This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json) Hash identifier: o9w9eq4/DNDG7bQ2nIYl2nu1hECIo1YO0OmkfbFXJro= Subject key identifier: 5A:46:98:63:48:C5:E7:04:6F:69:8E:D7:6B:69:88:28:F3:B6:F1:26 Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Certificate serial: 019C43FE3208433E0261EDF739048A813918 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft Manifest number: 1823 Signing time: Mon 09 Feb 2026 20:00:58 +0000 Manifest this update: Mon 09 Feb 2026 20:00:58 +0000 Manifest next update: Tue 10 Feb 2026 20:00:58 +0000 Files and hashes: 1: 32lYY6uEr5NQiZ36Yw1PDpEB0LE.roa (hash: nbIrlyDfM/OsIW8q6DxR5+MKnNJS4Cwv/h7ugS3W6kw=) 2: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: MsfMkbLWdLl7hv5Rt1xSgSuOkmr1FNW6OvjMyyExRmM=) 3: 4brBRSXd-3J0XI6W1cQMml969rM.roa (hash: HAAIbdurASwhGqOl0EqIaoNlObK5qBtHlNL6sAbPYAw=) 4: CV0Da0hDhTImPAfNEKg1Zmq-t4Y.roa (hash: gRQv5O+XgMBfojo8WrrSJ295oJBia/Hac6oJn0s/JA4=) 5: CcbOPSFowzuVmbQQQVUT4gQZao4.roa (hash: QoVwdK39dtT9IvoLSexiLLdImyTyxwcjHq7QNn6fGOA=) 6: Nmra5MQ90P6ykkpupDiPaVY1kco.roa (hash: iXU9Ga0vhV6ku1r3OaZ+HmJepE5UeaNFpriSH+GfUVo=) 7: YorSmVSKuGvPWA7DA6m1cRcL1FY.roa (hash: qU63ylCGxnEyiZbz76RKuCXngXRAm2RLSoEhfEzs9Wk=) 8: hsVsux8sHzZqQOz9MIXAz_SM6VI.roa (hash: 3Hc4odb8fRJz6qv0eC3Z9gpTtQGDv+DPG+2jWtEDSs8=) 9: vulmYW4p9PU9wnTvn-jVp44qOCM.roa (hash: MXgO5bfy+NsKZlh8zhQJtMRiH5fhuEIemBIGiWuNsdY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:32:08:43:3e:02:61:ed:f7:39:04:8a:81:39:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Validity Not Before: Feb 9 20:00:58 2026 GMT Not After : Feb 10 20:00:58 2026 GMT Subject: CN=5a46986348c5e7046f698ed76b698828f3b6f126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3e:1d:89:b3:cc:d0:5a:a5:93:67:fc:0c:c3: 36:7d:c2:5f:98:a7:e4:4b:38:47:4d:a0:64:85:98: 21:15:7c:37:91:9f:6b:fe:f8:a8:01:75:db:c2:12: b1:48:cd:c1:70:73:49:51:68:6b:e5:db:e4:7b:63: d0:75:79:69:a6:01:9c:f6:36:c5:c9:e6:e4:30:5f: 31:ed:2d:f6:5f:b2:44:12:37:30:29:1b:52:f8:07: 06:a1:18:e4:08:5e:4e:52:99:e2:0f:07:37:eb:9d: b1:0f:57:d4:ab:a1:a4:c6:8c:c6:9f:fe:1a:ba:82: 17:84:98:aa:7e:4a:78:1c:74:b0:a7:8a:92:54:ed: 6d:a1:4e:72:b7:1c:fa:3a:14:14:c3:08:78:39:c8: 58:26:c4:ba:7b:68:30:c5:12:34:97:e3:40:5c:d7: 5b:f5:09:b0:84:58:00:4a:3c:9d:f7:64:db:dd:76: 53:00:c6:0d:1c:ef:cb:7e:9b:66:ac:92:81:cb:2a: 08:28:ea:e0:b8:37:39:a0:f0:42:6f:44:37:24:f6: 3a:02:ff:f0:31:32:85:3c:02:87:4b:92:30:eb:88: 62:e6:56:98:6f:b2:9b:1d:aa:4d:c5:87:29:dc:01: 