This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft File: 3hgnB8REwxBksYmcWX6e_XNDj5I.mft (raw, json) Hash identifier: 3kO/nYy5My2zQQc9lOg93EZqlykUiUmjnOYyKvnzlnY= Subject key identifier: A4:F8:7C:4B:CD:52:DD:D6:6F:69:5E:CF:DB:0C:91:36:E8:99:09:76 Authority key identifier: DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92 Certificate issuer: /CN=de182707c444c31064b1899c597e9efd73438f92 Certificate serial: 019C42EB004B4E91BF85D504CE2BD5E1E4B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft Manifest number: 0779 Signing time: Mon 09 Feb 2026 15:00:23 +0000 Manifest this update: Mon 09 Feb 2026 15:00:23 +0000 Manifest next update: Tue 10 Feb 2026 15:00:23 +0000 Files and hashes: 1: 3hgnB8REwxBksYmcWX6e_XNDj5I.crl (hash: J0xZ4YFMvvxPz+fbcHCpWSJqTpjvqmS/Z9xb6ZQuJ5w=) 2: _sKUqr_T2WU5wpJt5pENqGxaGNg.roa (hash: 26WyPtt0JWgZh/PV/eTd/0WIUbfzzYa6z8NjLk7cJ+Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:00:4b:4e:91:bf:85:d5:04:ce:2b:d5:e1:e4:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de182707c444c31064b1899c597e9efd73438f92 Validity Not Before: Feb 9 15:00:23 2026 GMT Not After : Feb 10 15:00:23 2026 GMT Subject: CN=a4f87c4bcd52ddd66f695ecfdb0c9136e8990976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:11:51:62:f8:d5:4a:63:3f:ef:73:01:11:0d: 09:72:b0:89:e5:0d:23:a9:8f:14:40:2d:c0:e7:3d: 61:f0:fc:4d:10:b7:dc:ce:28:aa:22:38:b9:bc:4a: 06:88:fa:65:38:46:47:55:66:37:2e:de:82:d0:aa: 93:91:79:be:91:df:13:c7:9c:13:7b:05:b0:4a:5b: a2:4d:62:2e:b4:72:d8:b9:04:6c:86:da:f3:20:05: 3c:59:0d:75:81:39:e0:bf:10:63:5f:a0:d7:e7:34: 6d:9d:3f:cf:43:29:74:38:43:43:57:1d:a5:2f:77: 45:0a:84:4a:5e:b3:a0:e4:c6:5b:13:0a:6d:7c:43: d3:95:cf:02:8f:05:c4:11:f6:a9:e0:fd:85:61:38: 6a:49:56:6e:56:ee:c3:d9:0b:78:13:bb:4f:c3:07: 9b:a5:13:3c:d3:39:b4:a2:bc:1e:2c:8f:44:df:07: d7:15:77:c6:08:b4:34:2b:0d:6f:34:5f:84:5d:ef: dc:df:b5:0b:fb:34:05:39:ee:57:e0:51:ae:e4:9a: 10:9e:77:1a:f5:19:6b:0d:1d:e8:4f:60:00:9e:c1: 1f:dd:70:a0:e4:5f:bf:09:7d:c4:26:3e:a6:bb:ac: f0:ac:d7:e9:6d:ca:09:0f:1a:32:82:40:2b:24:eb: 29:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F8:7C:4B:CD:52:DD:D6:6F:69:5E:CF:DB:0C:91:36:E8:99:09:76 X509v3 Authority Key Identifier: keyid:DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:2c:d7:ae:67:e2:f3:62:cc:9e:7c:3f:25:e0:6e:8c:74:2e: e9:73:8c:24:2b:65:c1:92:62:d3:4a:7e:19:a4:72:20:97:1a: cc:34:be:3c:7c:17:e5:49:2b:b2:3b:07:4f:3a:a1:3e:b7:53: ba:67:4b:97:4f:7a:78:e8:24:81:1f:0d:99:87:3c:a6:b1:0f: 35:33:56:78:3a:2d:fb:a4:27:16:9c:c0:66:68:d9:96:17:c7: c9:ea:70:3f:29:4b:2b:bb:41:90:88:72:f8:dd:7c:f7:ed:46: 37:2a:88:30:3a:56:b3:89:fe:23:0c:85:73:63:85:9a:c8:d6: 72:f9:79:66:8c:56:dd:c6:4b:2a:c5:a2:91:39:30:d3:33:38: d0:16:39:3e:f7:42:09:d6:f7:da:d8:5a:74:9a:d5:ff:2a:0e: a1:83:14:55:6c:05:7d:19:b4:5e:5a:32:c0:7a:36:fd:d1:ff: 3c:09:4a:35:bc:bf:f7:11:02:47:83:2f:4e:61:d1:02:3e:2f: 1d:f8:8e:e4:19:7b:92:9b:4d:2c:36:70:e1:13:27:97:a3:62: 3a:db:dc:df:93:44:23:21:7a:bc:34:2c:5c:42:6e:14:d0:0b: ee:00:ef:c8:4c:e3:2f:b8:58:be:66:c6:a5:87:50:f1:b8:c6: 81:bf:8e:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6wBLTpG/hdUEzivV4eSzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMTgyNzA3YzQ0NGMzMTA2NGIxODk5YzU5N2U5ZWZkNzM0 MzhmOTIwHhcNMjYwMjA5MTUwMDIzWhcNMjYwMjEwMTUwMDIzWjAzMTEwLwYDVQQD EyhhNGY4N2M0YmNkNTJkZGQ2NmY2OTVlY2ZkYjBjOTEzNmU4OTkwOTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtxFRYvjVSmM/73MBEQ0JcrCJ5Q0j qY8UQC3A5z1h8PxNELfcziiqIji5vEoGiPplOEZHVWY3Lt6C0KqTkXm+kd8Tx5wT ewWwSluiTWIutHLYuQRshtrzIAU8WQ11gTngvxBjX6DX5zRtnT/PQyl0OENDVx2l L3dFCoRKXrOg5MZbEwptfEPTlc8CjwXEEfap4P2FYThqSVZuVu7D2Qt4E7tPwweb pRM80zm0orweLI9E3wfXFXfGCLQ0Kw1vNF+EXe/c37UL+zQFOe5X4FGu5JoQnnca 9RlrDR3oT2AAnsEf3XCg5F+/CX3EJj6mu6zwrNfpbcoJDxoygkArJOspfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKT4fEvNUt3Wb2lez9sMkTbomQl2MB8GA1UdIwQY MBaAFN4YJwfERMMQZLGJnFl+nv1zQ4+SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2hnbkI4UkV3eEJrc1ltY1dYNmVfWE5EajVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8zYmYzMDEtZDE4OS00NzVkLTk1ZGMt ZWFhZTNkZThhYjU4LzEvM2hnbkI4UkV3eEJrc1ltY1dYNmVfWE5EajVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi8zYmYzMDEtZDE4OS00NzVkLTk1ZGMtZWFhZTNkZThhYjU4 LzEvM2hnbkI4UkV3eEJrc1ltY1dYNmVfWE5EajVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAISzXrmfi 82LMnnw/JeBujHQu6XOMJCtlwZJi00p+GaRyIJcazDS+PHwX5UkrsjsHTzqhPrdT umdLl096eOgkgR8NmYc8prEPNTNWeDot+6QnFpzAZmjZlhfHyepwPylLK7tBkIhy +N189+1GNyqIMDpWs4n+IwyFc2OFmsjWcvl5ZoxW3cZLKsWikTkw0zM40BY5PvdC Cdb32thadJrV/yoOoYMUVWwFfRm0XloywHo2/dH/PAlKNby/9xECR4MvTmHRAj4v HfiO5Bl7kptNLDZw4RMnl6NiOtvc35NEIyF6vDQsXEJuFNAL7gDvyEzjL7hYvmbG pYdQ8bjGgb+OMw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:33 2026 by rpki-client