This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft File: cl3CBR5_PY1hf1UYng7m8xdNkto.mft (raw, json) Hash identifier: aeQREUTwyYOpZWGgUdAB7/iKQfEjkvSO6Wmrekvtbdo= Subject key identifier: 13:B7:60:5D:23:43:94:CF:85:5C:2F:78:0B:24:FC:C8:48:87:DE:FD Authority key identifier: 72:5D:C2:05:1E:7F:3D:8D:61:7F:55:18:9E:0E:E6:F3:17:4D:92:DA Certificate issuer: /CN=725dc2051e7f3d8d617f55189e0ee6f3174d92da Certificate serial: 019C43905FF6C7D3FA345036A672B798C4C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft Manifest number: 0535 Signing time: Mon 09 Feb 2026 18:01:00 +0000 Manifest this update: Mon 09 Feb 2026 18:01:00 +0000 Manifest next update: Tue 10 Feb 2026 18:01:00 +0000 Files and hashes: 1: cl3CBR5_PY1hf1UYng7m8xdNkto.crl (hash: g7oJoJ2OHWSj6NuGUDuI/evJgizBmfEYhCzRhwxn6pk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:5f:f6:c7:d3:fa:34:50:36:a6:72:b7:98:c4:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=725dc2051e7f3d8d617f55189e0ee6f3174d92da Validity Not Before: Feb 9 18:01:00 2026 GMT Not After : Feb 10 18:01:00 2026 GMT Subject: CN=13b7605d234394cf855c2f780b24fcc84887defd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:18:31:da:d0:1e:71:02:f1:ff:6c:21:06:df: 67:05:f0:eb:09:46:f3:a7:b1:09:87:c4:f2:2e:9d: 7c:d5:51:ae:8f:0f:4d:69:a3:40:33:5e:43:35:ce: 61:d8:2a:87:fb:f0:6c:c5:2b:94:28:ec:55:7c:8c: 9f:0c:ea:ee:8b:2e:6d:79:73:89:e1:40:a2:de:69: 53:25:2a:c0:d0:e0:b7:e2:a6:01:04:0d:ce:a2:f4: c6:ed:e6:d4:01:e5:dc:22:41:fc:0c:86:fd:db:ec: ef:fc:8b:8c:5b:e0:85:1e:f2:eb:a8:d4:9c:00:82: 2c:f6:f0:b5:2d:7d:20:81:8d:25:c1:64:49:e9:8c: bd:12:22:64:53:07:b5:58:06:b8:9d:cd:78:f5:22: 8c:54:fa:9f:f9:f4:44:a1:d4:99:ed:55:dc:ed:de: af:8a:35:5f:dc:13:2c:30:31:a9:b1:bc:a1:78:cc: bc:81:da:0e:b9:33:68:a5:5f:52:37:13:2a:8d:d1: 87:fc:59:60:cf:41:3b:50:85:c0:27:4c:e2:c5:85: c9:a3:0a:6b:73:8d:27:cf:44:ff:c4:37:2d:4f:92: 03:38:56:15:fc:25:4d:3e:64:aa:63:c3:22:d4:84: 72:c6:78:ca:b5:a8:66:0d:55:d0:b0:a8:84:00:38: 2b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B7:60:5D:23:43:94:CF:85:5C:2F:78:0B:24:FC:C8:48:87:DE:FD X509v3 Authority Key Identifier: keyid:72:5D:C2:05:1E:7F:3D:8D:61:7F:55:18:9E:0E:E6:F3:17:4D:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:45:c2:50:23:e7:23:0a:f3:f1:01:e6:7d:ad:43:da:e3:c3: bd:81:e5:75:f4:30:f5:a5:3b:7d:e7:0c:3e:a2:a9:24:6f:b5: 