This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft File: g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft (raw, json) Hash identifier: 6AByuYAOeI2FDIOWAZeX3fl/Qoz6qdVhO9T4G21uD4k= Subject key identifier: 7B:0D:6F:8A:B4:81:80:BF:B8:B0:9C:E3:CF:AC:8D:00:49:10:86:DD Authority key identifier: 83:7A:73:9F:D5:08:64:CC:C2:46:84:3E:D6:80:19:59:BA:1B:A6:A5 Certificate issuer: /CN=837a739fd50864ccc246843ed6801959ba1ba6a5 Certificate serial: 019C420FD81C4A7F402AE4DE89BF3C1AEEA0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft Manifest number: 0779 Signing time: Mon 09 Feb 2026 11:01:00 +0000 Manifest this update: Mon 09 Feb 2026 11:01:00 +0000 Manifest next update: Tue 10 Feb 2026 11:01:00 +0000 Files and hashes: 1: XeOUR0-pjJaRQT7Tyhbi_WUTtlg.roa (hash: xjNJnRpeBMnuWS2RuvVGcAOVzSFDblEQbuBSUbq0Xoo=) 2: g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl (hash: n95pwSPDh28Np83zfjxW26yszav7ryBwrbjaigPpzEg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:d8:1c:4a:7f:40:2a:e4:de:89:bf:3c:1a:ee:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=837a739fd50864ccc246843ed6801959ba1ba6a5 Validity Not Before: Feb 9 11:01:00 2026 GMT Not After : Feb 10 11:01:00 2026 GMT Subject: CN=7b0d6f8ab48180bfb8b09ce3cfac8d00491086dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a9:16:79:e1:41:2e:a8:a4:47:78:b5:9d:67: 9b:fb:e4:11:f0:ff:37:30:20:35:8d:4f:1e:80:b5: e9:e6:97:91:ac:01:0d:b7:bd:89:69:23:83:26:ac: 3d:ff:e3:85:91:3b:cf:86:2c:bf:1f:e3:2f:14:e8: a7:4e:b8:75:ae:19:97:04:38:35:61:46:0a:8d:3e: d1:49:4b:1f:e3:13:35:ac:c6:02:1b:25:fd:e6:24: c5:6f:7a:00:23:93:bb:c2:b8:66:52:ca:09:e2:24: 90:3f:4d:56:3d:ee:5b:8d:81:70:2f:4b:ab:4e:97: 38:20:7a:c3:11:f1:3d:6f:3d:11:38:bf:22:a3:fc: ed:19:66:b4:82:39:25:c7:8c:93:c7:c7:18:58:cb: 85:90:20:00:9e:5a:ac:79:4c:20:31:96:75:20:c7: b4:6f:8a:ce:4f:aa:03:e5:4e:fd:ad:61:c3:67:2f: fa:0a:da:ae:0b:0f:f6:f3:25:d4:40:79:71:2f:f2: d5:29:d1:36:3b:c5:97:6a:ad:27:2c:e5:b2:23:0a: 62:12:33:8a:48:2f:af:52:b4:2c:bc:4e:9b:c4:c4: db:bd:8c:60:01:34:f5:03:67:9e:02:3a:e1:38:60: 16:bb:b0:90:0c:f3:a6:f1:51:2b:c7:26:ff:a3:d7: 94:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:0D:6F:8A:B4:81:80:BF:B8:B0:9C:E3:CF:AC:8D:00:49:10:86:DD X509v3 Authority Key Identifier: keyid:83:7A:73:9F:D5:08:64:CC:C2:46:84:3E:D6:80:19:59:BA:1B:A6:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:98:80:c1:26:22:65:39:fa:49:f1:e9:e2:e9:b5:5c:a4:c2: 