This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft File: 3DhEUAcx1V-JiN3phVnP7QswmrY.mft (raw, json) Hash identifier: +kq57quzHMNdp3SqSjIR9yRz77U4grQCfedZav606+k= Subject key identifier: 6C:3A:41:CC:2C:33:10:AD:23:0C:1F:F1:E2:BB:33:CF:3A:01:22:19 Authority key identifier: DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6 Certificate issuer: /CN=dc3844500731d55f8988dde98559cfed0b309ab6 Certificate serial: 019C4358ECE7445B0A1B796201B10833467F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft Manifest number: 030C Signing time: Mon 09 Feb 2026 17:00:27 +0000 Manifest this update: Mon 09 Feb 2026 17:00:27 +0000 Manifest next update: Tue 10 Feb 2026 17:00:27 +0000 Files and hashes: 1: 3DhEUAcx1V-JiN3phVnP7QswmrY.crl (hash: IiaqBSnfwV12S5b6V0XqXGgqqtCnc7H/YRArOrq83gc=) 2: DuN1FxsH-lHCVLPZStKFfBKxbwQ.roa (hash: kKKX72HBFEwm68oN45GHGePWHOJC9JK5lwTCTB/prdw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:ec:e7:44:5b:0a:1b:79:62:01:b1:08:33:46:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc3844500731d55f8988dde98559cfed0b309ab6 Validity Not Before: Feb 9 17:00:27 2026 GMT Not After : Feb 10 17:00:27 2026 GMT Subject: CN=6c3a41cc2c3310ad230c1ff1e2bb33cf3a012219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:3d:57:95:09:e3:84:04:9c:9c:7e:99:9e:6c: 41:3f:fd:83:91:99:75:14:ad:7c:a8:ee:60:41:79: 28:a2:28:b6:d8:db:24:49:c1:67:27:e9:d1:fa:be: 4b:97:a8:19:f3:75:4d:14:c0:0e:23:45:0b:95:9e: fa:f2:06:b2:70:15:a3:e0:3d:c2:26:f3:0e:c1:14: 79:5d:58:fe:e4:16:86:b4:02:2c:b7:6a:97:43:01: 70:dc:46:0f:cb:a9:a6:50:e7:80:3f:09:9d:02:d3: ff:9c:bf:41:05:d0:2e:3c:07:f6:ac:00:59:a7:0c: f6:a0:7c:44:b9:43:d8:03:0f:41:51:fe:c8:1b:19: e2:9d:45:f1:b8:56:2f:66:80:b1:d5:f2:b7:d1:da: f0:51:47:31:e3:53:35:09:2a:6c:77:73:66:fc:7d: a3:b1:62:b9:9e:6c:3b:ff:e5:23:64:03:ae:90:45: 78:49:4c:13:84:32:30:86:36:11:89:fa:90:b6:b5: b5:14:68:f9:1e:59:cc:5a:01:df:bb:79:f4:8b:e1: 79:22:40:59:fa:b6:ac:0b:01:03:ba:0a:00:f5:25: 27:bd:79:17:4d:fb:4c:51:78:cb:fc:9a:49:54:84: e3:29:a9:9c:e1:93:39:10:51:42:e1:26:09:68:0e: 64:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:3A:41:CC:2C:33:10:AD:23:0C:1F:F1:E2:BB:33:CF:3A:01:22:19 X509v3 Authority Key Identifier: keyid:DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:c3:c5:1b:d8:66:3e:38:88:72:77:83:37:0e:bd:00:1d:cb: 9b:5b:d9:1f:e6:7d:d7:cd:22:42:32:ed:0c:e1:d2:33:0d:e5: 