This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft File: TStBlpVqQxU0D4J9mSoPeikoTD4.mft (raw, json) Hash identifier: 4O0jsidK51fJEtR+QY2byB1NM52sXV3oPVB0eY4jF78= Subject key identifier: 37:E1:92:58:2A:E4:E8:24:7C:2F:57:73:5A:BF:D2:0A:49:4D:7A:38 Authority key identifier: 4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E Certificate issuer: /CN=4d2b4196956a4315340f827d992a0f7a29284c3e Certificate serial: 019C427DC0313CD34D7D98B44188B3CA2F1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft Manifest number: 149F Signing time: Mon 09 Feb 2026 13:01:03 +0000 Manifest this update: Mon 09 Feb 2026 13:01:03 +0000 Manifest next update: Tue 10 Feb 2026 13:01:03 +0000 Files and hashes: 1: TStBlpVqQxU0D4J9mSoPeikoTD4.crl (hash: LRa4avHqA71GHzN6PUeRXJrqKSpHw+xTS6CSWdEpuOo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:c0:31:3c:d3:4d:7d:98:b4:41:88:b3:ca:2f:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d2b4196956a4315340f827d992a0f7a29284c3e Validity Not Before: Feb 9 13:01:03 2026 GMT Not After : Feb 10 13:01:03 2026 GMT Subject: CN=37e192582ae4e8247c2f57735abfd20a494d7a38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e3:31:ef:c2:a6:71:36:7b:35:ce:4f:92:cc: ed:c6:e3:09:11:06:16:8c:5f:00:1f:01:e9:ef:d8: a5:c3:2d:4c:02:77:48:77:97:7d:ab:e7:a1:78:95: 6a:8b:a7:f0:5f:06:38:1b:c0:ed:6a:d7:72:78:84: f7:d9:ce:4c:5c:8f:b7:0f:4f:76:1f:df:ce:3c:32: dd:e9:60:80:5b:2a:68:13:22:63:7c:d6:46:94:1d: 7d:27:39:35:9b:c6:71:bf:19:04:cc:74:1c:84:8e: d5:81:ca:a3:61:cb:99:21:e2:7e:b8:c4:8b:44:46: 89:b7:b5:85:c4:51:17:f9:82:d5:71:88:51:94:cc: e9:3a:73:31:50:ef:e1:f3:65:4f:e8:64:51:73:97: 5e:c8:2c:7f:fb:c4:4c:27:bc:1f:26:0a:2a:14:da: 04:71:59:68:84:92:fd:96:f6:a5:84:bb:93:fe:f2: 00:af:1d:63:ee:c5:41:c6:bb:47:23:bd:ed:98:90: 8a:17:10:ef:30:b1:74:e6:5e:1f:89:54:9c:14:06: f1:3a:92:eb:23:6e:73:fe:a3:7b:b0:ad:28:50:73: 4d:ac:7e:d0:9e:f3:23:39:fe:6d:e0:70:63:a6:ec: 4e:e3:4c:60:fb:76:46:2b:40:01:3b:c1:aa:74:58: eb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:E1:92:58:2A:E4:E8:24:7C:2F:57:73:5A:BF:D2:0A:49:4D:7A:38 X509v3 Authority Key Identifier: keyid:4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:b4:3e:0b:d4:1c:dc:25:c2:3d:c7:f3:25:18:2b:55:70:0d: ed:4e:53:83:75:fc:76:7f:c1:66:68:0f:1f:6f:90:05:5f:8b: 20:67:4e:8d:33:47:19:32:ed:0d:30:1e:a5:1c:65:4b:35:07: 