This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft File: 3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft (raw, json) Hash identifier: YS4/WcZjKpnNvqPqGstnRv/6JwnA08QUYNmSexfGIYQ= Subject key identifier: FC:79:7E:30:47:2D:AB:1E:F9:BD:3F:E3:8B:18:3A:2F:38:1E:13:77 Authority key identifier: DC:73:BE:38:7A:F5:52:97:0C:F6:2F:69:51:7E:3F:3C:9C:12:D2:F6 Certificate issuer: /CN=dc73be387af552970cf62f69517e3f3c9c12d2f6 Certificate serial: 019C420FDCAEC7075D16503B5B220E6A6133 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft Manifest number: 1111 Signing time: Mon 09 Feb 2026 11:01:01 +0000 Manifest this update: Mon 09 Feb 2026 11:01:01 +0000 Manifest next update: Tue 10 Feb 2026 11:01:01 +0000 Files and hashes: 1: 3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl (hash: 3JhYb4yHH38BXaMZy/mX3vy7rCS8i3U16RzZ/I4uZYw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:dc:ae:c7:07:5d:16:50:3b:5b:22:0e:6a:61:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc73be387af552970cf62f69517e3f3c9c12d2f6 Validity Not Before: Feb 9 11:01:01 2026 GMT Not After : Feb 10 11:01:01 2026 GMT Subject: CN=fc797e30472dab1ef9bd3fe38b183a2f381e1377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:55:b6:89:01:60:e7:69:be:da:d4:f0:33:b8: ec:46:a8:99:67:01:aa:f5:a9:4a:75:aa:ad:4e:ee: d7:35:66:5c:4f:5c:10:1a:d9:ad:dc:42:59:5f:a1: 71:02:ca:9d:04:9c:21:9a:7f:47:42:e6:1d:2e:69: 3d:3d:0a:fe:86:83:a6:e6:55:79:f7:d2:00:e0:63: 7f:41:1c:84:53:53:82:00:11:3d:e6:77:b4:43:a2: b4:55:ad:46:d4:80:a6:ca:86:28:33:a1:68:e2:3a: 82:65:e3:65:5d:9a:f1:d0:b1:03:62:57:8e:ca:b9: ee:22:b8:c9:cb:7a:2e:49:5e:5e:6f:07:ea:f1:81: ea:a3:b2:56:98:38:3e:54:3a:de:20:24:68:37:3f: 46:d0:45:7b:7c:a9:63:a1:30:f9:67:87:72:d2:e8: da:f6:f7:e1:4b:37:fd:99:ea:45:ff:fc:07:cb:5d: 11:d4:34:16:c2:95:59:6e:99:56:0d:6c:70:7e:b5: 0a:37:b7:10:5f:87:12:05:65:59:5d:a1:98:96:cd: bc:d4:c6:92:3c:5a:9a:29:72:2e:73:20:e2:2e:b2: 0e:70:90:2d:53:5e:d1:cc:04:16:15:dc:1e:cf:1d: de:17:76:22:39:8c:44:50:97:50:96:bc:7c:4a:a1: f5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:79:7E:30:47:2D:AB:1E:F9:BD:3F:E3:8B:18:3A:2F:38:1E:13:77 X509v3 Authority Key Identifier: keyid:DC:73:BE:38:7A:F5:52:97:0C:F6:2F:69:51:7E:3F:3C:9C:12:D2:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:75:0e:66:5b:99:07:d1:a9:79:e0:15:ae:0c:07:11:aa:b1: 30:d0:b1:ce:0a:fc:b7:c9:c9:84:5c:b9:fd:ed:62:8b:71:55: 