This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/72c6f3-9913-41be-a178-5f3eb7b21e90/1/tLV4tlwYGG0eanU5kSs06QALCMw.mft File: tLV4tlwYGG0eanU5kSs06QALCMw.mft (raw, json) Hash identifier: ffCX+CzSauIcZ/eHolCXLFl14li0sMp1sRrth+I8iUM= Subject key identifier: A2:65:AC:35:AB:AA:14:8C:31:B8:D3:C2:29:F3:25:F7:23:8A:83:1F Authority key identifier: B4:B5:78:B6:5C:18:18:6D:1E:6A:75:39:91:2B:34:E9:00:0B:08:CC Certificate issuer: /CN=b4b578b65c18186d1e6a7539912b34e9000b08cc Certificate serial: 019C42B48E8406A29024234B16B42BE02B10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLV4tlwYGG0eanU5kSs06QALCMw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/72c6f3-9913-41be-a178-5f3eb7b21e90/1/tLV4tlwYGG0eanU5kSs06QALCMw.mft Manifest number: 3F Signing time: Mon 09 Feb 2026 14:00:55 +0000 Manifest this update: Mon 09 Feb 2026 14:00:55 +0000 Manifest next update: Tue 10 Feb 2026 14:00:55 +0000 Files and hashes: 1: tLV4tlwYGG0eanU5kSs06QALCMw.crl (hash: mD3euT4w08sSoJ6wKGyM3g6ET8cLq/CAD6peY02/Fa4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/72c6f3-9913-41be-a178-5f3eb7b21e90/1/tLV4tlwYGG0eanU5kSs06QALCMw.crl rsync://rpki.ripe.net/repository/DEFAULT/23/72c6f3-9913-41be-a178-5f3eb7b21e90/1/tLV4tlwYGG0eanU5kSs06QALCMw.mft rsync://rpki.ripe.net/repository/DEFAULT/tLV4tlwYGG0eanU5kSs06QALCMw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:8e:84:06:a2:90:24:23:4b:16:b4:2b:e0:2b:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4b578b65c18186d1e6a7539912b34e9000b08cc Validity Not Before: Feb 9 14:00:55 2026 GMT Not After : Feb 10 14:00:55 2026 GMT Subject: CN=a265ac35abaa148c31b8d3c229f325f7238a831f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:82:62:5a:8e:9b:f4:6c:ba:ec:d2:69:1e:2f: ae:10:62:41:bb:39:5a:f3:d6:49:f5:a2:df:1b:ff: e4:c9:d4:66:26:04:65:10:20:87:8d:79:da:62:23: ec:54:4f:8d:12:92:2b:e4:dd:a0:9b:37:b8:66:2c: a6:06:7f:a8:c0:31:aa:b6:27:12:28:a6:5d:a8:7b: 1e:45:36:48:33:fe:9a:e3:8e:98:74:f7:d7:49:fa: 3f:c2:cd:dd:9a:2e:7b:0e:ec:43:f2:89:c4:e5:83: 45:04:51:fd:e7:f7:f3:99:da:3e:29:2e:48:a8:3b: 01:ea:4c:4e:52:34:59:1a:b1:f8:cf:d7:d8:12:41: dc:c1:5c:0f:d6:9f:12:04:ef:0d:a5:c0:c9:53:fc: 81:6d:3b:5e:88:d6:69:a2:3e:09:f5:b0:2c:7b:99: e0:17:42:bc:68:74:66:d0:fa:1f:e8:db:11:34:28: 80:f1:f8:b2:a0:82:9c:20:d6:12:d7:89:d0:ea:e1: 26:da:24:28:5c:ba:1d:e0:b7:c8:db:1b:e8:41:ee: 49:bd:8d:db:f1:cd:30:a7:ce:79:79:04:f6:ab:13: 7a:a2:c6:dd:2a:81:8d:0c:5e:57:c2:35:32:2a:a9: 55:e3:b6:aa:86:7b:2d:82:3f:be:e7:62:79:30:4f: aa:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:65:AC:35:AB:AA:14:8C:31:B8:D3:C2:29:F3:25:F7:23:8A:83:1F X509v3 Authority Key Identifier: keyid:B4:B5:78:B6:5C:18:18:6D:1E:6A:75:39:91:2B:34:E9:00:0B:08:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLV4tlwYGG0eanU5kSs06QALCMw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/72c6f3-9913-41be-a178-5f3eb7b21e90/1/tLV4tlwYGG0eanU5kSs06QALCMw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/72c6f3-9913-41be-a178-5f3eb7b21e90/1/tLV4tlwYGG0eanU5kSs06QALCMw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:fc:ee:9d:ff:db:3a:b3:0d:2e:54:59:f6:33:63:11:13:30: 79:2c:dc:0e:7d:c3:6b:a0:af:d2:52:9e:20:b5:a5:e0:ce:da: be:a8:87:59:d2:15:5f:5b:a6:b2:e6:93:3c:c0:54:40:35:bb: 76:a7:1d:3d:87:84:7b:7c:63:4f:dd:c2:74:91:82:1b:bb:48: 0e:93:6d:33:6a:05:f6:f3:ad:db:66:ae:cf:7e:a3:c3:62:7d: 03:93:ac:60:fb:d9:2a:03:c7:3d:18:66:86:de:e7:bb:f4:08: 5c:78:95:87:47:b8:04:5b:9b:9e:6a:5f:74:de:c7:08:95:a8: 54:05:88:83:22:3a:be:05:6f:93:09:75:d4:dc:72:8f:1a:31: d0:6d:00:2e:a8:e9:df:d4:b7:d2:d9:1b:9b:63:46:0f:a1:ea: 4f:96:ae:08:8e:f8:3c:99:9b:89:fc:34:58:38:76:c1:38:cb: 96:99:da:55:7c:48:8d:b6:9b:ef:e8:e2:51:cb:fe:9f:c8:dc: 2b:6d:4c:c1:30:70:08:16:70:09:11:91:fb:10:17:86:b4:3a: c5:67:61:3f:38:97:9e:37:4e:ed:b4:db:1c:21:5c:ac:46:5f: 30:eb:23:4a:ff:18:0a:5c:9a:8a:4b:3f:63:4b:ae:43:f7:86: ac:cf:d3:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtI6EBqKQJCNLFrQr4CsQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YjU3OGI2NWMxODE4NmQxZTZhNzUzOTkxMmIzNGU5MDAw YjA4Y2MwHhcNMjYwMjA5MTQwMDU1WhcNMjYwMjEwMTQwMDU1WjAzMTEwLwYDVQQD EyhhMjY1YWMzNWFiYWExNDhjMzFiOGQzYzIyOWYzMjVmNzIzOGE4MzFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYJiWo6b9Gy67NJpHi+uEGJBuzla 89ZJ9aLfG//kydRmJgRlECCHjXnaYiPsVE+NEpIr5N2gmze4ZiymBn+owDGqticS KKZdqHseRTZIM/6a446YdPfXSfo/ws3dmi57DuxD8onE5YNFBFH95/fzmdo+KS5I qDsB6kxOUjRZGrH4z9fYEkHcwVwP1p8SBO8NpcDJU/yBbTteiNZpoj4J9bAse5ng F0K8aHRm0Pof6NsRNCiA8fiyoIKcINYS14nQ6uEm2iQoXLod4LfI2xvoQe5JvY3b 8c0wp855eQT2qxN6osbdKoGNDF5XwjUyKqlV47aqhnstgj++52J5ME+q+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKJlrDWrqhSMMbjTwinzJfcjioMfMB8GA1UdIwQY MBaAFLS1eLZcGBhtHmp1OZErNOkACwjMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdExWNHRsd1lHRzBlYW5VNWtTczA2UUFMQ013LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy83MmM2ZjMtOTkxMy00MWJlLWExNzgt NWYzZWI3YjIxZTkwLzEvdExWNHRsd1lHRzBlYW5VNWtTczA2UUFMQ013Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy83MmM2ZjMtOTkxMy00MWJlLWExNzgtNWYzZWI3YjIxZTkw LzEvdExWNHRsd1lHRzBlYW5VNWtTczA2UUFMQ013LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjfzunf/b OrMNLlRZ9jNjERMweSzcDn3Da6Cv0lKeILWl4M7avqiHWdIVX1umsuaTPMBUQDW7 dqcdPYeEe3xjT93CdJGCG7tIDpNtM2oF9vOt22auz36jw2J9A5OsYPvZKgPHPRhm ht7nu/QIXHiVh0e4BFubnmpfdN7HCJWoVAWIgyI6vgVvkwl11Nxyjxox0G0ALqjp 39S30tkbm2NGD6HqT5auCI74PJmbifw0WDh2wTjLlpnaVXxIjbab7+jiUcv+n8jc K21MwTBwCBZwCRGR+xAXhrQ6xWdhPziXnjdO7bTbHCFcrEZfMOsjSv8YClyaiks/ Y0uuQ/eGrM/TRA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:01 2026 by rpki-client