This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft File: 3OVg8OyFDainwPjW84JRAtTeSs4.mft (raw, json) Hash identifier: s+zZAskBdDy9CN7LVv6tXYNf/2KQqCKDgymYrxbH3/U= Subject key identifier: F7:8C:DE:71:10:1D:D1:71:82:1E:0C:5B:81:20:2E:47:D0:56:65:EE Authority key identifier: DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE Certificate issuer: /CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace Certificate serial: 019C420F7D4AFF78CA440F73A99E958B3A4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 11:00:37 +0000 Manifest this update: Mon 09 Feb 2026 11:00:37 +0000 Manifest next update: Tue 10 Feb 2026 11:00:37 +0000 Files and hashes: 1: 3OVg8OyFDainwPjW84JRAtTeSs4.crl (hash: aSWxn4CFj/mLMM/Hy5xlcdH2J6oVS9BVpwn7fIy3Df8=) 2: 6K26AJnKFSRQ6qeqQiaBSR5tmsk.roa (hash: Uasee9UdIsrJgyTXIlKOU2BJMKL73nIUt5Ls4sJkN9Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:7d:4a:ff:78:ca:44:0f:73:a9:9e:95:8b:3a:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace Validity Not Before: Feb 9 11:00:37 2026 GMT Not After : Feb 10 11:00:37 2026 GMT Subject: CN=f78cde71101dd171821e0c5b81202e47d05665ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8d:dd:49:28:cc:c5:36:12:fc:8b:7e:8e:e5: 63:1d:5d:49:30:60:06:0f:d6:9a:26:94:6c:58:4e: 64:d9:66:fa:07:be:7d:33:9f:30:e0:65:b9:7d:05: 63:12:30:6d:07:79:a5:e6:50:ea:32:b7:65:36:84: a8:df:f0:5f:d3:03:ab:f4:4c:c2:f4:d9:36:cc:45: 3d:76:15:74:2f:c7:44:3e:20:b0:89:46:57:58:7b: 49:9d:d8:02:a6:54:01:6f:da:cb:8c:97:8c:ad:8d: e6:da:42:69:f0:d8:e5:08:60:92:f5:3c:1e:b1:61: 96:9f:9f:ca:46:20:a7:14:5b:a9:ac:87:df:4a:cd: a1:15:0e:fb:f2:bd:10:e6:25:52:a1:50:3e:9f:7d: 8d:b2:07:a8:db:f0:24:e7:34:79:80:ad:80:7b:4b: d0:69:e7:68:1a:f3:1e:38:d1:30:12:27:7e:61:fb: 52:4a:ff:20:54:06:92:40:1e:26:d7:cf:4a:81:f4: d7:19:6f:dd:e5:19:fc:74:3d:64:af:58:26:0f:c0: f4:ae:35:82:4b:b1:c2:63:53:93:0a:c9:24:47:8f: 12:32:b6:7d:2a:eb:e8:f5:1a:30:23:3e:57:fd:4b: a1:9d:e4:53:64:b0:f5:99:2d:15:28:e7:84:2e:4f: a8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:8C:DE:71:10:1D:D1:71:82:1E:0C:5B:81:20:2E:47:D0:56:65:EE X509v3 Authority Key Identifier: keyid:DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:1b:2b:94:31:c6:f6:29:b2:ed:ee:11:c6:48:eb:90:ff:68: 36:ef:03:54:94:77:e0:b0:fe:b9:f3:2b:c4:ae:02:67:70:50: 74:8a:57:9b:10:ee:ec:a9:93:e1:ac:1f:29:ee:ba:28:19:76: f6:6b:53:1b:2c:87:72:a4:85:ab:53:01:b7:5e:80:b1:79:70: f0:d7:58:56:10:0e:c3:be:89:2a:2a:ea:9b:75:ae:50:69:40: 76:23:b9:1d:a1:b9:b3:99:62:a0:50:31:59:20:35:9c:36:5d: 01:4d:40:3e:a4:8a:f4:56:67:05:ea:f2:a0:57:e3:c5:d2:34: b4:42:b8:4a:10:34:c1:75:61:31:78:41:cb:32:d8:b4:25:ee: 41:43:21:ce:73:91:77:f8:65:5e:75:16:15:ff:7e:a5:8b:eb: 92:d0:08:20:d4:70:c5:5f:59:ba:9f:48:8c:75:5e:7e:8a:58: f1:f1:13:87:6c:44:a3:0f:25:46:53:a8:fc:de:61:9c:6a:0e: b1:1c:a2:4c:4b:c2:b9:56:c1:05:f1:21:b9:b7:b5:38:69:38: 54:a6:5e:88:78:4b:1a:9c:0e:8e:3e:b5:8d:8f:b4:60:a6:3a: bb:7f:4b:d9:7c:9f:fa:d4:29:cc:cb:5c:04:8f:0d:4f:bd:25: 7f:b4:35:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD31K/3jKRA9zqZ6VizpLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZTU2MGYwZWM4NTBkYThhN2MwZjhkNmYzODI1MTAyZDRk ZTRhY2UwHhcNMjYwMjA5MTEwMDM3WhcNMjYwMjEwMTEwMDM3WjAzMTEwLwYDVQQD EyhmNzhjZGU3MTEwMWRkMTcxODIxZTBjNWI4MTIwMmU0N2QwNTY2NWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxI3dSSjMxTYS/It+juVjHV1JMGAG D9aaJpRsWE5k2Wb6B759M58w4GW5fQVjEjBtB3ml5lDqMrdlNoSo3/Bf0wOr9EzC 9Nk2zEU9dhV0L8dEPiCwiUZXWHtJndgCplQBb9rLjJeMrY3m2kJp8NjlCGCS9Twe sWGWn5/KRiCnFFuprIffSs2hFQ778r0Q5iVSoVA+n32Nsgeo2/Ak5zR5gK2Ae0vQ aedoGvMeONEwEid+YftSSv8gVAaSQB4m189KgfTXGW/d5Rn8dD1kr1gmD8D0rjWC S7HCY1OTCskkR48SMrZ9Kuvo9RowIz5X/UuhneRTZLD1mS0VKOeELk+oAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPeM3nEQHdFxgh4MW4EgLkfQVmXuMB8GA1UdIwQY MBaAFNzlYPDshQ2op8D41vOCUQLU3krOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM09WZzhPeUZEYWlud1BqVzg0SlJBdFRlU3M0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi8wNTNkMzktMzc0Yy00Mzg3LTk5NDUt NDMxZjc1YmE4Njc1LzEvM09WZzhPeUZEYWlud1BqVzg0SlJBdFRlU3M0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi8wNTNkMzktMzc0Yy00Mzg3LTk5NDUtNDMxZjc1YmE4Njc1 LzEvM09WZzhPeUZEYWlud1BqVzg0SlJBdFRlU3M0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkxsrlDHG 9imy7e4RxkjrkP9oNu8DVJR34LD+ufMrxK4CZ3BQdIpXmxDu7KmT4awfKe66KBl2 9mtTGyyHcqSFq1MBt16AsXlw8NdYVhAOw76JKirqm3WuUGlAdiO5HaG5s5lioFAx WSA1nDZdAU1APqSK9FZnBeryoFfjxdI0tEK4ShA0wXVhMXhByzLYtCXuQUMhznOR d/hlXnUWFf9+pYvrktAIINRwxV9Zup9IjHVefopY8fETh2xEow8lRlOo/N5hnGoO sRyiTEvCuVbBBfEhube1OGk4VKZeiHhLGpwOjj61jY+0YKY6u39L2Xyf+tQpzMtc BI8NT70lf7Q1IA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:31 2026 by rpki-client