This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.mft File: 3kK6kvCUZ8GIi16eNEiVB0SweYE.mft (raw, json) Hash identifier: sjga3rl3ZU2fnysPQW7QcHKrABrkcsBQQg6Hhvydzko= Subject key identifier: 68:9D:39:D7:2D:AD:3A:9E:7E:BF:66:2B:DE:F0:9A:EA:78:D4:98:54 Authority key identifier: DE:42:BA:92:F0:94:67:C1:88:8B:5E:9E:34:48:95:07:44:B0:79:81 Certificate issuer: /CN=de42ba92f09467c1888b5e9e3448950744b07981 Certificate serial: 019C4322D7804FE1A40B5FAA79840A159AF6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3kK6kvCUZ8GIi16eNEiVB0SweYE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.mft Manifest number: 127F Signing time: Mon 09 Feb 2026 16:01:22 +0000 Manifest this update: Mon 09 Feb 2026 16:01:22 +0000 Manifest next update: Tue 10 Feb 2026 16:01:22 +0000 Files and hashes: 1: 3kK6kvCUZ8GIi16eNEiVB0SweYE.crl (hash: 1UbrsM4xlmUEOcEr6cnIra+WMAfhInJ68UsWTLHNyeg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.mft rsync://rpki.ripe.net/repository/DEFAULT/3kK6kvCUZ8GIi16eNEiVB0SweYE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:d7:80:4f:e1:a4:0b:5f:aa:79:84:0a:15:9a:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de42ba92f09467c1888b5e9e3448950744b07981 Validity Not Before: Feb 9 16:01:22 2026 GMT Not After : Feb 10 16:01:22 2026 GMT Subject: CN=689d39d72dad3a9e7ebf662bdef09aea78d49854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:67:72:c5:a5:cb:5a:63:41:f3:4b:df:d9:a8: b8:86:f2:01:5a:82:ab:24:37:e1:da:4a:02:e0:28: ce:c6:a1:cf:9e:ad:2e:24:60:dd:59:2e:56:81:9b: e6:3a:56:23:d3:7e:87:e3:d9:e2:f1:ef:79:fc:b8: 92:56:56:18:ba:30:a2:1a:36:b6:5e:84:89:c1:6f: 33:0a:c4:5f:b4:b7:8c:42:5e:52:7b:7c:f0:20:d8: f2:a5:c6:62:61:21:61:35:f6:56:e5:c1:0d:01:36: 93:a8:0a:bc:de:12:b3:3c:0d:01:cf:96:d8:b9:7d: 70:72:3f:07:5d:10:ed:33:f6:9b:bd:53:11:11:73: b5:52:22:e1:4f:61:84:ff:f5:f8:6f:04:42:5d:5a: 38:a6:bb:5c:ce:9c:1f:7d:23:e2:02:4f:d2:55:4e: e2:fc:db:48:fb:06:7c:db:89:5b:73:9b:f7:a2:39: dc:de:6e:b6:be:15:0e:d3:9c:1c:bc:c0:17:58:9a: 73:56:6b:4e:ea:c3:fe:e5:6f:14:43:39:2a:5c:18: d1:ee:d7:09:20:8c:64:8a:a5:b2:81:8a:2f:df:aa: 56:33:d3:b4:74:6e:42:d8:c0:f5:a4:60:9c:78:21: c4:d5:2b:64:c4:94:a0:d0:e3:34:22:7d:7b:f3:ae: 79:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:9D:39:D7:2D:AD:3A:9E:7E:BF:66:2B:DE:F0:9A:EA:78:D4:98:54 X509v3 Authority Key Identifier: keyid:DE:42:BA:92:F0:94:67:C1:88:8B:5E:9E:34:48:95:07:44:B0:79:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3kK6kvCUZ8GIi16eNEiVB0SweYE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:c2:3f:c1:1d:83:09:c5:bb:62:d3:f4:f7:41:23:87:ce:9b: a0:56:2e:b2:0e:35:d0:15:f3:ac:43:11:80:59:35:37:56:f4: f3:a6:b8:df:28:c5:1d:aa:f3:4c:89:84:3c:9a:f5:2e:2c:18: 84:fd:ea:44:80:0a:cc:1c:48:81:c6:ef:51:e8:02:dd:42:7a: 81:01:10:18:f2:89:b8:fa:18:a1:b1:5c:fd:3c:87:6b:cf:25: 9e:42:da:fc:3b:6f:2d:0e:e4:0a:6c:51:33:82:68:12:68:bb: 25:07:e3:50:b4:92:c3:75:12:ad:7f:ea:e8:93:f8:3c:30:44: da:98:52:3b:f9:5c:d9:a8:29:cc:aa:3f:fa:3a:f1:89:4f:7f: ed:a1:2c:ac:11:86:8a:01:1c:8a:8a:52:d7:9e:19:c9:ac:1c: 52:b1:06:13:22:f3:99:8e:7b:6d:ed:b6:57:4a:80:58:55:db: c2:0e:3f:56:6a:d6:22:3d:b2:59:2b:7e:20:98:50:b4:3b:50: 12:5c:d8:dc:71:61:36:07:5c:18:4d:11:85:76:dd:53:89:27: 16:d2:03:83:a8:35:c3:ac:87:4c:24:1c:aa:b5:14:7b:3e:ea: 81:6e:c5:ad:2d:cc:2b:54:a6:95:f8:1a:aa:dc:6c:1e:51:9a: 6a:36:99:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIteAT+GkC1+qeYQKFZr2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlNDJiYTkyZjA5NDY3YzE4ODhiNWU5ZTM0NDg5NTA3NDRi MDc5ODEwHhcNMjYwMjA5MTYwMTIyWhcNMjYwMjEwMTYwMTIyWjAzMTEwLwYDVQQD Eyg2ODlkMzlkNzJkYWQzYTllN2ViZjY2MmJkZWYwOWFlYTc4ZDQ5ODU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnGdyxaXLWmNB80vf2ai4hvIBWoKr JDfh2koC4CjOxqHPnq0uJGDdWS5WgZvmOlYj036H49ni8e95/LiSVlYYujCiGja2 XoSJwW8zCsRftLeMQl5Se3zwINjypcZiYSFhNfZW5cENATaTqAq83hKzPA0Bz5bY uX1wcj8HXRDtM/abvVMREXO1UiLhT2GE//X4bwRCXVo4prtczpwffSPiAk/SVU7i /NtI+wZ824lbc5v3ojnc3m62vhUO05wcvMAXWJpzVmtO6sP+5W8UQzkqXBjR7tcJ IIxkiqWygYov36pWM9O0dG5C2MD1pGCceCHE1StkxJSg0OM0In178655aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGidOdctrTqefr9mK97wmup41JhUMB8GA1UdIwQY MBaAFN5CupLwlGfBiItenjRIlQdEsHmBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2tLNmt2Q1VaOEdJaTE2ZU5FaVZCMFN3ZVlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zZmY0NjMtMGUzZC00ZTc3LWJkMTMt NWIzYjRiOTEzY2Y4LzEvM2tLNmt2Q1VaOEdJaTE2ZU5FaVZCMFN3ZVlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8zZmY0NjMtMGUzZC00ZTc3LWJkMTMtNWIzYjRiOTEzY2Y4 LzEvM2tLNmt2Q1VaOEdJaTE2ZU5FaVZCMFN3ZVlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUcI/wR2D CcW7YtP090Ejh86boFYusg410BXzrEMRgFk1N1b086a43yjFHarzTImEPJr1LiwY hP3qRIAKzBxIgcbvUegC3UJ6gQEQGPKJuPoYobFc/TyHa88lnkLa/DtvLQ7kCmxR M4JoEmi7JQfjULSSw3USrX/q6JP4PDBE2phSO/lc2agpzKo/+jrxiU9/7aEsrBGG igEciopS154ZyawcUrEGEyLzmY57be22V0qAWFXbwg4/VmrWIj2yWSt+IJhQtDtQ ElzY3HFhNgdcGE0RhXbdU4knFtIDg6g1w6yHTCQcqrUUez7qgW7FrS3MK1Smlfga qtxsHlGaajaZSA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:40 2026 by rpki-client