This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft File: u3zLGm47yrYxnTF_YsdL8eH0FHM.mft (raw, json) Hash identifier: S2961FNqCafEyU1fwDdvLwqlVJnUVSO3bIQqIAJ+In4= Subject key identifier: 7B:4D:39:09:63:46:80:A4:CB:70:F0:A7:D6:C5:D5:80:12:30:66:79 Authority key identifier: BB:7C:CB:1A:6E:3B:CA:B6:31:9D:31:7F:62:C7:4B:F1:E1:F4:14:73 Certificate issuer: /CN=bb7ccb1a6e3bcab6319d317f62c74bf1e1f41473 Certificate serial: 019C43C6F6CB2E98A1A13814C73ABD10E6F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft Manifest number: 07E3 Signing time: Mon 09 Feb 2026 19:00:38 +0000 Manifest this update: Mon 09 Feb 2026 19:00:38 +0000 Manifest next update: Tue 10 Feb 2026 19:00:38 +0000 Files and hashes: 1: angOMGRdc3adpd1I_is4-dwikO4.roa (hash: 9j7afe7OMx1plAaw5QDHW6xfHLrBeH+kUa5ibWgW2WY=) 2: u3zLGm47yrYxnTF_YsdL8eH0FHM.crl (hash: 9UueEpoSQBR4NCRmGELbSR8DTKEmvkwpswgJfpVPDpM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:f6:cb:2e:98:a1:a1:38:14:c7:3a:bd:10:e6:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb7ccb1a6e3bcab6319d317f62c74bf1e1f41473 Validity Not Before: Feb 9 19:00:38 2026 GMT Not After : Feb 10 19:00:38 2026 GMT Subject: CN=7b4d3909634680a4cb70f0a7d6c5d58012306679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:68:9a:cb:01:24:09:ea:83:b9:87:53:b2:f3: d2:40:bc:7b:f4:65:6a:8b:fb:b6:27:98:9c:48:d7: d0:33:9b:c0:1b:0e:50:fa:29:1e:d0:67:6c:99:e4: 44:ee:e6:44:6d:d9:d9:14:5e:63:d2:1c:d8:c9:69: fe:9e:e2:46:bf:28:29:73:62:48:ec:12:af:23:79: 4d:66:12:13:ce:39:1f:2f:ef:0b:fc:32:3e:65:33: 4d:f7:6d:df:16:c2:9f:8f:a0:5b:c5:3b:d0:42:1f: 5a:0f:1f:8f:28:22:c6:33:86:c7:81:07:3e:31:5b: 5c:bc:66:e5:06:39:dd:2f:be:5f:0d:68:05:20:d4: 31:03:5c:b2:1b:c1:70:5a:27:69:da:91:e1:a2:fd: 71:7d:04:7b:19:f7:99:f9:08:bf:3b:67:54:99:f7: 1e:89:66:ce:7f:82:dd:3e:de:28:3f:6d:89:b9:b8: 3b:71:5b:33:27:56:f7:44:3e:4c:d7:ce:2b:0e:e7: 2d:6d:83:3e:97:34:15:d7:28:d4:8c:0a:a2:af:67: be:f7:43:d2:5f:23:4e:43:2c:e6:0a:00:df:68:c7: 07:d6:31:4d:3f:24:58:ed:7a:e6:3a:ef:82:ae:30: ca:9e:79:f7:16:d4:23:a8:ea:1d:f7:06:21:ac:43: af:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:4D:39:09:63:46:80:A4:CB:70:F0:A7:D6:C5:D5:80:12:30:66:79 X509v3 Authority Key Identifier: keyid:BB:7C:CB:1A:6E:3B:CA:B6:31:9D:31:7F:62:C7:4B:F1:E1:F4:14:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:dc:5e:1c:02:e3:98:4f:f5:92:d8:52:c4:73:e1:e2:f2:18: a8:dd:54:b9:25:a1:1d:29:35:c8:1c:aa:fe:1f:21:be:9b:f4: 2e:a2:d4:74:74:92:8b:59:c6:37:c4:0f:44:81:11:4a:dc:97: e5:3d:9b:d0:90:6a:a7:50:4e:c5:de:f6:15:58:c2:0e:6d:b6: cd:9d:15:33:2e:15:30:cf:1a:b1:7d:3b:97:f2:a2:22:cc:2d: af:93:a4:36:d5:49:03:8b:96:08:39:2c:e0:9c:74:3b:68:16: 0f:1a:b2:c4:91:9c:7b:db:e9:9e:a0:61:e4:e3:18:d7:1a:34: ce:a8:c7:1b:f5:39:d4:0a:c6:0f:c9:9e:1e:01:23:f7:c3:4c: 4e:c4:18:ec:b6:20:4f:f9:8d:61:e8:30:41:36:ea:c1:0d:3d: d7:9e:de:05:a4:7d:03:58:6e:58:84:8b:2e:39:9e:f6:ac:75: 08:7c:30:6a:51:85:07:b3:15:cc:e0:60:3e:82:c5:09:db:53: ad:b9:cd:ed:34:bd:a5:66:38:5a:2a:3b:0f:f4:33:40:4b:58: ad:1b:a8:d1:13:84:4a:4a:0d:e1:7b:62:68:40:4a:78:bf:25: ab:b1:a7:3a:c7:eb:18:b8:d8:a6:ba:24:21:ff:dc:84:58:1a: 14:12:01:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxvbLLpihoTgUxzq9EOb2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiN2NjYjFhNmUzYmNhYjYzMTlkMzE3ZjYyYzc0YmYxZTFm NDE0NzMwHhcNMjYwMjA5MTkwMDM4WhcNMjYwMjEwMTkwMDM4WjAzMTEwLwYDVQQD Eyg3YjRkMzkwOTYzNDY4MGE0Y2I3MGYwYTdkNmM1ZDU4MDEyMzA2Njc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA42iaywEkCeqDuYdTsvPSQLx79GVq i/u2J5icSNfQM5vAGw5Q+ike0GdsmeRE7uZEbdnZFF5j0hzYyWn+nuJGvygpc2JI 7BKvI3lNZhITzjkfL+8L/DI+ZTNN923fFsKfj6BbxTvQQh9aDx+PKCLGM4bHgQc+ MVtcvGblBjndL75fDWgFINQxA1yyG8FwWidp2pHhov1xfQR7GfeZ+Qi/O2dUmfce iWbOf4LdPt4oP22Jubg7cVszJ1b3RD5M184rDuctbYM+lzQV1yjUjAqir2e+90PS XyNOQyzmCgDfaMcH1jFNPyRY7XrmOu+CrjDKnnn3FtQjqOod9wYhrEOviQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHtNOQljRoCky3Dwp9bF1YASMGZ5MB8GA1UdIwQY MBaAFLt8yxpuO8q2MZ0xf2LHS/Hh9BRzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTN6TEdtNDd5cll4blRGX1lzZEw4ZUgwRkhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy8xYmY3YjAtNDUxOC00MTQxLWJkNmMt NjRiMGU2MTRkMDA0LzEvdTN6TEdtNDd5cll4blRGX1lzZEw4ZUgwRkhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy8xYmY3YjAtNDUxOC00MTQxLWJkNmMtNjRiMGU2MTRkMDA0 LzEvdTN6TEdtNDd5cll4blRGX1lzZEw4ZUgwRkhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZNxeHALj mE/1kthSxHPh4vIYqN1UuSWhHSk1yByq/h8hvpv0LqLUdHSSi1nGN8QPRIERStyX 5T2b0JBqp1BOxd72FVjCDm22zZ0VMy4VMM8asX07l/KiIswtr5OkNtVJA4uWCDks 4Jx0O2gWDxqyxJGce9vpnqBh5OMY1xo0zqjHG/U51ArGD8meHgEj98NMTsQY7LYg T/mNYegwQTbqwQ09157eBaR9A1huWISLLjme9qx1CHwwalGFB7MVzOBgPoLFCdtT rbnN7TS9pWY4Wio7D/QzQEtYrRuo0ROESkoN4XtiaEBKeL8lq7GnOsfrGLjYprok If/chFgaFBIBvw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:28 2026 by rpki-client