This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft File: is3dXDDVgOsP7soqFs9cWoslaP0.mft (raw, json) Hash identifier: Y4YSSykgqw3V6m2vfkxLRXg5SYIz+kK0BQg9iuLK0mM= Subject key identifier: 0D:51:61:22:A4:DB:D5:81:A4:00:F4:E5:7C:36:C6:AB:FC:EE:A1:41 Authority key identifier: 8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD Certificate issuer: /CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd Certificate serial: 019C439004720473367363EE81FE3EFEF2A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 18:00:37 +0000 Manifest this update: Mon 09 Feb 2026 18:00:37 +0000 Manifest next update: Tue 10 Feb 2026 18:00:37 +0000 Files and hashes: 1: 9tcqRBW5dWCPlBmOmJEm6c--iDU.roa (hash: u8oO/RgVRYujIoxnuHbXuI4mqtgSWQD8/zpjHQZYwcI=) 2: is3dXDDVgOsP7soqFs9cWoslaP0.crl (hash: 8XSjAkljm6J8I/FocP95xz7OE7MfWbdceDKZdK38CB8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:04:72:04:73:36:73:63:ee:81:fe:3e:fe:f2:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd Validity Not Before: Feb 9 18:00:37 2026 GMT Not After : Feb 10 18:00:37 2026 GMT Subject: CN=0d516122a4dbd581a400f4e57c36c6abfceea141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:f3:2c:15:0f:6b:2a:d2:bb:ad:aa:9e:29: d9:20:15:89:8e:46:7e:49:40:22:64:f9:24:3a:68: be:47:db:71:f9:b9:1c:1c:80:5d:52:4c:02:9f:37: ed:00:88:39:6c:13:a5:a2:d2:c4:99:0c:6c:d1:33: 4b:46:9b:57:5a:1e:34:c5:f7:f4:07:69:cf:59:c3: cf:90:d8:5d:2c:53:61:fd:a0:b3:c6:2e:79:5b:cc: 4d:8a:b5:58:8c:69:12:96:d3:f4:78:ff:3d:9b:2b: 9b:01:83:fe:de:d0:57:2a:fa:fb:47:62:00:8a:a6: dd:82:0f:a0:b5:9f:6f:0c:aa:19:e3:24:9e:2b:68: 52:cc:60:77:bc:df:ac:b6:ac:24:1f:a5:7a:7a:95: 68:c2:a3:62:c8:02:e5:8b:f0:83:53:9f:88:e4:21: d5:fe:b5:94:70:02:b1:6f:2a:f7:3c:23:51:56:8f: a4:98:23:e4:39:71:85:0c:53:e8:52:e1:fe:69:92: d0:e8:a1:18:61:cb:22:2c:86:e9:fb:94:09:c6:de: 75:88:c7:b6:ea:d6:ba:80:21:30:5b:8f:9b:4b:cd: f9:7c:1a:c8:21:8d:f4:d9:9c:85:81:d8:cf:69:f7: b5:fe:cb:43:67:ea:8e:87:2f:a0:e7:f9:bc:92:8a: f0:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:51:61:22:A4:DB:D5:81:A4:00:F4:E5:7C:36:C6:AB:FC:EE:A1:41 X509v3 Authority Key Identifier: keyid:8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption de:66:6c:0e:b3:87:1d:a4:63:aa:a0:34:86:cd:46:90:35:db: b1:11:4b:8e:d1:0d:5a:9a:f5:33:16:5c:35:e2:8e:f5:94:a9: 9f:72:07:27:e5:70:ee:87:1a:7f:cb:85:6c:5e:5e:53:fb:6b: ca:18:a7:ee:76:d6:48:9f:bf:bb:52:fc:41:a1:2d:37:e1:65: 1c:86:67:39:10:a5:53:fc:90:06:0a:2c:3b:61:ca:03:06:ad: 45:59:61:ec:af:29:28:db:46:32:95:de:62:8d:fe:f1:cc:72: 4b:c6:77:c9:e6:b1:17:ff:e0:6a:a1:50:c6:26:cd:8a:b1:10: 7d:a8:71:dd:e0:cf:19:2d:34:ed:70:ff:70:31:ee:13:03:5a: 4a:18:ad:31:62:b7:8f:af:23:4c:a4:17:d3:22:eb:0f:ec:f8: a7:7f:3e:f3:97:48:0d:1d:f5:fc:90:84:33:b1:ee:49:ec:6a: 8a:a9:14:c2:92:bf:f3:5f:74:e4:57:c1:fb:f2:5b:72:a3:9a: f3:84:8e:92:25:a2:70:aa:74:14:20:f0:4e:7d:f8:c8:75:77: 73:e7:64:a3:65:70:11:bd:bc:b1:bf:ad:6e:5b:09:00:59:1d: c9:e9:36:9b:29:34:37:37:c5:2b:a3:5a:85:25:88:b2:b0:66: f0:a7:5c:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkARyBHM2c2Pugf4+/vKmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhY2RkZDVjMzBkNTgwZWIwZmVlY2EyYTE2Y2Y1YzVhOGIy NTY4ZmQwHhcNMjYwMjA5MTgwMDM3WhcNMjYwMjEwMTgwMDM3WjAzMTEwLwYDVQQD EygwZDUxNjEyMmE0ZGJkNTgxYTQwMGY0ZTU3YzM2YzZhYmZjZWVhMTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwILzLBUPayrSu62qninZIBWJjkZ+ SUAiZPkkOmi+R9tx+bkcHIBdUkwCnzftAIg5bBOlotLEmQxs0TNLRptXWh40xff0 B2nPWcPPkNhdLFNh/aCzxi55W8xNirVYjGkSltP0eP89myubAYP+3tBXKvr7R2IA iqbdgg+gtZ9vDKoZ4ySeK2hSzGB3vN+stqwkH6V6epVowqNiyALli/CDU5+I5CHV /rWUcAKxbyr3PCNRVo+kmCPkOXGFDFPoUuH+aZLQ6KEYYcsiLIbp+5QJxt51iMe2 6ta6gCEwW4+bS835fBrIIY302ZyFgdjPafe1/stDZ+qOhy+g5/m8korwrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA1RYSKk29WBpAD05Xw2xqv87qFBMB8GA1UdIwQY MBaAFIrN3Vww1YDrD+7KKhbPXFqLJWj9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXMzZFhERFZnT3NQN3NvcUZzOWNXb3NsYVAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yNWFjYTctN2UyOC00ODdjLTg2ZDIt MTdiMWM3Mzc5MzAwLzEvaXMzZFhERFZnT3NQN3NvcUZzOWNXb3NsYVAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC8yNWFjYTctN2UyOC00ODdjLTg2ZDItMTdiMWM3Mzc5MzAw LzEvaXMzZFhERFZnT3NQN3NvcUZzOWNXb3NsYVAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3mZsDrOH HaRjqqA0hs1GkDXbsRFLjtENWpr1MxZcNeKO9ZSpn3IHJ+Vw7ocaf8uFbF5eU/tr yhin7nbWSJ+/u1L8QaEtN+FlHIZnORClU/yQBgosO2HKAwatRVlh7K8pKNtGMpXe Yo3+8cxyS8Z3yeaxF//gaqFQxibNirEQfahx3eDPGS007XD/cDHuEwNaShitMWK3 j68jTKQX0yLrD+z4p38+85dIDR31/JCEM7HuSexqiqkUwpK/81905FfB+/JbcqOa 84SOkiWicKp0FCDwTn34yHV3c+dko2VwEb28sb+tblsJAFkdyek2myk0NzfFK6Na hSWIsrBm8KdcSg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:53 2026 by rpki-client