This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft File: 3AOqmk_p1gxc-FOpJIIiafHMdFI.mft (raw, json) Hash identifier: jYz6SA3ZXmokiehMHRm5Z6cF5Hata7DFG/O8snUvG7s= Subject key identifier: F7:B8:5D:BC:05:01:4B:18:78:3E:A4:DF:61:A7:4F:7C:92:95:CD:3D Authority key identifier: DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52 Certificate issuer: /CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452 Certificate serial: 019C43596FF0E7C691338153FE1D29598898 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft Manifest number: 0DBC Signing time: Mon 09 Feb 2026 17:01:00 +0000 Manifest this update: Mon 09 Feb 2026 17:01:00 +0000 Manifest next update: Tue 10 Feb 2026 17:01:00 +0000 Files and hashes: 1: 3AOqmk_p1gxc-FOpJIIiafHMdFI.crl (hash: fDCbYstJJJOCtKeHe7Bd3DYpjlUx4diTZ782t5lgHyM=) 2: 7TZLT2P2zuuPjzUmClw3kX64yXM.roa (hash: fnAcb1tn2nnIoVX24Iibq3Ab9gwSJ7WX+AekjhFSNg4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:6f:f0:e7:c6:91:33:81:53:fe:1d:29:59:88:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452 Validity Not Before: Feb 9 17:01:00 2026 GMT Not After : Feb 10 17:01:00 2026 GMT Subject: CN=f7b85dbc05014b18783ea4df61a74f7c9295cd3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bd:79:26:0a:39:59:09:34:3f:87:d8:01:58: 49:93:81:04:bd:5a:42:b6:65:6d:bd:e5:55:ac:d3: c7:20:a4:ee:2b:7f:61:10:6c:b7:b0:a6:4a:b4:76: e4:dc:b1:55:66:ac:90:1f:31:93:19:a7:96:06:e9: 98:79:41:77:3d:35:80:23:8b:bc:37:dc:9a:10:83: 82:0d:9e:dc:20:99:0a:9f:d2:e8:c6:d5:2c:2a:d8: fa:28:33:60:73:9b:b7:dd:27:72:bf:3f:20:70:06: a3:d9:4e:02:f4:54:9f:29:32:20:0e:ff:10:3f:57: b4:ab:a9:17:a4:83:ba:bf:60:a4:53:5e:ec:e4:37: a8:07:77:73:98:e9:ab:d3:5f:ae:b2:67:52:22:11: c8:ad:27:fe:e0:3d:d6:95:f3:31:7d:29:d6:50:70: de:32:a1:fb:5b:23:ae:52:58:09:59:b5:a6:3a:f1: eb:67:da:b0:25:3f:f1:40:e9:a5:bc:9f:3b:b9:08: 29:bf:54:d5:c6:db:da:88:1d:e2:4d:de:08:21:ff: 31:aa:56:05:f0:de:2d:b6:8a:23:31:e6:61:2b:e5: 9a:a6:2b:c1:5c:3f:59:e2:7c:a5:22:a0:4b:c6:d1: 27:79:84:e7:1d:e9:05:11:d2:b5:17:b7:35:54:c6: 93:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B8:5D:BC:05:01:4B:18:78:3E:A4:DF:61:A7:4F:7C:92:95:CD:3D X509v3 Authority Key Identifier: keyid:DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:d2:a3:44:d5:c0:aa:b6:b0:d1:51:a5:05:db:66:7f:6a:dc: 1e:d8:5d:8b:a1:bc:71:98:65:08:df:cb:70:00:59:25:a4:ff: 