This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft File: 3ciCMsB94s3Llur551FVC6pmxYg.mft (raw, json) Hash identifier: zE3zzF43P1RuRdulxIKFpuxc7LSgS0ENcYrQkN7jDYo= Subject key identifier: 77:E3:2A:DB:21:F0:F2:A4:65:51:77:C8:72:1B:ED:66:C0:2D:18:D3 Authority key identifier: DD:C8:82:32:C0:7D:E2:CD:CB:96:EA:F9:E7:51:55:0B:AA:66:C5:88 Certificate issuer: /CN=ddc88232c07de2cdcb96eaf9e751550baa66c588 Certificate serial: 019C4246625D4C502F4ECD87B40E58F21B7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft Manifest number: 0F72 Signing time: Mon 09 Feb 2026 12:00:34 +0000 Manifest this update: Mon 09 Feb 2026 12:00:34 +0000 Manifest next update: Tue 10 Feb 2026 12:00:34 +0000 Files and hashes: 1: 3ciCMsB94s3Llur551FVC6pmxYg.crl (hash: x0QsyNRUMPQDMo+TLfshPf4infFavyYGF50GU1w+HkU=) 2: Hfq2hHkukqsFqywTjHsioREmNS4.roa (hash: paBdvdH/DYPPTu1rMzb8b23iJRlSlCeY0XMWLizu13w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:62:5d:4c:50:2f:4e:cd:87:b4:0e:58:f2:1b:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ddc88232c07de2cdcb96eaf9e751550baa66c588 Validity Not Before: Feb 9 12:00:34 2026 GMT Not After : Feb 10 12:00:34 2026 GMT Subject: CN=77e32adb21f0f2a4655177c8721bed66c02d18d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:e4:50:7a:6f:8c:dc:e0:7b:6f:d7:3d:4d:f5: f6:57:1c:db:35:bc:18:67:69:61:74:fc:1c:33:53: 94:43:18:32:3c:19:1d:c8:85:aa:1d:28:d3:0e:e7: 6a:17:ad:35:df:5b:90:d4:82:d8:59:25:4f:43:ed: da:de:85:0f:b1:7b:b3:b5:9c:e6:81:88:21:70:b5: ca:2b:1e:a9:9c:b7:07:d0:fb:6d:31:80:b2:c8:80: 17:c7:11:5e:51:6b:c2:5e:b9:44:af:77:f0:4a:1a: 3f:0e:fe:1f:88:87:64:d1:63:63:1c:db:6a:b6:89: c4:50:cb:0e:22:be:43:2a:eb:65:ee:dc:94:4b:70: e5:69:50:54:d0:ad:8e:27:65:ba:f5:63:a5:51:c8: 9c:97:05:90:87:9f:bd:27:93:fe:15:30:7f:8e:ec: 9b:b9:e8:f1:8f:02:ed:10:37:dc:2c:36:e9:4c:c6: 34:b6:d2:e1:60:46:f2:ac:7f:ef:c9:aa:ec:13:55: a8:2a:5e:63:f3:c4:f1:8e:67:20:ca:71:f5:fd:91: a9:39:26:94:e8:5b:f1:67:33:42:88:e3:03:0e:00: 3d:21:74:54:29:05:d1:b1:30:cf:c4:a4:8d:da:67: 63:43:0e:f1:15:a9:86:bd:24:d5:61:4e:c0:75:f2: e6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E3:2A:DB:21:F0:F2:A4:65:51:77:C8:72:1B:ED:66:C0:2D:18:D3 X509v3 Authority Key Identifier: keyid:DD:C8:82:32:C0:7D:E2:CD:CB:96:EA:F9:E7:51:55:0B:AA:66:C5:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:b3:5f:c8:86:f2:d5:85:32:e7:c2:c4:a4:55:c5:18:b0:4a: 