31:c5:66:f8:d2:b7:61:81:bb:8b:f4:72:b6:72:58:43:36:4e: ad:82:b3:f3:bf:a3:64:fe:63:7a:53:b7:95:a2:80:0b:60:83: 51:4e:48:2c:f9:b7:34:9b:07:b4:27:7c:48:b0:78:61:b4:16: 56:f5:4b:fc:4b:41:9e:26:ab:1e:87:3f:0c:eb:4f:90:fb:73: 64:b9:7f:0c:4f:68:8d:f7:2b:cb:07:ba:e7:05:84:fa:90:28: 24:52:32:64:0b:0a:c1:d6:25:67:fc:7f:95:e1:83:ec:7a:c5: f5:c0:fe:2d:d0:98:ac:f7:46:b7:d8:24:b9:26:a0:99:5f:74: 47:f0:eb:6c:66:83:34:3d:51:38:5f:8c:08:75:c2:ee:5d:da: 11:58:07:ff:8b:ca:15:04:a1:30:9b:d9:07:db:31:c8:70:8e: 3b:5e:7a:b2:c4:6b:5a:fb:b8:78:f8:48:11:d4:0b:a8:36:e2: 45:4b:da:12:b8:71:82:08:e8:bf:2a:41:cb:68:99:e9:4d:90: 93:32:58:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfcAxPNNNfZi0QYizyi8fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMmI0MTk2OTU2YTQzMTUzNDBmODI3ZDk5MmEwZjdhMjky ODRjM2UwHhcNMjYwMjA5MTMwMTAzWhcNMjYwMjEwMTMwMTAzWjAzMTEwLwYDVQQD EygzN2UxOTI1ODJhZTRlODI0N2MyZjU3NzM1YWJmZDIwYTQ5NGQ3YTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+Mx78KmcTZ7Nc5PksztxuMJEQYW jF8AHwHp79ilwy1MAndId5d9q+eheJVqi6fwXwY4G8DtatdyeIT32c5MXI+3D092 H9/OPDLd6WCAWypoEyJjfNZGlB19Jzk1m8ZxvxkEzHQchI7VgcqjYcuZIeJ+uMSL REaJt7WFxFEX+YLVcYhRlMzpOnMxUO/h82VP6GRRc5deyCx/+8RMJ7wfJgoqFNoE cVlohJL9lvalhLuT/vIArx1j7sVBxrtHI73tmJCKFxDvMLF05l4fiVScFAbxOpLr I25z/qN7sK0oUHNNrH7QnvMjOf5t4HBjpuxO40xg+3ZGK0ABO8GqdFjrcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDfhklgq5OgkfC9Xc1q/0gpJTXo4MB8GA1UdIwQY MBaAFE0rQZaVakMVNA+CfZkqD3opKEw+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFN0QmxwVnFReFUwRDRKOW1Tb1BlaWtvVEQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8zYzAyYjktMjVjNC00ODhmLWE5NzUt NDU1YTBhNjFmMWVhLzEvVFN0QmxwVnFReFUwRDRKOW1Tb1BlaWtvVEQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy8zYzAyYjktMjVjNC00ODhmLWE5NzUtNDU1YTBhNjFmMWVh LzEvVFN0QmxwVnFReFUwRDRKOW1Tb1BlaWtvVEQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo7Q+C9Qc 3CXCPcfzJRgrVXAN7U5Tg3X8dn/BZmgPH2+QBV+LIGdOjTNHGTLtDTAepRxlSzUH McVm+NK3YYG7i/RytnJYQzZOrYKz87+jZP5jelO3laKAC2CDUU5ILPm3NJsHtCd8 SLB4YbQWVvVL/EtBniarHoc/DOtPkPtzZLl/DE9ojfcrywe65wWE+pAoJFIyZAsK wdYlZ/x/leGD7HrF9cD+LdCYrPdGt9gkuSagmV90R/DrbGaDND1ROF+MCHXC7l3a EVgH/4vKFQShMJvZB9sxyHCOO156ssRrWvu4ePhIEdQLqDbiRUvaErhxggjovypB y2iZ6U2QkzJYVg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:12:57 2026 by rpki-client