This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft File: tj8U3_NUhamVlBKGMDe4XfqfE9g.mft (raw, json) Hash identifier: tAmfjeaH6IeaF2dun43m8ovsMw1OM37Q+atlrRX+QMU= Subject key identifier: 61:3A:51:6E:D3:1B:7E:2E:47:0E:17:3D:D5:09:11:A1:72:77:D1:82 Authority key identifier: B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8 Certificate issuer: /CN=b63f14dff35485a9959412863037b85dfa9f13d8 Certificate serial: 019C427DFB4F4EA158F68CF224003EA6C973 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft Manifest number: 0745 Signing time: Mon 09 Feb 2026 13:01:18 +0000 Manifest this update: Mon 09 Feb 2026 13:01:18 +0000 Manifest next update: Tue 10 Feb 2026 13:01:18 +0000 Files and hashes: 1: tj8U3_NUhamVlBKGMDe4XfqfE9g.crl (hash: zifI51xjfekxBxOLW5jb1p56mNyK6zzHpDb6f1kP+I4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:fb:4f:4e:a1:58:f6:8c:f2:24:00:3e:a6:c9:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b63f14dff35485a9959412863037b85dfa9f13d8 Validity Not Before: Feb 9 13:01:18 2026 GMT Not After : Feb 10 13:01:18 2026 GMT Subject: CN=613a516ed31b7e2e470e173dd50911a17277d182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:da:20:65:77:df:f8:23:bf:1f:aa:3a:4b:87: ab:6c:fd:7b:ed:77:26:02:cb:1f:8f:fb:cb:97:a9: ee:84:22:98:b8:b6:17:c3:90:f0:88:3b:73:4b:20: 64:96:d9:40:23:17:d9:f2:18:3e:31:aa:76:77:15: 1b:89:82:b3:14:c0:c1:f4:2a:a4:ac:3a:d7:26:bf: 7e:de:26:61:12:2a:ad:1d:bd:ac:9d:c3:64:56:9b: 79:a7:54:73:55:68:3a:7e:f3:00:1b:6b:e4:2e:d3: cb:5b:56:06:1f:19:7d:d7:a7:13:a1:bd:5e:1e:a1: 76:78:6a:5c:43:06:ac:72:ad:53:17:5c:08:f5:e6: bd:6b:ca:a6:8a:12:17:88:d9:2c:b9:5c:3a:67:5e: 70:50:bc:3c:2d:c1:d5:55:99:90:f5:4d:b9:0f:c0: 60:22:8d:85:d3:3c:0d:35:92:f1:8f:60:6b:f9:7a: 79:58:20:36:8c:fc:ba:3b:d2:ea:d8:ce:3f:0e:7e: 1f:2a:d3:55:b3:16:0d:5a:4c:8a:f0:cd:d3:8f:5a: 4a:5c:71:65:43:ca:ae:2c:bc:0c:f1:53:92:5b:cd: a2:88:cd:6b:a6:1f:97:07:69:86:96:e2:a3:08:38: da:5d:10:77:bd:34:b9:82:03:70:ad:0e:be:39:dc: 7a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:3A:51:6E:D3:1B:7E:2E:47:0E:17:3D:D5:09:11:A1:72:77:D1:82 X509v3 Authority Key Identifier: keyid:B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:7b:17:b6:97:84:b7:79:90:b1:7f:ce:b2:17:03:41:76:80: a8:bb:f8:07:f2:f0:db:53:4c:ca:7c:d9:06:d1:b6:65:47:20: a7:2f:6a:15:72:a3:3f:91:a7:d6:55:79:e8:b1:19:52:f1:81: 