5a:0b:6c:3f:41:0c:62:a5:60:11:a3:8f:31:06:82:8a:2b:4b: f2:8f:36:98:33:e7:87:33:b7:ee:33:b0:c0:7c:41:52:5d:f9: 9f:f5:1f:e4:6c:60:6a:ad:e4:43:58:66:c3:55:59:b8:08:eb: da:ec:84:d1:3c:dc:f0:75:bb:4a:c1:8c:25:ec:75:86:e3:6e: b3:eb:22:a5:d0:28:f1:40:e9:2e:2d:28:ae:8e:26:54:35:8b: fa:cc:51:37:d5:78:b3:40:f0:a6:c7:f0:e8:cf:78:a6:db:2e: 73:3a:10:6d:a1:c7:55:da:4b:2c:35:6f:fd:eb:a3:f4:42:d6: 30:7b:4b:cc:20:d9:05:6e:7e:94:2c:0b:66:c2:ec:38:b4:89: 82:df:d4:2a:e5:16:5e:2d:43:29:a7:bd:65:02:b3:89:a7:f3: f3:56:1c:41:6a:bc:af:a1:bd:4d:78:9c:40:4d:c7:60:92:eb: ac:fd:94:e2:b2:0d:d1:e0:73:90:f7:58:6b:88:c1:69:55:76: 95:35:89:18:ce:ea:01:31:df:b3:bd:5a:50:10:98:ea:cf:fb: 56:83:e3:da:ca:1b:b2:1f:24:ed:4f:16:17:4c:67:26:e7:d5: dc:9b:d3:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD9gcSn9AKuTeib88Gu6gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzN2E3MzlmZDUwODY0Y2NjMjQ2ODQzZWQ2ODAxOTU5YmEx YmE2YTUwHhcNMjYwMjA5MTEwMTAwWhcNMjYwMjEwMTEwMTAwWjAzMTEwLwYDVQQD Eyg3YjBkNmY4YWI0ODE4MGJmYjhiMDljZTNjZmFjOGQwMDQ5MTA4NmRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6kWeeFBLqikR3i1nWeb++QR8P83 MCA1jU8egLXp5peRrAENt72JaSODJqw9/+OFkTvPhiy/H+MvFOinTrh1rhmXBDg1 YUYKjT7RSUsf4xM1rMYCGyX95iTFb3oAI5O7wrhmUsoJ4iSQP01WPe5bjYFwL0ur Tpc4IHrDEfE9bz0ROL8io/ztGWa0gjklx4yTx8cYWMuFkCAAnlqseUwgMZZ1IMe0 b4rOT6oD5U79rWHDZy/6CtquCw/28yXUQHlxL/LVKdE2O8WXaq0nLOWyIwpiEjOK SC+vUrQsvE6bxMTbvYxgATT1A2eeAjrhOGAWu7CQDPOm8VErxyb/o9eUoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHsNb4q0gYC/uLCc48+sjQBJEIbdMB8GA1UdIwQY MBaAFIN6c5/VCGTMwkaEPtaAGVm6G6alMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzNwem45VUlaTXpDUm9RLTFvQVpXYm9icHFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8xMWNiYjUtM2UyZS00NGQ2LTlkMWIt YWFlMWEwYmRhMDJjLzEvZzNwem45VUlaTXpDUm9RLTFvQVpXYm9icHFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS8xMWNiYjUtM2UyZS00NGQ2LTlkMWItYWFlMWEwYmRhMDJj LzEvZzNwem45VUlaTXpDUm9RLTFvQVpXYm9icHFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR5iAwSYi ZTn6SfHp4um1XKTCWgtsP0EMYqVgEaOPMQaCiitL8o82mDPnhzO37jOwwHxBUl35 n/Uf5Gxgaq3kQ1hmw1VZuAjr2uyE0Tzc8HW7SsGMJex1huNus+sipdAo8UDpLi0o ro4mVDWL+sxRN9V4s0Dwpsfw6M94ptsuczoQbaHHVdpLLDVv/euj9ELWMHtLzCDZ BW5+lCwLZsLsOLSJgt/UKuUWXi1DKae9ZQKziafz81YcQWq8r6G9TXicQE3HYJLr rP2U4rIN0eBzkPdYa4jBaVV2lTWJGM7qATHfs71aUBCY6s/7VoPj2sobsh8k7U8W F0xnJufV3JvTWQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:01 2026 by rpki-client