19:ad:dc:6e:f0:54:7c:5d:7d:1d:e3:3c:06:f2:22:5b:3b:a6: dd:73:cd:5a:da:c6:dc:99:83:45:3a:4e:46:29:0e:e9:b3:e2: 9b:07:3d:c7:ac:dc:f1:0c:42:80:cb:d3:b4:8a:6c:94:99:20: 76:ac:db:ee:8b:26:8f:92:05:87:51:df:c5:e0:a1:11:f9:95: 13:d4:7c:2a:e2:34:0b:83:af:b5:1b:43:84:b1:e9:6f:85:b5: 1b:ac:e8:31:ce:0c:db:ec:ca:0b:df:3b:0a:f4:a0:f2:bd:d4: 94:f8:07:4c:2b:e0:60:d9:a0:cd:04:17:dc:75:ce:c4:ba:a1: 51:73:2e:23:ac:60:73:13:cf:b0:96:c6:1c:19:b6:2a:d6:45: 34:34:19:69:f9:5b:78:ea:c9:f2:a9:c5:35:84:e6:28:c2:4b: f9:6e:14:07:b7:74:62:bf:eb:7b:77:ad:c7:45:cd:0b:03:0f: 9e:06:1d:26:7d:55:a3:e1:52:5c:c5:47:80:8b:a0:50:ef:ca: f9:d0:81:b9:1b:d3:eb:9f:3b:1e:66:51:bc:55:ad:26:6e:a2: 26:c0:b3:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkF/2x9P6NFA2pnK3mMTIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNWRjMjA1MWU3ZjNkOGQ2MTdmNTUxODllMGVlNmYzMTc0 ZDkyZGEwHhcNMjYwMjA5MTgwMTAwWhcNMjYwMjEwMTgwMTAwWjAzMTEwLwYDVQQD EygxM2I3NjA1ZDIzNDM5NGNmODU1YzJmNzgwYjI0ZmNjODQ4ODdkZWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Bgx2tAecQLx/2whBt9nBfDrCUbz p7EJh8TyLp181VGujw9NaaNAM15DNc5h2CqH+/BsxSuUKOxVfIyfDOruiy5teXOJ 4UCi3mlTJSrA0OC34qYBBA3OovTG7ebUAeXcIkH8DIb92+zv/IuMW+CFHvLrqNSc AIIs9vC1LX0ggY0lwWRJ6Yy9EiJkUwe1WAa4nc149SKMVPqf+fREodSZ7VXc7d6v ijVf3BMsMDGpsbyheMy8gdoOuTNopV9SNxMqjdGH/Flgz0E7UIXAJ0zixYXJowpr c40nz0T/xDctT5IDOFYV/CVNPmSqY8Mi1IRyxnjKtahmDVXQsKiEADgrqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBO3YF0jQ5TPhVwveAsk/MhIh979MB8GA1UdIwQY MBaAFHJdwgUefz2NYX9VGJ4O5vMXTZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2wzQ0JSNV9QWTFoZjFVWW5nN204eGROa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC85ODQxMTEtNmY3Yy00ZTY5LTk0Yzkt ZmYwZjUyNjMzNTI3LzEvY2wzQ0JSNV9QWTFoZjFVWW5nN204eGROa3RvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC85ODQxMTEtNmY3Yy00ZTY5LTk0YzktZmYwZjUyNjMzNTI3 LzEvY2wzQ0JSNV9QWTFoZjFVWW5nN204eGROa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH0XCUCPn Iwrz8QHmfa1D2uPDvYHldfQw9aU7fecMPqKpJG+1Ga3cbvBUfF19HeM8BvIiWzum 3XPNWtrG3JmDRTpORikO6bPimwc9x6zc8QxCgMvTtIpslJkgdqzb7osmj5IFh1Hf xeChEfmVE9R8KuI0C4OvtRtDhLHpb4W1G6zoMc4M2+zKC987CvSg8r3UlPgHTCvg YNmgzQQX3HXOxLqhUXMuI6xgcxPPsJbGHBm2KtZFNDQZaflbeOrJ8qnFNYTmKMJL +W4UB7d0Yr/re3etx0XNCwMPngYdJn1Vo+FSXMVHgIugUO/K+dCBuRvT6587HmZR vFWtJm6iJsCzOA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:16 2026 by rpki-client