This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft File: 3EviU3WUInayZECX3D1ah1r7ivE.mft (raw, json) Hash identifier: jCLzM51iig4TyYxnrK9j42G8z+iYGMeO29dmIcRkmkw= Subject key identifier: C7:57:4A:BE:EE:F9:8F:B8:77:5B:54:51:25:B5:B9:A7:5E:E1:A7:5C Authority key identifier: DC:4B:E2:53:75:94:22:76:B2:64:40:97:DC:3D:5A:87:5A:FB:8A:F1 Certificate issuer: /CN=dc4be25375942276b2644097dc3d5a875afb8af1 Certificate serial: 019C4321F12D81F896E1B4718C8E54E8DAA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft Manifest number: 0AC4 Signing time: Mon 09 Feb 2026 16:00:23 +0000 Manifest this update: Mon 09 Feb 2026 16:00:23 +0000 Manifest next update: Tue 10 Feb 2026 16:00:23 +0000 Files and hashes: 1: 3EviU3WUInayZECX3D1ah1r7ivE.crl (hash: iu4a41hpzO69/URqJ9lm1jISNsB+7kMvO/8QjHvEhoU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:f1:2d:81:f8:96:e1:b4:71:8c:8e:54:e8:da:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc4be25375942276b2644097dc3d5a875afb8af1 Validity Not Before: Feb 9 16:00:23 2026 GMT Not After : Feb 10 16:00:23 2026 GMT Subject: CN=c7574abeeef98fb8775b545125b5b9a75ee1a75c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:48:74:67:bc:ba:4a:12:0e:cb:5b:c0:0c:3c: 54:bb:da:5d:f4:58:71:53:ee:70:42:51:cd:49:d2: 43:b9:ff:fb:bb:99:5d:58:21:c3:a9:34:43:65:a7: 75:70:b8:a6:6e:be:02:b6:95:91:80:dc:74:fb:fd: b3:0b:ac:dc:0f:3d:f2:4e:d0:12:a6:a8:fc:d4:39: d7:cc:76:66:50:14:22:38:8b:7a:ba:8a:d4:22:89: de:91:6e:39:a2:c1:4e:00:f9:e6:7b:8d:43:69:f6: ab:7e:df:64:a6:c8:b1:30:15:a5:7e:2e:cf:89:2e: f6:ad:60:00:d9:98:c5:a5:9b:47:9a:56:6a:5f:a1: 82:99:06:25:01:9d:9b:3b:82:b3:09:0e:8c:6f:40: bc:d9:0a:fa:58:52:57:2e:20:22:16:18:c2:d4:15: a3:10:37:bc:15:f5:90:99:23:f1:8f:4a:ce:47:25: c2:ec:42:a1:95:66:df:5a:7d:a3:a4:7a:9b:f1:01: 6f:17:17:58:02:53:0a:75:72:6e:8e:09:dc:ad:ea: d8:9e:2a:fd:0e:16:29:22:ef:15:cc:c6:1e:2f:67: 85:19:fb:2e:37:c4:4d:86:0c:c9:e0:85:1d:9a:0c: a5:92:f8:1f:bd:4f:24:0f:9a:ec:b2:5b:7e:c6:cd: 6b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:57:4A:BE:EE:F9:8F:B8:77:5B:54:51:25:B5:B9:A7:5E:E1:A7:5C X509v3 Authority Key Identifier: keyid:DC:4B:E2:53:75:94:22:76:B2:64:40:97:DC:3D:5A:87:5A:FB:8A:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:50:22:5f:03:39:3d:98:a7:21:54:f9:73:04:6a:2d:27:56: 47:cd:f2:cc:44:2b:4c:7d:fc:51:5c:87:7a:bf:41:98:81:7c: 