This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft File: 3RiOwuSayUWFJFtLh0Whu3oc3GY.mft (raw, json) Hash identifier: UCvXOPxfmhdKtWYiT1UcX41mgzvK+t2f+O27GBFI7wg= Subject key identifier: 75:85:56:38:1A:FA:82:A3:98:5A:1D:02:6E:B0:8B:E3:8F:C5:A2:A1 Authority key identifier: DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66 Certificate issuer: /CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66 Certificate serial: 019BF79A8074CC1E79A5EF96138E5612FBA9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft Manifest number: 0A5B Signing time: Mon 26 Jan 2026 00:00:56 +0000 Manifest this update: Mon 26 Jan 2026 00:00:56 +0000 Manifest next update: Tue 27 Jan 2026 00:00:56 +0000 Files and hashes: 1: 3RiOwuSayUWFJFtLh0Whu3oc3GY.crl (hash: vM/QYepHQQLNe24v8YDSgqMyXouWNbj0pTeGv1hulgk=) 2: OJYwyNovCJmIKZF1nk5Dzxd0RYc.roa (hash: WPn0W+4jICl9OeInrEgUZWegwTFzjRsf+1TWPog3Wy4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:80:74:cc:1e:79:a5:ef:96:13:8e:56:12:fb:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66 Validity Not Before: Jan 26 00:00:56 2026 GMT Not After : Jan 27 00:00:56 2026 GMT Subject: CN=758556381afa82a3985a1d026eb08be38fc5a2a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:dd:08:1e:18:f1:5b:4b:29:49:3a:d5:ce:c2: 56:7b:d6:7f:8b:76:28:ba:b4:82:64:8a:d0:23:e1: b5:41:7d:75:46:a3:c7:37:ec:2b:3c:db:44:85:8a: f8:9a:96:f7:a1:9e:0b:d3:b0:c6:ea:3d:89:9f:31: c1:41:9c:fb:9b:9d:60:02:bf:2a:7a:54:fd:9a:00: ce:b3:96:1a:6b:2b:e5:f8:1a:7d:ca:c7:cf:a5:2c: ea:92:3c:9e:e3:70:da:b8:58:61:a8:1d:1c:57:1f: c4:16:62:2e:3e:df:2a:d5:0d:7d:fe:b9:23:64:b0: e6:bf:5c:7c:d4:09:c6:a5:b0:d8:c3:1a:a5:9d:e0: b9:93:5d:cd:bb:06:1f:63:c0:f2:67:e1:2e:4f:94: 35:7e:cb:a6:e8:7d:e9:12:b1:7a:ea:22:9b:4e:55: 57:9a:6e:8d:f5:3c:03:22:a5:4f:a2:21:c0:03:61: b5:a7:57:33:15:af:e2:d3:7d:25:43:a3:d9:fd:fb: 8d:e0:e4:3e:2d:35:4a:ff:7c:0d:c8:a6:bb:fe:f5: c6:ce:0b:99:9f:a4:b9:e4:7c:a8:8d:64:d3:0b:2b: 19:ba:07:c3:23:cd:ec:8b:3c:94:95:83:a8:3a:43: 08:6b:bc:ea:71:75:f0:df:13:86:ec:7d:1c:3b:09: 4b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:85:56:38:1A:FA:82:A3:98:5A:1D:02:6E:B0:8B:E3:8F:C5:A2:A1 X509v3 Authority Key Identifier: keyid:DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:23:a2:9a:b2:32:2c:27:ad:09:3a:de:59:d3:55:7a:47:99: 