This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft File: 3PhcNsaW1dssu0j9Q-ghc37jQic.mft (raw, json) Hash identifier: HGBlITaT2ldkt1o+7QCW5mU9c1oWQvIKK9gR3GJ1SF0= Subject key identifier: 15:FE:6B:C4:78:6E:6A:AD:92:F2:8E:CA:CD:79:D8:C1:F2:20:7E:E7 Authority key identifier: DC:F8:5C:36:C6:96:D5:DB:2C:BB:48:FD:43:E8:21:73:7E:E3:42:27 Certificate issuer: /CN=dcf85c36c696d5db2cbb48fd43e821737ee34227 Certificate serial: 019C42462F096FB5AFAF1BEEF2B5AEA57C12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft Manifest number: 124A Signing time: Mon 09 Feb 2026 12:00:21 +0000 Manifest this update: Mon 09 Feb 2026 12:00:21 +0000 Manifest next update: Tue 10 Feb 2026 12:00:21 +0000 Files and hashes: 1: 3PhcNsaW1dssu0j9Q-ghc37jQic.crl (hash: Vf9IQyRRNRP/sfXtYjPStXNRCqK4mjrBEGhb7AAMKLo=) 2: aRFa0aicATO9EZ84Sd0rRZqpUDM.roa (hash: 3/X7mlyrk9jnsPYw8nohsn6KsOPiCxOy8zcW+IBYz8s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:2f:09:6f:b5:af:af:1b:ee:f2:b5:ae:a5:7c:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcf85c36c696d5db2cbb48fd43e821737ee34227 Validity Not Before: Feb 9 12:00:21 2026 GMT Not After : Feb 10 12:00:21 2026 GMT Subject: CN=15fe6bc4786e6aad92f28ecacd79d8c1f2207ee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:da:10:15:a3:39:b8:e1:29:76:6b:ec:5b:db: 24:50:25:8f:b1:23:6a:1e:d0:4f:7a:22:d0:1b:0a: 62:f5:d1:5f:98:ec:a4:22:31:db:c4:c3:12:19:9a: 04:a5:4a:4a:10:a1:b9:28:a5:12:26:6e:d3:66:a1: f8:b4:16:d4:27:a3:9e:d3:0e:db:62:cb:a2:e4:33: 61:16:27:20:ad:b4:ca:ac:40:ae:da:75:e0:93:83: 7f:ca:02:3b:f6:7f:66:a9:1c:5a:cc:c1:73:55:9d: d3:7a:a7:8a:40:2a:6e:5a:be:97:62:09:67:8b:ce: 3f:71:f9:19:a4:da:16:78:f8:de:96:16:ca:c1:9a: d9:8d:96:97:50:4d:5b:cc:c8:a7:86:40:ec:bd:81: fa:cb:0e:cf:bd:3b:74:77:24:0f:56:04:ce:f9:fb: fd:c1:13:56:17:e5:ad:d5:5a:ba:5a:d2:ce:b9:43: e5:4c:db:8c:1d:bb:eb:d7:a9:17:57:5d:66:70:93: 9c:68:1a:cd:2d:d7:ac:20:56:ba:42:75:24:f2:a3: d0:c4:37:0f:64:25:57:b5:e0:f0:42:f6:70:be:24: 66:bd:ee:37:9d:d5:f1:86:0f:aa:d1:12:54:de:73: a0:7f:ed:e8:f2:25:d7:b0:89:08:2d:ec:cb:f7:b5: 35:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:FE:6B:C4:78:6E:6A:AD:92:F2:8E:CA:CD:79:D8:C1:F2:20:7E:E7 X509v3 Authority Key Identifier: keyid:DC:F8:5C:36:C6:96:D5:DB:2C:BB:48:FD:43:E8:21:73:7E:E3:42:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:f6:a5:4d:7c:af:3e:9e:63:af:2e:9a:fe:af:11:70:c6:86: 