This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/1c9754-32e9-4186-a691-dc3651ccf9ae/1/x3Kabs4tDr6bvl2NeWL3O9ySBKk.mft File: x3Kabs4tDr6bvl2NeWL3O9ySBKk.mft (raw, json) Hash identifier: BPWr3OVAFee4JSm3zaTwzSo3NM/INZCcr0OTV5bPcMw= Subject key identifier: 6E:10:D7:E6:C5:C9:3B:10:FC:E2:E7:E0:2F:D7:D3:69:4E:D9:92:F1 Authority key identifier: C7:72:9A:6E:CE:2D:0E:BE:9B:BE:5D:8D:79:62:F7:3B:DC:92:04:A9 Certificate issuer: /CN=c7729a6ece2d0ebe9bbe5d8d7962f73bdc9204a9 Certificate serial: 019C43223060235CFC6266188851DDF262D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x3Kabs4tDr6bvl2NeWL3O9ySBKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/1c9754-32e9-4186-a691-dc3651ccf9ae/1/x3Kabs4tDr6bvl2NeWL3O9ySBKk.mft Manifest number: 02C4 Signing time: Mon 09 Feb 2026 16:00:39 +0000 Manifest this update: Mon 09 Feb 2026 16:00:39 +0000 Manifest next update: Tue 10 Feb 2026 16:00:39 +0000 Files and hashes: 1: x3Kabs4tDr6bvl2NeWL3O9ySBKk.crl (hash: sUs9UXwxmI04cO1ndPNUd47qGNWw5BBWSmIuSQA1XxA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/1c9754-32e9-4186-a691-dc3651ccf9ae/1/x3Kabs4tDr6bvl2NeWL3O9ySBKk.crl rsync://rpki.ripe.net/repository/DEFAULT/72/1c9754-32e9-4186-a691-dc3651ccf9ae/1/x3Kabs4tDr6bvl2NeWL3O9ySBKk.mft rsync://rpki.ripe.net/repository/DEFAULT/x3Kabs4tDr6bvl2NeWL3O9ySBKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:30:60:23:5c:fc:62:66:18:88:51:dd:f2:62:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c7729a6ece2d0ebe9bbe5d8d7962f73bdc9204a9 Validity Not Before: Feb 9 16:00:39 2026 GMT Not After : Feb 10 16:00:39 2026 GMT Subject: CN=6e10d7e6c5c93b10fce2e7e02fd7d3694ed992f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:dd:ae:90:7a:c5:14:40:b7:77:92:e0:8a:17: 5e:1d:28:70:56:f5:ac:b1:56:99:b6:79:ae:f7:b1: d6:62:ab:54:8a:60:bb:bb:76:c4:ce:6f:3b:5f:d2: 00:40:3e:21:15:f3:eb:f5:15:b7:74:38:58:f5:4d: 57:ee:4d:15:34:05:23:8f:8b:b4:3e:1a:d8:ec:ef: 11:29:c8:eb:62:59:fc:8e:e7:9d:37:12:40:73:01: 0d:79:e9:ac:ec:de:c4:bf:a2:35:8c:a1:64:84:ee: 34:5c:bc:32:92:f7:be:b9:8e:a2:95:e9:be:b1:f8: a4:54:26:61:38:39:96:bb:13:8f:1d:15:e6:4f:82: ba:a2:e7:d2:36:80:69:c4:dc:e3:06:1a:1a:90:b1: 04:ab:be:97:a4:ce:53:59:80:85:4c:7d:e5:25:b7: cc:f8:ed:7f:db:5f:c0:f7:19:2b:cc:eb:63:e7:d9: 87:95:f2:c8:dc:78:e5:af:e4:2b:c5:7d:98:9e:69: 80:1c:8f:5b:f3:94:a8:18:2e:eb:78:2b:57:ca:5a: 12:16:de:18:17:3f:77:25:6c:6b:5c:35:51:f0:2a: d6:f6:fc:e9:23:34:13:a5:73:b9:08:c0:c5:6c:87: c2:a1:47:54:26:2e:95:d5:b4:71:c6:75:08:ac:d0: c5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:10:D7:E6:C5:C9:3B:10:FC:E2:E7:E0:2F:D7:D3:69:4E:D9:92:F1 X509v3 Authority Key Identifier: keyid:C7:72:9A:6E:CE:2D:0E:BE:9B:BE:5D:8D:79:62:F7:3B:DC:92:04:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x3Kabs4tDr6bvl2NeWL3O9ySBKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/1c9754-32e9-4186-a691-dc3651ccf9ae/1/x3Kabs4tDr6bvl2NeWL3O9ySBKk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/1c9754-32e9-4186-a691-dc3651ccf9ae/1/x3Kabs4tDr6bvl2NeWL3O9ySBKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:93:a2:1c:06:8c:5c:59:75:14:37:12:f4:04:12:91:02:7f: 81:a4:32:a4:ef:fe:59:90:da:3c:29:b1:2a:83:eb:30:4d:62: a2:4d:bd:e2:e8:cb:c0:f3:e6:62:e5:47:0d:34:a0:35:b9:0a: bd:30:e6:68:6a:7c:87:15:11:4f:80:d2:10:ce:a0:e5:23:c6: fa:34:2a:51:14:15:1e:08:4c:8a:19:80:36:ee:ba:8f:89:57: 53:8b:5f:68:32:62:37:5b:37:13:54:c3:5a:13:4e:0d:7a:26: 2a:79:80:6c:6e:be:0b:7b:68:5e:d4:13:4c:d1:21:58:88:d5: 17:a6:25:4c:ff:73:74:4f:2c:ae:61:8b:ea:3d:3a:2e:fe:97: 53:bd:59:b7:cd:27:9e:ca:9b:37:b8:ae:bf:29:76:d3:7c:93: e1:f3:3f:33:75:b0:5f:f6:15:1c:af:db:cd:fe:4d:5e:b5:d8: 3d:13:db:06:f4:19:23:23:7b:ab:13:ab:06:87:dd:c8:13:78: 05:0c:32:a6:d5:ae:d6:19:d0:0a:e8:57:c7:74:2b:4d:51:45: 4e:a9:41:f8:a6:cd:25:81:d9:6e:26:df:09:c3:cb:1f:d8:87: 13:85:78:e5:3c:c3:36:f2:6f:8b:5c:19:e8:24:c6:b6:d0:e8: a3:43:2e:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIjBgI1z8YmYYiFHd8mLVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3NzI5YTZlY2UyZDBlYmU5YmJlNWQ4ZDc5NjJmNzNiZGM5 MjA0YTkwHhcNMjYwMjA5MTYwMDM5WhcNMjYwMjEwMTYwMDM5WjAzMTEwLwYDVQQD Eyg2ZTEwZDdlNmM1YzkzYjEwZmNlMmU3ZTAyZmQ3ZDM2OTRlZDk5MmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlt2ukHrFFEC3d5LgihdeHShwVvWs sVaZtnmu97HWYqtUimC7u3bEzm87X9IAQD4hFfPr9RW3dDhY9U1X7k0VNAUjj4u0 PhrY7O8RKcjrYln8juedNxJAcwENeems7N7Ev6I1jKFkhO40XLwykve+uY6ilem+ sfikVCZhODmWuxOPHRXmT4K6oufSNoBpxNzjBhoakLEEq76XpM5TWYCFTH3lJbfM +O1/21/A9xkrzOtj59mHlfLI3Hjlr+QrxX2YnmmAHI9b85SoGC7reCtXyloSFt4Y Fz93JWxrXDVR8CrW9vzpIzQTpXO5CMDFbIfCoUdUJi6V1bRxxnUIrNDFJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG4Q1+bFyTsQ/OLn4C/X02lO2ZLxMB8GA1UdIwQY MBaAFMdymm7OLQ6+m75djXli9zvckgSpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDNLYWJzNHREcjZidmwyTmVXTDNPOXlTQktrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi8xYzk3NTQtMzJlOS00MTg2LWE2OTEt ZGMzNjUxY2NmOWFlLzEveDNLYWJzNHREcjZidmwyTmVXTDNPOXlTQktrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi8xYzk3NTQtMzJlOS00MTg2LWE2OTEtZGMzNjUxY2NmOWFl LzEveDNLYWJzNHREcjZidmwyTmVXTDNPOXlTQktrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV5OiHAaM XFl1FDcS9AQSkQJ/gaQypO/+WZDaPCmxKoPrME1iok294ujLwPPmYuVHDTSgNbkK vTDmaGp8hxURT4DSEM6g5SPG+jQqURQVHghMihmANu66j4lXU4tfaDJiN1s3E1TD WhNODXomKnmAbG6+C3toXtQTTNEhWIjVF6YlTP9zdE8srmGL6j06Lv6XU71Zt80n nsqbN7iuvyl203yT4fM/M3WwX/YVHK/bzf5NXrXYPRPbBvQZIyN7qxOrBofdyBN4 BQwyptWu1hnQCuhXx3QrTVFFTqlB+KbNJYHZbibfCcPLH9iHE4V45TzDNvJvi1wZ 6CTGttDoo0Mu0A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:44 2026 by rpki-client