This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft File: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft (raw, json) Hash identifier: aQMcdF0TYqSQcmPMd31kruldQJ+E7M0zJzn2SNyAc5E= Subject key identifier: B1:60:DF:C5:04:14:55:2A:28:91:B8:B6:CD:A8:E3:89:D3:61:3E:10 Authority key identifier: DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16 Certificate issuer: /CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16 Certificate serial: 019C420F2453BFC6687B7D5C40ADCE0E6ECB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft Manifest number: 1353 Signing time: Mon 09 Feb 2026 11:00:14 +0000 Manifest this update: Mon 09 Feb 2026 11:00:14 +0000 Manifest next update: Tue 10 Feb 2026 11:00:14 +0000 Files and hashes: 1: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl (hash: kEYTgV6NwA9vFNduPLsI5LIns4UHVR1EnrS2xKyiApM=) 2: 6TUuFWgBkm98OJlIkhqINWWAoI0.roa (hash: GA9PdoKCJE0Uq5wLiSfj1Mw/gZ339oU3m0s7B3MQNRA=) 3: _qA7-iuYEvTbfVREYl9q7tay4Bk.roa (hash: Z/glgCy5dfzogAACVBlWtKvnqFreHrzxfTJl0PSlZgA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:24:53:bf:c6:68:7b:7d:5c:40:ad:ce:0e:6e:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16 Validity Not Before: Feb 9 11:00:14 2026 GMT Not After : Feb 10 11:00:14 2026 GMT Subject: CN=b160dfc50414552a2891b8b6cda8e389d3613e10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8d:08:a7:91:3f:63:ae:8e:ab:7c:98:ec:f6: 30:3e:dd:28:c9:be:9a:eb:54:f2:1a:80:9d:4b:5d: f4:a6:73:e9:12:3e:58:29:4c:16:6a:e3:b7:6c:38: b6:ad:dc:0b:86:37:40:c5:32:03:09:8a:06:b2:73: 51:66:0e:0b:a5:73:87:d4:c9:59:14:a2:ac:66:63: 0a:35:e3:22:fb:2e:40:86:f4:18:2d:46:98:c9:e4: 1c:ef:e7:4f:7c:4c:95:80:b2:6a:36:e7:a5:b3:d2: 41:60:09:e9:ca:6a:88:19:2f:20:9b:cd:0e:93:af: 3f:5b:c8:5b:2a:0a:2b:58:45:ed:20:4b:5a:85:70: df:2e:c3:80:cc:45:85:1d:ca:c9:ec:0d:03:a5:14: 20:f9:7a:bb:fc:77:a1:84:16:f0:87:63:59:a9:85: f3:ad:c3:dd:59:ab:e2:3d:42:4e:d5:5e:af:8d:f3: 78:64:76:55:00:5c:18:2a:28:13:45:e8:04:73:82: 50:bf:2a:39:f8:c9:db:5d:99:93:c1:25:e3:50:49: 50:a7:cb:47:b8:99:b6:90:66:ce:29:50:58:25:b9: f1:d7:c7:ed:1e:42:cf:04:6c:7e:26:a6:7d:87:bb: 2b:e4:77:87:04:ab:37:fd:46:46:55:4d:fa:e6:08: b7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:60:DF:C5:04:14:55:2A:28:91:B8:B6:CD:A8:E3:89:D3:61:3E:10 X509v3 Authority Key Identifier: keyid:DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:60:dd:8c:44:93:0e:56:35:84:d9:72:0f:73:57:8c:e3:a5: 