This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.mft File: 3TmeSUGJ9pGl7WTzvjpqO1AiUJE.mft (raw, json) Hash identifier: Lp81x5aT7XEMS33aHO+BYrZO8KUbJYuaSkUKZJpjmoY= Subject key identifier: EE:98:AC:CF:DA:BC:B1:61:A7:96:01:9F:FE:35:C0:A0:34:61:AE:93 Authority key identifier: DD:39:9E:49:41:89:F6:91:A5:ED:64:F3:BE:3A:6A:3B:50:22:50:91 Certificate issuer: /CN=dd399e494189f691a5ed64f3be3a6a3b50225091 Certificate serial: 019C41D87E1AFE12D05475278B79CF1D0BA3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.mft Manifest number: 077C Signing time: Mon 09 Feb 2026 10:00:32 +0000 Manifest this update: Mon 09 Feb 2026 10:00:32 +0000 Manifest next update: Tue 10 Feb 2026 10:00:32 +0000 Files and hashes: 1: 3TmeSUGJ9pGl7WTzvjpqO1AiUJE.crl (hash: toY1iPDRrz1QVdCat4nR1COR5prQmWHgZm8cpHXgrQw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.crl rsync://rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.mft rsync://rpki.ripe.net/repository/DEFAULT/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:7e:1a:fe:12:d0:54:75:27:8b:79:cf:1d:0b:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd399e494189f691a5ed64f3be3a6a3b50225091 Validity Not Before: Feb 9 10:00:32 2026 GMT Not After : Feb 10 10:00:32 2026 GMT Subject: CN=ee98accfdabcb161a796019ffe35c0a03461ae93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:4f:81:52:09:0b:93:64:0c:5a:fa:0b:29:79: 7d:b4:3c:79:fb:3c:eb:32:80:0e:c0:d5:92:e4:14: c6:4f:29:a9:e4:c9:0c:1f:84:36:4d:88:94:ed:a1: 9a:cf:48:28:c0:23:50:ca:fc:5b:af:79:be:7f:50: 51:0c:9e:9a:eb:65:c0:73:42:67:51:c5:c3:26:3b: 10:88:cc:13:ee:48:1e:0b:64:0d:ae:5b:c0:90:58: 04:80:56:5f:e2:d0:af:67:c9:42:c5:4f:95:0f:fb: d1:e6:68:be:85:49:e3:f3:c0:e8:7c:5a:f2:0e:23: d9:c9:ee:8a:3b:5d:00:04:b2:c9:0b:97:33:e6:3c: 80:87:d1:5c:94:de:48:58:7c:76:8d:e3:9a:97:f5: a4:8a:5f:2b:c2:f1:76:54:74:d5:72:98:3e:96:3e: 53:1d:7b:8a:57:67:d0:4c:af:e8:4e:e1:08:89:4b: 58:a3:7e:df:9f:89:f5:b2:a3:ad:db:0c:86:27:4d: d0:a1:cb:8f:26:ca:72:ee:51:7b:65:b2:21:c6:e4: 4f:80:7a:53:95:36:11:7c:1b:8a:3b:8e:b7:6a:e6: 67:32:42:87:c8:a9:a5:eb:bb:0b:6d:a3:5a:c4:34: c3:d3:96:3c:10:d4:d4:7a:de:7a:77:80:27:54:1a: eb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:98:AC:CF:DA:BC:B1:61:A7:96:01:9F:FE:35:C0:A0:34:61:AE:93 X509v3 Authority Key Identifier: keyid:DD:39:9E:49:41:89:F6:91:A5:ED:64:F3:BE:3A:6A:3B:50:22:50:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:2d:72:f6:9a:21:d4:6f:91:d0:4c:d8:14:8f:68:2f:c7:c5: aa:98:bf:d6:1d:e5:1d:24:df:23:87:5d:5e:fa:29:8d:d8:7b: 41:f9:4a:3a:bb:f8:ed:e0:46:d3:29:92:24:11:bf:91:8e:ea: 35:a4:2f:18:e5:aa:be:71:57:87:ce:a0:a9:d4:57:86:9e:58: 1d:ce:e4:49:b4:0f:1d:d9:cd:27:6a:30:d8:37:dd:4c:4b:15: 4c:ae:91:d8:b4:b1:ad:f7:df:f2:bc:69:46:1a:d8:1b:5d:13: 8f:f2:d2:d2:a0:00:4a:e5:31:ea:50:b5:f4:89:76:b6:eb:61: fd:9e:5a:26:7f:15:15:ca:d9:6d:24:e4:50:be:6f:a5:db:75: 5d:aa:d2:24:c6:66:f6:45:bb:ad:d3:85:76:ee:fa:e8:50:98: 02:d8:fb:62:65:da:54:3b:9d:25:26:b8:00:ea:36:f1:5f:13: 8e:d5:a1:45:90:b8:d8:84:fc:b5:c0:54:f2:5b:bd:0f:21:ab: d2:0a:4b:1e:03:1f:f2:de:7c:f3:c7:5e:03:8d:91:ad:f5:21: 8b:1f:a7:69:b7:eb:10:48:01:75:07:a0:9d:14:a6:27:0c:b8: e0:cc:91:aa:af:91:17:ef:45:a2:d5:e8:27:be:39:6d:4a:30: 16:0c:3c:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2H4a/hLQVHUni3nPHQujMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkMzk5ZTQ5NDE4OWY2OTFhNWVkNjRmM2JlM2E2YTNiNTAy MjUwOTEwHhcNMjYwMjA5MTAwMDMyWhcNMjYwMjEwMTAwMDMyWjAzMTEwLwYDVQQD EyhlZTk4YWNjZmRhYmNiMTYxYTc5NjAxOWZmZTM1YzBhMDM0NjFhZTkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmE+BUgkLk2QMWvoLKXl9tDx5+zzr MoAOwNWS5BTGTymp5MkMH4Q2TYiU7aGaz0gowCNQyvxbr3m+f1BRDJ6a62XAc0Jn UcXDJjsQiMwT7kgeC2QNrlvAkFgEgFZf4tCvZ8lCxU+VD/vR5mi+hUnj88DofFry DiPZye6KO10ABLLJC5cz5jyAh9FclN5IWHx2jeOal/Wkil8rwvF2VHTVcpg+lj5T HXuKV2fQTK/oTuEIiUtYo37fn4n1sqOt2wyGJ03QocuPJspy7lF7ZbIhxuRPgHpT lTYRfBuKO463auZnMkKHyKml67sLbaNaxDTD05Y8ENTUet56d4AnVBrrBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO6YrM/avLFhp5YBn/41wKA0Ya6TMB8GA1UdIwQY MBaAFN05nklBifaRpe1k8746ajtQIlCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1RtZVNVR0o5cEdsN1dUenZqcHFPMUFpVUpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yN2JhNjgtZjE3OC00OTkxLTk2YTct NDQyYTAzYjdmMDg0LzEvM1RtZVNVR0o5cEdsN1dUenZqcHFPMUFpVUpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC8yN2JhNjgtZjE3OC00OTkxLTk2YTctNDQyYTAzYjdmMDg0 LzEvM1RtZVNVR0o5cEdsN1dUenZqcHFPMUFpVUpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoS1y9poh 1G+R0EzYFI9oL8fFqpi/1h3lHSTfI4ddXvopjdh7QflKOrv47eBG0ymSJBG/kY7q NaQvGOWqvnFXh86gqdRXhp5YHc7kSbQPHdnNJ2ow2DfdTEsVTK6R2LSxrfff8rxp RhrYG10Tj/LS0qAASuUx6lC19Il2tuth/Z5aJn8VFcrZbSTkUL5vpdt1XarSJMZm 9kW7rdOFdu766FCYAtj7YmXaVDudJSa4AOo28V8TjtWhRZC42IT8tcBU8lu9DyGr 0gpLHgMf8t5888deA42RrfUhix+nabfrEEgBdQegnRSmJwy44MyRqq+RF+9FotXo J745bUowFgw8cA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:25 2026 by rpki-client