0b:3c:71:7d:f4:5d:ac:0c:bc:85:be:db:a3:f5:b8:65:e7:9c: 10:a0:6d:98:81:2f:b6:20:11:1e:e2:a5:5a:94:4f:8f:0a:87: 1e:a6:15:29:ce:99:bb:2c:40:ac:3b:02:4d:7c:4c:ed:89:10: 47:02:85:af:a5:dd:29:4f:c1:c1:53:dc:96:24:45:e5:3d:fc: 30:46:27:f6:b6:d8:fb:c9:35:27:7d:ff:f3:97:5a:f1:74:6d: 1a:ff:41:b4:f7:94:30:51:48:62:7b:47:e2:0e:0f:ac:11:ae: dc:18:7d:bf:53:95:c3:a3:6b:54:66:ec:d5:ca:80:c7:e3:d7: 44:53:54:08:f8:9c:02:6a:51:44:4e:a1:30:92:2f:da:9c:d4: 0a:fa:19:38:38:ff:dd:c7:4e:22:1d:76:e8:2c:49:48:bf:c6: 30:c8:57:96:81:69:d2:41:04:69:ff:55:79:f7:97:90:d4:81: 24:c7:44:b7:99:86:c9:c9:02:b6:11:40:7f:2c:5d:b7:6b:cd: c0:ad:a8:a1:8d:4c:9e:7d:b3:4d:b9:36:c8:e1:71:be:2d:8d: 3b:01:68:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIfEtgfiW4bRxjI5U6NqhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNGJlMjUzNzU5NDIyNzZiMjY0NDA5N2RjM2Q1YTg3NWFm YjhhZjEwHhcNMjYwMjA5MTYwMDIzWhcNMjYwMjEwMTYwMDIzWjAzMTEwLwYDVQQD EyhjNzU3NGFiZWVlZjk4ZmI4Nzc1YjU0NTEyNWI1YjlhNzVlZTFhNzVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0h0Z7y6ShIOy1vADDxUu9pd9Fhx U+5wQlHNSdJDuf/7u5ldWCHDqTRDZad1cLimbr4CtpWRgNx0+/2zC6zcDz3yTtAS pqj81DnXzHZmUBQiOIt6uorUIonekW45osFOAPnme41Dafarft9kpsixMBWlfi7P iS72rWAA2ZjFpZtHmlZqX6GCmQYlAZ2bO4KzCQ6Mb0C82Qr6WFJXLiAiFhjC1BWj EDe8FfWQmSPxj0rORyXC7EKhlWbfWn2jpHqb8QFvFxdYAlMKdXJujgncrerYnir9 DhYpIu8VzMYeL2eFGfsuN8RNhgzJ4IUdmgylkvgfvU8kD5rsslt+xs1r+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMdXSr7u+Y+4d1tUUSW1uade4adcMB8GA1UdIwQY MBaAFNxL4lN1lCJ2smRAl9w9Woda+4rxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0V2aVUzV1VJbmF5WkVDWDNEMWFoMXI3aXZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC81M2QxMDAtOTk3Ni00OTRiLWFlMjEt MGI4NTEwMzhhNWRlLzEvM0V2aVUzV1VJbmF5WkVDWDNEMWFoMXI3aXZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC81M2QxMDAtOTk3Ni00OTRiLWFlMjEtMGI4NTEwMzhhNWRl LzEvM0V2aVUzV1VJbmF5WkVDWDNEMWFoMXI3aXZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk1AiXwM5 PZinIVT5cwRqLSdWR83yzEQrTH38UVyHer9BmIF8CzxxffRdrAy8hb7bo/W4Zeec EKBtmIEvtiARHuKlWpRPjwqHHqYVKc6ZuyxArDsCTXxM7YkQRwKFr6XdKU/BwVPc liRF5T38MEYn9rbY+8k1J33/85da8XRtGv9BtPeUMFFIYntH4g4PrBGu3Bh9v1OV w6NrVGbs1cqAx+PXRFNUCPicAmpRRE6hMJIv2pzUCvoZODj/3cdOIh126CxJSL/G MMhXloFp0kEEaf9VefeXkNSBJMdEt5mGyckCthFAfyxdt2vNwK2ooY1Mnn2zTbk2 yOFxvi2NOwFoug== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:50 2026 by rpki-client