This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json) Hash identifier: AWae01GQ8PLEhjRluHz2VBip6k5mJpGXwMPTOJjxpvQ= Subject key identifier: AB:88:33:4A:44:F4:8F:23:E9:CC:FB:04:2D:01:64:0A:AA:CA:B2:91 Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2 Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2 Certificate serial: 019BF574DC0FEFBF98279AF6C3434CE64EF7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft Manifest number: 0BED Signing time: Sun 25 Jan 2026 14:00:34 +0000 Manifest this update: Sun 25 Jan 2026 14:00:34 +0000 Manifest next update: Mon 26 Jan 2026 14:00:34 +0000 Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: lDnDhdEeBE84VypxyF/KwtMOSz4uJ4VjYgO1tF3ZrIU=) 2: EpYfEYO_PBauG2EManfF8FgFl1Q.roa (hash: cXvNIHvNyPlxk30rEJGQL1sdKxLXm0Gvh2LNp2Lvi3Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:74:dc:0f:ef:bf:98:27:9a:f6:c3:43:4c:e6:4e:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2 Validity Not Before: Jan 25 14:00:34 2026 GMT Not After : Jan 26 14:00:34 2026 GMT Subject: CN=ab88334a44f48f23e9ccfb042d01640aaacab291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:77:5a:ce:de:73:48:5c:e3:23:e6:51:e8:50: d8:2d:5c:b8:45:64:ac:74:54:33:36:05:0c:ac:23: d5:1c:f5:11:7c:9f:29:59:1e:13:0a:a9:a2:47:33: c7:fe:77:c2:70:93:fe:99:93:68:77:4a:8a:c2:60: b1:e8:72:b6:e3:5f:9f:99:38:22:55:cf:e5:72:39: ed:99:38:d6:36:49:69:35:01:35:17:0c:6b:12:c5: 0d:0a:5f:0a:12:cc:f5:99:6e:41:7e:42:fa:86:2a: 33:75:b6:b9:eb:94:f5:a6:8e:4c:7a:03:26:9b:9b: a4:0b:58:06:6f:80:7d:f4:a4:a1:8d:ed:72:c9:50: c5:29:6d:86:01:0a:74:7c:3c:3c:0e:fe:8f:8e:4a: 9d:16:66:b4:52:3b:eb:d6:fb:c6:ce:74:1b:15:b6: e7:96:82:48:f2:bc:e7:34:34:3b:e8:47:12:7a:c4: d9:18:96:30:d7:1f:de:c3:46:20:f8:f4:bb:59:01: c5:52:58:91:f8:03:a0:cd:49:b8:2e:aa:e2:ab:f5: ce:c3:7e:91:f8:4c:9e:b6:2f:4e:22:11:15:79:c0: df:30:b9:61:22:dc:d1:1e:27:8b:f8:f2:e9:e2:c5: a5:a3:8c:2b:a5:fe:ce:3b:18:09:e6:e6:5b:63:3b: aa:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:88:33:4A:44:F4:8F:23:E9:CC:FB:04:2D:01:64:0A:AA:CA:B2:91 X509v3 Authority Key Identifier: keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:93:1d:df:27:67:8f:80:5b:c9:82:ec:08:74:29:a1:c6:ad: 25:8f:29:ee:43:5f:30:93:4e:87:17:81:d4:66:ee:fd:68:28: e7:a5:73:68:5c:7e:a1:e4:1c:3c:0a:c7:02:07:dc:e8:9e:1d: d8:8b:36:5b:85:cf:3c:33:83:63:e8:c3:14:fb:70:46:a7:ee: 73:a2:87:2a:12:4e:e4:d8:dd:4e:0b:09:f2:ef:dd:ba:22:5a: 40:2a:75:ab:3d:5b:48:f2:89:d9:dc:48:7d:54:51:58:8e:d2: 2f:5c:a8:f1:5b:37:5e:b7:c4:38:68:38:4b:a5:c9:10:00:c6: f0:26:6c:4e:ac:33:e1:7c:95:77:f4:56:c4:02:39:e9:c3:ae: 7f:fa:bb:37:6e:f6:b2:65:96:89:d7:49:ef:67:77:ba:90:d4: fc:0f:37:19:90:0a:6b:73:04:84:c4:a3:e8:85:b3:15:c3:70: f6:58:f5:50:e6:9c:00:9b:78:3b:21:f4:69:c9:e4:74:00:63: 4f:71:b0:42:c8:ce:f7:d4:13:7b:42:53:eb:6f:c7:6c:02:69: 0d:d1:8e:11:e6:4b:af:f3:11:df:d9:5b:a9:27:3a:94:74:05: 76:62:77:77:96:db:75:19:b8:04:2c:df:01:35:32:a3:ed:c0: 94:ed:37:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1dNwP77+YJ5r2w0NM5k73MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMGI1OWZiNjgxNTFlMjFkYzk5ZDYyZmFmMDM1ODliZTQx ZmJlYTIwHhcNMjYwMTI1MTQwMDM0WhcNMjYwMTI2MTQwMDM0WjAzMTEwLwYDVQQD EyhhYjg4MzM0YTQ0ZjQ4ZjIzZTljY2ZiMDQyZDAxNjQwYWFhY2FiMjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHdazt5zSFzjI+ZR6FDYLVy4RWSs dFQzNgUMrCPVHPURfJ8pWR4TCqmiRzPH/nfCcJP+mZNod0qKwmCx6HK241+fmTgi Vc/lcjntmTjWNklpNQE1FwxrEsUNCl8KEsz1mW5BfkL6hiozdba565T1po5MegMm m5ukC1gGb4B99KShje1yyVDFKW2GAQp0fDw8Dv6PjkqdFma0Ujvr1vvGznQbFbbn loJI8rznNDQ76EcSesTZGJYw1x/ew0Yg+PS7WQHFUliR+AOgzUm4Lqriq/XOw36R +Eyeti9OIhEVecDfMLlhItzRHieL+PLp4sWlo4wrpf7OOxgJ5uZbYzuqEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKuIM0pE9I8j6cz7BC0BZAqqyrKRMB8GA1UdIwQY MBaAFN4LWftoFR4h3JnWL68DWJvkH76iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2d0Wi0yZ1ZIaUhjbWRZdnJ3TlltLVFmdnFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi85YWQ1MDgtYmZjMS00YjhhLWJhZmMt Y2QwMjQ3ODhlZDNjLzEvM2d0Wi0yZ1ZIaUhjbWRZdnJ3TlltLVFmdnFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi85YWQ1MDgtYmZjMS00YjhhLWJhZmMtY2QwMjQ3ODhlZDNj LzEvM2d0Wi0yZ1ZIaUhjbWRZdnJ3TlltLVFmdnFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjpMd3ydn j4BbyYLsCHQpocatJY8p7kNfMJNOhxeB1Gbu/Wgo56VzaFx+oeQcPArHAgfc6J4d 2Is2W4XPPDODY+jDFPtwRqfuc6KHKhJO5NjdTgsJ8u/duiJaQCp1qz1bSPKJ2dxI fVRRWI7SL1yo8Vs3XrfEOGg4S6XJEADG8CZsTqwz4XyVd/RWxAI56cOuf/q7N272 smWWiddJ72d3upDU/A83GZAKa3MEhMSj6IWzFcNw9lj1UOacAJt4OyH0acnkdABj T3GwQsjO99QTe0JT62/HbAJpDdGOEeZLr/MR39lbqSc6lHQFdmJ3d5bbdRm4BCzf ATUyo+3AlO035A== -----END CERTIFICATE-----Generated at Sun Jan 25 16:46:12 2026 by rpki-client