This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft File: 3YqroPRrqhRP2wk46RwU-UxhZQw.mft (raw, json) Hash identifier: 2riRtSOpqOF+R151I45CBZCaF3Tm9K/ZJdoBo/hc8nI= Subject key identifier: 4A:CE:0D:1E:F9:20:27:65:64:65:D4:72:88:83:83:3A:93:BC:8F:74 Authority key identifier: DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C Certificate issuer: /CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c Certificate serial: 019C41A1F20A16CF70929ADA720A0F5DC81F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft Manifest number: 0F70 Signing time: Mon 09 Feb 2026 09:00:58 +0000 Manifest this update: Mon 09 Feb 2026 09:00:58 +0000 Manifest next update: Tue 10 Feb 2026 09:00:58 +0000 Files and hashes: 1: 3YqroPRrqhRP2wk46RwU-UxhZQw.crl (hash: 20pHzAQ+oG5ktOR2a3WBytvjSczrE/Wagv/VG81aS/E=) 2: ipwbth9z_kAmFFiQQC69LkO_nQw.roa (hash: NejJVwemsx7RaWRb+qhN37iXZFwIo50zil0wLKpDlFw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:f2:0a:16:cf:70:92:9a:da:72:0a:0f:5d:c8:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c Validity Not Before: Feb 9 09:00:58 2026 GMT Not After : Feb 10 09:00:58 2026 GMT Subject: CN=4ace0d1ef92027656465d4728883833a93bc8f74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:be:23:7f:49:39:b5:c6:d9:1c:12:a6:95:8d: 70:49:dd:c5:18:cd:6b:61:46:05:c6:7e:4a:00:ea: 60:4e:31:07:e2:93:e3:25:f4:4e:2a:87:84:dc:a8: 86:fb:7d:64:e7:4a:82:c4:58:dd:af:cf:6b:a9:33: 64:61:93:c7:61:d6:64:a1:b8:d4:4a:67:75:0a:6c: c6:1c:6b:81:7c:24:94:34:2d:6b:67:ee:5e:95:c2: 19:6c:4e:a9:60:a4:b2:be:ae:67:07:ff:f4:b8:45: 6f:f7:a1:f8:f1:4f:23:50:82:e5:f4:bf:8e:e2:55: d9:1b:db:f4:08:7f:b3:cb:b4:47:79:e7:98:4d:a7: 59:d3:ba:e3:07:e6:c7:f5:39:11:bb:78:88:83:b5: 5c:05:ed:29:ac:46:86:67:c0:8a:08:a1:e7:9c:03: 64:b2:bc:70:1b:39:c1:6d:4d:e8:b0:12:d3:4e:cd: 50:27:03:a2:b4:41:29:03:8a:c0:1b:c3:a0:5d:34: 8b:3a:47:79:60:ff:59:f7:f1:28:cf:25:27:04:3a: 79:67:a7:e2:66:c3:2a:0e:bb:3c:45:98:03:65:40: da:6d:3b:db:e3:71:6c:35:89:63:ce:a7:51:eb:58: 25:14:3c:1b:5e:be:9b:f8:69:c2:60:22:fb:33:e4: af:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:CE:0D:1E:F9:20:27:65:64:65:D4:72:88:83:83:3A:93:BC:8F:74 X509v3 Authority Key Identifier: keyid:DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:1c:36:e9:88:1d:37:b1:c8:4f:2c:fd:24:11:d0:28:04:77: 2d:37:af:4c:c1:92:47:e3:30:c7:10:6f:e6:35:ea:f0:f9:d3: 