99:eb:8b:f7:15:60:fe:e3:f8:5d:97:f3:09:17:d3:cf:8b:3c: 50:d0:4e:27:80:43:cc:db:48:2d:11:a6:a9:d3:76:f5:dc:71: 2c:d8:67:2e:5a:c4:c2:76:03:42:7e:e9:6f:bc:f4:f1:6d:ec: 85:08:28:46:d9:e3:03:56:60:0b:7e:ce:44:d8:14:43:89:bb: cd:48:a6:f0:bb:41:77:4c:e5:38:3d:11:f7:36:27:cf:32:f9: a5:23:92:31:6b:d0:5c:0a:52:21:8d:28:fd:24:a7:19:b5:16: 64:6a:3a:16:1c:9d:ad:4d:5a:1b:74:79:f9:bf:76:34:1d:0e: 9c:3c:44:56:db:10:df:d8:5f:3b:04:d9:9b:b4:cb:04:42:9c: 6b:9a:71:35:84:98:ef:24:cc:19:ea:7d:be:aa:2c:85:88:11: d6:e4:49:69:a1:fa:c7:c2:13:ea:bb:db:22:1e:af:f6:89:10: 33:b2:99:0c:5f:9d:1e:99:a2:ab:13:d4:b0:26:09:10:c9:20: 48:41:c7:66:11:e6:ff:24:65:21:78:8e:d2:f0:44:32:9a:23: 0d:f0:73:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWW/w58aRM4FT/h0pWYiYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjMDNhYTlhNGZlOWQ2MGM1Y2Y4NTNhOTI0ODIyMjY5ZjFj Yzc0NTIwHhcNMjYwMjA5MTcwMTAwWhcNMjYwMjEwMTcwMTAwWjAzMTEwLwYDVQQD EyhmN2I4NWRiYzA1MDE0YjE4NzgzZWE0ZGY2MWE3NGY3YzkyOTVjZDNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyb15Jgo5WQk0P4fYAVhJk4EEvVpC tmVtveVVrNPHIKTuK39hEGy3sKZKtHbk3LFVZqyQHzGTGaeWBumYeUF3PTWAI4u8 N9yaEIOCDZ7cIJkKn9LoxtUsKtj6KDNgc5u33Sdyvz8gcAaj2U4C9FSfKTIgDv8Q P1e0q6kXpIO6v2CkU17s5DeoB3dzmOmr01+usmdSIhHIrSf+4D3WlfMxfSnWUHDe MqH7WyOuUlgJWbWmOvHrZ9qwJT/xQOmlvJ87uQgpv1TVxtvaiB3iTd4IIf8xqlYF 8N4ttoojMeZhK+WapivBXD9Z4nylIqBLxtEneYTnHekFEdK1F7c1VMaT1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPe4XbwFAUsYeD6k32GnT3ySlc09MB8GA1UdIwQY MBaAFNwDqppP6dYMXPhTqSSCImnxzHRSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0FPcW1rX3AxZ3hjLUZPcEpJSWlhZkhNZEZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kODRlMWUtY2M1My00Y2MyLWFhYjkt MWNhNzY2ZmJlZWJhLzEvM0FPcW1rX3AxZ3hjLUZPcEpJSWlhZkhNZEZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9kODRlMWUtY2M1My00Y2MyLWFhYjktMWNhNzY2ZmJlZWJh LzEvM0FPcW1rX3AxZ3hjLUZPcEpJSWlhZkhNZEZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADNKjRNXA qraw0VGlBdtmf2rcHthdi6G8cZhlCN/LcABZJaT/meuL9xVg/uP4XZfzCRfTz4s8 UNBOJ4BDzNtILRGmqdN29dxxLNhnLlrEwnYDQn7pb7z08W3shQgoRtnjA1ZgC37O RNgUQ4m7zUim8LtBd0zlOD0R9zYnzzL5pSOSMWvQXApSIY0o/SSnGbUWZGo6Fhyd rU1aG3R5+b92NB0OnDxEVtsQ39hfOwTZm7TLBEKca5pxNYSY7yTMGep9vqoshYgR 1uRJaaH6x8IT6rvbIh6v9okQM7KZDF+dHpmiqxPUsCYJEMkgSEHHZhHm/yRlIXiO 0vBEMpojDfBztQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:35 2026 by rpki-client