This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.mft File: MH3iES3L0Gv7x-h_O_8jcinS0XM.mft (raw, json) Hash identifier: BaphmJ3B08ZkkWbnXxeHuiTji7heVz51QmVmqTvMWJo= Subject key identifier: 7C:5A:31:E8:4A:8C:FB:A7:07:E7:93:A8:CD:33:12:62:EB:6D:2A:40 Authority key identifier: 30:7D:E2:11:2D:CB:D0:6B:FB:C7:E8:7F:3B:FF:23:72:29:D2:D1:73 Certificate issuer: /CN=307de2112dcbd06bfbc7e87f3bff237229d2d173 Certificate serial: 019C44351571D74F9A11B2B540BF13DC5426 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH3iES3L0Gv7x-h_O_8jcinS0XM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.mft Manifest number: 0344 Signing time: Mon 09 Feb 2026 21:00:55 +0000 Manifest this update: Mon 09 Feb 2026 21:00:55 +0000 Manifest next update: Tue 10 Feb 2026 21:00:55 +0000 Files and hashes: 1: MH3iES3L0Gv7x-h_O_8jcinS0XM.crl (hash: OYIJgpkhVxP+KkY38Ih84fk0HXPA4KUg17HA/Rf4RII=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.mft rsync://rpki.ripe.net/repository/DEFAULT/MH3iES3L0Gv7x-h_O_8jcinS0XM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:35:15:71:d7:4f:9a:11:b2:b5:40:bf:13:dc:54:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307de2112dcbd06bfbc7e87f3bff237229d2d173 Validity Not Before: Feb 9 21:00:55 2026 GMT Not After : Feb 10 21:00:55 2026 GMT Subject: CN=7c5a31e84a8cfba707e793a8cd331262eb6d2a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1b:7c:76:a3:a8:54:78:80:0a:1b:f8:65:f6: fe:70:13:9d:54:c2:ba:1c:a8:7c:44:52:3b:4d:c7: 17:e0:b7:97:a2:f9:ee:89:71:a8:cc:94:7b:3a:c7: 1f:0e:03:7a:96:1c:49:22:0f:16:de:42:1e:fa:df: 4f:a4:3f:9c:47:77:2c:7d:59:71:09:90:c5:e2:e2: 68:f8:cc:a6:65:b3:de:00:2b:e2:b8:96:c8:90:ea: eb:3a:03:27:10:86:61:2d:36:64:c9:0c:09:af:37: 60:fb:e6:ef:2d:17:08:c0:e7:9f:fd:08:d3:19:ec: a9:02:0f:b4:c8:75:a5:e4:40:34:89:18:b2:ee:cf: 84:20:61:c8:03:0c:a5:b1:dc:7e:c9:ff:9d:6a:dc: d4:07:ed:2e:f5:e3:0c:e4:9f:46:41:10:ca:6a:59: fc:23:9c:4d:02:cc:bf:c2:09:da:18:fb:f1:5d:96: 2c:17:e4:4d:1a:f2:a1:d7:32:fd:f7:78:46:e1:a8: 30:eb:3f:d7:82:2e:42:82:e6:45:4b:db:44:61:b9: cf:35:e9:25:1d:bd:fc:6a:f2:e9:b4:f9:60:1d:63: f6:5b:63:5c:3e:49:ea:e8:92:a2:41:dc:dc:e3:7a: ad:1f:83:4c:53:20:f5:39:fa:7d:16:df:a4:17:a1: 1b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:5A:31:E8:4A:8C:FB:A7:07:E7:93:A8:CD:33:12:62:EB:6D:2A:40 X509v3 Authority Key Identifier: keyid:30:7D:E2:11:2D:CB:D0:6B:FB:C7:E8:7F:3B:FF:23:72:29:D2:D1:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH3iES3L0Gv7x-h_O_8jcinS0XM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:20:b7:e2:f0:c8:ab:ed:47:84:f3:36:ff:16:ef:d2:c6:b0: 