7f:90:b3:fa:be:a2:5c:65:67:7a:82:cf:5c:f5:0d:08:ca:98: 2c:5f:9f:83:07:3a:82:93:fc:91:b1:9f:d1:69:40:77:bd:63: 8e:ab:ac:f9:0c:15:c7:05:15:e9:15:dc:3b:f3:12:0b:84:6d: e0:d7:99:4f:bf:a5:36:f8:15:1a:f5:8d:ff:c3:ae:0c:1a:a3: bf:e0:6d:f3:8b:a9:63:2f:65:3f:e0:cb:88:cc:ba:c1:05:14: b2:1b:3c:97:53:38:83:93:01:41:77:ff:77:ec:47:86:7c:b4: 2f:35:40:60:a2:80:3d:41:8e:bf:50:b0:03:22:4c:b7:5b:67: aa:83:e6:a4:85:a0:47:7e:fe:16:b4:d6:d8:e1:2b:f3:69:56: 8f:73:0d:e9:30:62:8b:98:fc:74:fd:4c:6f:7d:61:25:02:8f: 38:ee:15:08:20:3c:f4:2b:74:49:42:73:37:91:5d:e5:fc:54: b7:89:68:9a:0b:99:54:84:82:4a:50:ff:b6:52:ce:ab:c8:05: d7:76:a5:ec:9c:42:75:82:c8:37:05:55:43:bf:e6:f8:a7:7b: 8a:86:35:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBofIKFs9wkpracgoPXcgfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkOGFhYmEwZjQ2YmFhMTQ0ZmRiMDkzOGU5MWMxNGY5NGM2 MTY1MGMwHhcNMjYwMjA5MDkwMDU4WhcNMjYwMjEwMDkwMDU4WjAzMTEwLwYDVQQD Eyg0YWNlMGQxZWY5MjAyNzY1NjQ2NWQ0NzI4ODgzODMzYTkzYmM4Zjc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1r4jf0k5tcbZHBKmlY1wSd3FGM1r YUYFxn5KAOpgTjEH4pPjJfROKoeE3KiG+31k50qCxFjdr89rqTNkYZPHYdZkobjU Smd1CmzGHGuBfCSUNC1rZ+5elcIZbE6pYKSyvq5nB//0uEVv96H48U8jUILl9L+O 4lXZG9v0CH+zy7RHeeeYTadZ07rjB+bH9TkRu3iIg7VcBe0prEaGZ8CKCKHnnANk srxwGznBbU3osBLTTs1QJwOitEEpA4rAG8OgXTSLOkd5YP9Z9/EozyUnBDp5Z6fi ZsMqDrs8RZgDZUDabTvb43FsNYljzqdR61glFDwbXr6b+GnCYCL7M+SvoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFErODR75ICdlZGXUcoiDgzqTvI90MB8GA1UdIwQY MBaAFN2Kq6D0a6oUT9sJOOkcFPlMYWUMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1lxcm9QUnJxaFJQMndrNDZSd1UtVXhoWlF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8xZmEyN2UtYWFmMC00YmUyLWE1MjIt YTgwYzk0NzYxZDIzLzEvM1lxcm9QUnJxaFJQMndrNDZSd1UtVXhoWlF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi8xZmEyN2UtYWFmMC00YmUyLWE1MjItYTgwYzk0NzYxZDIz LzEvM1lxcm9QUnJxaFJQMndrNDZSd1UtVXhoWlF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbxw26Ygd N7HITyz9JBHQKAR3LTevTMGSR+MwxxBv5jXq8PnTf5Cz+r6iXGVneoLPXPUNCMqY LF+fgwc6gpP8kbGf0WlAd71jjqus+QwVxwUV6RXcO/MSC4Rt4NeZT7+lNvgVGvWN /8OuDBqjv+Bt84upYy9lP+DLiMy6wQUUshs8l1M4g5MBQXf/d+xHhny0LzVAYKKA PUGOv1CwAyJMt1tnqoPmpIWgR37+FrTW2OEr82lWj3MN6TBii5j8dP1Mb31hJQKP OO4VCCA89Ct0SUJzN5Fd5fxUt4lomguZVISCSlD/tlLOq8gF13al7JxCdYLINwVV Q7/m+Kd7ioY1RQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:56 2026 by rpki-client