This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft File: 3itcv5Z6A0nYiXBLtNYfpSajHW8.mft (raw, json) Hash identifier: c1vT9LFZC3bC1MVx16fbZ43R3EKmhHSSF7Da4xMVDRs= Subject key identifier: 58:86:42:C3:AD:A7:0F:28:06:92:2D:55:85:28:50:4F:E3:92:FC:2F Authority key identifier: DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F Certificate issuer: /CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f Certificate serial: 019C439070707D1E5A97422573166246BD2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft Manifest number: 1750 Signing time: Mon 09 Feb 2026 18:01:05 +0000 Manifest this update: Mon 09 Feb 2026 18:01:05 +0000 Manifest next update: Tue 10 Feb 2026 18:01:05 +0000 Files and hashes: 1: 3itcv5Z6A0nYiXBLtNYfpSajHW8.crl (hash: 4iRYubvVRGogP2rPUtpnhHSfk28g2vcxia1yQF/VDn8=) 2: xU2EDS3A1kqxHB5fmWawALQua5w.roa (hash: gy/kCjpuCiDHyb5854bh+q6WsJ4/S+45FLFM/o6soug=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:70:70:7d:1e:5a:97:42:25:73:16:62:46:bd:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f Validity Not Before: Feb 9 18:01:05 2026 GMT Not After : Feb 10 18:01:05 2026 GMT Subject: CN=588642c3ada70f2806922d558528504fe392fc2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0c:cd:e2:27:54:5d:8b:ed:fe:6b:be:b9:f9: e4:e7:ff:b0:47:c8:77:7c:67:ed:ea:81:9a:88:ff: f4:bf:5e:5a:25:5d:55:70:53:25:ae:d1:2c:df:c6: 6c:39:ea:3c:25:33:f4:83:30:94:17:db:e9:6d:e2: 6d:b7:68:75:94:a7:19:32:48:63:d0:62:a8:9d:07: 03:fa:9d:58:4d:83:47:aa:8e:1d:30:6a:20:e5:56: 83:81:e8:36:1a:e3:42:8a:0f:da:96:b2:df:49:37: c6:df:70:e4:5d:da:f1:7e:16:08:6d:e2:f0:a4:e9: d4:74:16:76:0d:f1:ca:f3:fe:89:c6:a1:3f:6d:49: 26:5e:61:7b:15:62:65:c3:cb:b3:00:25:eb:28:b0: b3:07:f4:55:e6:ab:48:c6:14:a8:2b:26:04:0b:c4: 05:b2:2f:8b:b9:4a:cd:04:dc:45:f8:a0:9c:84:d9: 49:57:82:58:90:2c:46:73:04:b7:69:01:7f:09:dc: c5:64:27:a1:15:d9:cb:a3:79:1a:2b:12:e3:a1:fe: d2:01:4a:22:32:04:01:81:ff:92:8c:e4:25:44:8a: 6d:10:78:9c:6b:5c:dd:7e:f4:bf:3e:53:bb:6c:da: fa:cb:34:65:82:2a:18:ad:19:50:39:f1:c6:af:e1: 34:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:86:42:C3:AD:A7:0F:28:06:92:2D:55:85:28:50:4F:E3:92:FC:2F X509v3 Authority Key Identifier: keyid:DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:d0:ea:36:67:28:df:af:e1:c8:8b:e0:9c:b2:c4:d3:95:ea: 2d:6c:4e:13:01:bd:6a:5d:de:f9:16:bc:02:14:61:ad:56:0c: 34:24:3b:ab:69:5a:dc:ad:7e:47:b5:1d:28:3a:11:68:95:39: 09:ca:c0:25:05:d1:08:a3:1b:8c:24:80:b6:64:3a:71:7d:e2: fb:0e:3c:67:a7:63:35:e6:84:9b:2c:be:4d:4e:98:e6:28:a7: 83:6f:23:c9:02:47:95:cf:bb:e5:7b:ab:c2:90:28:7e:fc:5e: 86:25:08:60:d9:94:ca:35:50:f3:db:11:e1:ea:5e:a5:bf:b8: 67:f5:24:cf:85:38:84:06:ec:fa:ea:7a:c6:e5:2b:f2:9d:07: 3c:7c:5d:3d:94:51:cd:8f:e6:64:d4:d1:95:81:98:83:52:4d: 1d:48:3b:b4:71:e9:c6:ba:c4:b5:e0:d3:7f:e4:fa:b9:98:13: e7:00:15:1b:21:71:26:6b:8e:3a:99:d0:a8:87:b0:82:c4:4b: 13:ce:38:90:74:12:fb:fb:5f:0b:a2:cf:bd:83:88:78:6f:62: 39:10:ee:5a:40:08:51:d2:7d:c3:3e:46:0d:8a:b6:77:cc:77: ca:b4:ef:76:ac:3e:ec:e1:c3:33:d8:5f:d4:c4:b9:1b:50:06: 1f:eb:46:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkHBwfR5al0IlcxZiRr0vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMmI1Y2JmOTY3YTAzNDlkODg5NzA0YmI0ZDYxZmE1MjZh MzFkNmYwHhcNMjYwMjA5MTgwMTA1WhcNMjYwMjEwMTgwMTA1WjAzMTEwLwYDVQQD Eyg1ODg2NDJjM2FkYTcwZjI4MDY5MjJkNTU4NTI4NTA0ZmUzOTJmYzJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyAzN4idUXYvt/mu+ufnk5/+wR8h3 fGft6oGaiP/0v15aJV1VcFMlrtEs38ZsOeo8JTP0gzCUF9vpbeJtt2h1lKcZMkhj 0GKonQcD+p1YTYNHqo4dMGog5VaDgeg2GuNCig/alrLfSTfG33DkXdrxfhYIbeLw pOnUdBZ2DfHK8/6JxqE/bUkmXmF7FWJlw8uzACXrKLCzB/RV5qtIxhSoKyYEC8QF si+LuUrNBNxF+KCchNlJV4JYkCxGcwS3aQF/CdzFZCehFdnLo3kaKxLjof7SAUoi MgQBgf+SjOQlRIptEHica1zdfvS/PlO7bNr6yzRlgioYrRlQOfHGr+E0owIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFiGQsOtpw8oBpItVYUoUE/jkvwvMB8GA1UdIwQY MBaAFN4rXL+WegNJ2IlwS7TWH6Umox1vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi82NDZlN2QtNGY0Ni00MDdjLWJkZDAt ZmQ3MmQ5NjJkZjI3LzEvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi82NDZlN2QtNGY0Ni00MDdjLWJkZDAtZmQ3MmQ5NjJkZjI3 LzEvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQdDqNmco 36/hyIvgnLLE05XqLWxOEwG9al3e+Ra8AhRhrVYMNCQ7q2la3K1+R7UdKDoRaJU5 CcrAJQXRCKMbjCSAtmQ6cX3i+w48Z6djNeaEmyy+TU6Y5iing28jyQJHlc+75Xur wpAofvxehiUIYNmUyjVQ89sR4epepb+4Z/Ukz4U4hAbs+up6xuUr8p0HPHxdPZRR zY/mZNTRlYGYg1JNHUg7tHHpxrrEteDTf+T6uZgT5wAVGyFxJmuOOpnQqIewgsRL E844kHQS+/tfC6LPvYOIeG9iORDuWkAIUdJ9wz5GDYq2d8x3yrTvdqw+7OHDM9hf 1MS5G1AGH+tGVQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:46 2026 by rpki-client