73:5b:25:cf:c9:14:ce:36:aa:24:77:66:d3:13:16: cb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:46:98:63:48:C5:E7:04:6F:69:8E:D7:6B:69:88:28:F3:B6:F1:26 X509v3 Authority Key Identifier: keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:1e:46:0c:9d:dd:23:c4:84:f6:25:03:55:b0:91:86:cb:47: e9:84:d1:80:a8:99:0d:9d:53:d4:cf:80:72:30:07:d1:de:48: 57:3c:bd:1e:8b:b8:86:da:80:4e:ff:77:d3:6c:0e:1d:2c:80: cf:94:5a:86:f5:e0:af:cd:9e:1f:8d:c2:e3:18:f5:2e:54:f1: 57:91:58:93:d9:57:4d:09:0f:cb:6f:02:26:4c:46:72:02:44: 8f:e2:7c:17:6d:fc:36:d1:a1:0e:9b:31:85:01:4f:00:b2:a9: 01:90:eb:fb:c4:74:5e:86:8c:ea:2d:5d:18:a5:0c:ed:07:a8: d6:fe:c8:40:59:45:7b:35:90:43:76:26:df:ed:90:c1:38:b8: e6:22:0d:00:f1:92:dd:c6:93:14:e5:a5:a2:1c:af:49:c7:d0: c9:20:b2:da:6a:9f:a6:7e:7d:e8:16:31:57:f1:97:6f:bb:b8: 9e:95:f9:50:cd:ea:91:d8:3a:b7:b1:43:45:6b:89:9e:f7:5b: 66:94:61:f9:18:1e:26:a5:46:6b:8f:9f:f9:54:69:d9:58:98: f6:7c:a2:b9:ba:20:29:65:40:1c:e1:db:aa:ea:7d:07:27:60: d5:20:46:4d:1d:62:7c:bc:ca:a2:31:5e:4a:11:78:92:45:23: c7:69:8f:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/jIIQz4CYe33OQSKgTkYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNzgyMWUxYmNiZjZlMDc0ZWE0ODE0YWFhNWM2M2UzYmE4 MTNjNWYwHhcNMjYwMjA5MjAwMDU4WhcNMjYwMjEwMjAwMDU4WjAzMTEwLwYDVQQD Eyg1YTQ2OTg2MzQ4YzVlNzA0NmY2OThlZDc2YjY5ODgyOGYzYjZmMTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4D4dibPM0Fqlk2f8DMM2fcJfmKfk SzhHTaBkhZghFXw3kZ9r/vioAXXbwhKxSM3BcHNJUWhr5dvke2PQdXlppgGc9jbF yebkMF8x7S32X7JEEjcwKRtS+AcGoRjkCF5OUpniDwc3652xD1fUq6GkxozGn/4a uoIXhJiqfkp4HHSwp4qSVO1toU5ytxz6OhQUwwh4OchYJsS6e2gwxRI0l+NAXNdb 9QmwhFgASjyd92Tb3XZTAMYNHO/LfptmrJKByyoIKOrguDc5oPBCb0Q3JPY6Av/w MTKFPAKHS5Iw64hi5laYb7KbHapNxYcp3AFzWyXPyRTONqokd2bTExbL8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFpGmGNIxecEb2mO12tpiCjztvEmMB8GA1UdIwQY MBaAFNx4IeG8v24HTqSBSqpcY+O6gTxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYt ZDQ4YjQyZWYxNTliLzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYtZDQ4YjQyZWYxNTli LzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPR5GDJ3d I8SE9iUDVbCRhstH6YTRgKiZDZ1T1M+AcjAH0d5IVzy9Hou4htqATv9302wOHSyA z5RahvXgr82eH43C4xj1LlTxV5FYk9lXTQkPy28CJkxGcgJEj+J8F238NtGhDpsx hQFPALKpAZDr+8R0XoaM6i1dGKUM7Qeo1v7IQFlFezWQQ3Ym3+2QwTi45iINAPGS 3caTFOWlohyvScfQySCy2mqfpn596BYxV/GXb7u4npX5UM3qkdg6t7FDRWuJnvdb ZpRh+RgeJqVGa4+f+VRp2ViY9nyiubogKWVAHOHbqup9Bydg1SBGTR1ifLzKojFe ShF4kkUjx2mP9A== -----END CERTIFICATE-----Generated at Tue Feb 10 06:28:09 2026 by rpki-client