05:04:44:7e:2f:bb:f4:4e:e7:19:1a:5c:00:28:5e:d6:72:8d: 10:1d:2d:a3:b6:b3:18:db:63:df:c8:cf:ec:26:b0:46:a6:6a: 2b:83:ca:89:52:8a:06:d8:11:49:5e:b6:3f:7b:6a:6a:7b:71: 64:75:c3:33:7f:f3:4e:b7:2a:af:5b:9c:27:f1:1c:5b:d2:2d: 90:90:cd:8f:f4:4b:e4:d0:9b:66:da:5e:28:25:14:36:1d:86: 25:da:55:f7:ae:9e:90:2d:45:82:2f:60:e5:29:7f:5b:1e:86: fa:df:78:fa:43:3f:74:e2:be:10:e6:f6:6e:bf:fe:34:44:3c: bb:6d:35:cd:b7:c7:b9:3c:0a:7a:f3:21:44:06:0c:e7:86:9e: 28:79:c7:3f:d4:8b:9c:63:df:29:47:b3:30:dc:35:0d:19:c4: 2b:c5:15:d2:62:b3:45:5a:93:0a:7d:99:81:50:80:97:10:72: dc:b5:7d:66:6d:ac:7d:a7:cc:bc:ae:35:a0:b8:74:65:1a:70: fa:24:5b:d9:b5:a5:32:22:fc:19:f2:14:da:f6:40:92:e8:ae: df:fc:cc:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWOznRFsKG3liAbEIM0Z/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjMzg0NDUwMDczMWQ1NWY4OTg4ZGRlOTg1NTljZmVkMGIz MDlhYjYwHhcNMjYwMjA5MTcwMDI3WhcNMjYwMjEwMTcwMDI3WjAzMTEwLwYDVQQD Eyg2YzNhNDFjYzJjMzMxMGFkMjMwYzFmZjFlMmJiMzNjZjNhMDEyMjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkT1XlQnjhAScnH6ZnmxBP/2DkZl1 FK18qO5gQXkooii22NskScFnJ+nR+r5Ll6gZ83VNFMAOI0ULlZ768gaycBWj4D3C JvMOwRR5XVj+5BaGtAIst2qXQwFw3EYPy6mmUOeAPwmdAtP/nL9BBdAuPAf2rABZ pwz2oHxEuUPYAw9BUf7IGxninUXxuFYvZoCx1fK30drwUUcx41M1CSpsd3Nm/H2j sWK5nmw7/+UjZAOukEV4SUwThDIwhjYRifqQtrW1FGj5HlnMWgHfu3n0i+F5IkBZ +rasCwEDugoA9SUnvXkXTftMUXjL/JpJVITjKamc4ZM5EFFC4SYJaA5ktQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGw6QcwsMxCtIwwf8eK7M886ASIZMB8GA1UdIwQY MBaAFNw4RFAHMdVfiYjd6YVZz+0LMJq2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0RoRVVBY3gxVi1KaU4zcGhWblA3UXN3bXJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9iZmZjNzItYmI2ZC00OTk4LWExMGIt NmZmOGMzN2RiMWE4LzEvM0RoRVVBY3gxVi1KaU4zcGhWblA3UXN3bXJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS9iZmZjNzItYmI2ZC00OTk4LWExMGItNmZmOGMzN2RiMWE4 LzEvM0RoRVVBY3gxVi1KaU4zcGhWblA3UXN3bXJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYsPFG9hm PjiIcneDNw69AB3Lm1vZH+Z9180iQjLtDOHSMw3lBQREfi+79E7nGRpcAChe1nKN EB0to7azGNtj38jP7CawRqZqK4PKiVKKBtgRSV62P3tqantxZHXDM3/zTrcqr1uc J/EcW9ItkJDNj/RL5NCbZtpeKCUUNh2GJdpV966ekC1Fgi9g5Sl/Wx6G+t94+kM/ dOK+EOb2br/+NEQ8u201zbfHuTwKevMhRAYM54aeKHnHP9SLnGPfKUezMNw1DRnE K8UV0mKzRVqTCn2ZgVCAlxBy3LV9Zm2sfafMvK41oLh0ZRpw+iRb2bWlMiL8GfIU 2vZAkuiu3/zMdg== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:57 2026 by rpki-client