This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.mft File: 3XzvizrZIDFjCqyiJqntebpgVYY.mft (raw, json) Hash identifier: J8lz8fnOweYnnaGgp5q8QJqCD2wib1tbet9iJ+VyAkc= Subject key identifier: 14:B7:CC:F4:7B:67:70:05:95:3D:AA:F3:6F:16:8E:40:50:A5:77:A3 Authority key identifier: DD:7C:EF:8B:3A:D9:20:31:63:0A:AC:A2:26:A9:ED:79:BA:60:55:86 Certificate issuer: /CN=dd7cef8b3ad92031630aaca226a9ed79ba605586 Certificate serial: 019C42461DD59B6B8EC484CFFE84D2809820 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XzvizrZIDFjCqyiJqntebpgVYY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.mft Manifest number: 0376 Signing time: Mon 09 Feb 2026 12:00:17 +0000 Manifest this update: Mon 09 Feb 2026 12:00:17 +0000 Manifest next update: Tue 10 Feb 2026 12:00:17 +0000 Files and hashes: 1: 3XzvizrZIDFjCqyiJqntebpgVYY.crl (hash: vuhxNeJvD1JSvEFSmU9HTihD08IxC4tQiX7oog1hSak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.mft rsync://rpki.ripe.net/repository/DEFAULT/3XzvizrZIDFjCqyiJqntebpgVYY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:1d:d5:9b:6b:8e:c4:84:cf:fe:84:d2:80:98:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd7cef8b3ad92031630aaca226a9ed79ba605586 Validity Not Before: Feb 9 12:00:17 2026 GMT Not After : Feb 10 12:00:17 2026 GMT Subject: CN=14b7ccf47b677005953daaf36f168e4050a577a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cf:d2:f3:5b:8c:8b:83:a9:59:ef:25:ef:f5: 27:64:d5:10:11:02:f8:05:ca:5b:13:97:7d:a9:92: 43:c8:27:09:a4:69:df:81:1d:74:81:79:05:df:c0: 6c:e3:e4:72:f5:e1:16:b6:51:af:cb:22:6a:da:85: f4:bd:47:27:49:5b:44:89:af:26:32:cf:d9:f5:4e: f6:3e:6d:f2:61:13:55:f7:22:bf:1b:93:11:d7:41: a2:42:e0:fd:7a:6d:b0:ef:87:f3:29:2a:b0:46:48: 67:ab:c0:6d:41:ac:6c:1d:7f:c6:a1:93:e8:80:b5: 3a:ca:45:b4:c4:f5:85:4e:cb:d4:01:6f:d4:b6:92: b3:72:dc:4c:30:ee:d8:61:1c:0f:44:f7:4e:f8:30: 7e:19:30:9b:c2:4d:5d:e3:14:5a:05:62:29:43:d9: 40:d1:91:a4:b2:dc:15:88:1a:18:98:eb:a4:9a:71: c4:50:22:f6:5e:77:63:80:79:34:62:79:a1:b2:da: 20:71:95:f4:19:7d:a5:4a:00:a8:4c:69:0b:bf:dd: 00:b8:cf:88:9a:62:a0:9e:12:0d:f7:e9:c0:a0:79: 75:7c:50:f9:18:c6:f2:c3:50:fd:06:be:0c:5e:e7: f4:01:9e:d7:93:cc:ff:5e:07:6d:2a:28:2e:6d:5d: 20:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:B7:CC:F4:7B:67:70:05:95:3D:AA:F3:6F:16:8E:40:50:A5:77:A3 X509v3 Authority Key Identifier: keyid:DD:7C:EF:8B:3A:D9:20:31:63:0A:AC:A2:26:A9:ED:79:BA:60:55:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XzvizrZIDFjCqyiJqntebpgVYY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:bc:d6:48:a9:db:27:0a:78:56:b8:ab:c0:2b:e9:f8:5e:6f: 