This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft File: 3j4BZ79YLOzkjWxtApqCzeJyqdU.mft (raw, json) Hash identifier: MKX6ba/oup4m44CCDFERER9evz2QrUJIHJeHHaDFuD4= Subject key identifier: 81:3C:90:43:E6:E4:60:3A:28:12:51:37:19:F1:5A:2C:4C:2B:F9:15 Authority key identifier: DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5 Certificate issuer: /CN=de3e0167bf582cece48d6c6d029a82cde272a9d5 Certificate serial: 019BFAD27C4E22B094C5BE4B30ABDA7EE3BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft Manifest number: 177E Signing time: Mon 26 Jan 2026 15:00:56 +0000 Manifest this update: Mon 26 Jan 2026 15:00:56 +0000 Manifest next update: Tue 27 Jan 2026 15:00:56 +0000 Files and hashes: 1: 3j4BZ79YLOzkjWxtApqCzeJyqdU.crl (hash: XAUUYANCohnw+U6Vj4mcEUdhZ5k/ug317DoxhJjAWrY=) 2: RP5c5AhjbUkmDfubYWaFncEBFeU.roa (hash: tROgfSyZEJSTutfORsxHOvucHqOl4aWfT4NXFn6Duak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:d2:7c:4e:22:b0:94:c5:be:4b:30:ab:da:7e:e3:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de3e0167bf582cece48d6c6d029a82cde272a9d5 Validity Not Before: Jan 26 15:00:56 2026 GMT Not After : Jan 27 15:00:56 2026 GMT Subject: CN=813c9043e6e4603a2812513719f15a2c4c2bf915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:83:34:5d:7f:93:6a:6c:b8:76:e6:c5:9a:cb: 4c:7f:0b:be:d4:4d:7c:a1:4f:67:22:e8:7d:26:42: af:55:7f:2d:9f:bb:5f:41:b5:6d:26:6b:33:2c:cc: 85:29:9d:3e:a2:95:14:3f:2c:f9:8a:f7:e0:5e:5c: 13:3e:c5:91:ed:5b:ef:d1:ae:0a:ec:22:61:9f:5c: cc:77:ec:fc:e3:e9:86:32:2c:f1:2f:b5:3e:14:8b: 81:f6:48:d9:c9:06:5a:8c:e8:eb:6b:60:76:90:b0: 2f:02:9d:bc:9d:03:4f:1a:a1:de:1c:84:cc:89:f9: 09:e5:f4:26:b3:8d:88:99:de:ab:a6:54:51:e2:8d: ea:70:5e:a2:5d:fb:20:87:11:6c:9f:6d:96:70:ad: 57:71:be:4d:cb:27:5f:04:9f:ce:b4:e6:a0:a8:26: 56:bc:81:15:f7:38:9e:97:c0:be:31:bf:0f:6b:bf: 72:69:18:bd:2b:e9:a8:7b:dc:21:90:35:ce:5b:c9: ce:fa:8a:2d:1c:1c:c1:15:7c:2e:fe:db:c2:e2:6a: 86:6c:76:81:f5:7e:37:2b:16:45:c2:14:e2:c8:e2: 17:47:36:05:21:af:f8:00:25:66:38:74:b7:88:80: 18:4f:d5:b3:db:3e:1c:28:7f:eb:82:3d:c5:c0:b0: e8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:3C:90:43:E6:E4:60:3A:28:12:51:37:19:F1:5A:2C:4C:2B:F9:15 X509v3 Authority Key Identifier: keyid:DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:5f:10:7c:f8:b0:78:13:00:a9:7c:cb:6d:c4:dd:9d:c6:54: 7f:aa:2e:f5:20:41:15:9d:ac:8b:8f:c9:dd:ee:09:4a:f5:3b: 