This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft File: 3C8IdW9U7NcoDR6sz4eK6z8orE8.mft (raw, json) Hash identifier: ury9SOTa40FjLegrRkxct+LtMy3fR1UVVd4cr50rGaM= Subject key identifier: 29:16:19:0C:12:8A:9C:FC:7F:64:99:34:48:29:C6:74:7F:6A:B9:7D Authority key identifier: DC:2F:08:75:6F:54:EC:D7:28:0D:1E:AC:CF:87:8A:EB:3F:28:AC:4F Certificate issuer: /CN=dc2f08756f54ecd7280d1eaccf878aeb3f28ac4f Certificate serial: 019C439075AFB48EA7BAFA2C8FB96955FF2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft Manifest number: 151E Signing time: Mon 09 Feb 2026 18:01:06 +0000 Manifest this update: Mon 09 Feb 2026 18:01:06 +0000 Manifest next update: Tue 10 Feb 2026 18:01:06 +0000 Files and hashes: 1: 3C8IdW9U7NcoDR6sz4eK6z8orE8.crl (hash: jvL84W2tToQLWKU9B7qj16Gx6ikjAixFyTKsNihNIQQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:75:af:b4:8e:a7:ba:fa:2c:8f:b9:69:55:ff:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc2f08756f54ecd7280d1eaccf878aeb3f28ac4f Validity Not Before: Feb 9 18:01:06 2026 GMT Not After : Feb 10 18:01:06 2026 GMT Subject: CN=2916190c128a9cfc7f6499344829c6747f6ab97d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a1:84:84:b0:4d:93:0f:1e:cf:1e:71:1f:a5: 6b:d5:8a:f8:82:75:89:89:f8:41:21:2b:60:ae:d1: a9:24:0a:ee:a7:09:52:e7:c2:07:a0:d6:e1:59:76: 5a:3e:8f:1a:88:99:bc:17:b7:b9:42:90:2d:da:b4: d8:3a:d9:77:34:d0:72:06:06:a8:dd:b8:f5:03:a6: 77:1f:2d:7b:1f:b4:da:c1:5d:70:75:21:88:3b:b5: 1a:94:8c:b7:12:10:33:86:f7:69:47:28:a5:73:19: bc:c5:82:b9:e8:60:cc:43:98:a4:4b:da:ce:e7:e1: 70:3a:9e:b8:69:92:91:e1:e8:87:80:2d:cc:5e:97: 3c:d5:55:b1:07:ef:be:9f:9f:56:29:81:b8:2c:f1: 65:b0:b7:97:b3:95:a6:01:01:12:12:c3:eb:8c:7b: c6:87:d5:20:2f:5f:1c:c2:67:d1:b1:51:f7:a2:0a: 8b:e9:51:1c:2d:7f:5f:07:50:8a:92:72:e6:9a:0b: 89:fb:e0:30:41:bd:9b:db:8b:2d:09:80:12:26:57: 48:c5:67:44:c8:22:2e:c3:2f:19:81:86:4f:8a:e2: 89:6b:c3:59:33:87:01:50:09:10:de:a5:18:2b:c7: 64:2a:c5:ae:18:ad:ca:e6:ed:89:be:71:c1:46:c3: 6c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:16:19:0C:12:8A:9C:FC:7F:64:99:34:48:29:C6:74:7F:6A:B9:7D X509v3 Authority Key Identifier: keyid:DC:2F:08:75:6F:54:EC:D7:28:0D:1E:AC:CF:87:8A:EB:3F:28:AC:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:52:cb:dc:93:df:24:64:ee:ed:49:c8:c8:a4:06:48:43:c0: 40:9d:6e:d2:c1:ce:0b:91:3b:fe:89:59:42:70:8b:fb:c2:f1: 