This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft File: 3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft (raw, json) Hash identifier: bJ5uoJpi5ZqF2uRDc+NauDkWzQtaZbdog5W9MoMTpcU= Subject key identifier: 46:0E:ED:BF:55:54:ED:E5:05:BF:1A:AC:E3:23:ED:7A:AE:27:13:31 Authority key identifier: DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4 Certificate issuer: /CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4 Certificate serial: 019C4510C7DA3A2B145F7A5358FAB7F5D3B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft Manifest number: 0F03 Signing time: Tue 10 Feb 2026 01:00:53 +0000 Manifest this update: Tue 10 Feb 2026 01:00:53 +0000 Manifest next update: Wed 11 Feb 2026 01:00:53 +0000 Files and hashes: 1: 3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl (hash: jku8o+ESmuFKcTYqhxcNTEAVgYOwkfZm2ba8KhHfucU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:c7:da:3a:2b:14:5f:7a:53:58:fa:b7:f5:d3:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4 Validity Not Before: Feb 10 01:00:53 2026 GMT Not After : Feb 11 01:00:53 2026 GMT Subject: CN=460eedbf5554ede505bf1aace323ed7aae271331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:ae:49:61:43:af:fa:fa:13:fe:66:92:9b:82: 21:1a:ef:6e:3e:9c:47:80:c0:cb:cc:a9:e8:c8:16: d3:d5:01:1d:51:c9:54:1b:6e:20:7f:72:d7:f9:29: 57:1e:60:07:f6:35:1d:ef:83:b7:4d:d3:89:76:dc: 3e:d0:b1:74:d5:5a:8e:5c:23:c8:a3:b2:98:37:35: 4d:85:d4:1d:44:a8:e7:41:aa:7c:bf:2f:4a:5a:6e: da:21:e6:f9:77:97:05:c2:fb:4b:ad:aa:eb:f4:e9: aa:88:38:1f:71:61:42:82:86:8e:26:99:44:58:51: 5d:cd:d8:52:65:b9:43:df:d2:9c:cb:33:67:c7:04: cf:c7:85:0c:5c:06:83:03:39:40:14:c8:e9:fa:37: 14:4a:ce:7d:fd:5e:fc:a6:c5:7c:fd:2f:86:ff:d8: ed:3f:f5:62:4e:b6:b2:6e:51:4a:78:8f:8f:31:7f: fc:79:ae:38:b2:6c:82:9c:b5:3a:b8:c8:1a:3a:e6: 53:c6:72:62:3b:d9:44:c9:4d:1e:32:55:6f:ac:1b: 68:ad:fd:32:86:47:40:67:f1:ad:b2:3c:13:22:55: d4:27:52:e3:71:b1:bb:a5:d9:88:41:3c:16:f1:48: 6c:88:ba:0b:f3:fc:8d:97:8b:8d:a4:8f:6a:35:81: dd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:0E:ED:BF:55:54:ED:E5:05:BF:1A:AC:E3:23:ED:7A:AE:27:13:31 X509v3 Authority Key Identifier: keyid:DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:f4:49:7b:01:0d:3f:2c:c3:61:06:8d:b6:42:68:c4:a7:fa: 29:35:2b:1f:58:85:8f:95:4c:53:21:4b:2a:a9:37:85:d4:17: f1:2b:42:0e:11:52:72:3c:76:54:12:e2:c4:c9:64:34:77:30: 35:d4:a0:f0:41:0e:e0:70:f5:35:34:1d:c1:d5:90:70:3f:41: 03:21:88:3e:cb:ed:f2:7d:bd:dd:d2:dc:09:a9:5a:d4:d6:00: a5:66:8b:81:db:6f:5b:f3:d7:ee:b8:7d:04:31:65:57:af:0c: bc:14:4f:fe:f4:d0:8f:8d:f5:44:40:80:27:0e:80:20:b5:68: 63:8a:32:35:a7:47:40:b2:37:4e:e4:83:15:60:0f:e0:ca:e1: 8d:33:c9:86:57:ef:c2:7c:3e:e3:59:66:80:4c:a5:ad:18:4b: 0f:2e:49:9a:9b:e2:14:20:68:05:9f:6d:75:50:21:09:78:d3: 99:91:58:8e:bd:fa:7e:33:33:91:31:60:62:2b:9c:48:14:8d: 52:99:fc:d8:a1:a3:39:6f:80:60:70:5a:c1:88:a9:f2:3b:13: cd:a7:79:dd:26:63:a6:44:0c:24:32:a5:91:0b:5c:e2:87:b6: f1:17:2b:fc:93:df:1c:61:36:7c:bd:1a:be:31:6d:1a:60:9f: fa:cf:6e:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEMfaOisUX3pTWPq39dO3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNzU4NTJlYjNkNWY0YmZhN2U0NGU4MGVlYTk4ODE5ODY0 MDNjZDQwHhcNMjYwMjEwMDEwMDUzWhcNMjYwMjExMDEwMDUzWjAzMTEwLwYDVQQD Eyg0NjBlZWRiZjU1NTRlZGU1MDViZjFhYWNlMzIzZWQ3YWFlMjcxMzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi65JYUOv+voT/maSm4IhGu9uPpxH gMDLzKnoyBbT1QEdUclUG24gf3LX+SlXHmAH9jUd74O3TdOJdtw+0LF01VqOXCPI o7KYNzVNhdQdRKjnQap8vy9KWm7aIeb5d5cFwvtLrarr9OmqiDgfcWFCgoaOJplE WFFdzdhSZblD39KcyzNnxwTPx4UMXAaDAzlAFMjp+jcUSs59/V78psV8/S+G/9jt P/ViTrayblFKeI+PMX/8ea44smyCnLU6uMgaOuZTxnJiO9lEyU0eMlVvrBtorf0y hkdAZ/GtsjwTIlXUJ1LjcbG7pdmIQTwW8UhsiLoL8/yNl4uNpI9qNYHd5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEYO7b9VVO3lBb8arOMj7XquJxMxMB8GA1UdIwQY MBaAFNx1hS6z1fS/p+ROgO6piBmGQDzUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0hXRkxyUFY5TC1uNUU2QTdxbUlHWVpBUE5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS81YjU5NzUtMTRhZi00ZjI2LTg2MWQt OWNmYWU4YTc1OTdlLzEvM0hXRkxyUFY5TC1uNUU2QTdxbUlHWVpBUE5RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS81YjU5NzUtMTRhZi00ZjI2LTg2MWQtOWNmYWU4YTc1OTdl LzEvM0hXRkxyUFY5TC1uNUU2QTdxbUlHWVpBUE5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEvRJewEN PyzDYQaNtkJoxKf6KTUrH1iFj5VMUyFLKqk3hdQX8StCDhFScjx2VBLixMlkNHcw NdSg8EEO4HD1NTQdwdWQcD9BAyGIPsvt8n293dLcCala1NYApWaLgdtvW/PX7rh9 BDFlV68MvBRP/vTQj431RECAJw6AILVoY4oyNadHQLI3TuSDFWAP4MrhjTPJhlfv wnw+41lmgEylrRhLDy5JmpviFCBoBZ9tdVAhCXjTmZFYjr36fjMzkTFgYiucSBSN Upn82KGjOW+AYHBawYip8jsTzad53SZjpkQMJDKlkQtc4oe28Rcr/JPfHGE2fL0a vjFtGmCf+s9u6A== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:25 2026 by rpki-client