This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft File: 3VShBsGZ81M-VritvPpLGsPmkJ8.mft (raw, json) Hash identifier: 8GiHx555FpFE+qo+t8AEjwvtDq9oqjOYYq8KlN4PNGg= Subject key identifier: 23:AC:57:0B:7F:42:78:58:45:C9:7A:1A:FC:E3:1C:6C:EA:DC:AE:B0 Authority key identifier: DD:54:A1:06:C1:99:F3:53:3E:56:B8:AD:BC:FA:4B:1A:C3:E6:90:9F Certificate issuer: /CN=dd54a106c199f3533e56b8adbcfa4b1ac3e6909f Certificate serial: 019C432284B537DAA63C4BE0FFF8543052DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft Manifest number: 0ADC Signing time: Mon 09 Feb 2026 16:01:01 +0000 Manifest this update: Mon 09 Feb 2026 16:01:01 +0000 Manifest next update: Tue 10 Feb 2026 16:01:01 +0000 Files and hashes: 1: 3VShBsGZ81M-VritvPpLGsPmkJ8.crl (hash: VpygN4NcIQJC4T/+FoJ/8Y//rXOCWpmD7DOqSv7yeI8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.crl rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:84:b5:37:da:a6:3c:4b:e0:ff:f8:54:30:52:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd54a106c199f3533e56b8adbcfa4b1ac3e6909f Validity Not Before: Feb 9 16:01:01 2026 GMT Not After : Feb 10 16:01:01 2026 GMT Subject: CN=23ac570b7f42785845c97a1afce31c6ceadcaeb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:15:9a:ef:33:72:d9:b7:65:d6:d4:3b:a7:0a: 37:e0:52:1f:24:97:53:1f:de:6b:c1:02:12:49:99: 87:9e:e3:00:4c:fc:40:55:26:e6:03:4f:a3:0c:29: 97:34:33:e2:cb:54:f6:bb:17:cf:42:98:4f:62:ab: 06:97:54:27:77:dd:50:ab:c5:24:e3:d6:6d:73:48: ae:a5:6e:f0:c2:97:2c:ef:35:07:96:b4:d0:a1:68: 61:3f:00:c1:7a:d2:85:0e:b0:31:c5:a4:ab:0a:8b: 6b:05:25:af:ef:52:45:cc:84:49:ff:5b:9a:a3:f8: 17:65:ee:2f:f4:2a:a3:23:6e:73:b9:35:8b:87:93: 32:e7:8a:64:50:63:ac:c5:0f:88:b1:56:c7:f5:30: b7:67:d2:85:76:0b:73:db:92:1e:3e:48:22:a1:74: 42:47:31:03:5a:07:dc:52:ec:92:8c:a5:3d:57:ef: 6c:d5:1b:85:a2:b3:43:ec:7c:d5:53:ce:89:b9:f1: a0:0b:9a:d4:69:ea:98:de:64:6d:a2:9c:51:c7:9c: c4:2b:b7:53:20:db:7a:b6:86:c6:18:ac:69:a2:2b: 97:5f:7d:62:a4:b6:1d:13:57:aa:27:32:3e:ea:e9: ad:89:44:4d:b6:34:f3:e6:a7:af:49:c1:76:c6:74: bc:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:AC:57:0B:7F:42:78:58:45:C9:7A:1A:FC:E3:1C:6C:EA:DC:AE:B0 X509v3 Authority Key Identifier: keyid:DD:54:A1:06:C1:99:F3:53:3E:56:B8:AD:BC:FA:4B:1A:C3:E6:90:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:12:da:f6:11:50:a9:80:d7:40:90:e5:4f:dc:8f:23:62:7d: ce:15:24:ad:8f:5c:60:47:b4:73:bb:27:57:10:7a:83:70:23: da:17:40:b2:da:f0:1b:d2:79:65:ce:e5:04:2c:c6:85:47:be: 3a:3c:74:8f:19:4b:90:d7:e2:16:3c:61:17:eb:16:df:41:c1: 6d:57:14:f1:cd:e0:05:c1:c7:c9:6f:e1:0d:ef:40:bc:d0:b1: f5:59:02:e9:39:6b:19:c2:74:ad:c9:0f:b3:d3:1b:ce:1c:2a: 9d:bd:15:75:ca:fd:a9:9a:2c:2f:5b:d7:f3:a0:bc:93:a3:48: 89:38:f5:48:6b:a2:8d:fc:fd:d6:43:f7:0d:4a:4e:45:b3:1a: e0:bd:ac:c0:23:12:13:ba:40:b5:b5:99:c1:fb:c1:d7:68:e0: 1d:4d:d2:5a:d3:4c:28:a7:28:28:67:4a:83:f4:ee:a1:2e:fc: 76:a9:55:b7:53:35:cb:52:37:ad:17:f2:e1:ab:2c:f2:0e:79: df:30:61:1d:d1:c0:3b:f0:35:09:8b:0f:55:26:94:48:7e:e0: 86:d0:39:0c:4c:6c:ab:0a:92:8f:29:cd:7c:02:f8:fb:ba:38: 4e:2b:cc:ad:b9:c4:2f:ad:06:ab:8c:9e:76:51:cd:56:0b:7b: a5:26:13:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoS1N9qmPEvg//hUMFLaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkNTRhMTA2YzE5OWYzNTMzZTU2YjhhZGJjZmE0YjFhYzNl NjkwOWYwHhcNMjYwMjA5MTYwMTAxWhcNMjYwMjEwMTYwMTAxWjAzMTEwLwYDVQQD EygyM2FjNTcwYjdmNDI3ODU4NDVjOTdhMWFmY2UzMWM2Y2VhZGNhZWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxWa7zNy2bdl1tQ7pwo34FIfJJdT H95rwQISSZmHnuMATPxAVSbmA0+jDCmXNDPiy1T2uxfPQphPYqsGl1Qnd91Qq8Uk 49Ztc0iupW7wwpcs7zUHlrTQoWhhPwDBetKFDrAxxaSrCotrBSWv71JFzIRJ/1ua o/gXZe4v9CqjI25zuTWLh5My54pkUGOsxQ+IsVbH9TC3Z9KFdgtz25IePkgioXRC RzEDWgfcUuySjKU9V+9s1RuForND7HzVU86JufGgC5rUaeqY3mRtopxRx5zEK7dT INt6tobGGKxpoiuXX31ipLYdE1eqJzI+6umtiURNtjTz5qevScF2xnS8kwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCOsVwt/QnhYRcl6GvzjHGzq3K6wMB8GA1UdIwQY MBaAFN1UoQbBmfNTPla4rbz6SxrD5pCfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1ZTaEJzR1o4MU0tVnJpdHZQcExHc1Bta0o4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9jOGYyNmMtYjI2Mi00ODdmLWFkNDct MzQxYWYxZjA3NjliLzEvM1ZTaEJzR1o4MU0tVnJpdHZQcExHc1Bta0o4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9jOGYyNmMtYjI2Mi00ODdmLWFkNDctMzQxYWYxZjA3Njli LzEvM1ZTaEJzR1o4MU0tVnJpdHZQcExHc1Bta0o4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANhLa9hFQ qYDXQJDlT9yPI2J9zhUkrY9cYEe0c7snVxB6g3Aj2hdAstrwG9J5Zc7lBCzGhUe+ Ojx0jxlLkNfiFjxhF+sW30HBbVcU8c3gBcHHyW/hDe9AvNCx9VkC6TlrGcJ0rckP s9Mbzhwqnb0Vdcr9qZosL1vX86C8k6NIiTj1SGuijfz91kP3DUpORbMa4L2swCMS E7pAtbWZwfvB12jgHU3SWtNMKKcoKGdKg/TuoS78dqlVt1M1y1I3rRfy4ass8g55 3zBhHdHAO/A1CYsPVSaUSH7ghtA5DExsqwqSjynNfAL4+7o4TivMrbnEL60Gq4ye dlHNVgt7pSYTig== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:19 2026 by rpki-client