This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft File: 3ozUdpwybYRex1OmcNo6yptp7hU.mft (raw, json) Hash identifier: Day6C50yt/5BZGGwe1npDGQXIjdkZUOr5j0fhPlJXYs= Subject key identifier: 78:1E:DC:A8:B9:F9:9C:17:FE:44:01:05:4D:EE:91:70:5F:A8:F2:64 Authority key identifier: DE:8C:D4:76:9C:32:6D:84:5E:C7:53:A6:70:DA:3A:CA:9B:69:EE:15 Certificate issuer: /CN=de8cd4769c326d845ec753a670da3aca9b69ee15 Certificate serial: 019C446BC16B43463FC2DEAA3FA6B38841F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ozUdpwybYRex1OmcNo6yptp7hU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft Manifest number: 026D Signing time: Mon 09 Feb 2026 22:00:38 +0000 Manifest this update: Mon 09 Feb 2026 22:00:38 +0000 Manifest next update: Tue 10 Feb 2026 22:00:38 +0000 Files and hashes: 1: 3ozUdpwybYRex1OmcNo6yptp7hU.crl (hash: Q7vBhXYdef+XKLi28ctddCBNRAA2pCoir7OziiMMUV4=) 2: BNslYYnyJbQUX-hm0CSR2lkEI-c.roa (hash: ccskpB9Iw7RlPpaSvm887XUkgOImLelHDmM6zJHbDaQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft rsync://rpki.ripe.net/repository/DEFAULT/3ozUdpwybYRex1OmcNo6yptp7hU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:c1:6b:43:46:3f:c2:de:aa:3f:a6:b3:88:41:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de8cd4769c326d845ec753a670da3aca9b69ee15 Validity Not Before: Feb 9 22:00:38 2026 GMT Not After : Feb 10 22:00:38 2026 GMT Subject: CN=781edca8b9f99c17fe4401054dee91705fa8f264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e2:35:88:d1:c0:73:f0:57:e0:45:4a:cc:e6: 6d:32:c0:37:63:2a:b1:fd:5a:16:71:45:2f:7d:35: a7:9a:4e:39:66:d0:1a:6d:75:ee:8a:d5:c5:44:8d: aa:d8:25:7d:f1:c8:84:65:97:b5:45:18:27:85:9a: d8:e2:eb:21:88:e7:2d:89:5c:6a:c8:d9:ff:0a:f5: 02:2e:75:00:4d:21:e9:d9:6f:ed:5d:8b:6e:bd:2c: bf:12:3d:d4:e2:88:bc:e8:f2:de:f6:cd:4a:96:81: d0:72:3e:d5:1e:93:db:be:e6:90:3f:30:ca:88:49: e8:a4:c6:fe:85:32:16:50:58:3e:5d:69:b8:74:75: f1:12:7d:8d:f8:94:70:08:0d:fd:ec:46:e2:c1:aa: 41:ae:e6:b4:22:a4:23:0c:63:d2:22:e3:4d:ba:5f: ab:92:2e:4f:08:3f:74:2c:ea:b2:c3:53:25:da:23: e7:ea:e6:fe:7b:b4:de:d9:6a:65:23:32:60:2a:22: 2a:d5:61:f0:57:09:a9:98:17:61:69:fe:60:6e:7b: 09:18:37:59:de:39:b8:ba:40:c2:dc:3d:f3:c5:c3: 85:02:b3:53:ab:64:b7:17:94:56:39:4f:3e:82:af: 11:c8:cf:8e:b0:36:e3:a1:52:ba:b1:e9:2d:d9:6c: 6f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:1E:DC:A8:B9:F9:9C:17:FE:44:01:05:4D:EE:91:70:5F:A8:F2:64 X509v3 Authority Key Identifier: keyid:DE:8C:D4:76:9C:32:6D:84:5E:C7:53:A6:70:DA:3A:CA:9B:69:EE:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ozUdpwybYRex1OmcNo6yptp7hU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:74:70:c9:df:ce:2d:af:4a:d5:9d:ff:cf:b2:cc:bc:af:60: a6:08:1f:60:4a:97:b4:63:4d:06:b3:b5:a2:59:bc:61:63:76: 33:90:ea:76:3b:51:ba:fb:86:4a:ae:79:ec:56:84:47:02:92: 1a:08:ac:f3:c7:ec:a9:13:22:d2:b8:03:07:cf:99:23:2d:e6: af:69:e4:c1:c6:24:c4:07:b1:82:cc:19:0f:61:7d:b8:5a:78: 0a:98:9e:cf:06:7e:2a:3c:63:cd:9a:33:e8:9f:1f:6d:f9:2f: f3:e8:0f:1e:a1:bd:aa:31:c0:89:d7:57:2d:f7:77:d5:62:da: 90:3b:6f:bf:6a:aa:94:91:65:eb:3e:b7:92:28:83:f7:9a:b2: 76:7b:2f:60:b5:8e:eb:8f:b6:8b:f4:3b:7e:ca:f3:e4:d4:09: d5:2d:26:90:20:1f:45:32:cc:cb:5b:ca:9f:ac:89:2a:15:16: 9f:9a:41:b4:10:30:87:d4:4c:79:70:3e:d1:b9:a4:a3:90:69: af:dd:1b:c2:29:f1:c8:81:ce:dd:de:3c:5a:b8:a9:d1:9d:ab: 63:6c:3f:63:ea:eb:bf:40:1b:3f:92:ea:bf:cf:67:ca:f1:7d: 53:8a:fd:cc:8b:23:92:ca:6f:77:f2:58:69:7b:df:2c:b4:22: d5:93:50:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa8FrQ0Y/wt6qP6aziEH4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlOGNkNDc2OWMzMjZkODQ1ZWM3NTNhNjcwZGEzYWNhOWI2 OWVlMTUwHhcNMjYwMjA5MjIwMDM4WhcNMjYwMjEwMjIwMDM4WjAzMTEwLwYDVQQD Eyg3ODFlZGNhOGI5Zjk5YzE3ZmU0NDAxMDU0ZGVlOTE3MDVmYThmMjY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+I1iNHAc/BX4EVKzOZtMsA3Yyqx /VoWcUUvfTWnmk45ZtAabXXuitXFRI2q2CV98ciEZZe1RRgnhZrY4ushiOctiVxq yNn/CvUCLnUATSHp2W/tXYtuvSy/Ej3U4oi86PLe9s1KloHQcj7VHpPbvuaQPzDK iEnopMb+hTIWUFg+XWm4dHXxEn2N+JRwCA397EbiwapBrua0IqQjDGPSIuNNul+r ki5PCD90LOqyw1Ml2iPn6ub+e7Te2WplIzJgKiIq1WHwVwmpmBdhaf5gbnsJGDdZ 3jm4ukDC3D3zxcOFArNTq2S3F5RWOU8+gq8RyM+OsDbjoVK6sekt2WxvtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHge3Ki5+ZwX/kQBBU3ukXBfqPJkMB8GA1UdIwQY MBaAFN6M1HacMm2EXsdTpnDaOsqbae4VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM296VWRwd3liWVJleDFPbWNObzZ5cHRwN2hVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy85ZDA5YWYtMDE3YS00YWMxLTk4NzIt NjE2NmZmNmU2NjVjLzEvM296VWRwd3liWVJleDFPbWNObzZ5cHRwN2hVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy85ZDA5YWYtMDE3YS00YWMxLTk4NzItNjE2NmZmNmU2NjVj LzEvM296VWRwd3liWVJleDFPbWNObzZ5cHRwN2hVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgnRwyd/O La9K1Z3/z7LMvK9gpggfYEqXtGNNBrO1olm8YWN2M5DqdjtRuvuGSq557FaERwKS Ggis88fsqRMi0rgDB8+ZIy3mr2nkwcYkxAexgswZD2F9uFp4CpiezwZ+KjxjzZoz 6J8fbfkv8+gPHqG9qjHAiddXLfd31WLakDtvv2qqlJFl6z63kiiD95qydnsvYLWO 64+2i/Q7fsrz5NQJ1S0mkCAfRTLMy1vKn6yJKhUWn5pBtBAwh9RMeXA+0bmko5Bp r90bwinxyIHO3d48Wrip0Z2rY2w/Y+rrv0AbP5Lqv89nyvF9U4r9zIsjkspvd/JY aXvfLLQi1ZNQVw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:20 2026 by rpki-client