:79:c8:e6:85:86: 66:33:09:0a:4b:58:c0:a2:4e:88:89:96:e5:52:df: 18:92:a0:40:e4:5c:2d:93:b2:97:7a:31:30:73:1a: 26:47:bf:0f:ee:59:a1:a3:d0:b7:25:d7:fe:17:ee: fb:d0:47:88:c7:d2:be:ca:2e:5f:fc:b7:03:99:78: 13:b0:a2:a3:cc:22:bc:cf:e9:11:6f:e6:b4:79:bd: 37:72:61:64:2b:ea:82:1f:11:59:d8:1a:fa:0a:5c: 8b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:70:D1:C2:2B:E2:59:E2:0A:CB:E2:C7:85:35:46:3D:0B:3F:7B:91 X509v3 Authority Key Identifier: keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:1f:c1:10:fe:bb:31:7c:50:07:37:ec:9b:44:1a:50:36:df: 86:56:15:b7:3f:16:b2:66:fd:0e:4f:51:15:ee:1f:ee:c1:86: 46:75:c6:41:a5:94:01:fc:09:29:34:00:dd:75:bc:07:23:38: fa:97:12:64:e9:1c:7a:ce:f6:31:72:bd:eb:e1:08:31:25:e1: f7:0b:02:d1:d3:43:ae:8b:42:02:0d:4d:72:d1:df:c0:75:69: a8:e7:9f:78:f5:82:6d:9d:b3:a5:16:fd:a8:d6:68:b1:d7:6b: af:a2:00:9e:dc:c5:1a:41:e2:d5:72:e0:20:fa:36:ac:b7:f6: 63:43:e7:a9:d2:b9:a5:91:7d:50:5b:3e:9a:17:be:ca:6c:d3: 12:6f:ec:53:87:fe:0f:61:a0:9a:d1:d6:6d:1b:85:36:73:5e: 83:db:26:5d:8c:db:19:96:8f:a9:26:1d:d3:cb:88:47:11:cb: 3e:c8:0d:bf:68:95:dc:51:a2:95:92:a0:7f:cb:3f:b4:f5:bc: 48:cc:12:ca:98:09:99:c6:f9:70:c9:de:f2:fb:6c:e7:88:98: 12:a7:6c:26:96:c9:64:f5:b8:07:a0:c8:25:ea:e6:16:8f:22: 49:72:89:4b:7e:aa:43:a6:91:55:3f:f5:3d:85:75:d6:89:eb: 7b:80:70:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCECgy6eBT23A3/TtajJD3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMjkyMTk4OWQ3ZDkwYzY0ZWJiMzU2NTg4MzFmZTZhOGY0 OWM5MzgwHhcNMjYwMjA5MTEwMTIwWhcNMjYwMjEwMTEwMTIwWjAzMTEwLwYDVQQD EyhlYzcwZDFjMjJiZTI1OWUyMGFjYmUyYzc4NTM1NDYzZDBiM2Y3YjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywb8uT8mzEq0eEyqN0wttud283qf E/UaQHVREN0qoPkPwxoiCayGx0XhoKpsVe24D3eiGoFPcnYRfViQPMuq1RfKsIXQ eDu3oCcWSwQ/flNN8QSOsBHr40AV951XWljdZzoPvQh4QbzEBfZFPEFZ5naC+Sbf HpQ3sDmn7HBYg8uDT0GxowrSVuDSEMDNOiimpnVuQ1s2W0r/4lXH1f1xecjmhYZm MwkKS1jAok6IiZblUt8YkqBA5Fwtk7KXejEwcxomR78P7lmho9C3Jdf+F+770EeI x9K+yi5f/LcDmXgTsKKjzCK8z+kRb+a0eb03cmFkK+qCHxFZ2Br6ClyLtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOxw0cIr4lniCsvix4U1Rj0LP3uRMB8GA1UdIwQY MBaAFN4pIZidfZDGTrs1ZYgx/mqPSck4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS80YjljY2YtNzUzNS00NWRkLWJkOTct MGI1ZWNiNDc0ZjE1LzEvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS80YjljY2YtNzUzNS00NWRkLWJkOTctMGI1ZWNiNDc0ZjE1 LzEvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANB/BEP67 MXxQBzfsm0QaUDbfhlYVtz8Wsmb9Dk9RFe4f7sGGRnXGQaWUAfwJKTQA3XW8ByM4 +pcSZOkces72MXK96+EIMSXh9wsC0dNDrotCAg1NctHfwHVpqOefePWCbZ2zpRb9 qNZosddrr6IAntzFGkHi1XLgIPo2rLf2Y0PnqdK5pZF9UFs+mhe+ymzTEm/sU4f+ D2GgmtHWbRuFNnNeg9smXYzbGZaPqSYd08uIRxHLPsgNv2iV3FGilZKgf8s/tPW8 SMwSypgJmcb5cMne8vts54iYEqdsJpbJZPW4B6DIJermFo8iSXKJS36qQ6aRVT/1 PYV11onre4BwwQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:18 2026 by rpki-client