This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json) Hash identifier: q/MvDniH9tJuAUIPKhB7oxych2hvgQR0LGYvZw/h4+w= Subject key identifier: F9:27:16:74:59:08:27:BF:7E:76:19:E4:D6:09:24:BC:70:8D:A2:7D Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc Certificate serial: 019C43FDE5F5793C35424ACB4CB13FB7A225 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft Manifest number: 12AB Signing time: Mon 09 Feb 2026 20:00:38 +0000 Manifest this update: Mon 09 Feb 2026 20:00:38 +0000 Manifest next update: Tue 10 Feb 2026 20:00:38 +0000 Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: RsTv8md3GKD26efUgd+eHE/9pxT7ZUjwALaubUwCXPw=) 2: BsyNzVaxxAwnI04Dd9aOhMe6ucE.roa (hash: 0aNXoEKl0ws+Toia/ObhW+i07V56stDq9dLrY8oS6mU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:e5:f5:79:3c:35:42:4a:cb:4c:b1:3f:b7:a2:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc Validity Not Before: Feb 9 20:00:38 2026 GMT Not After : Feb 10 20:00:38 2026 GMT Subject: CN=f9271674590827bf7e7619e4d60924bc708da27d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:95:62:8a:14:75:90:70:76:bf:30:4f:63:8b: 5d:9c:2b:ef:f6:27:ba:59:02:17:ff:b6:cb:f8:e6: 89:0f:11:cb:d6:d8:f2:86:9a:eb:3f:70:ee:74:84: 3f:31:36:14:13:45:b1:28:da:fb:a2:67:57:3f:22: 20:32:51:07:31:76:69:6d:a6:b3:a7:98:e3:f5:82: a3:dc:62:61:57:57:b0:31:bd:83:ef:86:cf:19:a5: c2:72:c7:6f:42:36:21:53:a1:fe:e3:b2:71:b5:a0: 10:0a:de:e0:63:39:54:3a:85:d5:48:ef:43:cb:16: 6e:d3:38:ce:18:71:8c:85:4f:04:1c:bc:40:b1:57: 65:c0:86:b2:0b:0e:1b:ac:0d:04:2c:a2:c2:f9:3d: 82:92:b9:86:fd:64:8f:f6:47:bd:5b:58:ba:67:98: ae:c1:72:f8:6d:f3:16:71:29:97:ad:07:2e:61:f0: 8b:f4:47:1b:4d:37:f0:ba:d3:28:59:99:cf:4f:ca: 7f:b1:46:d4:91:ea:b5:18:ee:29:cc:78:81:e6:0b: 31:3a:66:c9:49:10:db:03:58:69:37:35:ae:eb:0e: 22:4f:5f:6a:33:66:d6:d8:3e:cf:de:0f:11:11:8e: 18:d2:e5:cf:ff:ae:39:98:22:2a:00:9f:c1:00:a5: 42:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:27:16:74:59:08:27:BF:7E:76:19:E4:D6:09:24:BC:70:8D:A2:7D X509v3 Authority Key Identifier: keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d0:26:9f:c9:31:3f:73:af:82:b0:db:04:a6:9f:3d:ae:a2:07: 7c:ad:66:e8:05:52:00:a2:6b:11:47:8b:2f:b8:a6:aa:e1:1e: 03:f4:a1:33:03:0d:31:04:5c:0f:32:b3:05:ca:86:a8:1a:23: de:ae:5c:ab:4f:5d:e9:6c:9a:db:97:d9:fc:30:26:de:27:56: 3e:09:df:30:82:3c:dd:03:fe:25:2c:7f:62:a0:78:b2:af:74: 59:9e:3a:cb:5a:c2:81:df:cb:2d:b9:f1:61:85:32:3a:b7:3e: 03:9d:33:64:63:03:39:bc:3f:5e:0c:4e:cf:e9:83:52:82:72: 0b:6a:ba:ba:a4:03:16:cd:9e:c3:62:26:4a:e0:36:b5:3c:7e: 5e:62:d9:58:78:50:0b:6a:72:67:3f:35:b8:8c:02:24:e4:24: b5:be:d2:5c:b6:9e:5e:85:e7:33:06:d4:b2:96:37:00:e4:4d: bb:3b:0d:6f:4f:4f:65:0f:a5:94:5f:83:74:2b:2f:64:61:29: c6:94:5e:b8:e3:ae:ec:5a:56:ad:1b:c2:86:71:29:a5:75:9b: fb:a4:cc:54:7d:a0:8d:ac:aa:76:7a:d8:7a:38:f0:88:2e:d1: 74:7b:7b:de:88:b9:48:4b:32:a5:ac:a7:ea:5c:d5:45:18:3e: 9c:9b:bb:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/eX1eTw1QkrLTLE/t6IlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkODVkYzZiNjE0M2ExN2ZlYjQ5ODIwZWE1MjAwNDg5NThm NDhhZGMwHhcNMjYwMjA5MjAwMDM4WhcNMjYwMjEwMjAwMDM4WjAzMTEwLwYDVQQD EyhmOTI3MTY3NDU5MDgyN2JmN2U3NjE5ZTRkNjA5MjRiYzcwOGRhMjdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAopViihR1kHB2vzBPY4tdnCvv9ie6 WQIX/7bL+OaJDxHL1tjyhprrP3DudIQ/MTYUE0WxKNr7omdXPyIgMlEHMXZpbaaz p5jj9YKj3GJhV1ewMb2D74bPGaXCcsdvQjYhU6H+47JxtaAQCt7gYzlUOoXVSO9D yxZu0zjOGHGMhU8EHLxAsVdlwIayCw4brA0ELKLC+T2CkrmG/WSP9ke9W1i6Z5iu wXL4bfMWcSmXrQcuYfCL9EcbTTfwutMoWZnPT8p/sUbUkeq1GO4pzHiB5gsxOmbJ SRDbA1hpNzWu6w4iT19qM2bW2D7P3g8REY4Y0uXP/645mCIqAJ/BAKVC5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPknFnRZCCe/fnYZ5NYJJLxwjaJ9MB8GA1UdIwQY MBaAFN2F3GthQ6F/60mCDqUgBIlY9IrcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQt NGFjODU2YTgxODJkLzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQtNGFjODU2YTgxODJk LzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0CafyTE/ c6+CsNsEpp89rqIHfK1m6AVSAKJrEUeLL7imquEeA/ShMwMNMQRcDzKzBcqGqBoj 3q5cq09d6Wya25fZ/DAm3idWPgnfMII83QP+JSx/YqB4sq90WZ46y1rCgd/LLbnx YYUyOrc+A50zZGMDObw/XgxOz+mDUoJyC2q6uqQDFs2ew2ImSuA2tTx+XmLZWHhQ C2pyZz81uIwCJOQktb7SXLaeXoXnMwbUspY3AORNuzsNb09PZQ+llF+DdCsvZGEp xpReuOOu7FpWrRvChnEppXWb+6TMVH2gjayqdnrYejjwiC7RdHt73oi5SEsypayn 6lzVRRg+nJu7pQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:22 2026 by rpki-client