This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json) Hash identifier: pdJUU9+ydQe0FK0LbGi3MwhSO0xrZIlnkWtVprGj2uQ= Subject key identifier: EB:2F:0C:F7:34:1B:EB:00:BC:86:71:68:13:C6:1A:D9:05:E1:7F:34 Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a Certificate serial: 019C41D840D53E42E6636BF0BD4E5B1EBC1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft Manifest number: 0C7B Signing time: Mon 09 Feb 2026 10:00:17 +0000 Manifest this update: Mon 09 Feb 2026 10:00:17 +0000 Manifest next update: Tue 10 Feb 2026 10:00:17 +0000 Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: 6qzF+IaE67jnflsQLX2nHaVYyreHcERZEURTAZQK/rg=) 2: c52XhO4YGCrU48r6aoFS0wJifx0.roa (hash: 4+paDSnGo7aoDvCfZSAugeN0kcY8+2h3yijdRS9k2EQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:40:d5:3e:42:e6:63:6b:f0:bd:4e:5b:1e:bc:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a Validity Not Before: Feb 9 10:00:17 2026 GMT Not After : Feb 10 10:00:17 2026 GMT Subject: CN=eb2f0cf7341beb00bc86716813c61ad905e17f34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:09:18:f6:ae:25:b1:15:8e:1c:dc:21:8b:68: fa:41:77:91:d5:84:1f:d4:df:7d:24:ab:71:a6:a6: f2:64:44:4f:27:20:52:6b:20:43:65:2b:da:fe:5c: 92:f9:21:59:b8:0a:41:d1:b5:ba:25:a7:ce:c7:08: f1:10:ba:d1:78:6d:eb:e8:2a:ad:7e:b5:2b:6d:3c: 99:82:8b:50:64:46:f4:aa:59:37:3e:ed:05:e0:e6: 86:47:54:00:9a:c0:4e:84:a5:ac:bb:d4:e2:5a:aa: ac:8b:1b:0e:63:3f:bb:ef:b5:4a:b5:56:bb:09:e0: b1:7e:45:f0:c8:66:a2:44:6a:1a:35:0f:29:16:74: ac:0f:4c:7f:0a:50:ba:b1:36:bf:92:07:da:73:2c: d0:a8:a6:34:65:f3:c2:af:71:9f:f3:aa:fc:3b:fa: d8:0e:c0:e0:6b:01:da:76:5e:05:77:75:b3:e2:40: ae:c6:de:5d:ca:90:70:76:66:12:77:70:5e:b3:fa: 22:c1:54:87:36:51:8b:ee:39:83:d6:ef:b4:0d:2b: 85:1a:8f:08:95:88:d8:e9:95:e7:1b:8b:81:0d:a3: 5c:f2:9c:2d:29:88:0d:c4:c5:7b:08:6c:f6:a6:9e: 60:63:48:16:2f:e8:a9:52:83:7e:9e:b7:81:0e:00: 0e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:2F:0C:F7:34:1B:EB:00:BC:86:71:68:13:C6:1A:D9:05:E1:7F:34 X509v3 Authority Key Identifier: keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:4d:7b:dd:13:eb:e5:cf:4f:46:0a:80:42:b4:f1:0c:24:4b: e6:ba:e0:c2:93:bf:03:c1:17:53:34:f1:f0:0c:f5:40:57:cc: d2:20:16:ca:fa:74:79:8f:b0:41:10:81:86:54:bd:54:8b:7b: 45:ee:17:eb:a3:a2:57:67:61:1b:f4:bf:ef:4d:a0:1a:ce:d7: e2:6e:64:6d:97:8e:61:d4:2b:04:a8:9b:26:cf:4d:38:d6:4a: 36:f8:47:b2:37:33:10:09:9b:fa:4f:e6:12:9c:ec:6f:22:41: 43:48:8b:21:aa:ba:11:22:e7:f9:1f:96:36:5a:66:e7:20:1c: d0:71:38:a6:a5:d3:d8:03:37:50:81:fb:0a:5a:f5:18:18:5d: da:02:e3:5c:40:06:f5:bc:29:87:4a:e3:b0:8e:7a:5d:3d:ad: c1:ed:e1:bb:b4:28:70:82:aa:7e:74:b2:cc:58:c5:c8:88:8a: 33:97:90:85:f8:be:ed:f0:7c:21:69:c3:67:b4:af:14:f7:8f: 18:9e:93:af:05:cf:72:a5:6d:2a:de:db:d7:c3:22:dd:46:9e: bb:aa:63:6e:cb:78:19:53:37:41:29:5f:f2:de:06:6d:e1:5a: c0:ba:ae:a6:5c:ba:cc:f5:ce:ab:51:70:e5:b0:1a:5c:84:69: d1:fb:8f:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2EDVPkLmY2vwvU5bHrwdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMmJhMjlhYTAxMTNmYWZkMzcwZDg2NWZiNDQ0NDk4N2I0 NzMwOGEwHhcNMjYwMjA5MTAwMDE3WhcNMjYwMjEwMTAwMDE3WjAzMTEwLwYDVQQD EyhlYjJmMGNmNzM0MWJlYjAwYmM4NjcxNjgxM2M2MWFkOTA1ZTE3ZjM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgkY9q4lsRWOHNwhi2j6QXeR1YQf 1N99JKtxpqbyZERPJyBSayBDZSva/lyS+SFZuApB0bW6JafOxwjxELrReG3r6Cqt frUrbTyZgotQZEb0qlk3Pu0F4OaGR1QAmsBOhKWsu9TiWqqsixsOYz+777VKtVa7 CeCxfkXwyGaiRGoaNQ8pFnSsD0x/ClC6sTa/kgfacyzQqKY0ZfPCr3Gf86r8O/rY DsDgawHadl4Fd3Wz4kCuxt5dypBwdmYSd3Bes/oiwVSHNlGL7jmD1u+0DSuFGo8I lYjY6ZXnG4uBDaNc8pwtKYgNxMV7CGz2pp5gY0gWL+ipUoN+nreBDgAO4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOsvDPc0G+sAvIZxaBPGGtkF4X80MB8GA1UdIwQY MBaAFN4ropqgET+v03DYZftERJh7RzCKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2l1aW1xQVJQNl9UY05obC0wUkVtSHRITUlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS85NzAwNGItYjY3MS00ZjNkLThkNTAt ZDFhNGE0NWZhZmJjLzEvM2l1aW1xQVJQNl9UY05obC0wUkVtSHRITUlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS85NzAwNGItYjY3MS00ZjNkLThkNTAtZDFhNGE0NWZhZmJj LzEvM2l1aW1xQVJQNl9UY05obC0wUkVtSHRITUlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsE173RPr 5c9PRgqAQrTxDCRL5rrgwpO/A8EXUzTx8Az1QFfM0iAWyvp0eY+wQRCBhlS9VIt7 Re4X66OiV2dhG/S/702gGs7X4m5kbZeOYdQrBKibJs9NONZKNvhHsjczEAmb+k/m EpzsbyJBQ0iLIaq6ESLn+R+WNlpm5yAc0HE4pqXT2AM3UIH7Clr1GBhd2gLjXEAG 9bwph0rjsI56XT2twe3hu7QocIKqfnSyzFjFyIiKM5eQhfi+7fB8IWnDZ7SvFPeP GJ6TrwXPcqVtKt7b18Mi3Uaeu6pjbst4GVM3QSlf8t4GbeFawLquply6zPXOq1Fw 5bAaXIRp0fuPyg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:31 2026 by rpki-client