63:fd:60:ee:46:f1:58:ed:9d:91:e4:ad:23:e4:d3:fc:84:ed: 2b:17:91:9c:b2:ac:07:35:b9:8f:98:1b:65:ef:c6:94:1d:ae: 4f:36:7f:63:5d:81:52:c7:6d:45:01:35:9f:9c:b5:2f:36:d0: 74:b2:ba:d4:79:ce:f4:36:df:ed:e9:11:d2:d4:9c:7b:81:25: ab:6d:1c:49:11:2e:eb:f9:b6:ad:ed:5a:94:c5:62:28:6a:b2: 15:9a:2f:60:13:88:15:87:84:b1:a3:fa:03:e9:15:d0:dd:8b: e9:6a:8c:0f:b4:61:cb:93:2e:00:7b:01:73:d3:ec:2d:4a:81: 7f:1c:c5:d3:d2:99:cd:e2:2d:3e:79:43:5a:a4:ea:7a:68:6c: 79:5a:75:8a:d1:e7:1e:20:27:3c:c7:9f:c9:11:ab:9f:6d:3e: 2e:47:ab:a4:af:b9:0f:da:2e:aa:86:6e:8f:70:22:e3:6f:ca: f6:21:f9:01:20:50:e7:69:b0:df:fe:d8:9a:e8:26:c4:cc:cb: 40:51:a0:07:8e:89:3f:08:e7:54:c7:83:d9:ba:15:ef:62:cc: 2c:e1:9a:8f:f0:ae:ae:57:87:49:62:7d:38:6a:44:e9:7f:bb: ee:0a:9e:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRi8Jb7Wvrxvu8rWupXwSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZjg1YzM2YzY5NmQ1ZGIyY2JiNDhmZDQzZTgyMTczN2Vl MzQyMjcwHhcNMjYwMjA5MTIwMDIxWhcNMjYwMjEwMTIwMDIxWjAzMTEwLwYDVQQD EygxNWZlNmJjNDc4NmU2YWFkOTJmMjhlY2FjZDc5ZDhjMWYyMjA3ZWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9oQFaM5uOEpdmvsW9skUCWPsSNq HtBPeiLQGwpi9dFfmOykIjHbxMMSGZoEpUpKEKG5KKUSJm7TZqH4tBbUJ6Oe0w7b Ysui5DNhFicgrbTKrECu2nXgk4N/ygI79n9mqRxazMFzVZ3TeqeKQCpuWr6XYgln i84/cfkZpNoWePjelhbKwZrZjZaXUE1bzMinhkDsvYH6yw7PvTt0dyQPVgTO+fv9 wRNWF+Wt1Vq6WtLOuUPlTNuMHbvr16kXV11mcJOcaBrNLdesIFa6QnUk8qPQxDcP ZCVXteDwQvZwviRmve43ndXxhg+q0RJU3nOgf+3o8iXXsIkILezL97U15QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBX+a8R4bmqtkvKOys152MHyIH7nMB8GA1UdIwQY MBaAFNz4XDbGltXbLLtI/UPoIXN+40InMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1BoY05zYVcxZHNzdTBqOVEtZ2hjMzdqUWljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9jZmJjNjItNWQ1NC00MzI3LWIwNzIt MGY1MmY4NjcxNzhkLzEvM1BoY05zYVcxZHNzdTBqOVEtZ2hjMzdqUWljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS9jZmJjNjItNWQ1NC00MzI3LWIwNzItMGY1MmY4NjcxNzhk LzEvM1BoY05zYVcxZHNzdTBqOVEtZ2hjMzdqUWljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVvalTXyv Pp5jry6a/q8RcMaGY/1g7kbxWO2dkeStI+TT/ITtKxeRnLKsBzW5j5gbZe/GlB2u TzZ/Y12BUsdtRQE1n5y1LzbQdLK61HnO9Dbf7ekR0tSce4Elq20cSREu6/m2re1a lMViKGqyFZovYBOIFYeEsaP6A+kV0N2L6WqMD7Rhy5MuAHsBc9PsLUqBfxzF09KZ zeItPnlDWqTqemhseVp1itHnHiAnPMefyRGrn20+LkerpK+5D9ouqoZuj3Ai42/K 9iH5ASBQ52mw3/7YmugmxMzLQFGgB46JPwjnVMeD2boV72LMLOGaj/CurleHSWJ9 OGpE6X+77gqewg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:27 2026 by rpki-client