8e:95:60:09:5b:21:d7:70:55:fd:e6:14:b0:09:a9:76:85:2d: 10:ca:ce:01:14:b4:07:f1:c8:fb:71:d9:17:ba:5c:07:9e:a8: 47:d1:ce:a7:53:5d:44:ef:9d:64:96:f0:c8:a9:01:d0:4d:de: fa:9d:7f:39:af:71:6f:6e:60:76:6c:1f:94:f8:48:d1:31:18: 6b:57:a2:f4:b4:c8:9d:a0:a7:f7:a9:a5:5a:e1:bc:0e:5a:43: 49:2e:3c:6f:a4:92:73:4f:f0:dd:a7:22:bc:82:e1:89:a3:f4: e4:d3:6b:03:51:65:44:95:ab:5d:6b:10:79:3b:f9:d9:5c:5f: 07:52:0d:97:63:9f:00:5b:42:26:72:83:5a:d8:bb:e7:87:cd: e5:84:89:d1:f0:ea:e6:de:f3:e4:f9:05:3b:01:e3:c4:97:86: 48:5c:23:64:e9:6a:24:9f:3b:13:b6:26:85:e2:77:fc:0b:a0: 08:46:50:a4:1f:3d:80:ae:cc:63:54:7c:2e:69:7b:96:75:69: 94:d5:e9:35:1e:55:0c:c3:f5:4f:a4:0c:6d:21:f7:66:a4:23: 8d:62:6c:02 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkHWvtI6nuvosj7lpVf8uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjMmYwODc1NmY1NGVjZDcyODBkMWVhY2NmODc4YWViM2Yy OGFjNGYwHhcNMjYwMjA5MTgwMTA2WhcNMjYwMjEwMTgwMTA2WjAzMTEwLwYDVQQD EygyOTE2MTkwYzEyOGE5Y2ZjN2Y2NDk5MzQ0ODI5YzY3NDdmNmFiOTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6GEhLBNkw8ezx5xH6Vr1Yr4gnWJ ifhBIStgrtGpJArupwlS58IHoNbhWXZaPo8aiJm8F7e5QpAt2rTYOtl3NNByBgao 3bj1A6Z3Hy17H7TawV1wdSGIO7UalIy3EhAzhvdpRyilcxm8xYK56GDMQ5ikS9rO 5+FwOp64aZKR4eiHgC3MXpc81VWxB+++n59WKYG4LPFlsLeXs5WmAQESEsPrjHvG h9UgL18cwmfRsVH3ogqL6VEcLX9fB1CKknLmmguJ++AwQb2b24stCYASJldIxWdE yCIuwy8ZgYZPiuKJa8NZM4cBUAkQ3qUYK8dkKsWuGK3K5u2JvnHBRsNs5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCkWGQwSipz8f2SZNEgpxnR/arl9MB8GA1UdIwQY MBaAFNwvCHVvVOzXKA0erM+Hius/KKxPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0M4SWRXOVU3TmNvRFI2c3o0ZUs2ejhvckU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8zODk0NzctNTg3MC00ZTJkLWFjODct Y2M2YmM5NDUzOGZhLzEvM0M4SWRXOVU3TmNvRFI2c3o0ZUs2ejhvckU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8zODk0NzctNTg3MC00ZTJkLWFjODctY2M2YmM5NDUzOGZh LzEvM0M4SWRXOVU3TmNvRFI2c3o0ZUs2ejhvckU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUlLL3JPf JGTu7UnIyKQGSEPAQJ1u0sHOC5E7/olZQnCL+8LxjpVgCVsh13BV/eYUsAmpdoUt EMrOARS0B/HI+3HZF7pcB56oR9HOp1NdRO+dZJbwyKkB0E3e+p1/Oa9xb25gdmwf lPhI0TEYa1ei9LTInaCn96mlWuG8DlpDSS48b6SSc0/w3acivILhiaP05NNrA1Fl RJWrXWsQeTv52VxfB1INl2OfAFtCJnKDWti754fN5YSJ0fDq5t7z5PkFOwHjxJeG SFwjZOlqJJ87E7YmheJ3/AugCEZQpB89gK7MY1R8Lml7lnVplNXpNR5VDMP1T6QM bSH3ZqQjjWJsAg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:21:31 2026 by rpki-client