This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft File: 3YpOHe5bseZXmxFhypEsqcA7Ru0.mft (raw, json) Hash identifier: 6uBolIpbRlexSc8ferMt0XA9TAdT58uP1GMfWvBdJGs= Subject key identifier: 72:C1:4A:09:A1:3B:AD:6F:DA:92:12:4D:B5:91:CA:23:1A:3A:4C:44 Authority key identifier: DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED Certificate issuer: /CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed Certificate serial: 019C427D52A049AC9E77E01E3E06F67313D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft Manifest number: 1163 Signing time: Mon 09 Feb 2026 13:00:35 +0000 Manifest this update: Mon 09 Feb 2026 13:00:35 +0000 Manifest next update: Tue 10 Feb 2026 13:00:35 +0000 Files and hashes: 1: 3YpOHe5bseZXmxFhypEsqcA7Ru0.crl (hash: +h6q0rgXVy1QzUl1qU/bKr2a7qczt3zA+wG8FDXbvoQ=) 2: h3ZDg5youB0K7vntlWcD6_hznfg.roa (hash: 9Ot/r2EVZQa+csMn0s0+LAGhdTl5GbdXVa69dBPCmRU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.crl rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:52:a0:49:ac:9e:77:e0:1e:3e:06:f6:73:13:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed Validity Not Before: Feb 9 13:00:35 2026 GMT Not After : Feb 10 13:00:35 2026 GMT Subject: CN=72c14a09a13bad6fda92124db591ca231a3a4c44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:c7:62:94:25:5d:3e:5d:e2:22:e9:f0:64:0e: 25:22:48:4a:bc:bd:f0:e2:0b:35:e2:5c:73:1d:76: 9b:ee:57:68:75:43:6a:b3:c0:a9:a8:d1:40:fd:9f: 4f:d0:af:51:f3:f0:01:85:bf:fc:e8:95:65:91:c5: f0:87:c0:c0:87:1d:82:21:ae:33:f4:72:41:12:f1: 7b:b7:47:37:ac:f5:50:a3:70:e1:df:11:6d:bb:99: ae:5e:57:75:53:02:57:af:d7:86:6b:94:94:74:07: c9:2b:e5:db:80:0e:6e:79:13:38:48:28:7d:a9:b2: 01:51:c8:94:0a:4d:bd:e7:69:86:be:13:db:c5:32: 7f:72:e3:a6:91:6a:69:aa:bd:90:d6:a3:79:7d:73: 39:3b:21:31:14:94:b6:df:27:44:1e:86:7c:cd:8c: d0:6b:62:2b:31:ba:dd:b5:e4:ee:88:17:9b:4b:91: 24:73:5c:ed:79:77:8b:42:1d:5d:2d:55:2d:41:e2: 2e:b7:66:54:48:40:d2:d8:e9:95:80:5b:27:6d:c3: d3:8f:07:a2:39:04:f8:1f:49:c0:f6:df:fb:8a:9a: c4:8d:5c:b5:03:9c:1e:07:1a:e2:4d:f6:99:b3:14: b2:63:6e:cc:48:bd:dd:81:b6:5e:29:72:24:f5:e9: 77:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:C1:4A:09:A1:3B:AD:6F:DA:92:12:4D:B5:91:CA:23:1A:3A:4C:44 X509v3 Authority Key Identifier: keyid:DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:ed:5d:c5:8d:07:3c:14:87:d4:a2:6b:3c:49:67:6a:f9:74: 97:7a:34:b7:d7:61:97:4c:12:5c:99:89:2f:af:48:9e:38:d2: 