3e:07:dc:fd:9d:d2:52:3f:f4:4f:ab:08:87:76:63:fd:8c:0a: 66:90:63:d9:ef:ca:3c:7a:10:f3:d4:24:e4:86:bb:88:f7:c5: c7:48:f3:5b:2c:b0:d4:26:f8:f3:c2:75:0d:1e:58:4f:f8:ca: 2e:6b:82:0a:b0:dc:e1:03:e3:9f:a4:ef:7c:ba:49:87:c2:84: 86:4f:a5:d2:df:33:6c:a8:22:b7:21:d1:62:f1:ad:1f:d7:d0: 67:db:10:eb:f2:be:50:8a:0c:03:b3:b0:13:95:b8:f8:a4:1c: 40:4a:9c:bc:54:1b:a0:49:1f:07:d7:cb:1b:c7:ff:d7:24:75: 48:03:b5:fc:79:11:07:46:c4:e0:a7:3b:95:7f:d7:0e:40:f8: ec:75:0e:72:b6:4a:9e:74:75:40:ec:e2:17:d4:f1:b5:c5:e0: e1:f2:13:63:ae:6d:ad:e1:f5:a8:a9:29:77:e7:20:89:af:59: b4:30:51:73:77:ab:0e:d1:eb:c5:e1:a6:b7:3a:e8:15:78:2a: e9:45:7a:87:68:0d:82:c6:b2:10:ef:07:c5:75:81:c7:f4:4b: 7d:f0:cc:ae:ae:98:65:fd:3c:b6:65:4f:3c:fa:c3:f4:a5:5b: 09:68:97:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDyRTv8Zoe31cQK3ODm7LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkNzI1YzRkMDk1M2U3ZWNmNDZmMzdlMTRmY2ExNGZkMDlh MTJkMTYwHhcNMjYwMjA5MTEwMDE0WhcNMjYwMjEwMTEwMDE0WjAzMTEwLwYDVQQD EyhiMTYwZGZjNTA0MTQ1NTJhMjg5MWI4YjZjZGE4ZTM4OWQzNjEzZTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA140Ip5E/Y66Oq3yY7PYwPt0oyb6a 61TyGoCdS130pnPpEj5YKUwWauO3bDi2rdwLhjdAxTIDCYoGsnNRZg4LpXOH1MlZ FKKsZmMKNeMi+y5AhvQYLUaYyeQc7+dPfEyVgLJqNuels9JBYAnpymqIGS8gm80O k68/W8hbKgorWEXtIEtahXDfLsOAzEWFHcrJ7A0DpRQg+Xq7/HehhBbwh2NZqYXz rcPdWaviPUJO1V6vjfN4ZHZVAFwYKigTRegEc4JQvyo5+MnbXZmTwSXjUElQp8tH uJm2kGbOKVBYJbnx18ftHkLPBGx+JqZ9h7sr5HeHBKs3/UZGVU365gi36QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLFg38UEFFUqKJG4ts2o44nTYT4QMB8GA1UdIwQY MBaAFN1yXE0JU+fs9G834U/KFP0JoS0WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1hKY1RRbFQ1LXowYnpmaFQ4b1VfUW1oTFJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9hYWE2ZTMtZjA1NC00OGU3LTgyNDYt OGYyMGNiNzM0NDg4LzEvM1hKY1RRbFQ1LXowYnpmaFQ4b1VfUW1oTFJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi9hYWE2ZTMtZjA1NC00OGU3LTgyNDYtOGYyMGNiNzM0NDg4 LzEvM1hKY1RRbFQ1LXowYnpmaFQ4b1VfUW1oTFJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP2DdjEST DlY1hNlyD3NXjOOlPgfc/Z3SUj/0T6sIh3Zj/YwKZpBj2e/KPHoQ89Qk5Ia7iPfF x0jzWyyw1Cb488J1DR5YT/jKLmuCCrDc4QPjn6TvfLpJh8KEhk+l0t8zbKgityHR YvGtH9fQZ9sQ6/K+UIoMA7OwE5W4+KQcQEqcvFQboEkfB9fLG8f/1yR1SAO1/HkR B0bE4Kc7lX/XDkD47HUOcrZKnnR1QOziF9TxtcXg4fITY65treH1qKkpd+cgia9Z tDBRc3erDtHrxeGmtzroFXgq6UV6h2gNgsayEO8HxXWBx/RLffDMrq6YZf08tmVP PPrD9KVbCWiXHg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:39 2026 by rpki-client