7d:99:8b:e9:e9:71:81:c4:91:79:5c:f9:a8:ec:8a:e5:4d:93: d5:ee:86:9d:73:a1:1b:21:dc:88:03:80:24:36:18:fc:20:3c: e6:ea:f1:9f:33:05:3f:25:2f:fa:d6:59:9c:5c:82:c7:0b:f8: 20:76:3e:14:14:08:56:69:78:f5:54:8f:23:28:b4:22:1f:0c: 92:69:4d:1d:53:b0:a6:f9:26:1d:3e:a3:bb:cf:d5:5b:de:58: 51:07:9e:fc:49:6a:86:82:68:07:9d:0d:6d:e1:d6:61:32:1b: 91:42:98:dd:3d:89:d2:8b:b0:cf:f3:54:da:6a:de:c0:37:bf: dc:fa:ea:b9:27:8f:b6:03:5e:55:f3:f7:ca:db:48:0c:cd:28: a4:88:1f:86:c7:ed:00:52:1e:53:00:00:54:54:5f:9d:e5:6b: ec:61:62:ec:2c:ce:2a:30:ae:97:e4:21:16:07:a7:de:08:eb: 02:06:a1:8d:ae:f0:ac:38:0d:4f:77:96:bd:e0:1d:83:14:89: e5:29:10:03:0d:f0:a9:89:bb:3a:f4:b8:5f:8b:00:05:56:62: 8c:d2:cf:e0:d1:f2:c6:1a:77:8b:2d:87:d6:a4:c2:91:08:dd: 44:ca:69:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRh3Vm2uOxITP/oTSgJggMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkN2NlZjhiM2FkOTIwMzE2MzBhYWNhMjI2YTllZDc5YmE2 MDU1ODYwHhcNMjYwMjA5MTIwMDE3WhcNMjYwMjEwMTIwMDE3WjAzMTEwLwYDVQQD EygxNGI3Y2NmNDdiNjc3MDA1OTUzZGFhZjM2ZjE2OGU0MDUwYTU3N2EzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8/S81uMi4OpWe8l7/UnZNUQEQL4 BcpbE5d9qZJDyCcJpGnfgR10gXkF38Bs4+Ry9eEWtlGvyyJq2oX0vUcnSVtEia8m Ms/Z9U72Pm3yYRNV9yK/G5MR10GiQuD9em2w74fzKSqwRkhnq8BtQaxsHX/GoZPo gLU6ykW0xPWFTsvUAW/UtpKzctxMMO7YYRwPRPdO+DB+GTCbwk1d4xRaBWIpQ9lA 0ZGkstwViBoYmOukmnHEUCL2XndjgHk0YnmhstogcZX0GX2lSgCoTGkLv90AuM+I mmKgnhIN9+nAoHl1fFD5GMbyw1D9Br4MXuf0AZ7Xk8z/XgdtKigubV0gvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBS3zPR7Z3AFlT2q828WjkBQpXejMB8GA1UdIwQY MBaAFN1874s62SAxYwqsoiap7Xm6YFWGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1h6dml6clpJREZqQ3F5aUpxbnRlYnBnVllZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8xZDk4YjAtNGE0ZC00MTkwLWJkODUt MzcyZjY1ZDk5YTlmLzEvM1h6dml6clpJREZqQ3F5aUpxbnRlYnBnVllZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS8xZDk4YjAtNGE0ZC00MTkwLWJkODUtMzcyZjY1ZDk5YTlm LzEvM1h6dml6clpJREZqQ3F5aUpxbnRlYnBnVllZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYrzWSKnb Jwp4VrirwCvp+F5vfZmL6elxgcSReVz5qOyK5U2T1e6GnXOhGyHciAOAJDYY/CA8 5urxnzMFPyUv+tZZnFyCxwv4IHY+FBQIVml49VSPIyi0Ih8MkmlNHVOwpvkmHT6j u8/VW95YUQee/ElqhoJoB50NbeHWYTIbkUKY3T2J0ouwz/NU2mrewDe/3PrquSeP tgNeVfP3yttIDM0opIgfhsftAFIeUwAAVFRfneVr7GFi7CzOKjCul+QhFgen3gjr Agahja7wrDgNT3eWveAdgxSJ5SkQAw3wqYm7OvS4X4sABVZijNLP4NHyxhp3iy2H 1qTCkQjdRMppbg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:13 2026 by rpki-client