This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json) Hash identifier: PAPSejRiHB837yY/o31RAxbEX0+4FcWlGbnNC5xtamg= Subject key identifier: 3F:1F:15:3F:A6:2E:55:8A:98:AB:9D:01:DF:38:E0:2A:55:68:B1:FD Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53 Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53 Certificate serial: 019C43C75941652DC4C182396F40E71605D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 19:01:03 +0000 Manifest this update: Mon 09 Feb 2026 19:01:03 +0000 Manifest next update: Tue 10 Feb 2026 19:01:03 +0000 Files and hashes: 1: 4O7JXBvPOYztRW27KQbfsJapV8I.roa (hash: CnJtkzBJ3WzY6WSIQ98/SBNuBHldMzltsiyedt5bTUA=) 2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: KutLqJcv4kXFUzLaCn16wgrDKjJeUEav/OAHGqUenxk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:59:41:65:2d:c4:c1:82:39:6f:40:e7:16:05:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53 Validity Not Before: Feb 9 19:01:03 2026 GMT Not After : Feb 10 19:01:03 2026 GMT Subject: CN=3f1f153fa62e558a98ab9d01df38e02a5568b1fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ba:99:b0:45:b9:10:5a:f1:fa:19:90:d1:8e: b1:63:f5:73:a3:92:46:fc:79:4c:08:92:46:e8:29: 96:2f:21:9a:82:0a:e7:37:12:25:6d:e3:19:a6:ad: dc:e3:6e:ff:cf:86:06:05:41:fb:98:04:02:bf:68: 1d:93:59:c4:9b:c8:55:b7:e3:00:e3:8f:89:52:51: 20:65:00:6e:c7:5d:0a:5c:a3:0e:e5:c0:21:9e:41: ce:b5:ae:b8:2b:30:b2:66:18:68:b7:b9:05:91:48: 96:20:0f:f8:60:e7:3e:92:55:95:f6:b7:f7:d4:0d: fa:07:3a:f6:44:6c:35:81:5b:0b:d4:9e:67:34:bf: f0:44:52:c0:ed:f6:f8:c4:ee:f3:88:b5:41:12:1d: 6f:1b:cc:60:b6:2f:64:4c:11:40:00:32:be:44:34: a2:1b:67:d0:fc:e8:eb:b1:ce:ca:ae:3c:ea:78:1d: 75:99:d0:11:62:88:9c:23:3c:fb:60:e9:61:0b:51: 20:ec:07:32:d6:ff:6e:de:03:75:5d:da:0e:ba:24: a5:64:37:1d:4b:1f:d1:97:95:18:40:94:f2:f2:c2: 56:13:5b:32:a1:39:24:91:18:b0:64:6f:cb:c6:55: 78:13:30:56:44:d4:4c:b8:c7:d2:c5:64:eb:0e:b9: 9c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:1F:15:3F:A6:2E:55:8A:98:AB:9D:01:DF:38:E0:2A:55:68:B1:FD X509v3 Authority Key Identifier: keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:af:06:2d:e6:bd:cc:c7:a9:6f:fe:b5:20:3e:f6:75:18:33: 0b:4a:59:dd:6b:51:d1:ab:cf:f0:14:21:e2:17:c8:13:9a:36: 2b:cc:cb:6c:32:43:5f:1f:66:a8:6d:e8:e5:5d:4a:74:a8:9c: e6:b1:19:50:b7:c6:3c:06:a0:2d:7e:9c:e2:8b:d5:03:27:3d: 02:0a:bd:34:b7:d5:76:af:55:db:14:ef:89:ae:78:fd:ec:f7: de:2e:25:45:de:c5:51:06:8c:98:10:15:86:dc:ac:36:9e:c9: 70:a4:a4:81:b2:53:19:cb:a0:f6:58:ff:48:17:98:e1:f8:be: 85:ab:71:19:f5:91:fe:56:d6:42:6d:6d:b4:27:98:4c:28:04: 25:8a:ec:01:97:05:87:26:65:62:51:52:e3:35:a9:ef:ec:2e: e6:5c:0f:ec:f6:3e:bd:08:30:b9:a6:ab:32:79:8f:cc:ef:28: a4:65:91:e3:02:97:d2:42:a2:c6:c3:91:26:ff:fd:0b:a6:4b: 8e:ae:e1:65:9a:85:01:24:ba:57:0a:06:35:13:36:f0:6c:cb: db:d1:11:c2:31:64:94:43:92:be:52:c6:aa:88:4a:73:34:40: c5:97:2b:d0:df:39:1f:25:d0:30:8b:6c:7b:50:93:c9:ea:a4: 96:ad:e5:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx1lBZS3EwYI5b0DnFgXVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3N2FhZDMwN2FkMzMwZWJiOGNmNDRlYzIxMzg5YTE3MDQz NmZkNTMwHhcNMjYwMjA5MTkwMTAzWhcNMjYwMjEwMTkwMTAzWjAzMTEwLwYDVQQD EygzZjFmMTUzZmE2MmU1NThhOThhYjlkMDFkZjM4ZTAyYTU1NjhiMWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrqZsEW5EFrx+hmQ0Y6xY/Vzo5JG /HlMCJJG6CmWLyGaggrnNxIlbeMZpq3c427/z4YGBUH7mAQCv2gdk1nEm8hVt+MA 44+JUlEgZQBux10KXKMO5cAhnkHOta64KzCyZhhot7kFkUiWIA/4YOc+klWV9rf3 1A36Bzr2RGw1gVsL1J5nNL/wRFLA7fb4xO7ziLVBEh1vG8xgti9kTBFAADK+RDSi G2fQ/Ojrsc7KrjzqeB11mdARYoicIzz7YOlhC1Eg7Acy1v9u3gN1XdoOuiSlZDcd Sx/Rl5UYQJTy8sJWE1syoTkkkRiwZG/LxlV4EzBWRNRMuMfSxWTrDrmcRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD8fFT+mLlWKmKudAd844CpVaLH9MB8GA1UdIwQY MBaAFId6rTB60zDruM9E7CE4mhcENv1TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS85YWUyMjEtYzEwMS00OTdmLTkxZmUt NTA4MDk5YzEzM2JiLzEvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS85YWUyMjEtYzEwMS00OTdmLTkxZmUtNTA4MDk5YzEzM2Ji LzEvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFa8GLea9 zMepb/61ID72dRgzC0pZ3WtR0avP8BQh4hfIE5o2K8zLbDJDXx9mqG3o5V1KdKic 5rEZULfGPAagLX6c4ovVAyc9Agq9NLfVdq9V2xTvia54/ez33i4lRd7FUQaMmBAV htysNp7JcKSkgbJTGcug9lj/SBeY4fi+hatxGfWR/lbWQm1ttCeYTCgEJYrsAZcF hyZlYlFS4zWp7+wu5lwP7PY+vQgwuaarMnmPzO8opGWR4wKX0kKixsORJv/9C6ZL jq7hZZqFASS6VwoGNRM28GzL29ERwjFklEOSvlLGqohKczRAxZcr0N85HyXQMIts e1CTyeqklq3lMQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:20 2026 by rpki-client