This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft File: 3f20crHtWewvNw8g-rSHlDnFMY8.mft (raw, json) Hash identifier: z/ojY1qzdTPgrFFz77rmMuK8nqfDqKG89wt8FuMZ26U= Subject key identifier: ED:B4:4D:C7:55:C6:3E:E4:87:3F:2E:D4:28:C2:93:DE:E4:17:A1:0E Authority key identifier: DD:FD:B4:72:B1:ED:59:EC:2F:37:0F:20:FA:B4:87:94:39:C5:31:8F Certificate issuer: /CN=ddfdb472b1ed59ec2f370f20fab4879439c5318f Certificate serial: 019C2DE49820839F432DC586B87C6FD5F38C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft Manifest number: 1D Signing time: Thu 05 Feb 2026 13:01:21 +0000 Manifest this update: Thu 05 Feb 2026 13:01:21 +0000 Manifest next update: Fri 06 Feb 2026 13:01:21 +0000 Files and hashes: 1: 3f20crHtWewvNw8g-rSHlDnFMY8.crl (hash: HI+PD4BE+6sxd1LiGwOfLfp0plZSmpaJlWsvd7Y43SM=) 2: ZMQkud9K3mvXdpjh-yoqav-Fm2A.roa (hash: rezLl6nocyRRaT4FpZnJ5CHwHhiv5ot72qwHgOZEFQY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 12:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:2d:e4:98:20:83:9f:43:2d:c5:86:b8:7c:6f:d5:f3:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ddfdb472b1ed59ec2f370f20fab4879439c5318f Validity Not Before: Feb 5 13:01:21 2026 GMT Not After : Feb 6 13:01:21 2026 GMT Subject: CN=edb44dc755c63ee4873f2ed428c293dee417a10e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f9:19:6a:ea:15:d5:46:e8:8d:67:05:75:29: 42:43:a1:f9:c3:6d:c1:ef:2e:c7:3e:4f:49:19:15: 64:e0:27:1c:c8:93:91:b7:36:5f:c6:10:fa:08:a9: 43:07:22:b0:42:12:c3:6c:84:7a:dc:0a:4c:62:a6: 52:1c:90:dd:a8:3c:d5:1b:dd:a1:7e:d8:70:d4:05: 50:fb:f8:f7:e5:ad:d9:4d:8e:8e:6d:b4:40:bb:0e: af:a5:a9:9a:aa:c4:d7:91:34:d9:7a:fb:a4:e4:3c: e2:65:95:ab:ec:17:b8:c0:0a:97:84:21:08:5f:88: 85:01:61:68:61:37:86:2a:61:16:ab:02:50:bb:56: 67:7f:2b:3c:ae:df:53:d2:91:2d:a1:aa:63:01:cb: 4e:36:6c:05:b8:00:45:36:02:8b:71:d3:15:64:5d: 8a:cf:e0:0b:3f:48:77:70:9b:c0:dc:82:2d:be:e4: 93:35:b9:c9:93:91:fe:db:96:bd:1b:21:b0:c0:0d: 78:46:5b:7b:76:da:0f:f8:2b:0e:07:bf:91:44:31: d4:a9:b2:22:13:25:9f:80:c2:74:10:6c:5e:f6:6a: a2:6c:43:82:25:a2:63:99:c1:3c:c8:65:28:b6:b0: 9f:90:5d:ca:5a:c9:77:7b:1b:20:4d:5d:ea:57:ab: 4b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B4:4D:C7:55:C6:3E:E4:87:3F:2E:D4:28:C2:93:DE:E4:17:A1:0E X509v3 Authority Key Identifier: keyid:DD:FD:B4:72:B1:ED:59:EC:2F:37:0F:20:FA:B4:87:94:39:C5:31:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:69:8b:32:d1:38:30:2f:9a:c3:ba:ef:4c:9f:e6:a2:75:0b: 