This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.mft File: 3xWNyykOxa5_ZsH6D42WMhHe6lQ.mft (raw, json) Hash identifier: 24FuOtk+LiLqc7+Z01Q2pqmYDIINtSuiuw/Xvm59mRU= Subject key identifier: 3B:65:94:0F:FA:D5:8A:FB:85:1E:07:7F:E5:73:A8:01:FB:CD:16:EE Authority key identifier: DF:15:8D:CB:29:0E:C5:AE:7F:66:C1:FA:0F:8D:96:32:11:DE:EA:54 Certificate issuer: /CN=df158dcb290ec5ae7f66c1fa0f8d963211deea54 Certificate serial: 019C420F9BE349870EE83FA770974975137D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3xWNyykOxa5_ZsH6D42WMhHe6lQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.mft Manifest number: 0323 Signing time: Mon 09 Feb 2026 11:00:45 +0000 Manifest this update: Mon 09 Feb 2026 11:00:45 +0000 Manifest next update: Tue 10 Feb 2026 11:00:45 +0000 Files and hashes: 1: 3xWNyykOxa5_ZsH6D42WMhHe6lQ.crl (hash: a4UEc77WI/JPLrQqqQHiCaKiGGxcN5eK27VlQpRqztA=) 2: jMWE95cdXToEzGHRnrJGNVd_shY.roa (hash: ggn3Fl2wZwmOiQ6vfdHYpUj0Mg0aJO8O6vjWtwjQjkU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.crl rsync://rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.mft rsync://rpki.ripe.net/repository/DEFAULT/3xWNyykOxa5_ZsH6D42WMhHe6lQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:9b:e3:49:87:0e:e8:3f:a7:70:97:49:75:13:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df158dcb290ec5ae7f66c1fa0f8d963211deea54 Validity Not Before: Feb 9 11:00:45 2026 GMT Not After : Feb 10 11:00:45 2026 GMT Subject: CN=3b65940ffad58afb851e077fe573a801fbcd16ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:24:49:eb:c7:bd:ae:1c:08:f5:3a:b2:ef:a2: 4a:ac:b3:67:70:98:25:74:0b:e9:81:0c:33:72:24: 9e:aa:c4:1f:c5:53:df:cc:a9:31:b9:f3:a7:ce:43: 30:2c:4f:c5:4b:6b:1d:76:f6:2d:d9:c9:b0:9a:03: 2b:33:4d:f4:44:76:b9:66:4b:70:e6:f3:c0:f4:a1: f9:d1:68:3e:67:f9:42:19:e1:a2:31:f4:0f:e3:ed: a0:66:2e:b6:57:86:72:3c:98:dc:8e:9c:e8:7b:11: e2:f2:19:29:f3:e3:18:77:b1:e6:bf:45:36:c7:c9: f2:df:28:b6:01:02:87:61:76:46:a5:82:c0:ff:22: 71:2d:b2:a8:27:8f:dc:3d:a2:14:fb:55:01:28:6f: 78:7d:7c:6d:ae:f4:6d:8f:67:4c:bb:d2:dc:4e:d8: 4e:5a:34:f4:5f:e0:70:e6:e4:55:84:96:8e:2b:b5: 31:03:7f:68:68:72:e3:2f:69:5c:0f:51:32:9b:ba: 09:3d:d3:7a:b9:bc:08:72:79:22:be:1d:b5:af:06: 7a:36:2e:24:ab:93:df:e4:15:33:f4:39:c5:d9:34: dd:e7:29:cc:38:22:6d:81:4d:4a:8c:ef:b3:53:43: d0:ab:74:f7:d0:74:50:9f:40:8b:ad:8f:a7:50:4c: f0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:65:94:0F:FA:D5:8A:FB:85:1E:07:7F:E5:73:A8:01:FB:CD:16:EE X509v3 Authority Key Identifier: keyid:DF:15:8D:CB:29:0E:C5:AE:7F:66:C1:FA:0F:8D:96:32:11:DE:EA:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3xWNyykOxa5_ZsH6D42WMhHe6lQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:40:43:ba:1a:31:2f:4a:25:dc:67:31:4f:da:3f:45:f0:f4: 2c:2f:59:4f:01:56:6e:c2:5c:c0:10:81:39:e6:a6:a3:09:b5: e7:40:c8:86:a5:c9:e4:56:80:d7:ce:25:4f:5f:ab:e5:6f:31: 6b:e4:43:bd:38:23:bc:02:88:67:08:b8:a9:3d:b9:02:4f:86: bd:c3:92:b8:a5:21:43:3b:64:ad:93:7f:64:20:82:82:b7:e4: 2c:57:90:c4:6e:03:83:d6:12:61:3d:e9:9a:6f:83:f3:4f:ed: a9:ec:a7:8d:1c:e0:cc:03:73:82:23:22:64:0e:9b:4c:5a:36: 07:3f:9b:d7:f8:02:f5:6d:65:ef:c4:97:6b:1d:9e:8b:76:80: 5f:3b:10:50:c6:fc:fb:14:e8:ef:d4:4c:8f:ae:fb:42:c7:dc: f8:65:27:eb:8e:82:56:5e:0b:e2:e5:09:fb:3c:96:ed:02:28: 90:03:62:f9:d2:91:9c:1d:da:55:dd:6a:60:2c:e9:20:26:75: a8:ca:c9:96:b5:3b:c9:1f:f6:c0:80:ed:b5:97:ec:e2:87:de: 2d:da:f0:2a:d2:6d:e5:3a:2e:86:c8:bb:7f:0a:0e:ca:15:63: 77:6f:6b:6c:eb:69:da:a1:59:91:16:55:60:7a:99:1d:53:49: 69:82:84:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD5vjSYcO6D+ncJdJdRN9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmMTU4ZGNiMjkwZWM1YWU3ZjY2YzFmYTBmOGQ5NjMyMTFk ZWVhNTQwHhcNMjYwMjA5MTEwMDQ1WhcNMjYwMjEwMTEwMDQ1WjAzMTEwLwYDVQQD EygzYjY1OTQwZmZhZDU4YWZiODUxZTA3N2ZlNTczYTgwMWZiY2QxNmVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwCRJ68e9rhwI9Tqy76JKrLNncJgl dAvpgQwzciSeqsQfxVPfzKkxufOnzkMwLE/FS2sddvYt2cmwmgMrM030RHa5Zktw 5vPA9KH50Wg+Z/lCGeGiMfQP4+2gZi62V4ZyPJjcjpzoexHi8hkp8+MYd7Hmv0U2 x8ny3yi2AQKHYXZGpYLA/yJxLbKoJ4/cPaIU+1UBKG94fXxtrvRtj2dMu9LcTthO WjT0X+Bw5uRVhJaOK7UxA39oaHLjL2lcD1Eym7oJPdN6ubwIcnkivh21rwZ6Ni4k q5Pf5BUz9DnF2TTd5ynMOCJtgU1KjO+zU0PQq3T30HRQn0CLrY+nUEzwWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDtllA/61Yr7hR4Hf+VzqAH7zRbuMB8GA1UdIwQY MBaAFN8VjcspDsWuf2bB+g+NljIR3upUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM3hXTnl5a094YTVfWnNINkQ0MldNaEhlNmxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9hNTRiODUtYWYzZS00N2M2LTgwZTct YzQxNDJkZjM1Y2MzLzEvM3hXTnl5a094YTVfWnNINkQ0MldNaEhlNmxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni9hNTRiODUtYWYzZS00N2M2LTgwZTctYzQxNDJkZjM1Y2Mz LzEvM3hXTnl5a094YTVfWnNINkQ0MldNaEhlNmxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxUBDuhox L0ol3GcxT9o/RfD0LC9ZTwFWbsJcwBCBOeamowm150DIhqXJ5FaA184lT1+r5W8x a+RDvTgjvAKIZwi4qT25Ak+GvcOSuKUhQztkrZN/ZCCCgrfkLFeQxG4Dg9YSYT3p mm+D80/tqeynjRzgzANzgiMiZA6bTFo2Bz+b1/gC9W1l78SXax2ei3aAXzsQUMb8 +xTo79RMj677Qsfc+GUn646CVl4L4uUJ+zyW7QIokANi+dKRnB3aVd1qYCzpICZ1 qMrJlrU7yR/2wIDttZfs4ofeLdrwKtJt5Touhsi7fwoOyhVjd29rbOtp2qFZkRZV YHqZHVNJaYKEwg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:54 2026 by rpki-client