This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json) Hash identifier: qey25agzDk210QlF4rkpQVN9Uen5HmWGn1g8Hf3ZQYE= Subject key identifier: 0E:83:2B:93:B5:DE:F4:C9:AE:71:E2:EA:5C:F7:11:DB:65:B2:54:5D Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75 Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875 Certificate serial: 019C4321D3D00B3A17FD33A96DCDB7EB2AB5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 16:00:15 +0000 Manifest this update: Mon 09 Feb 2026 16:00:15 +0000 Manifest next update: Tue 10 Feb 2026 16:00:15 +0000 Files and hashes: 1: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: SYDNf+GgsRVaCnL+AHiIEIsH7Uyryko4lVoSp2I139E=) 2: ygzwdt05FZY5UgU4PNRonpu2D5Q.roa (hash: iuwiLZg36gzzO6D5OpB0qDgYjkp9/xl1ZMAuUek9+EY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:d3:d0:0b:3a:17:fd:33:a9:6d:cd:b7:eb:2a:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875 Validity Not Before: Feb 9 16:00:15 2026 GMT Not After : Feb 10 16:00:15 2026 GMT Subject: CN=0e832b93b5def4c9ae71e2ea5cf711db65b2545d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:81:ef:67:80:f2:ea:be:8f:2d:b9:9d:4d:83: b8:bb:39:ee:ef:32:1b:a8:0b:bc:91:02:bf:b6:df: e5:82:dc:5e:fb:59:85:be:c0:cd:2e:fc:ba:69:ee: 52:5f:9a:d9:92:a1:c7:35:d0:1d:17:01:07:3c:d0: f6:47:13:1d:70:da:d4:79:68:ec:a1:10:27:7c:c4: 29:74:26:26:9b:f0:ad:ba:9e:e9:3a:a7:f7:c6:9f: 8e:65:d5:21:49:75:c2:23:6f:2e:c8:dd:26:0f:bb: 86:42:3a:23:2e:61:2f:45:ad:db:09:5b:19:d6:ab: a7:41:16:dc:91:c0:86:71:8c:95:02:6c:c0:e9:e9: d7:af:d8:45:6d:4b:3f:dd:82:c4:cc:b2:bc:75:55: aa:7d:2f:17:1a:91:09:f9:03:50:9d:88:87:1d:f3: ac:39:97:65:2d:4b:7b:ee:23:c5:ac:57:f5:86:76: f7:08:18:17:72:05:b3:7e:4b:d0:80:cc:eb:84:e3: 34:3a:3c:fd:d9:4e:c4:62:79:bd:50:51:4f:55:59: dc:6c:11:3e:69:fe:66:c7:77:8e:6a:6f:04:34:b2: 51:ea:b8:93:58:df:77:6a:50:b9:ce:c1:3a:59:d6: b6:79:2c:98:ec:67:d8:43:93:46:a4:53:f1:f3:ff: 0c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:83:2B:93:B5:DE:F4:C9:AE:71:E2:EA:5C:F7:11:DB:65:B2:54:5D X509v3 Authority Key Identifier: keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:67:08:26:4f:c2:6a:d6:69:ef:87:80:b8:a6:08:4f:40:3a: 56:b3:ba:81:37:de:73:1d:ba:38:b3:d2:9b:3f:5b:57:b4:2b: 9c:d4:ef:62:c2:ac:dd:da:2b:7c:8e:77:02:35:66:fb:e8:96: de:5d:30:50:27:f4:5d:69:2b:b4:a2:dd:2a:e9:3f:cc:ae:eb: d3:5b:a5:72:54:61:ad:fc:d2:40:53:86:56:e9:89:9d:f3:01: 71:40:bc:07:b1:7e:f2:8b:fb:67:5e:4e:1d:b7:3a:0c:fd:32: cf:54:e1:3c:6b:e4:db:0a:e4:ae:4f:b8:85:8f:55:cb:92:fe: d7:9c:a7:e3:ee:ad:36:e0:ff:a0:d7:45:39:88:d2:92:e8:1e: b8:7b:6b:5c:2e:88:c9:f5:2e:84:48:05:bf:69:a3:02:99:00: 73:8e:3d:ad:b4:68:22:2e:44:14:86:e1:16:83:9c:c2:b1:da: 5e:2c:6e:f2:cb:de:85:58:48:d5:a9:f9:40:d6:29:71:b0:14: 46:06:c1:77:87:90:77:a6:6d:34:0a:6a:21:15:e1:42:09:bd: 23:4a:ea:24:59:1f:dd:9a:3b:59:2a:07:d6:40:8b:c3:f6:ed: c8:0d:80:34:81:9e:b7:07:5d:a3:03:57:18:e8:46:65:f3:2b: 38:59:be:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdPQCzoX/TOpbc236yq1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmNzgxYzg0NTMzOTkwMGY3ZTZiMjAzM2U2Mzg4OGI1M2Fl NTc4NzUwHhcNMjYwMjA5MTYwMDE1WhcNMjYwMjEwMTYwMDE1WjAzMTEwLwYDVQQD EygwZTgzMmI5M2I1ZGVmNGM5YWU3MWUyZWE1Y2Y3MTFkYjY1YjI1NDVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh4HvZ4Dy6r6PLbmdTYO4uznu7zIb qAu8kQK/tt/lgtxe+1mFvsDNLvy6ae5SX5rZkqHHNdAdFwEHPND2RxMdcNrUeWjs oRAnfMQpdCYmm/Ctup7pOqf3xp+OZdUhSXXCI28uyN0mD7uGQjojLmEvRa3bCVsZ 1qunQRbckcCGcYyVAmzA6enXr9hFbUs/3YLEzLK8dVWqfS8XGpEJ+QNQnYiHHfOs OZdlLUt77iPFrFf1hnb3CBgXcgWzfkvQgMzrhOM0Ojz92U7EYnm9UFFPVVncbBE+ af5mx3eOam8ENLJR6riTWN93alC5zsE6Wda2eSyY7GfYQ5NGpFPx8/8MdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA6DK5O13vTJrnHi6lz3EdtlslRdMB8GA1UdIwQY MBaAFK94HIRTOZAPfmsgM+Y4iLU65Xh1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kMWM3MWQtYWE1MC00ZDc4LThlNTIt NWNmMzdhMzQ4MzBkLzEvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9kMWM3MWQtYWE1MC00ZDc4LThlNTItNWNmMzdhMzQ4MzBk LzEvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArmcIJk/C atZp74eAuKYIT0A6VrO6gTfecx26OLPSmz9bV7QrnNTvYsKs3dorfI53AjVm++iW 3l0wUCf0XWkrtKLdKuk/zK7r01ulclRhrfzSQFOGVumJnfMBcUC8B7F+8ov7Z15O Hbc6DP0yz1ThPGvk2wrkrk+4hY9Vy5L+15yn4+6tNuD/oNdFOYjSkugeuHtrXC6I yfUuhEgFv2mjApkAc449rbRoIi5EFIbhFoOcwrHaXixu8svehVhI1an5QNYpcbAU RgbBd4eQd6ZtNApqIRXhQgm9I0rqJFkf3Zo7WSoH1kCLw/btyA2ANIGetwddowNX GOhGZfMrOFm+rQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:44 2026 by rpki-client