86:40:ef:27:01:8a:34:e6:f0:68:01:6e:2e:08:5e:c4:97:e2: f6:b7:80:85:6a:99:19:0b:24:d1:0b:3a:b3:6c:28:c4:47:a4: 10:f6:2b:62:14:67:07:8d:29:36:6e:60:fc:e9:20:d1:08:1c: 9c:fb:64:85:a8:b0:91:78:77:3c:fc:3a:7a:d1:4b:b1:a3:e2: dc:1f:c9:92:d3:9b:94:6e:14:45:57:8d:74:8c:8f:4c:5e:a5: d6:25:c7:8f:06:50:4f:c5:67:ab:8d:84:67:15:b3:4e:80:0e: 74:a5:5d:36:f1:04:a3:08:91:27:eb:fa:db:e9:2a:7d:91:c0: f9:26:d5:41:be:2f:c5:87:aa:cc:8b:5c:38:19:fa:e6:ea:59: 42:fa:b6:1f:8f:82:b8:bd:09:8e:52:8b:f3:b5:65:10:ef:66: c7:c2:87:61:cb:57:48:aa:95:71:eb:61:bb:15:b0:01:48:a1: 65:80:9e:1a:1f:f9:34:f6:b8:11:5e:e4:1c:9e:b4:13:8a:11: 65:d9:91:32:65:13:83:01:28:6b:33:b0:10:c3:c7:d4:2c:d4: ff:3a:c9:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD9yuxwddFlA7WyIOamEzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNzNiZTM4N2FmNTUyOTcwY2Y2MmY2OTUxN2UzZjNjOWMx MmQyZjYwHhcNMjYwMjA5MTEwMTAxWhcNMjYwMjEwMTEwMTAxWjAzMTEwLwYDVQQD EyhmYzc5N2UzMDQ3MmRhYjFlZjliZDNmZTM4YjE4M2EyZjM4MWUxMzc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyFW2iQFg52m+2tTwM7jsRqiZZwGq 9alKdaqtTu7XNWZcT1wQGtmt3EJZX6FxAsqdBJwhmn9HQuYdLmk9PQr+hoOm5lV5 99IA4GN/QRyEU1OCABE95ne0Q6K0Va1G1ICmyoYoM6Fo4jqCZeNlXZrx0LEDYleO yrnuIrjJy3ouSV5ebwfq8YHqo7JWmDg+VDreICRoNz9G0EV7fKljoTD5Z4dy0uja 9vfhSzf9mepF//wHy10R1DQWwpVZbplWDWxwfrUKN7cQX4cSBWVZXaGYls281MaS PFqaKXIucyDiLrIOcJAtU17RzAQWFdwezx3eF3YiOYxEUJdQlrx8SqH1qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPx5fjBHLase+b0/44sYOi84HhN3MB8GA1UdIwQY MBaAFNxzvjh69VKXDPYvaVF+PzycEtL2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0hPLU9IcjFVcGNNOWk5cFVYNF9QSndTMHZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC81YmJkMzItYTU0MC00NzA4LTk5MjUt YzcxZjE3YWZjNzQ5LzEvM0hPLU9IcjFVcGNNOWk5cFVYNF9QSndTMHZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC81YmJkMzItYTU0MC00NzA4LTk5MjUtYzcxZjE3YWZjNzQ5 LzEvM0hPLU9IcjFVcGNNOWk5cFVYNF9QSndTMHZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOnUOZluZ B9GpeeAVrgwHEaqxMNCxzgr8t8nJhFy5/e1ii3FVhkDvJwGKNObwaAFuLghexJfi 9reAhWqZGQsk0Qs6s2woxEekEPYrYhRnB40pNm5g/Okg0QgcnPtkhaiwkXh3PPw6 etFLsaPi3B/JktOblG4URVeNdIyPTF6l1iXHjwZQT8Vnq42EZxWzToAOdKVdNvEE owiRJ+v62+kqfZHA+SbVQb4vxYeqzItcOBn65upZQvq2H4+CuL0JjlKL87VlEO9m x8KHYctXSKqVcethuxWwAUihZYCeGh/5NPa4EV7kHJ60E4oRZdmRMmUTgwEoazOw EMPH1CzU/zrJzg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:21 2026 by rpki-client