1f:fc:83:29:53:ac:9e:c5:83:ab:0d:a2:be:81:52:34:8e:66: c2:d5:74:73:6c:6a:ac:84:d5:9e:75:bf:44:9c:51:3e:41:c7: 78:42:98:c1:7d:f3:4e:2a:97:7f:54:9a:05:ea:bf:52:57:a8: 75:26:12:e6:64:17:df:6f:dc:30:e0:51:27:93:28:4b:12:6c: e8:c1:0f:36:12:c7:b0:48:97:05:c1:d7:ed:ff:c4:3e:d3:bf: 4c:01:3d:30:17:1f:55:0a:4a:ac:87:79:b4:5b:cf:96:e0:f1: 77:19:e1:26:9a:67:31:d5:8e:64:b8:ef:21:d6:40:fe:27:76: 83:41:4e:5a:a6:12:00:be:b3:a6:54:e4:ba:83:7e:cc:00:26: 48:ee:9a:12:2c:8b:b7:5d:9d:6d:32:81:97:e2:a3:d6:c4:49: 30:44:49:c4:4c:11:9f:81:59:a2:df:83:b1:d4:ae:ce:bf:bc: 69:e4:f8:88:7e:2e:87:78:d0:d6:27:c8:2a:09:d7:87:4e:45: 4c:d5:12:73:fd:fa:d6:75:bd:d0:f1:db:ee:64:51:41:41:f6: 51:e3:12:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfVKgSayed+AePgb2cxPWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkOGE0ZTFkZWU1YmIxZTY1NzliMTE2MWNhOTEyY2E5YzAz YjQ2ZWQwHhcNMjYwMjA5MTMwMDM1WhcNMjYwMjEwMTMwMDM1WjAzMTEwLwYDVQQD Eyg3MmMxNGEwOWExM2JhZDZmZGE5MjEyNGRiNTkxY2EyMzFhM2E0YzQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjsdilCVdPl3iIunwZA4lIkhKvL3w 4gs14lxzHXab7ldodUNqs8CpqNFA/Z9P0K9R8/ABhb/86JVlkcXwh8DAhx2CIa4z 9HJBEvF7t0c3rPVQo3Dh3xFtu5muXld1UwJXr9eGa5SUdAfJK+XbgA5ueRM4SCh9 qbIBUciUCk2952mGvhPbxTJ/cuOmkWppqr2Q1qN5fXM5OyExFJS23ydEHoZ8zYzQ a2IrMbrdteTuiBebS5Ekc1zteXeLQh1dLVUtQeIut2ZUSEDS2OmVgFsnbcPTjwei OQT4H0nA9t/7iprEjVy1A5weBxriTfaZsxSyY27MSL3dgbZeKXIk9el3fwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHLBSgmhO61v2pISTbWRyiMaOkxEMB8GA1UdIwQY MBaAFN2KTh3uW7HmV5sRYcqRLKnAO0btMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1lwT0hlNWJzZVpYbXhGaHlwRXNxY0E3UnUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS81ZDE5MDgtNmM0ZC00NTgxLThmMTAt OTg1YWFjNWJlYjMwLzEvM1lwT0hlNWJzZVpYbXhGaHlwRXNxY0E3UnUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS81ZDE5MDgtNmM0ZC00NTgxLThmMTAtOTg1YWFjNWJlYjMw LzEvM1lwT0hlNWJzZVpYbXhGaHlwRXNxY0E3UnUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAte1dxY0H PBSH1KJrPElnavl0l3o0t9dhl0wSXJmJL69InjjSH/yDKVOsnsWDqw2ivoFSNI5m wtV0c2xqrITVnnW/RJxRPkHHeEKYwX3zTiqXf1SaBeq/UleodSYS5mQX32/cMOBR J5MoSxJs6MEPNhLHsEiXBcHX7f/EPtO/TAE9MBcfVQpKrId5tFvPluDxdxnhJppn MdWOZLjvIdZA/id2g0FOWqYSAL6zplTkuoN+zAAmSO6aEiyLt12dbTKBl+Kj1sRJ MERJxEwRn4FZot+DsdSuzr+8aeT4iH4uh3jQ1ifIKgnXh05FTNUSc/361nW90PHb 7mRRQUH2UeMSLg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:05 2026 by rpki-client