6f:91:f7:4f:cc:97:35:14:c7:ab:ba:df:f8:9d:a2:5a:cd:6f: 68:b6:99:6e:47:12:a6:00:23:b9:4a:ce:37:b7:20:c7:7b:d5: a7:dd:3b:41:b2:2c:a5:cf:6a:ec:6e:e1:6d:0d:34:e9:28:61: 49:f5:6d:9c:26:e3:0f:6e:4a:ef:07:81:f4:86:35:6b:2b:02: fb:3d:9f:74:c7:88:f3:a0:b7:8e:20:a0:93:b3:ef:10:41:9a: 66:ae:d6:15:e4:02:42:12:af:ae:da:69:f1:48:09:47:59:20: e9:21:f7:91:8e:f4:ce:d1:0c:d1:46:a0:9d:c5:b2:d9:c3:9e: 31:40:4b:aa:18:e3:49:8f:b6:44:3f:4d:88:c8:f6:5f:47:f4: 7b:89:2e:1c:25:14:88:6d:81:5c:f9:31:ec:07:7d:6f:a4:9c: 8f:2a:26:bb:ce:c9:85:ba:f5:51:90:9c:be:71:e3:6f:9f:fa: a2:dc:46:fd:98:40:f8:d6:04:51:58:2f:32:e4:0f:c2:5c:17: 6a:5c:9c:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfftPTqFY9ozyJAA+pslzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2M2YxNGRmZjM1NDg1YTk5NTk0MTI4NjMwMzdiODVkZmE5 ZjEzZDgwHhcNMjYwMjA5MTMwMTE4WhcNMjYwMjEwMTMwMTE4WjAzMTEwLwYDVQQD Eyg2MTNhNTE2ZWQzMWI3ZTJlNDcwZTE3M2RkNTA5MTFhMTcyNzdkMTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdogZXff+CO/H6o6S4erbP177Xcm Assfj/vLl6nuhCKYuLYXw5DwiDtzSyBkltlAIxfZ8hg+Map2dxUbiYKzFMDB9Cqk rDrXJr9+3iZhEiqtHb2sncNkVpt5p1RzVWg6fvMAG2vkLtPLW1YGHxl916cTob1e HqF2eGpcQwascq1TF1wI9ea9a8qmihIXiNksuVw6Z15wULw8LcHVVZmQ9U25D8Bg Io2F0zwNNZLxj2Br+Xp5WCA2jPy6O9Lq2M4/Dn4fKtNVsxYNWkyK8M3Tj1pKXHFl Q8quLLwM8VOSW82iiM1rph+XB2mGluKjCDjaXRB3vTS5ggNwrQ6+Odx65QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGE6UW7TG34uRw4XPdUJEaFyd9GCMB8GA1UdIwQY MBaAFLY/FN/zVIWplZQShjA3uF36nxPYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGo4VTNfTlVoYW1WbEJLR01EZTRYZnFmRTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8zYmM4NjUtMzg2Yi00YmVhLWFiYTAt NjZjOThjMDFkZmQ3LzEvdGo4VTNfTlVoYW1WbEJLR01EZTRYZnFmRTlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8zYmM4NjUtMzg2Yi00YmVhLWFiYTAtNjZjOThjMDFkZmQ3 LzEvdGo4VTNfTlVoYW1WbEJLR01EZTRYZnFmRTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXnsXtpeE t3mQsX/OshcDQXaAqLv4B/Lw21NMynzZBtG2ZUcgpy9qFXKjP5Gn1lV56LEZUvGB b5H3T8yXNRTHq7rf+J2iWs1vaLaZbkcSpgAjuUrON7cgx3vVp907QbIspc9q7G7h bQ006ShhSfVtnCbjD25K7weB9IY1aysC+z2fdMeI86C3jiCgk7PvEEGaZq7WFeQC QhKvrtpp8UgJR1kg6SH3kY70ztEM0UagncWy2cOeMUBLqhjjSY+2RD9NiMj2X0f0 e4kuHCUUiG2BXPkx7Ad9b6Scjyomu87Jhbr1UZCcvnHjb5/6otxG/ZhA+NYEUVgv MuQPwlwXalyciA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:24 2026 by rpki-client