This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft File: 3-4r9D8hqBxJLG5qn8bwdNLwohc.mft (raw, json) Hash identifier: HEptPEgXkLtxlq7eMBiEvYI98xqb36+KPgl9977Haw4= Subject key identifier: 28:3D:A2:E9:EC:37:34:6C:E0:DE:E8:E5:A2:8C:5B:D1:61:E1:AC:1C Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17 Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217 Certificate serial: 019BDE127B69B9322DA145A0E367920B7DA5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft Manifest number: 17E8 Signing time: Wed 21 Jan 2026 01:01:51 +0000 Manifest this update: Wed 21 Jan 2026 01:01:51 +0000 Manifest next update: Thu 22 Jan 2026 01:01:51 +0000 Files and hashes: 1: 1fQajHTJp0S8KUunDd6YeyFtENM.roa (hash: mmAzmTwR/ELzJWO/mTGxkNnXnKiWntSSUF9kf4/Kzb4=) 2: 3-4r9D8hqBxJLG5qn8bwdNLwohc.crl (hash: XKBOHMOBFiATJA7f5ZGsFm3ffX7NAN0zAZT4eF3HAK0=) 3: 6I-aggcE89s528aMt_8CuZqJ61A.roa (hash: 1l0d6AnGSzNrEZie8Z3fZ9Fg7c3oqYcQ4vM6hMLN2Xk=) 4: AFp3F2X8yQTaBQfkM_zsF9UYmww.roa (hash: 7p1zPt6PNmGU8W+3TijuQxRqjYyJqKF96JpQUyZBeZY=) 5: EHQpUpEMo4S4SvN6ygFHQVkQJ6A.roa (hash: aL98OrOlu07CFPxf6rwXnJMO4vbO/beSHKJmE+F/5nQ=) 6: dtWCUcMRjUZZ2N1UE-X6joF7XJI.roa (hash: 9EB/PZtHd/ICMm68KWPn5nHH+lzu4WZ8rISOZNH4bJM=) 7: l6dcV9zJ9n_Ctd5EzzonA7X-jFo.roa (hash: mwxDuvlYfTCoynYTFAQOpS/BivdbtxW1voj1voq8fsg=) 8: rrxhY0T34NFm8dBURFOGg9BvJjw.roa (hash: CAUMQZvZz6QKlQgRUZEx4oRHdyyDBXGnUQ6HYMNXgDk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:de:12:7b:69:b9:32:2d:a1:45:a0:e3:67:92:0b:7d:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217 Validity Not Before: Jan 21 01:01:51 2026 GMT Not After : Jan 22 01:01:51 2026 GMT Subject: CN=283da2e9ec37346ce0dee8e5a28c5bd161e1ac1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cb:61:b0:1d:c6:5c:2c:db:54:ac:03:c3:08: 30:c6:54:7e:6a:f4:ba:92:1f:69:36:67:2d:83:b9: 34:0d:ae:19:f4:f6:77:dc:40:65:c9:dd:9b:42:07: 71:19:c0:56:e0:02:b6:f4:af:c0:26:78:f4:80:6f: e0:7a:7f:2d:7e:e4:a5:92:19:76:e4:65:01:1a:b3: 9d:e9:eb:54:9e:f8:9d:3e:34:b8:89:68:6c:15:9b: a4:03:e5:03:65:76:d2:8e:24:5e:a8:4b:e4:0e:3a: e1:9c:06:52:f3:d3:26:69:3a:f5:62:4e:dd:5c:fe: ee:98:10:ca:28:cb:f3:b8:8a:7c:6e:d2:5f:e1:d1: 61:c0:a9:9c:5e:90:fb:13:bc:59:95:4c:1f:15:e8: d8:05:cc:ea:74:56:ac:b6:dc:37:6c:41:ae:a5:9b: 7e:49:24:48:32:37:68:6b:ab:dd:3c:4a:3d:81:6e: 33:a7:4d:c8:a9:63:b4:a7:99:c2:be:b5:be:21:e3: 91:83:8c:ce:fe:ad:f9:fa:e2:0d:31:5e:e9:f7:b6: 51:56:1a:87:4e:7f:51:47:45:62:1d:5d:5a:9b:c3: fc:52:97:30:ca:02:2d:ea:e2:f8:62:ab:59:35:a1: 28:df:ff:d3:ad:c7:2a:7d:20:bb:b9:ae:f9:bc:98: 75:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:3D:A2:E9:EC:37:34:6C:E0:DE:E8:E5:A2:8C:5B:D1:61:E1:AC:1C X509v3 Authority Key Identifier: keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:dd:59:45:bd:0c:6d:d6:c2:be:43:50:0e:de:cd:18:37:26: 37:81:40:7b:8c:36:ea:eb:6a:64:c2:5e:36:ce:c1:2b:5d:75: 03:6a:6e:83:e0:8a:49:9f:56:5f:65:06:9a:5b:e9:d5:dd:3f: 2e:12:57:22:0f:33:80:45:a2:6a:aa:e2:40:ef:f5:08:50:a1: 7a:59:b7:62:42:c2:2b:bc:73:27:50:a8:34:02:f1:1a:99:07: 81:f9:29:0c:d5:b2:75:4c:a2:6f:ed:12:d5:2d:f6:31:9b:98: 78:14:3c:c1:e1:a1:09:cb:fb:3c:d8:6d:fb:d1:ea:9b:23:4a: 46:be:fb:49:7b:7e:1c:80:e3:91:45:e5:e7:13:b1:bc:b1:7c: 23:81:94:b7:81:3d:fe:10:d6:35:e0:ba:80:72:3d:5a:16:e9: e5:31:eb:25:3c:8e:2d:07:45:64:a8:4b:1b:00:ae:ce:03:27: 29:e4:ab:8a:71:50:53:f6:a8:64:42:ae:f3:8c:fc:8f:7a:ec: c2:f6:f8:73:49:5a:f2:f4:25:1f:ee:e7:98:f5:2f:5f:8c:37: 8c:ac:54:68:a1:93:e2:a8:39:b6:3e:35:3c:bd:61:6e:bd:b8: 04:65:df:e6:d0:b2:4e:4d:f5:76:ae:2e:8f:b2:f5:5a:55:12: 43:56:fe:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZveEntpuTItoUWg42eSC32lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmZWUyYmY0M2YyMWE4MWM0OTJjNmU2YTlmYzZmMDc0ZDJm MGEyMTcwHhcNMjYwMTIxMDEwMTUxWhcNMjYwMTIyMDEwMTUxWjAzMTEwLwYDVQQD EygyODNkYTJlOWVjMzczNDZjZTBkZWU4ZTVhMjhjNWJkMTYxZTFhYzFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8thsB3GXCzbVKwDwwgwxlR+avS6 kh9pNmctg7k0Da4Z9PZ33EBlyd2bQgdxGcBW4AK29K/AJnj0gG/gen8tfuSlkhl2 5GUBGrOd6etUnvidPjS4iWhsFZukA+UDZXbSjiReqEvkDjrhnAZS89MmaTr1Yk7d XP7umBDKKMvzuIp8btJf4dFhwKmcXpD7E7xZlUwfFejYBczqdFasttw3bEGupZt+ SSRIMjdoa6vdPEo9gW4zp03IqWO0p5nCvrW+IeORg4zO/q35+uINMV7p97ZRVhqH Tn9RR0ViHV1am8P8UpcwygIt6uL4YqtZNaEo3//TrccqfSC7ua75vJh1JQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCg9ounsNzRs4N7o5aKMW9Fh4awcMB8GA1UdIwQY MBaAFN/uK/Q/IagcSSxuap/G8HTS8KIXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zYjNiZTAtNTRhNy00MTBmLTlkMTIt MjhkNzhlYjlmMmRjLzEvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8zYjNiZTAtNTRhNy00MTBmLTlkMTItMjhkNzhlYjlmMmRj LzEvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHt1ZRb0M bdbCvkNQDt7NGDcmN4FAe4w26utqZMJeNs7BK111A2pug+CKSZ9WX2UGmlvp1d0/ LhJXIg8zgEWiaqriQO/1CFChelm3YkLCK7xzJ1CoNALxGpkHgfkpDNWydUyib+0S 1S32MZuYeBQ8weGhCcv7PNht+9HqmyNKRr77SXt+HIDjkUXl5xOxvLF8I4GUt4E9 /hDWNeC6gHI9Whbp5THrJTyOLQdFZKhLGwCuzgMnKeSrinFQU/aoZEKu84z8j3rs wvb4c0la8vQlH+7nmPUvX4w3jKxUaKGT4qg5tj41PL1hbr24BGXf5tCyTk31dq4u j7L1WlUSQ1b+/g== -----END CERTIFICATE-----Generated at Wed Jan 21 07:52:45 2026 by rpki-client