12:7f:ce:2b:d2:58:d4:da:0d:ef:0d:81:8b:62:54:20:7b:3d: b6:f3:5e:3c:7c:b3:c6:ca:3c:31:1d:ae:93:6f:e6:f8:01:31: 78:c5:c5:22:89:48:d3:90:53:d1:3f:af:8e:07:d1:e0:71:cb: 08:27:26:02:e2:c0:11:0e:8f:d9:cf:67:d2:36:cb:fa:07:12: 34:f2:d8:0d:b5:98:5d:d7:83:09:0b:a6:17:17:c3:f7:b5:b9: fd:26:9d:2e:47:e1:cd:b4:0c:c2:95:da:cf:58:77:b1:a2:7a: a2:cc:2a:e5:71:bb:7f:7f:71:32:1d:d5:4a:5a:64:5d:15:29: 3d:e8:19:3d:20:5c:4a:22:ef:44:40:14:3f:7c:43:d3:1d:eb: 06:a4:54:fa:fc:0d:0b:e0:14:84:69:fe:ab:67:74:8e:e4:11: 47:4e:c8:cf:d1:07:03:80:b5:4d:a7:64:d3:94:bc:d1:9c:1a: 43:9d:7a:c6:3a:ec:aa:04:4f:4c:81:32:04:17:c6:96:2a:9f: 79:82:3f:2a:ea:9a:ce:0f:43:4b:41:6e:8c:7b:d6:b0:ed:de: d1:d6:5f:05:82:2f:73:19:b7:5b:b1:af:5e:69:5f:87:ef:33: 68:9c:0a:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwt5Jggg59DLcWGuHxv1fOMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkZmRiNDcyYjFlZDU5ZWMyZjM3MGYyMGZhYjQ4Nzk0Mzlj NTMxOGYwHhcNMjYwMjA1MTMwMTIxWhcNMjYwMjA2MTMwMTIxWjAzMTEwLwYDVQQD EyhlZGI0NGRjNzU1YzYzZWU0ODczZjJlZDQyOGMyOTNkZWU0MTdhMTBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvkZauoV1UbojWcFdSlCQ6H5w23B 7y7HPk9JGRVk4CccyJORtzZfxhD6CKlDByKwQhLDbIR63ApMYqZSHJDdqDzVG92h fthw1AVQ+/j35a3ZTY6ObbRAuw6vpamaqsTXkTTZevuk5DziZZWr7Be4wAqXhCEI X4iFAWFoYTeGKmEWqwJQu1Znfys8rt9T0pEtoapjActONmwFuABFNgKLcdMVZF2K z+ALP0h3cJvA3IItvuSTNbnJk5H+25a9GyGwwA14Rlt7dtoP+CsOB7+RRDHUqbIi EyWfgMJ0EGxe9mqibEOCJaJjmcE8yGUotrCfkF3KWsl3exsgTV3qV6tLhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO20TcdVxj7khz8u1CjCk97kF6EOMB8GA1UdIwQY MBaAFN39tHKx7VnsLzcPIPq0h5Q5xTGPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2YyMGNySHRXZXd2Tnc4Zy1yU0hsRG5GTVk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC84ZDQxMDctM2M1OS00NGQ0LTgxNmYt M2E0ZThiOWRhNWJlLzEvM2YyMGNySHRXZXd2Tnc4Zy1yU0hsRG5GTVk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC84ZDQxMDctM2M1OS00NGQ0LTgxNmYtM2E0ZThiOWRhNWJl LzEvM2YyMGNySHRXZXd2Tnc4Zy1yU0hsRG5GTVk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANmmLMtE4 MC+aw7rvTJ/monULEn/OK9JY1NoN7w2Bi2JUIHs9tvNePHyzxso8MR2uk2/m+AEx eMXFIolI05BT0T+vjgfR4HHLCCcmAuLAEQ6P2c9n0jbL+gcSNPLYDbWYXdeDCQum FxfD97W5/SadLkfhzbQMwpXaz1h3saJ6oswq5XG7f39xMh3VSlpkXRUpPegZPSBc SiLvREAUP3xD0x3rBqRU+vwNC+AUhGn+q2d0juQRR07Iz9EHA4C1Tadk05S80Zwa Q516xjrsqgRPTIEyBBfGliqfeYI/Kuqazg9DS0FujHvWsO3e0dZfBYIvcxm3W7Gv Xmlfh+8zaJwKww== -----END CERTIFICATE-----Generated at Thu Feb 5 19:23:44 2026 by rpki-client