4c:5a:e6:d7:4a:a4:08:56:fa:39:ca:f0:20:eb:8d:99:67:40: e0:da:9d:1f:22:d7:55:44:39:d3:df:10:dd:ef:3b:c8:5c:de: 76:a9:f7:a8:0e:6c:f8:60:ce:f8:0c:58:1b:f2:6c:1b:86:8d: 63:fb:10:ec:5e:7a:04:b7:1a:05:20:46:dd:c4:4b:30:07:21: f0:cc:8c:0a:69:ae:ee:4d:19:07:7f:81:7c:b3:8a:51:cf:fc: f9:4e:83:e7:8d:70:35:f4:af:a8:80:41:c8:ed:15:41:69:58: 58:72:08:13:ce:21:16:a8:c9:47:a7:9f:da:c3:f9:f6:86:c6: dd:29:55:b2:17:67:f7:94:df:75:4e:7c:41:c3:2a:a9:7a:1b: ab:b4:2a:13:70:0e:8e:56:18:1c:2a:e2:4e:86:2a:51:22:77: f5:25:10:2c:ed:31:a4:e3:fe:e1:17:10:83:be:bb:38:d6:d6: 06:21:d5:4f:70:93:01:25:73:59:9d:9a:32:6b:e0:40:62:ac: 6e:94:5a:fa:9c:bb:38:f2:9a:7a:a3:da:95:7a:ac:71:47:1c: 94:b8:8e:a7:58:6f:fd:4c:77:3b:a2:64:2d:7b:ce:75:b0:db: fb:37:08:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRmJdTFAvTs2HtA5Y8ht/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkYzg4MjMyYzA3ZGUyY2RjYjk2ZWFmOWU3NTE1NTBiYWE2 NmM1ODgwHhcNMjYwMjA5MTIwMDM0WhcNMjYwMjEwMTIwMDM0WjAzMTEwLwYDVQQD Eyg3N2UzMmFkYjIxZjBmMmE0NjU1MTc3Yzg3MjFiZWQ2NmMwMmQxOGQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5eRQem+M3OB7b9c9TfX2VxzbNbwY Z2lhdPwcM1OUQxgyPBkdyIWqHSjTDudqF60131uQ1ILYWSVPQ+3a3oUPsXuztZzm gYghcLXKKx6pnLcH0PttMYCyyIAXxxFeUWvCXrlEr3fwSho/Dv4fiIdk0WNjHNtq tonEUMsOIr5DKutl7tyUS3DlaVBU0K2OJ2W69WOlUciclwWQh5+9J5P+FTB/juyb uejxjwLtEDfcLDbpTMY0ttLhYEbyrH/vyarsE1WoKl5j88TxjmcgynH1/ZGpOSaU 6FvxZzNCiOMDDgA9IXRUKQXRsTDPxKSN2mdjQw7xFamGvSTVYU7AdfLmTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHfjKtsh8PKkZVF3yHIb7WbALRjTMB8GA1UdIwQY MBaAFN3IgjLAfeLNy5bq+edRVQuqZsWIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2NpQ01zQjk0czNMbHVyNTUxRlZDNnBteFlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8wYzk2ZDQtYzc2MC00YWE2LTg1ZGIt NDJjNzliMDNiNGRmLzEvM2NpQ01zQjk0czNMbHVyNTUxRlZDNnBteFlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC8wYzk2ZDQtYzc2MC00YWE2LTg1ZGItNDJjNzliMDNiNGRm LzEvM2NpQ01zQjk0czNMbHVyNTUxRlZDNnBteFlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASLNfyIby 1YUy58LEpFXFGLBKTFrm10qkCFb6OcrwIOuNmWdA4NqdHyLXVUQ5098Q3e87yFze dqn3qA5s+GDO+AxYG/JsG4aNY/sQ7F56BLcaBSBG3cRLMAch8MyMCmmu7k0ZB3+B fLOKUc/8+U6D541wNfSvqIBByO0VQWlYWHIIE84hFqjJR6ef2sP59obG3SlVshdn 95TfdU58QcMqqXobq7QqE3AOjlYYHCriToYqUSJ39SUQLO0xpOP+4RcQg767ONbW BiHVT3CTASVzWZ2aMmvgQGKsbpRa+py7OPKaeqPalXqscUcclLiOp1hv/Ux3O6Jk LXvOdbDb+zcImA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:51:53 2026 by rpki-client