This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft File: 3fCc-W5fyHTuk5CXxWUci9hC5q0.mft (raw, json) Hash identifier: pQPiR5LK4jPPiU4cTOI74GYO6zQHWZNYBO/Rb4mqMf8= Subject key identifier: 38:CE:32:38:D4:4B:55:7D:52:AE:0E:EB:CA:08:CE:3B:38:42:57:08 Authority key identifier: DD:F0:9C:F9:6E:5F:C8:74:EE:93:90:97:C5:65:1C:8B:D8:42:E6:AD Certificate issuer: /CN=ddf09cf96e5fc874ee939097c5651c8bd842e6ad Certificate serial: 019BF9F6C77BD29C4EA41D01AF42100B8905 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft Manifest number: 051D Signing time: Mon 26 Jan 2026 11:00:58 +0000 Manifest this update: Mon 26 Jan 2026 11:00:58 +0000 Manifest next update: Tue 27 Jan 2026 11:00:58 +0000 Files and hashes: 1: 3fCc-W5fyHTuk5CXxWUci9hC5q0.crl (hash: zrShV9fmWWJmffWQObajy9YbO3PUXXzh7KlkbUc913Q=) 2: C60VxSBJDSdFCd1k1UlGSCrwJvY.roa (hash: KibtnUkNqe/Q4+yRw8o2hlvC70cIKXb1SxvsmfXdEPk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 11:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:f6:c7:7b:d2:9c:4e:a4:1d:01:af:42:10:0b:89:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ddf09cf96e5fc874ee939097c5651c8bd842e6ad Validity Not Before: Jan 26 11:00:58 2026 GMT Not After : Jan 27 11:00:58 2026 GMT Subject: CN=38ce3238d44b557d52ae0eebca08ce3b38425708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2b:8d:e9:27:c4:65:8c:b2:ff:a7:c4:92:1b: 42:7b:43:af:96:d8:19:9b:3a:a6:d8:a5:63:dc:53: db:7d:7f:0d:ef:cc:c5:24:23:48:6b:61:f9:45:42: aa:6a:ad:f2:05:9a:54:5e:a6:68:30:a9:21:9f:43: 59:8b:40:b3:e4:90:9b:a1:22:d2:b7:97:88:ff:1a: a6:2a:4c:99:94:f8:13:a1:ca:51:16:87:09:69:0d: 86:44:ec:a9:d1:68:84:1c:c5:db:91:a4:16:96:c5: 37:a6:39:01:ea:17:bd:80:b6:38:7a:84:6f:80:da: 8b:32:af:03:04:66:33:6b:42:a2:dc:fc:1f:ec:9e: b3:1f:31:73:ee:cd:5d:87:b1:4e:c9:dc:bd:32:52: a1:0e:1c:f0:4d:82:f2:fe:d5:9b:2a:55:46:b4:5f: 52:7d:ce:91:07:09:60:f0:be:7a:10:91:5c:9c:7f: f2:2b:b2:8c:4c:c1:fb:33:0c:ee:e6:ff:ea:2b:76: 8b:8c:9c:4c:91:47:8a:b7:56:29:58:82:69:67:b2: 27:5f:3c:bc:09:b2:75:b4:5b:95:30:dd:0f:d4:0b: cb:64:ef:94:85:25:af:d2:1e:24:e0:b7:d6:92:df: d2:52:23:26:3f:a8:32:b4:2b:03:de:1b:9e:b5:7f: 14:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CE:32:38:D4:4B:55:7D:52:AE:0E:EB:CA:08:CE:3B:38:42:57:08 X509v3 Authority Key Identifier: keyid:DD:F0:9C:F9:6E:5F:C8:74:EE:93:90:97:C5:65:1C:8B:D8:42:E6:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:06:2b:7b:0f:a8:94:70:2e:71:01:b8:84:bb:3c:1a:f3:34: b9:a6:b5:7d:9b:f8:0b:2c:85:7f:da:ae:3a:2e:43:1d:f6:6b: 88:00:db:85:ce:c1:94:05:60:8a:54:53:63:3e:64:aa:8d:d0: c4:df:de:c9:27:02:79:e8:1b:a8:e6:f8:40:e6:51:4c:6e:61: f5:47:04:d8:00:92:63:e8:cf:8c:d0:c7:fb:af:96:8d:3b:7e: 52:ff:6f:9e:60:36:f4:32:b8:84:e8:13:cd:65:0d:39:63:63: 7a:e9:72:e8:2c:7f:ea:c7:20:53:45:56:87:3f:b6:ce:76:21: 5f:98:15:58:44:f8:48:18:36:70:6a:3f:c5:90:6a:d9:8d:1b: 3f:e3:54:89:c9:53:ec:56:c2:f9:c9:fd:09:8e:ce:c2:8c:a8: 14:a2:d1:64:a2:e4:b5:3b:e3:6d:37:2d:fa:ac:98:86:8a:24: 5b:08:23:36:e6:90:9c:05:f0:d6:77:15:0b:5a:8a:7e:be:97: 65:3e:54:39:6b:b1:bd:23:8d:f8:24:e7:db:84:4b:03:86:bd: 01:3c:8c:b5:aa:81:68:39:4a:42:95:fc:98:4f:bd:cb:28:9a: 5f:54:b6:73:60:8a:52:00:28:0e:97:88:61:d7:40:e4:d4:38: 60:e6:db:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv59sd70pxOpB0Br0IQC4kFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkZjA5Y2Y5NmU1ZmM4NzRlZTkzOTA5N2M1NjUxYzhiZDg0 MmU2YWQwHhcNMjYwMTI2MTEwMDU4WhcNMjYwMTI3MTEwMDU4WjAzMTEwLwYDVQQD EygzOGNlMzIzOGQ0NGI1NTdkNTJhZTBlZWJjYTA4Y2UzYjM4NDI1NzA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnSuN6SfEZYyy/6fEkhtCe0OvltgZ mzqm2KVj3FPbfX8N78zFJCNIa2H5RUKqaq3yBZpUXqZoMKkhn0NZi0Cz5JCboSLS t5eI/xqmKkyZlPgTocpRFocJaQ2GROyp0WiEHMXbkaQWlsU3pjkB6he9gLY4eoRv gNqLMq8DBGYza0Ki3Pwf7J6zHzFz7s1dh7FOydy9MlKhDhzwTYLy/tWbKlVGtF9S fc6RBwlg8L56EJFcnH/yK7KMTMH7Mwzu5v/qK3aLjJxMkUeKt1YpWIJpZ7InXzy8 CbJ1tFuVMN0P1AvLZO+UhSWv0h4k4LfWkt/SUiMmP6gytCsD3huetX8UCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDjOMjjUS1V9Uq4O68oIzjs4QlcIMB8GA1UdIwQY MBaAFN3wnPluX8h07pOQl8VlHIvYQuatMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2ZDYy1XNWZ5SFR1azVDWHhXVWNpOWhDNXEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8wMDc5ZTgtYzI0Ni00YzM4LTkwNTIt NjczNjcwZTZlZjA5LzEvM2ZDYy1XNWZ5SFR1azVDWHhXVWNpOWhDNXEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC8wMDc5ZTgtYzI0Ni00YzM4LTkwNTItNjczNjcwZTZlZjA5 LzEvM2ZDYy1XNWZ5SFR1azVDWHhXVWNpOWhDNXEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWQYrew+o lHAucQG4hLs8GvM0uaa1fZv4CyyFf9quOi5DHfZriADbhc7BlAVgilRTYz5kqo3Q xN/eyScCeegbqOb4QOZRTG5h9UcE2ACSY+jPjNDH+6+WjTt+Uv9vnmA29DK4hOgT zWUNOWNjeuly6Cx/6scgU0VWhz+2znYhX5gVWET4SBg2cGo/xZBq2Y0bP+NUiclT 7FbC+cn9CY7OwoyoFKLRZKLktTvjbTct+qyYhookWwgjNuaQnAXw1ncVC1qKfr6X ZT5UOWuxvSON+CTn24RLA4a9ATyMtaqBaDlKQpX8mE+9yyiaX1S2c2CKUgAoDpeI YddA5NQ4YObbCw== -----END CERTIFICATE-----Generated at Mon Jan 26 20:45:43 2026 by rpki-client