This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft File: 3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft (raw, json) Hash identifier: OqxYdtgGw2NqvgYLCShqZcCK3h8G+6FZIZe+2V08vHI= Subject key identifier: 5D:E6:F8:50:E0:5D:00:25:54:18:09:0E:76:D3:41:C1:60:B8:98:F0 Authority key identifier: DC:36:63:1C:A2:0E:C9:2D:19:5C:16:A8:D7:0A:63:F3:72:E5:9F:24 Certificate issuer: /CN=dc36631ca20ec92d195c16a8d70a63f372e59f24 Certificate serial: 019C41A25425F603D37071658C283D2AB79A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft Manifest number: 0746 Signing time: Mon 09 Feb 2026 09:01:23 +0000 Manifest this update: Mon 09 Feb 2026 09:01:23 +0000 Manifest next update: Tue 10 Feb 2026 09:01:23 +0000 Files and hashes: 1: 3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl (hash: ioplucedT9NHAWR1Y1ZceZg6jmymi1IbHcwGZF4QUEc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:54:25:f6:03:d3:70:71:65:8c:28:3d:2a:b7:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc36631ca20ec92d195c16a8d70a63f372e59f24 Validity Not Before: Feb 9 09:01:23 2026 GMT Not After : Feb 10 09:01:23 2026 GMT Subject: CN=5de6f850e05d00255418090e76d341c160b898f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:54:d8:8e:a8:03:0f:85:5d:c2:9b:cf:bc:81: ce:a2:ed:b7:12:ce:68:a6:1c:b3:67:92:6b:6b:f2: d5:97:26:fb:9f:00:93:34:6a:95:96:49:d1:ed:24: cd:8e:1e:b4:92:5e:cc:49:c7:61:50:e5:78:58:da: 74:6b:d4:f7:cb:33:99:7f:45:4c:21:e1:9e:4b:1a: fb:39:ec:d8:39:b7:2d:7c:6c:2e:4f:3f:92:2f:19: f8:2a:31:29:7a:b7:34:50:88:74:9c:92:16:c9:53: 07:03:fb:97:2b:e6:c6:62:92:3c:a6:4a:a7:6b:26: c7:87:f0:a5:52:d3:a9:9f:e0:9f:22:31:39:1f:36: 33:47:75:51:c9:a8:ce:a3:de:da:5d:84:17:67:61: e6:ed:c2:67:2e:91:71:ed:da:b2:21:10:f8:96:5f: f0:83:b9:05:e9:92:99:b9:e4:57:b3:c8:cc:c0:56: 01:69:2e:40:60:d6:1b:10:45:78:83:4f:fa:a9:5d: 80:9a:40:ad:f6:1f:1d:e8:ac:61:5f:8c:01:10:98: 35:e8:21:a0:e9:45:31:ef:b9:8d:f7:4a:3b:63:e1: 87:9e:e1:df:f8:9f:4a:c0:da:19:37:fe:c5:18:18: bb:6d:d9:af:98:b2:2d:01:41:9f:30:fe:41:37:71: 2b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E6:F8:50:E0:5D:00:25:54:18:09:0E:76:D3:41:C1:60:B8:98:F0 X509v3 Authority Key Identifier: keyid:DC:36:63:1C:A2:0E:C9:2D:19:5C:16:A8:D7:0A:63:F3:72:E5:9F:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:67:26:74:bd:58:9d:62:30:6b:26:6b:27:1c:95:0a:d2:81: 45:cd:9b:1c:9a:e8:cb:29:f7:43:a3:59:4d:c7:8f:ff:55:6a: c8:6a:10:57:42:5b:03:03:03:31:35:ec:92:ce:58:9c:d5:87: 05:5a:0b:73:11:1c:e7:e8:1f:79:5a:75:57:0d:b1:5a:84:34: e5:ed:45:8b:89:0d:f6:5b:6e:f7:6b:e3:21:cf:3f:84:4b:5c: b2:51:7a:b8:66:ee:e1:a1:e0:99:30:e4:6f:96:fa:64:60:bb: ea:4f:84:81:bc:9a:fd:bd:ce:49:72:c6:04:c8:a0:c9:13:d2: e2:de:df:b7:b1:ef:9f:ef:70:60:cd:b3:64:60:a8:b4:fa:fa: 03:98:2f:81:56:1d:94:f8:11:54:f2:97:f2:c2:da:70:c2:e6: 66:11:1a:40:ae:f5:7b:7a:90:8a:2c:aa:97:4e:06:7f:8c:5b: 28:6c:14:26:af:9f:10:29:93:ca:f6:d1:94:56:0a:de:46:85: 5b:f7:0f:cc:64:4e:e6:cc:f8:4a:cd:dc:7e:82:1d:1f:9e:89: 81:64:68:e9:23:cf:c6:00:c9:40:17:7a:85:9c:75:cc:c1:99: 6b:fc:63:94:44:c6:33:ca:86:f5:6f:7f:aa:21:ea:26:71:0c: 5c:82:1d:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBolQl9gPTcHFljCg9KreaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjMzY2MzFjYTIwZWM5MmQxOTVjMTZhOGQ3MGE2M2YzNzJl NTlmMjQwHhcNMjYwMjA5MDkwMTIzWhcNMjYwMjEwMDkwMTIzWjAzMTEwLwYDVQQD Eyg1ZGU2Zjg1MGUwNWQwMDI1NTQxODA5MGU3NmQzNDFjMTYwYjg5OGYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1TYjqgDD4VdwpvPvIHOou23Es5o phyzZ5Jra/LVlyb7nwCTNGqVlknR7STNjh60kl7MScdhUOV4WNp0a9T3yzOZf0VM IeGeSxr7OezYObctfGwuTz+SLxn4KjEperc0UIh0nJIWyVMHA/uXK+bGYpI8pkqn aybHh/ClUtOpn+CfIjE5HzYzR3VRyajOo97aXYQXZ2Hm7cJnLpFx7dqyIRD4ll/w g7kF6ZKZueRXs8jMwFYBaS5AYNYbEEV4g0/6qV2AmkCt9h8d6KxhX4wBEJg16CGg 6UUx77mN90o7Y+GHnuHf+J9KwNoZN/7FGBi7bdmvmLItAUGfMP5BN3Er1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF3m+FDgXQAlVBgJDnbTQcFguJjwMB8GA1UdIwQY MBaAFNw2YxyiDsktGVwWqNcKY/Ny5Z8kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0RaakhLSU95UzBaWEJhbzF3cGo4M0xsbnlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80YWMxNjItZTE2ZS00MDZlLWI5ODUt NWVmNTZmODZhYjgzLzEvM0RaakhLSU95UzBaWEJhbzF3cGo4M0xsbnlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS80YWMxNjItZTE2ZS00MDZlLWI5ODUtNWVmNTZmODZhYjgz LzEvM0RaakhLSU95UzBaWEJhbzF3cGo4M0xsbnlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw2cmdL1Y nWIwayZrJxyVCtKBRc2bHJroyyn3Q6NZTceP/1VqyGoQV0JbAwMDMTXsks5YnNWH BVoLcxEc5+gfeVp1Vw2xWoQ05e1Fi4kN9ltu92vjIc8/hEtcslF6uGbu4aHgmTDk b5b6ZGC76k+Egbya/b3OSXLGBMigyRPS4t7ft7Hvn+9wYM2zZGCotPr6A5gvgVYd lPgRVPKX8sLacMLmZhEaQK71e3qQiiyql04Gf4xbKGwUJq+fECmTyvbRlFYK3kaF W/cPzGRO5sz4Ss3cfoIdH56JgWRo6SPPxgDJQBd6hZx1zMGZa/xjlETGM8qG9W9/ qiHqJnEMXIIdew== -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:59 2026 by rpki-client