This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft File: 03h3GhBvaw0FSld4U1aSLK8C40M.mft (raw, json) Hash identifier: SHZtFp1Ipq+yDGd41sDQ5W7v0hOHAjuA8I7sGgnd4Zw= Subject key identifier: BE:E9:65:39:03:F3:90:F5:4E:CC:F1:4C:9E:68:F1:14:18:9B:C2:D7 Authority key identifier: D3:78:77:1A:10:6F:6B:0D:05:4A:57:78:53:56:92:2C:AF:02:E3:43 Certificate issuer: /CN=d378771a106f6b0d054a57785356922caf02e343 Certificate serial: 019C438FDC38B535556467F0CF2185B1E130 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft Manifest number: 0BBA Signing time: Mon 09 Feb 2026 18:00:27 +0000 Manifest this update: Mon 09 Feb 2026 18:00:27 +0000 Manifest next update: Tue 10 Feb 2026 18:00:27 +0000 Files and hashes: 1: 03h3GhBvaw0FSld4U1aSLK8C40M.crl (hash: Q8uzxFha0U4BJSWvb10q6CX6rfbJM8SWLNrbxGZ/yH4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.crl rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:dc:38:b5:35:55:64:67:f0:cf:21:85:b1:e1:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d378771a106f6b0d054a57785356922caf02e343 Validity Not Before: Feb 9 18:00:27 2026 GMT Not After : Feb 10 18:00:27 2026 GMT Subject: CN=bee9653903f390f54eccf14c9e68f114189bc2d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5a:c6:16:2e:ce:df:c4:ab:af:36:3d:e1:5f: 44:77:d7:cf:05:98:91:c1:d8:86:87:e6:e3:f8:14: ce:a9:3c:c7:48:f0:39:ab:c3:b0:8f:57:de:2e:bd: 6a:86:71:f4:08:f2:ae:b4:ad:0c:fd:21:e8:07:22: f4:1f:7b:07:71:1d:90:fa:74:d5:54:c2:45:2d:95: 32:a1:47:c9:12:66:dd:aa:01:c3:62:3f:47:ee:cd: d4:4e:c9:80:d8:16:0f:86:1a:fc:53:45:af:a5:23: b8:09:db:b1:da:95:55:f0:f6:d9:31:67:bc:44:c2: c3:be:0b:5e:e5:88:e8:7b:bd:22:c3:8b:44:74:1d: f2:20:5c:d2:b8:33:02:ca:0c:71:63:c2:33:bf:f9: d9:18:1e:26:7e:e8:6b:05:f5:3b:1a:50:e8:b7:f8: 2f:28:6d:ec:cb:e1:6a:e4:81:02:f5:56:bf:83:6d: 81:8e:1b:47:b0:f9:8f:61:db:0b:9b:52:a2:4d:dd: 87:8b:90:03:29:03:5d:d2:d2:87:6f:d7:77:df:71: a9:c7:48:26:8d:e9:e6:e3:7e:d9:3e:9b:2c:b4:fd: 71:a7:d6:19:8e:57:67:79:fc:ec:ff:5a:0d:36:a6: c6:6e:c2:3b:3e:38:3a:d5:3c:c2:25:e0:e8:e1:35: 41:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E9:65:39:03:F3:90:F5:4E:CC:F1:4C:9E:68:F1:14:18:9B:C2:D7 X509v3 Authority Key Identifier: keyid:D3:78:77:1A:10:6F:6B:0D:05:4A:57:78:53:56:92:2C:AF:02:E3:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:6a:a7:8b:49:7a:ae:d5:81:1b:59:a0:23:cb:91:85:7e:1e: eb:46:37:78:64:9e:22:6f:c6:f4:60:45:a1:e5:00:cc:50:e5: 