This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
File:                     tj8U3_NUhamVlBKGMDe4XfqfE9g.mft (raw, json)
Hash identifier:          tAmfjeaH6IeaF2dun43m8ovsMw1OM37Q+atlrRX+QMU=
Subject key identifier:   61:3A:51:6E:D3:1B:7E:2E:47:0E:17:3D:D5:09:11:A1:72:77:D1:82
Authority key identifier: B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8
Certificate issuer:       /CN=b63f14dff35485a9959412863037b85dfa9f13d8
Certificate serial:       019C427DFB4F4EA158F68CF224003EA6C973
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
Manifest number:          0745
Signing time:             Mon 09 Feb 2026 13:01:18 +0000
Manifest this update:     Mon 09 Feb 2026 13:01:18 +0000
Manifest next update:     Tue 10 Feb 2026 13:01:18 +0000
Files and hashes:         1: tj8U3_NUhamVlBKGMDe4XfqfE9g.crl (hash: zifI51xjfekxBxOLW5jb1p56mNyK6zzHpDb6f1kP+I4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Feb 2026 13:01:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:42:7d:fb:4f:4e:a1:58:f6:8c:f2:24:00:3e:a6:c9:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b63f14dff35485a9959412863037b85dfa9f13d8
        Validity
            Not Before: Feb  9 13:01:18 2026 GMT
            Not After : Feb 10 13:01:18 2026 GMT
        Subject: CN=613a516ed31b7e2e470e173dd50911a17277d182
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:da:20:65:77:df:f8:23:bf:1f:aa:3a:4b:87:
                    ab:6c:fd:7b:ed:77:26:02:cb:1f:8f:fb:cb:97:a9:
                    ee:84:22:98:b8:b6:17:c3:90:f0:88:3b:73:4b:20:
                    64:96:d9:40:23:17:d9:f2:18:3e:31:aa:76:77:15:
                    1b:89:82:b3:14:c0:c1:f4:2a:a4:ac:3a:d7:26:bf:
                    7e:de:26:61:12:2a:ad:1d:bd:ac:9d:c3:64:56:9b:
                    79:a7:54:73:55:68:3a:7e:f3:00:1b:6b:e4:2e:d3:
                    cb:5b:56:06:1f:19:7d:d7:a7:13:a1:bd:5e:1e:a1:
                    76:78:6a:5c:43:06:ac:72:ad:53:17:5c:08:f5:e6:
                    bd:6b:ca:a6:8a:12:17:88:d9:2c:b9:5c:3a:67:5e:
                    70:50:bc:3c:2d:c1:d5:55:99:90:f5:4d:b9:0f:c0:
                    60:22:8d:85:d3:3c:0d:35:92:f1:8f:60:6b:f9:7a:
                    79:58:20:36:8c:fc:ba:3b:d2:ea:d8:ce:3f:0e:7e:
                    1f:2a:d3:55:b3:16:0d:5a:4c:8a:f0:cd:d3:8f:5a:
                    4a:5c:71:65:43:ca:ae:2c:bc:0c:f1:53:92:5b:cd:
                    a2:88:cd:6b:a6:1f:97:07:69:86:96:e2:a3:08:38:
                    da:5d:10:77:bd:34:b9:82:03:70:ad:0e:be:39:dc:
                    7a:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:3A:51:6E:D3:1B:7E:2E:47:0E:17:3D:D5:09:11:A1:72:77:D1:82
            X509v3 Authority Key Identifier:
                keyid:B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:7b:17:b6:97:84:b7:79:90:b1:7f:ce:b2:17:03:41:76:80:
         a8:bb:f8:07:f2:f0:db:53:4c:ca:7c:d9:06:d1:b6:65:47:20:
         a7:2f:6a:15:72:a3:3f:91:a7:d6:55:79:e8:b1:19:52:f1:81:
         6f:91:f7:4f:cc:97:35:14:c7:ab:ba:df:f8:9d:a2:5a:cd:6f:
         68:b6:99:6e:47:12:a6:00:23:b9:4a:ce:37:b7:20:c7:7b:d5:
         a7:dd:3b:41:b2:2c:a5:cf:6a:ec:6e:e1:6d:0d:34:e9:28:61:
         49:f5:6d:9c:26:e3:0f:6e:4a:ef:07:81:f4:86:35:6b:2b:02:
         fb:3d:9f:74:c7:88:f3:a0:b7:8e:20:a0:93:b3:ef:10:41:9a:
         66:ae:d6:15:e4:02:42:12:af:ae:da:69:f1:48:09:47:59:20:
         e9:21:f7:91:8e:f4:ce:d1:0c:d1:46:a0:9d:c5:b2:d9:c3:9e:
         31:40:4b:aa:18:e3:49:8f:b6:44:3f:4d:88:c8:f6:5f:47:f4:
         7b:89:2e:1c:25:14:88:6d:81:5c:f9:31:ec:07:7d:6f:a4:9c:
         8f:2a:26:bb:ce:c9:85:ba:f5:51:90:9c:be:71:e3:6f:9f:fa:
         a2:dc:46:fd:98:40:f8:d6:04:51:58:2f:32:e4:0f:c2:5c:17:
         6a:5c:9c:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 9 22:42:24 2026 by rpki-client