This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft File: 3EFBHpPiXV7GUJlWmxtcX63Brj0.mft (raw, json) Hash identifier: Dlm3b6uW2vZsZQJzig25iisDNrLhWwLZOEVwz7jNhr4= Subject key identifier: 1A:78:AE:AA:87:97:A8:F7:9A:15:28:B8:9C:0E:29:4D:D7:CA:43:69 Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d Certificate serial: 019BF4D01187F95D7F2511FFDB2D08F5A7D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft Manifest number: 13B2 Signing time: Sun 25 Jan 2026 11:00:35 +0000 Manifest this update: Sun 25 Jan 2026 11:00:35 +0000 Manifest next update: Mon 26 Jan 2026 11:00:35 +0000 Files and hashes: 1: 2uJAkewiUJwsbNaj2yvunQboIco.roa (hash: FFjpTcabKOY4bvHAqUpVIWDG0dv6yHtpa4jSe9dcbIQ=) 2: 3EFBHpPiXV7GUJlWmxtcX63Brj0.crl (hash: KbQs4Cs2GJZOfCuDmEhZULr5j9mfiQrrhIOR+2g90Ug=) 3: B1STsfdesV5NfTBKRKCVN2ABrCw.roa (hash: NWB6mpqgZNqK5Ki19/Fr7idV+OhlroMe3Jwdlj+J+M0=) 4: VaQhwNUDpB1f377_pgDC7bKIVs8.roa (hash: yIsP2S+y7+H5E1qVaCf/heokAGlt0wDZeCh1+1PijTk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:11:87:f9:5d:7f:25:11:ff:db:2d:08:f5:a7:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d Validity Not Before: Jan 25 11:00:35 2026 GMT Not After : Jan 26 11:00:35 2026 GMT Subject: CN=1a78aeaa8797a8f79a1528b89c0e294dd7ca4369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b4:65:34:5a:4e:ae:ea:0b:a8:9f:19:4a:47: 92:b9:c5:fb:62:8e:7f:3f:2d:f6:25:1c:d4:44:f7: 1a:ed:2b:98:db:68:f8:b4:c5:f1:df:b5:a2:7d:64: 9b:77:7a:0a:ef:0c:3a:07:1a:34:d0:33:c5:11:3a: b6:34:8d:81:cb:75:c0:2c:62:2f:60:c1:c7:2a:b5: 69:3b:6a:e2:2b:28:cc:0e:2a:69:ca:7d:5f:8c:77: b4:0d:35:9a:94:16:88:0e:81:ac:68:3e:98:90:e6: 61:94:ac:96:c6:d5:69:90:e7:3d:15:03:f8:ee:6e: ff:f9:4b:74:bd:eb:1c:e2:b2:45:fb:0d:99:72:eb: 75:d2:fc:2e:d9:41:ba:5d:8f:2a:40:3c:4a:45:86: 4d:65:15:ef:af:0d:3c:15:9a:e4:38:9e:54:c1:c0: ac:06:14:aa:cd:7d:87:bf:c0:36:c2:d7:86:67:93: 8d:7c:f2:b9:22:b5:82:7f:4b:2f:9c:3c:b6:a6:f8: ba:de:71:a8:9b:e4:b4:6a:5e:88:8b:8b:8c:d4:ab: ac:ac:54:b5:81:e2:11:49:35:b1:de:4f:69:3f:57: 20:08:67:eb:63:ae:2b:3a:74:a5:31:1a:a0:d8:54: 3c:53:e7:86:0d:13:02:3a:54:18:af:b6:b8:41:b3: 0e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:78:AE:AA:87:97:A8:F7:9A:15:28:B8:9C:0E:29:4D:D7:CA:43:69 X509v3 Authority Key Identifier: keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:4b:7f:d1:db:ff:db:10:6c:a5:60:5d:78:90:11:ef:75:f8: 4c:d7:00:ed:3e:b8:83:18:5b:e5:b8:4e:0c:f7:d2:64:8d:45: e6:d3:67:92:2c:aa:07:14:d1:1f:f2:0f:73:2e:d1:e3:39:ee: 7c:13:35:a0:54:71:46:49:b2:ee:3d:7a:32:3f:91:49:50:65: b2:b0:9e:99:d9:87:bb:e9:0b:4c:cb:34:cf:00:ef:1a:09:8c: 14:76:d8:be:ea:2d:d7:b1:42:14:ba:0f:67:6f:55:c8:0b:a8: 4b:e0:1f:6f:90:74:f7:77:06:15:84:8e:e7:4b:df:44:ec:0c: 49:00:c7:a8:e3:82:3e:61:d6:36:02:50:ff:65:96:d8:57:a1: 56:fc:03:09:c7:79:9b:ba:a1:cf:23:cb:ef:a0:1e:6f:a1:59: 0d:51:07:d5:04:1b:ad:55:02:b3:b9:0a:16:04:7c:ae:bc:9a: 52:4b:5f:05:41:22:39:af:a3:50:3e:48:4e:b3:4c:16:18:61: 9a:f3:ab:7d:d2:87:cd:d5:b3:2b:ae:b2:ca:1a:96:d3:ad:47: 48:c0:6f:4b:bb:67:17:f9:aa:ce:9a:dc:eb:5a:f1:e4:3f:4e: dc:f9:96:39:91:10:f4:a9:cb:93:59:29:b6:11:51:e2:c1:3a: f0:b8:be:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00BGH+V1/JRH/2y0I9afTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNDE0MTFlOTNlMjVkNWVjNjUwOTk1NjliMWI1YzVmYWRj MWFlM2QwHhcNMjYwMTI1MTEwMDM1WhcNMjYwMTI2MTEwMDM1WjAzMTEwLwYDVQQD EygxYTc4YWVhYTg3OTdhOGY3OWExNTI4Yjg5YzBlMjk0ZGQ3Y2E0MzY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7RlNFpOruoLqJ8ZSkeSucX7Yo5/ Py32JRzURPca7SuY22j4tMXx37WifWSbd3oK7ww6Bxo00DPFETq2NI2By3XALGIv YMHHKrVpO2riKyjMDippyn1fjHe0DTWalBaIDoGsaD6YkOZhlKyWxtVpkOc9FQP4 7m7/+Ut0vesc4rJF+w2Zcut10vwu2UG6XY8qQDxKRYZNZRXvrw08FZrkOJ5UwcCs BhSqzX2Hv8A2wteGZ5ONfPK5IrWCf0svnDy2pvi63nGom+S0al6Ii4uM1KusrFS1 geIRSTWx3k9pP1cgCGfrY64rOnSlMRqg2FQ8U+eGDRMCOlQYr7a4QbMOhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBp4rqqHl6j3mhUouJwOKU3XykNpMB8GA1UdIwQY MBaAFNxBQR6T4l1exlCZVpsbXF+twa49MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0VGQkhwUGlYVjdHVUpsV214dGNYNjNCcmowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8zZDQ3MzEtOGNmMy00MzI3LWFlNmEt NTEzODdkMTYwYmE5LzEvM0VGQkhwUGlYVjdHVUpsV214dGNYNjNCcmowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC8zZDQ3MzEtOGNmMy00MzI3LWFlNmEtNTEzODdkMTYwYmE5 LzEvM0VGQkhwUGlYVjdHVUpsV214dGNYNjNCcmowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUkt/0dv/ 2xBspWBdeJAR73X4TNcA7T64gxhb5bhODPfSZI1F5tNnkiyqBxTRH/IPcy7R4znu fBM1oFRxRkmy7j16Mj+RSVBlsrCemdmHu+kLTMs0zwDvGgmMFHbYvuot17FCFLoP Z29VyAuoS+Afb5B093cGFYSO50vfROwMSQDHqOOCPmHWNgJQ/2WW2FehVvwDCcd5 m7qhzyPL76Aeb6FZDVEH1QQbrVUCs7kKFgR8rryaUktfBUEiOa+jUD5ITrNMFhhh mvOrfdKHzdWzK66yyhqW061HSMBvS7tnF/mqzprc61rx5D9O3PmWOZEQ9KnLk1kp thFR4sE68Li+3g== -----END CERTIFICATE-----Generated at Sun Jan 25 19:24:08 2026 by rpki-client