4f:e1:14:1b:46:59:1b:a7:cd:67:5b:e5:50:f3:86:a4:c8:2d: 9f:6e:6c:98:c7:1f:f8:ee:98:8f:b4:58:ba:e6:93:59:26:44: 0f:3a:8f:00:f5:48:82:fa:d3:d9:64:81:a8:5d:1b:23:60:f2: 77:5a:09:61:d7:60:f2:e3:ee:1d:54:ec:e1:9d:f1:30:f4:0a: ab:71:5f:69:d3:09:ee:c0:f8:6d:a1:19:ad:8d:d4:b7:9f:c1: 44:ed:a9:bc:cf:17:cc:cd:8f:e0:20:f0:06:6d:e5:65:83:18: aa:23:0e:44:c7:b0:27:43:3f:b4:93:57:d8:28:b8:42:1e:84: 69:fd:55:8b:21:e0:c0:dd:9a:d2:a9:40:35:2c:90:b2:bc:be: e5:b8:c8:80:15:27:3e:34:53:f8:06:49:44:05:38:cc:bd:e7: 5a:ed:98:3e:66:d2:76:0c:a0:9e:1c:df:78:2f:b7:fc:53:03: ca:54:18:db:67:48:40:01:e2:ca:db:25:41:1b:06:23:7a:dd: 22:8b:16:86:80:fa:06:54:8e:cb:e8:d4:eb:c8:31:64:a4:1c: 45:4e:1c:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj9w4tTVVZGfwzyGFseEwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzNzg3NzFhMTA2ZjZiMGQwNTRhNTc3ODUzNTY5MjJjYWYw MmUzNDMwHhcNMjYwMjA5MTgwMDI3WhcNMjYwMjEwMTgwMDI3WjAzMTEwLwYDVQQD EyhiZWU5NjUzOTAzZjM5MGY1NGVjY2YxNGM5ZTY4ZjExNDE4OWJjMmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3VrGFi7O38SrrzY94V9Ed9fPBZiR wdiGh+bj+BTOqTzHSPA5q8Owj1feLr1qhnH0CPKutK0M/SHoByL0H3sHcR2Q+nTV VMJFLZUyoUfJEmbdqgHDYj9H7s3UTsmA2BYPhhr8U0WvpSO4Cdux2pVV8PbZMWe8 RMLDvgte5Yjoe70iw4tEdB3yIFzSuDMCygxxY8Izv/nZGB4mfuhrBfU7GlDot/gv KG3sy+Fq5IEC9Va/g22BjhtHsPmPYdsLm1KiTd2Hi5ADKQNd0tKHb9d333Gpx0gm jenm437ZPpsstP1xp9YZjldnefzs/1oNNqbGbsI7Pjg61TzCJeDo4TVBZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL7pZTkD85D1TszxTJ5o8RQYm8LXMB8GA1UdIwQY MBaAFNN4dxoQb2sNBUpXeFNWkiyvAuNDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDNoM0doQnZhdzBGU2xkNFUxYVNMSzhDNDBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8zYTU0MjMtNmI5Mi00MGY0LTg3OGEt NTQ3MTdmNzJjYTU5LzEvMDNoM0doQnZhdzBGU2xkNFUxYVNMSzhDNDBNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS8zYTU0MjMtNmI5Mi00MGY0LTg3OGEtNTQ3MTdmNzJjYTU5 LzEvMDNoM0doQnZhdzBGU2xkNFUxYVNMSzhDNDBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFGqni0l6 rtWBG1mgI8uRhX4e60Y3eGSeIm/G9GBFoeUAzFDlT+EUG0ZZG6fNZ1vlUPOGpMgt n25smMcf+O6Yj7RYuuaTWSZEDzqPAPVIgvrT2WSBqF0bI2Dyd1oJYddg8uPuHVTs 4Z3xMPQKq3FfadMJ7sD4baEZrY3Ut5/BRO2pvM8XzM2P4CDwBm3lZYMYqiMORMew J0M/tJNX2Ci4Qh6Eaf1ViyHgwN2a0qlANSyQsry+5bjIgBUnPjRT+AZJRAU4zL3n Wu2YPmbSdgygnhzfeC+3/FMDylQY22dIQAHiytslQRsGI3rdIosWhoD6BlSOy+jU 68gxZKQcRU4cRg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:45:20 2026 by rpki-client