This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft File: 3hL5ZansM-LC6HthYb7vuL4obKM.mft (raw, json) Hash identifier: sBNe5fEW7FB5EtD/rczDkFMs5doLGNeqxFRrj3LsRZ4= Subject key identifier: 05:97:42:A3:1B:BF:6F:F8:9D:46:EA:61:41:23:C2:C9:E1:01:49:75 Authority key identifier: DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3 Certificate issuer: /CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3 Certificate serial: 019C42EAE4E110556D840CA19EAA31BD48BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft Manifest number: 1634 Signing time: Mon 09 Feb 2026 15:00:15 +0000 Manifest this update: Mon 09 Feb 2026 15:00:15 +0000 Manifest next update: Tue 10 Feb 2026 15:00:15 +0000 Files and hashes: 1: 3hL5ZansM-LC6HthYb7vuL4obKM.crl (hash: DT76yj029udH97QCU54CVE5f6mV61QvBOsGWFaorfd8=) 2: dQKWrb4274MA9TnUoPK0iLguRN8.roa (hash: iabYGi8dw6jC4+Zg8izYgwpn552JIuXwr1GRxu62hag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:ea:e4:e1:10:55:6d:84:0c:a1:9e:aa:31:bd:48:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3 Validity Not Before: Feb 9 15:00:15 2026 GMT Not After : Feb 10 15:00:15 2026 GMT Subject: CN=059742a31bbf6ff89d46ea614123c2c9e1014975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:69:ee:b1:da:5f:c7:81:48:73:8f:1b:63:c8: e6:fb:2e:0c:27:51:f2:6f:48:9c:11:10:1c:6c:11: 42:9c:2d:54:0f:62:40:10:7e:36:37:16:04:53:bf: eb:f7:0e:65:83:5a:55:a5:0c:d0:fa:c5:86:c7:0c: 21:72:87:7c:23:6d:64:f4:30:81:61:4a:ec:1b:9a: 49:b0:ab:0f:cd:08:31:1a:3d:54:8d:10:1d:79:50: d2:9b:a2:ef:95:24:1e:37:7e:7a:4a:8d:46:48:b5: 26:08:46:34:90:4a:3c:8a:39:d4:31:3b:01:90:92: 08:31:86:98:4b:c7:ff:8e:c6:4c:2b:23:6b:23:9e: 73:2a:b7:f2:5b:ec:42:67:4a:74:8e:af:40:93:eb: 95:67:de:ee:56:cb:ef:38:a5:f5:14:84:03:7a:75: e8:42:2f:72:ac:34:df:74:6c:42:10:60:89:2a:5f: 14:34:8d:da:a9:6f:b1:88:d9:9f:64:98:ef:ef:12: 01:8e:8c:3a:ac:0e:33:cc:f3:d4:10:22:8e:10:79: 2d:50:36:e2:f0:04:b3:b1:5f:94:50:c3:83:82:85: b8:cf:0b:9e:95:3a:c5:8c:62:9c:18:70:83:8b:1d: a9:00:34:37:4b:93:37:04:19:80:2a:6c:a9:9b:04: 77:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:97:42:A3:1B:BF:6F:F8:9D:46:EA:61:41:23:C2:C9:E1:01:49:75 X509v3 Authority Key Identifier: keyid:DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:93:d3:87:d2:8f:01:a5:4b:78:41:4c:8e:f5:1b:a1:ae:35: e8:13:28:48:05:af:1d:24:58:dc:f7:32:13:6a:f1:0a:c5:b2: 20:db:66:7b:eb:19:a3:8e:88:19:25:3a:76:cc:88:d4:59:00: 52:59:25:97:ed:0e:04:d4:6f:aa:da:c2:ed:b9:12:4e:bb:cf: 5a:7f:93:d1:50:07:e8:c1:91:92:d3:36:1e:32:e7:ee:7f:94: 8c:9c:08:48:f6:70:c0:f7:93:5f:83:b8:6a:56:c0:ab:67:d8: e6:4c:a9:a6:d2:0e:e3:ce:50:c3:61:c1:de:6a:c2:64:a2:5a: 6d:d3:7b:d6:cb:0b:04:7d:2f:c2:39:07:b5:ba:d7:75:e9:93: 3d:60:9e:b9:1a:90:83:c7:91:4c:fe:35:72:b0:73:60:32:ba: 6b:1e:f6:e7:ea:dc:0a:71:f3:94:99:ce:1e:8a:15:6d:9a:9a: af:e3:91:dc:53:34:1b:83:00:84:fe:87:ab:9d:16:0f:8b:f0: 1e:f4:09:73:44:b2:29:b8:35:45:89:42:1c:70:61:04:5d:f2: 15:67:ec:b8:89:35:e1:47:97:95:dc:fd:8a:e7:25:a2:1f:34: 20:8e:da:c9:45:fc:bb:56:99:7e:e6:3a:3b:da:2b:a8:b4:02: 89:72:06:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6uThEFVthAyhnqoxvUi/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMTJmOTY1YTllYzMzZTJjMmU4N2I2MTYxYmVlZmI4YmUy ODZjYTMwHhcNMjYwMjA5MTUwMDE1WhcNMjYwMjEwMTUwMDE1WjAzMTEwLwYDVQQD EygwNTk3NDJhMzFiYmY2ZmY4OWQ0NmVhNjE0MTIzYzJjOWUxMDE0OTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2nusdpfx4FIc48bY8jm+y4MJ1Hy b0icERAcbBFCnC1UD2JAEH42NxYEU7/r9w5lg1pVpQzQ+sWGxwwhcod8I21k9DCB YUrsG5pJsKsPzQgxGj1UjRAdeVDSm6LvlSQeN356So1GSLUmCEY0kEo8ijnUMTsB kJIIMYaYS8f/jsZMKyNrI55zKrfyW+xCZ0p0jq9Ak+uVZ97uVsvvOKX1FIQDenXo Qi9yrDTfdGxCEGCJKl8UNI3aqW+xiNmfZJjv7xIBjow6rA4zzPPUECKOEHktUDbi 8ASzsV+UUMODgoW4zwuelTrFjGKcGHCDix2pADQ3S5M3BBmAKmypmwR30wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAWXQqMbv2/4nUbqYUEjwsnhAUl1MB8GA1UdIwQY MBaAFN4S+WWp7DPiwuh7YWG+77i+KGyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8wZjAzNzMtZGI2ZC00Nzk3LTgyMGQt YjZkMTJhYzY2ODMxLzEvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8wZjAzNzMtZGI2ZC00Nzk3LTgyMGQtYjZkMTJhYzY2ODMx LzEvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGJPTh9KP AaVLeEFMjvUboa416BMoSAWvHSRY3PcyE2rxCsWyINtme+sZo46IGSU6dsyI1FkA Ulkll+0OBNRvqtrC7bkSTrvPWn+T0VAH6MGRktM2HjLn7n+UjJwISPZwwPeTX4O4 albAq2fY5kypptIO485Qw2HB3mrCZKJabdN71ssLBH0vwjkHtbrXdemTPWCeuRqQ g8eRTP41crBzYDK6ax725+rcCnHzlJnOHooVbZqar+OR3FM0G4MAhP6Hq50WD4vw HvQJc0SyKbg1RYlCHHBhBF3yFWfsuIk14UeXldz9iucloh80II7ayUX8u1aZfuY6 O9orqLQCiXIGEQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:57 2026 by rpki-client