1b:9d:c4:3e:2f:01:07:96:98:99:4e:ab:19:e8:40:3d:5c:e7: 44:dd:f4:2a:15:ef:ee:16:15:45:21:75:10:4b:3f:58:93:70: 14:ef:81:62:2c:43:59:e9:48:27:6e:b1:01:54:67:2a:ed:2a: 8f:52:22:d7:cc:6c:4b:b3:a7:0e:66:ee:37:24:07:c4:2a:97: bc:b8:d3:5d:3c:72:dd:ab:07:9d:1a:c7:fb:af:a9:73:a2:df: ef:23:a8:59:b7:97:63:99:73:42:47:bb:be:db:d9:39:d3:49: f2:e6:86:26:58:e6:91:06:fe:6f:82:61:8d:8b:2c:14:63:77: 49:2f:3d:90:77:fc:47:43:a3:a5:a8:22:6f:a9:60:a6:e3:dc: 73:89:c4:ec:31:2e:5f:78:1c:c1:bd:46:8d:e4:cd:56:30:3c: c5:af:be:c6:7b:48:f6:1f:5d:30:d4:a6:69:46:6f:d0:1f:07: 6c:0a:c4:97:c6:4c:8c:73:f6:98:fe:6b:73:aa:46:b0:72:b1: a2:37:5c:f4:09:d3:6f:16:ce:ce:93:85:ce:56:04:a5:c4:ae: 81:d9:b4:f8:62:7e:15:bd:2f:23:dc:94:e5:88:63:5e:58:4b: ec:d0:e5:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENRVx10+aEbK1QL8T3FQmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwN2RlMjExMmRjYmQwNmJmYmM3ZTg3ZjNiZmYyMzcyMjlk MmQxNzMwHhcNMjYwMjA5MjEwMDU1WhcNMjYwMjEwMjEwMDU1WjAzMTEwLwYDVQQD Eyg3YzVhMzFlODRhOGNmYmE3MDdlNzkzYThjZDMzMTI2MmViNmQyYTQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBt8dqOoVHiAChv4Zfb+cBOdVMK6 HKh8RFI7TccX4LeXovnuiXGozJR7OscfDgN6lhxJIg8W3kIe+t9PpD+cR3csfVlx CZDF4uJo+MymZbPeACviuJbIkOrrOgMnEIZhLTZkyQwJrzdg++bvLRcIwOef/QjT GeypAg+0yHWl5EA0iRiy7s+EIGHIAwylsdx+yf+datzUB+0u9eMM5J9GQRDKaln8 I5xNAsy/wgnaGPvxXZYsF+RNGvKh1zL993hG4agw6z/Xgi5CguZFS9tEYbnPNekl Hb38avLptPlgHWP2W2NcPknq6JKiQdzc43qtH4NMUyD1Ofp9Ft+kF6EbWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHxaMehKjPunB+eTqM0zEmLrbSpAMB8GA1UdIwQY MBaAFDB94hEty9Br+8fofzv/I3Ip0tFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUgzaUVTM0wwR3Y3eC1oX09fOGpjaW5TMFhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9hZWM4NzctNTlkNS00MmY5LTk2N2Ut MjczMjE1MWI4ZTg2LzEvTUgzaUVTM0wwR3Y3eC1oX09fOGpjaW5TMFhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9hZWM4NzctNTlkNS00MmY5LTk2N2UtMjczMjE1MWI4ZTg2 LzEvTUgzaUVTM0wwR3Y3eC1oX09fOGpjaW5TMFhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAiC34vDI q+1HhPM2/xbv0sawG53EPi8BB5aYmU6rGehAPVznRN30KhXv7hYVRSF1EEs/WJNw FO+BYixDWelIJ26xAVRnKu0qj1Ii18xsS7OnDmbuNyQHxCqXvLjTXTxy3asHnRrH +6+pc6Lf7yOoWbeXY5lzQke7vtvZOdNJ8uaGJljmkQb+b4JhjYssFGN3SS89kHf8 R0Ojpagib6lgpuPcc4nE7DEuX3gcwb1GjeTNVjA8xa++xntI9h9dMNSmaUZv0B8H bArEl8ZMjHP2mP5rc6pGsHKxojdc9AnTbxbOzpOFzlYEpcSugdm0+GJ+Fb0vI9yU 5YhjXlhL7NDlMA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:13 2026 by rpki-client