86:6f:1a:85:70:aa:10:46:cc:99:c9:af:13:c4:9f:48:8d:8d: 2f:56:17:4b:f5:d7:2d:ad:58:bc:af:25:e5:cf:1c:5c:c5:ad: 81:1f:eb:98:0b:04:77:e4:c2:75:26:e8:25:ee:16:cc:57:ca: 36:e1:d8:db:3b:d5:4f:31:4d:13:9f:f1:4c:77:43:b6:08:da: b5:34:7a:2a:74:b4:5a:c3:6a:b0:b9:97:00:b9:3c:e7:d2:d5: 6e:dd:d4:a8:11:9a:d1:e9:c6:b4:05:0a:0c:81:bc:6b:95:19: f4:2b:c0:27:b3:8a:91:88:83:43:0b:c5:7f:6b:c7:3d:b5:8a: e2:5f:c7:3c:85:47:c4:34:58:20:6c:47:0a:7c:fd:c2:48:62: e0:73:38:0a:c1:5b:41:09:5c:94:20:2c:25:41:5d:ff:ed:db: 8e:d1:f0:87:39:72:08:20:4b:c6:f1:63:48:cb:28:17:68:cf: 7c:ad:04:73:61:83:27:07:2b:fa:a8:05:2c:f6:cc:fe:11:80: 08:b8:62:78:91:96:e2:3d:8e:74:3e:a9:20:f7:8f:28:5d:a2: 34:66:23:ed:ec:52:63:e8:64:76:b5:9b:d7:1f:eb:3f:7f:b3: 1e:1b:57:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3moB0zB55pe+WE45WEvupMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkMTg4ZWMyZTQ5YWM5NDU4NTI0NWI0Yjg3NDVhMWJiN2Ex Y2RjNjYwHhcNMjYwMTI2MDAwMDU2WhcNMjYwMTI3MDAwMDU2WjAzMTEwLwYDVQQD Eyg3NTg1NTYzODFhZmE4MmEzOTg1YTFkMDI2ZWIwOGJlMzhmYzVhMmExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo90IHhjxW0spSTrVzsJWe9Z/i3Yo urSCZIrQI+G1QX11RqPHN+wrPNtEhYr4mpb3oZ4L07DG6j2JnzHBQZz7m51gAr8q elT9mgDOs5Yaayvl+Bp9ysfPpSzqkjye43DauFhhqB0cVx/EFmIuPt8q1Q19/rkj ZLDmv1x81AnGpbDYwxqlneC5k13NuwYfY8DyZ+EuT5Q1fsum6H3pErF66iKbTlVX mm6N9TwDIqVPoiHAA2G1p1czFa/i030lQ6PZ/fuN4OQ+LTVK/3wNyKa7/vXGzguZ n6S55HyojWTTCysZugfDI83sizyUlYOoOkMIa7zqcXXw3xOG7H0cOwlLPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHWFVjga+oKjmFodAm6wi+OPxaKhMB8GA1UdIwQY MBaAFN0YjsLkmslFhSRbS4dFobt6HNxmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9hNDFlZGItOWRmNS00MGY5LTllY2Ut YjU5MTk4YjkxNTVkLzEvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC9hNDFlZGItOWRmNS00MGY5LTllY2UtYjU5MTk4YjkxNTVk LzEvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZCOimrIy LCetCTreWdNVekeZhm8ahXCqEEbMmcmvE8SfSI2NL1YXS/XXLa1YvK8l5c8cXMWt gR/rmAsEd+TCdSboJe4WzFfKNuHY2zvVTzFNE5/xTHdDtgjatTR6KnS0WsNqsLmX ALk859LVbt3UqBGa0enGtAUKDIG8a5UZ9CvAJ7OKkYiDQwvFf2vHPbWK4l/HPIVH xDRYIGxHCnz9wkhi4HM4CsFbQQlclCAsJUFd/+3bjtHwhzlyCCBLxvFjSMsoF2jP fK0Ec2GDJwcr+qgFLPbM/hGACLhieJGW4j2OdD6pIPePKF2iNGYj7exSY+hkdrWb 1x/rP3+zHhtX2A== -----END CERTIFICATE-----Generated at Mon Jan 26 05:37:42 2026 by rpki-client