This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft File: db3TijiDJA5GxLGsi7-DF96P-IU.mft (raw, json) Hash identifier: JNVpUZz5IGEHbnA516fIC4ystP7FpvU+PUhoLfmJN0s= Subject key identifier: 91:18:C5:0B:36:B0:AF:A5:FE:F6:34:F4:3F:E6:7C:B9:DA:DE:31:12 Authority key identifier: 75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85 Certificate issuer: /CN=75bdd38a3883240e46c4b1ac8bbf8317de8ff885 Certificate serial: 019C427DCFBD7F74824483AA4D23ACD21313 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft Manifest number: 151C Signing time: Mon 09 Feb 2026 13:01:07 +0000 Manifest this update: Mon 09 Feb 2026 13:01:07 +0000 Manifest next update: Tue 10 Feb 2026 13:01:07 +0000 Files and hashes: 1: db3TijiDJA5GxLGsi7-DF96P-IU.crl (hash: WKff/x6gu2IqmOfXBDonLREdkq4q139Cf/ACVHWHgyM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft rsync://rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:cf:bd:7f:74:82:44:83:aa:4d:23:ac:d2:13:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75bdd38a3883240e46c4b1ac8bbf8317de8ff885 Validity Not Before: Feb 9 13:01:07 2026 GMT Not After : Feb 10 13:01:07 2026 GMT Subject: CN=9118c50b36b0afa5fef634f43fe67cb9dade3112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:26:80:bd:45:60:ac:e3:d2:40:d9:79:53:c1: 68:bd:d4:73:93:d4:fa:92:16:50:2e:14:ae:a2:8e: 6e:38:c7:d3:69:18:97:56:8b:16:00:b5:c4:d2:33: 71:9c:9e:19:09:6e:5c:2e:27:b9:ff:76:f2:f2:f6: f6:b6:4d:77:db:8c:8b:5f:7f:33:93:67:b9:64:04: cd:33:1e:1a:14:98:4e:bb:a7:4e:30:26:af:27:5b: 52:b5:3a:41:08:c0:b2:5b:dd:30:9b:af:ce:e7:4e: cc:17:ff:7a:f7:80:8a:96:e9:fe:df:9d:f0:60:0c: 41:b8:b1:fc:71:87:ba:c5:34:7d:10:0f:e9:79:3c: 3b:1d:db:26:19:02:f9:70:2d:04:42:2e:33:70:24: be:1c:ed:d4:6c:6b:93:30:08:0a:9d:08:71:4f:29: 28:8a:c5:45:69:6d:a3:3f:9d:45:d7:92:9c:19:33: 8a:a3:ed:58:5e:6a:3e:49:59:b0:46:d3:e3:2a:cd: d6:d7:6c:d0:21:10:2a:86:84:a9:db:f0:f1:35:cc: 21:f6:cc:6d:72:9c:c9:65:de:50:3f:78:04:01:16: 4f:89:2c:40:7c:44:15:7c:5b:3b:96:1b:8b:78:d6: a7:d7:0a:66:45:3f:3a:4f:6b:22:51:78:4d:80:d8: e1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:18:C5:0B:36:B0:AF:A5:FE:F6:34:F4:3F:E6:7C:B9:DA:DE:31:12 X509v3 Authority Key Identifier: keyid:75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:87:3d:d8:dd:9b:a6:b2:bb:ee:16:17:20:06:a3:8c:5a:d3: 84:97:da:b8:ca:77:8d:88:0c:37:be:09:6d:27:23:46:36:d5: fb:7a:6c:d9:b3:ad:99:ae:7f:81:4b:b0:ea:94:65:04:6a:f5: 66:f3:e8:41:79:f0:73:17:7e:08:dd:68:6c:07:84:c8:ff:91: c0:68:87:c2:90:fd:c5:64:5b:ba:21:cb:f7:8c:c5:c0:c8:80: 53:94:4e:d9:99:df:99:f2:b9:d4:7e:b2:79:59:2e:5d:08:a2: 92:3f:f1:f2:76:2a:d1:f4:b9:34:ef:7f:86:c5:75:6b:f0:dd: 8b:81:41:21:6a:62:83:74:6e:19:b1:47:96:32:29:71:93:fa: b1:f0:d6:72:65:02:44:94:45:82:54:41:d5:98:83:9b:35:08: ca:ca:9b:4c:66:5e:d2:44:26:2f:34:b8:1a:6b:ea:a3:31:63: 38:47:53:08:24:a9:fc:dc:c3:08:fb:5d:f9:d3:b2:27:cd:f9: b9:f7:e4:ef:55:00:fd:b7:cd:76:f5:27:7b:ec:8c:85:66:6a: b1:97:45:bb:14:90:8f:6a:ed:29:22:eb:22:b8:5b:2c:b2:69: 88:7c:6e:37:48:6d:33:c5:fb:ff:ca:74:dd:7a:65:ec:0a:6a: 89:8e:5f:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfc+9f3SCRIOqTSOs0hMTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1YmRkMzhhMzg4MzI0MGU0NmM0YjFhYzhiYmY4MzE3ZGU4 ZmY4ODUwHhcNMjYwMjA5MTMwMTA3WhcNMjYwMjEwMTMwMTA3WjAzMTEwLwYDVQQD Eyg5MTE4YzUwYjM2YjBhZmE1ZmVmNjM0ZjQzZmU2N2NiOWRhZGUzMTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqiaAvUVgrOPSQNl5U8FovdRzk9T6 khZQLhSuoo5uOMfTaRiXVosWALXE0jNxnJ4ZCW5cLie5/3by8vb2tk1324yLX38z k2e5ZATNMx4aFJhOu6dOMCavJ1tStTpBCMCyW90wm6/O507MF/9694CKlun+353w YAxBuLH8cYe6xTR9EA/peTw7HdsmGQL5cC0EQi4zcCS+HO3UbGuTMAgKnQhxTyko isVFaW2jP51F15KcGTOKo+1YXmo+SVmwRtPjKs3W12zQIRAqhoSp2/DxNcwh9sxt cpzJZd5QP3gEARZPiSxAfEQVfFs7lhuLeNan1wpmRT86T2siUXhNgNjhGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJEYxQs2sK+l/vY09D/mfLna3jESMB8GA1UdIwQY MBaAFHW904o4gyQORsSxrIu/gxfej/iFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGIzVGlqaURKQTVHeExHc2k3LURGOTZQLUlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9jM2E0ZjctMmQwYS00OTI0LThjZGIt OGRhNjA1MzVlNmEwLzEvZGIzVGlqaURKQTVHeExHc2k3LURGOTZQLUlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy9jM2E0ZjctMmQwYS00OTI0LThjZGItOGRhNjA1MzVlNmEw LzEvZGIzVGlqaURKQTVHeExHc2k3LURGOTZQLUlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvYc92N2b prK77hYXIAajjFrThJfauMp3jYgMN74JbScjRjbV+3ps2bOtma5/gUuw6pRlBGr1 ZvPoQXnwcxd+CN1obAeEyP+RwGiHwpD9xWRbuiHL94zFwMiAU5RO2ZnfmfK51H6y eVkuXQiikj/x8nYq0fS5NO9/hsV1a/Ddi4FBIWpig3RuGbFHljIpcZP6sfDWcmUC RJRFglRB1ZiDmzUIysqbTGZe0kQmLzS4GmvqozFjOEdTCCSp/NzDCPtd+dOyJ835 uffk71UA/bfNdvUne+yMhWZqsZdFuxSQj2rtKSLrIrhbLLJpiHxuN0htM8X7/8p0 3Xpl7ApqiY5fQw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:37 2026 by rpki-client