1b:07:f8:54:b5:b3:45:d9:02:d9:7e:2f:5e:58:88:8f:20:70: 69:1e:43:b8:ea:83:db:c5:ba:db:a6:44:b5:a1:6a:86:1f:d8: cf:57:02:85:55:c7:a3:e1:63:53:b4:a2:c1:4d:b7:c1:82:ce: 96:fb:52:9c:0f:30:0c:ff:99:d7:b2:b3:33:a8:8b:40:63:a4: 29:35:03:e2:51:f4:19:59:0c:e0:69:72:11:81:f2:a0:04:fb: be:78:d2:91:27:cd:ae:1b:10:a3:8e:a6:77:96:4d:fd:7c:f9: 23:ab:6c:3e:ea:f0:fa:2e:c7:62:78:8b:10:2e:a3:15:ea:39: d0:ba:6f:0e:39:fc:29:d6:76:3b:82:0c:f5:d3:eb:79:8d:06: de:73:1a:a9:31:4e:1f:ea:65:c7:9a:b8:63:f7:8c:0e:a8:45: 49:a2:f5:e1:b7:97:fc:69:32:c0:10:0b:2e:ed:fa:b3:c4:6b: fb:ad:4f:ef:93:4d:05:aa:ee:21:d9:3e:2e:ba:6e:bb:0e:b4: 49:79:ad:f9:f3:13:28:70:1f:6a:39:92:30:66:09:f3:9b:81: f7:2e:0e:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv60nxOIrCUxb5LMKvafuO9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlM2UwMTY3YmY1ODJjZWNlNDhkNmM2ZDAyOWE4MmNkZTI3 MmE5ZDUwHhcNMjYwMTI2MTUwMDU2WhcNMjYwMTI3MTUwMDU2WjAzMTEwLwYDVQQD Eyg4MTNjOTA0M2U2ZTQ2MDNhMjgxMjUxMzcxOWYxNWEyYzRjMmJmOTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYM0XX+Tamy4dubFmstMfwu+1E18 oU9nIuh9JkKvVX8tn7tfQbVtJmszLMyFKZ0+opUUPyz5ivfgXlwTPsWR7Vvv0a4K 7CJhn1zMd+z84+mGMizxL7U+FIuB9kjZyQZajOjra2B2kLAvAp28nQNPGqHeHITM ifkJ5fQms42Imd6rplRR4o3qcF6iXfsghxFsn22WcK1Xcb5NyydfBJ/OtOagqCZW vIEV9ziel8C+Mb8Pa79yaRi9K+moe9whkDXOW8nO+ootHBzBFXwu/tvC4mqGbHaB 9X43KxZFwhTiyOIXRzYFIa/4ACVmOHS3iIAYT9Wz2z4cKH/rgj3FwLDopQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIE8kEPm5GA6KBJRNxnxWixMK/kVMB8GA1UdIwQY MBaAFN4+AWe/WCzs5I1sbQKags3icqnVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2o0Qlo3OVlMT3prald4dEFwcUN6ZUp5cWRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS9hNzE1Y2UtNDEwZC00MzkwLThlOGMt OGIyMzc5ZWJhMTNlLzEvM2o0Qlo3OVlMT3prald4dEFwcUN6ZUp5cWRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS9hNzE1Y2UtNDEwZC00MzkwLThlOGMtOGIyMzc5ZWJhMTNl LzEvM2o0Qlo3OVlMT3prald4dEFwcUN6ZUp5cWRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvV8QfPiw eBMAqXzLbcTdncZUf6ou9SBBFZ2si4/J3e4JSvU7Gwf4VLWzRdkC2X4vXliIjyBw aR5DuOqD28W626ZEtaFqhh/Yz1cChVXHo+FjU7SiwU23wYLOlvtSnA8wDP+Z17Kz M6iLQGOkKTUD4lH0GVkM4GlyEYHyoAT7vnjSkSfNrhsQo46md5ZN/Xz5I6tsPurw +i7HYniLEC6jFeo50LpvDjn8KdZ2O4IM9dPreY0G3nMaqTFOH+plx5q4Y/eMDqhF SaL14beX/GkywBALLu36s8Rr+61P75NNBaruIdk+Lrpuuw60SXmt+fMTKHAfajmS MGYJ85uB9y4OSA== -----END CERTIFICATE-----Generated at Mon Jan 26 19:39:12 2026 by rpki-client