This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/800dec-b66c-4e1a-a6cc-e88e1a668be4/1/3rwtwyLztJZucDtdjIi3FvDZsOk.mft File: 3rwtwyLztJZucDtdjIi3FvDZsOk.mft (raw, json) Hash identifier: kmoJL2GoSMt13um5nCFmQUweMhlITkYVs2LR39f/S1o= Subject key identifier: 8A:11:03:F8:43:28:54:27:4E:33:53:F5:60:CF:3D:65:48:02:63:01 Authority key identifier: DE:BC:2D:C3:22:F3:B4:96:6E:70:3B:5D:8C:88:B7:16:F0:D9:B0:E9 Certificate issuer: /CN=debc2dc322f3b4966e703b5d8c88b716f0d9b0e9 Certificate serial: 019C1C4BC0AA2D13E1059E3D5AF4FB0571C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3rwtwyLztJZucDtdjIi3FvDZsOk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/800dec-b66c-4e1a-a6cc-e88e1a668be4/1/3rwtwyLztJZucDtdjIi3FvDZsOk.mft Manifest number: 15BA Signing time: Mon 02 Feb 2026 03:00:52 +0000 Manifest this update: Mon 02 Feb 2026 03:00:52 +0000 Manifest next update: Tue 03 Feb 2026 03:00:52 +0000 Files and hashes: 1: 3rwtwyLztJZucDtdjIi3FvDZsOk.crl (hash: Vs9jMUiAjHfG4pzrzcvLk68UGkf1IsC7TNPUa64a+vo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/800dec-b66c-4e1a-a6cc-e88e1a668be4/1/3rwtwyLztJZucDtdjIi3FvDZsOk.crl rsync://rpki.ripe.net/repository/DEFAULT/97/800dec-b66c-4e1a-a6cc-e88e1a668be4/1/3rwtwyLztJZucDtdjIi3FvDZsOk.mft rsync://rpki.ripe.net/repository/DEFAULT/3rwtwyLztJZucDtdjIi3FvDZsOk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 19:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:4b:c0:aa:2d:13:e1:05:9e:3d:5a:f4:fb:05:71:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=debc2dc322f3b4966e703b5d8c88b716f0d9b0e9 Validity Not Before: Feb 2 03:00:52 2026 GMT Not After : Feb 3 03:00:52 2026 GMT Subject: CN=8a1103f8432854274e3353f560cf3d6548026301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:96:d9:04:81:01:33:57:0c:d3:08:de:ae:4e: 32:e8:93:d0:e0:90:f7:f5:f7:55:fc:d8:dd:4a:89: e8:55:14:af:36:83:fa:d3:97:7e:f1:bd:b9:6d:ac: dc:a4:26:71:9c:b7:d0:e5:d9:63:41:ec:00:a1:ab: 86:75:8d:2c:f5:8a:ac:60:e4:9a:fb:ae:59:c0:bc: e4:c3:da:80:1d:90:f3:7a:ec:73:8a:52:9e:da:f6: 0e:8e:87:f0:06:94:35:55:0f:1d:b8:7a:68:a7:a0: d7:40:fe:b5:a9:0b:6a:46:fd:63:d5:dc:31:b3:1c: cc:9d:71:31:17:6e:48:18:ae:a1:e3:b9:b1:88:69: f4:76:e2:3f:14:82:8d:61:2a:03:0a:c4:d8:c4:93: 75:b3:d4:29:83:c6:4d:cb:65:cc:ef:ee:b8:ec:43: 6b:c4:bc:b2:29:a1:84:26:30:fe:76:f5:d4:0a:86: f4:57:d8:47:79:59:90:a4:f4:c7:21:0b:ed:a5:e4: 94:1b:84:0f:a5:6a:53:a7:04:ff:97:e5:1e:e2:42: 71:1e:93:ca:a1:1d:73:51:c5:3b:ec:c5:a9:ad:a5: 9b:56:fa:a6:b0:18:5c:4d:fc:2c:4f:71:05:89:b0: b5:41:7d:96:59:3a:6d:0c:62:cc:43:b2:9d:b7:eb: 53:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:11:03:F8:43:28:54:27:4E:33:53:F5:60:CF:3D:65:48:02:63:01 X509v3 Authority Key Identifier: keyid:DE:BC:2D:C3:22:F3:B4:96:6E:70:3B:5D:8C:88:B7:16:F0:D9:B0:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3rwtwyLztJZucDtdjIi3FvDZsOk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/800dec-b66c-4e1a-a6cc-e88e1a668be4/1/3rwtwyLztJZucDtdjIi3FvDZsOk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/800dec-b66c-4e1a-a6cc-e88e1a668be4/1/3rwtwyLztJZucDtdjIi3FvDZsOk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:50:c3:59:e1:d9:ae:df:8c:07:18:b1:23:da:54:0d:00:cb: 9d:d8:25:e5:e4:3b:cc:4e:27:90:91:ac:7b:2a:8a:58:b8:1c: 28:23:92:e7:ef:c3:e1:a2:b3:53:42:3a:39:3b:8f:60:4c:63: 39:24:ce:ad:4a:00:1a:99:f7:b0:58:f7:19:1c:d1:10:c3:cb: fe:ff:ce:fd:c0:f4:29:44:d2:70:8a:11:b5:f6:c7:28:77:e9: f2:d3:99:9e:4e:34:3c:60:67:67:55:e9:a1:ba:5f:d7:51:00: b2:f6:4c:9c:c8:58:3f:6d:04:7e:1a:41:38:1c:9e:b1:35:97: 18:8d:f1:dc:4c:b8:e8:d6:dc:87:9c:45:64:e6:01:6a:3f:92: e6:75:a6:51:9f:12:bb:6c:72:76:f2:79:ca:95:6a:b2:79:4d: 66:21:9f:6b:6f:b7:27:b3:83:d4:c8:49:2a:d4:dd:5f:43:a3: 8e:4f:e1:6d:6d:ab:ba:5c:85:ef:4c:73:01:a3:5b:05:eb:8d: 01:95:dd:49:eb:f8:35:18:e1:6f:ef:68:f2:a3:32:22:1d:96: 2d:85:73:c3:7b:87:6e:0b:ba:52:69:df:c1:94:15:96:ba:5c: 33:32:6e:b6:6d:a4:73:ab:c9:f5:8a:94:af:bb:ea:e9:c5:3a: 3c:ac:70:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwcS8CqLRPhBZ49WvT7BXHCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlYmMyZGMzMjJmM2I0OTY2ZTcwM2I1ZDhjODhiNzE2ZjBk OWIwZTkwHhcNMjYwMjAyMDMwMDUyWhcNMjYwMjAzMDMwMDUyWjAzMTEwLwYDVQQD Eyg4YTExMDNmODQzMjg1NDI3NGUzMzUzZjU2MGNmM2Q2NTQ4MDI2MzAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZbZBIEBM1cM0wjerk4y6JPQ4JD3 9fdV/NjdSonoVRSvNoP605d+8b25bazcpCZxnLfQ5dljQewAoauGdY0s9YqsYOSa +65ZwLzkw9qAHZDzeuxzilKe2vYOjofwBpQ1VQ8duHpop6DXQP61qQtqRv1j1dwx sxzMnXExF25IGK6h47mxiGn0duI/FIKNYSoDCsTYxJN1s9Qpg8ZNy2XM7+647ENr xLyyKaGEJjD+dvXUCob0V9hHeVmQpPTHIQvtpeSUG4QPpWpTpwT/l+Ue4kJxHpPK oR1zUcU77MWpraWbVvqmsBhcTfwsT3EFibC1QX2WWTptDGLMQ7Kdt+tT6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIoRA/hDKFQnTjNT9WDPPWVIAmMBMB8GA1UdIwQY MBaAFN68LcMi87SWbnA7XYyItxbw2bDpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM3J3dHd5THp0Slp1Y0R0ZGpJaTNGdkRac09rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny84MDBkZWMtYjY2Yy00ZTFhLWE2Y2Mt ZTg4ZTFhNjY4YmU0LzEvM3J3dHd5THp0Slp1Y0R0ZGpJaTNGdkRac09rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny84MDBkZWMtYjY2Yy00ZTFhLWE2Y2MtZTg4ZTFhNjY4YmU0 LzEvM3J3dHd5THp0Slp1Y0R0ZGpJaTNGdkRac09rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcFDDWeHZ rt+MBxixI9pUDQDLndgl5eQ7zE4nkJGseyqKWLgcKCOS5+/D4aKzU0I6OTuPYExj OSTOrUoAGpn3sFj3GRzREMPL/v/O/cD0KUTScIoRtfbHKHfp8tOZnk40PGBnZ1Xp obpf11EAsvZMnMhYP20EfhpBOByesTWXGI3x3Ey46Nbch5xFZOYBaj+S5nWmUZ8S u2xydvJ5ypVqsnlNZiGfa2+3J7OD1MhJKtTdX0Ojjk/hbW2rulyF70xzAaNbBeuN AZXdSev4NRjhb+9o8qMyIh2WLYVzw3uHbgu6UmnfwZQVlrpcMzJutm2kc6vJ9YqU r7vq6cU6PKxwFg== -----END CERTIFICATE-----Generated at Mon Feb 2 04:45:10 2026 by rpki-client