This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft File: tj8U3_NUhamVlBKGMDe4XfqfE9g.mft (raw, json) Hash identifier: eqeG0ZIQlkW6CwRl0BKJ6SnI0eP2q8706qdW5bEW4CY= Subject key identifier: 83:4B:A7:D6:4C:5F:8F:6B:8E:CE:22:32:F7:AF:23:79:1F:D4:E1:59 Authority key identifier: B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8 Certificate issuer: /CN=b63f14dff35485a9959412863037b85dfa9f13d8 Certificate serial: 019B79A51E088D4AA53FA78A36754FBB046E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft Manifest number: 06DD Signing time: Thu 01 Jan 2026 13:00:22 +0000 Manifest this update: Thu 01 Jan 2026 13:00:22 +0000 Manifest next update: Fri 02 Jan 2026 13:00:22 +0000 Files and hashes: 1: tj8U3_NUhamVlBKGMDe4XfqfE9g.crl (hash: 3XwD/MEIsOOdnFNM2C0lSN4csZFsDUMyW4jUerxyFIk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 13:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:a5:1e:08:8d:4a:a5:3f:a7:8a:36:75:4f:bb:04:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b63f14dff35485a9959412863037b85dfa9f13d8 Validity Not Before: Jan 1 13:00:22 2026 GMT Not After : Jan 2 13:00:22 2026 GMT Subject: CN=834ba7d64c5f8f6b8ece2232f7af23791fd4e159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:02:98:bf:e3:66:96:31:1b:fc:4f:f5:53:01: 30:1c:f2:71:2d:39:de:24:53:90:c3:fe:f9:54:b0: 1e:84:e2:20:76:b5:46:67:72:9a:37:01:29:38:bd: 7f:22:3a:c1:c8:70:e9:d4:71:04:aa:dd:9b:21:29: 81:69:ff:e9:f2:d6:a8:a9:6b:ca:d9:24:b6:fb:6f: ef:a7:96:9b:d0:0c:e0:65:87:e1:85:af:5e:ae:04: fb:a9:f7:fe:fc:a0:e6:5d:0d:40:7e:d2:8d:34:a9: d7:d0:41:02:3a:4d:4a:7e:ec:80:28:84:7a:99:10: 5a:79:07:49:a5:aa:e2:53:1d:21:16:64:11:4a:ad: 9f:c6:9b:5b:8b:a7:d1:94:f5:43:16:c0:a4:65:c9: 49:8c:b8:8d:b2:ad:cb:da:7e:f7:04:61:52:14:f0: 5d:bf:5f:6a:eb:35:69:81:52:b9:8a:4c:7f:bc:bc: e1:91:06:c8:b1:21:53:5b:18:cc:35:5b:3b:11:98: 9e:5c:a8:2f:3b:65:2a:45:7b:b2:e7:63:64:19:26: 2c:3c:e2:e4:d1:5c:c4:8c:4d:17:ca:72:c9:4a:c0: ee:8e:da:69:8b:04:b6:b4:02:71:44:21:00:a5:8a: 06:16:b2:4e:3b:84:7c:d3:0d:88:4e:69:9f:a0:46: 14:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:4B:A7:D6:4C:5F:8F:6B:8E:CE:22:32:F7:AF:23:79:1F:D4:E1:59 X509v3 Authority Key Identifier: keyid:B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:ec:f0:1b:9a:33:0f:a0:af:da:cd:f2:cf:39:9a:1b:5c:29: f1:da:05:26:2f:18:01:02:69:01:6f:44:7d:73:49:86:f9:a0: a0:e9:fd:f5:96:27:a6:c5:e6:30:8f:72:4f:3a:81:83:29:dc: e5:ad:8e:39:58:eb:a4:c3:7b:46:17:02:f0:74:75:2a:7a:f9: 29:4a:62:a3:31:70:01:55:06:02:a2:85:f6:82:92:aa:0f:1b: 4d:00:61:f7:dc:1e:47:c5:78:65:d5:58:1d:25:29:58:24:d0: 5e:c1:a4:2d:25:46:fb:39:eb:d0:73:58:16:87:fb:99:b6:33: 34:1c:4d:68:e8:4a:21:d4:d6:54:5e:da:f1:b1:3b:6c:e9:81: c8:fc:fc:80:d7:86:9d:e7:f7:5a:6f:3c:98:92:b1:79:ed:da: 26:47:d3:92:63:fd:d8:25:c1:6c:16:09:81:cb:82:55:88:e8: bf:ce:20:ce:f5:b0:6e:83:f8:69:e9:7d:41:60:43:ae:db:71: a3:a5:40:9b:45:8e:56:26:b1:a3:ea:f4:1a:72:1c:3a:fa:f8: 7e:07:94:84:7b:82:12:a4:d7:46:81:51:5f:ae:69:88:f0:b7: 61:20:7e:0b:9a:47:7e:aa:ec:35:de:b1:f1:4c:30:56:83:94: 7b:bc:7c:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt5pR4IjUqlP6eKNnVPuwRuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2M2YxNGRmZjM1NDg1YTk5NTk0MTI4NjMwMzdiODVkZmE5 ZjEzZDgwHhcNMjYwMTAxMTMwMDIyWhcNMjYwMTAyMTMwMDIyWjAzMTEwLwYDVQQD Eyg4MzRiYTdkNjRjNWY4ZjZiOGVjZTIyMzJmN2FmMjM3OTFmZDRlMTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9QKYv+NmljEb/E/1UwEwHPJxLTne JFOQw/75VLAehOIgdrVGZ3KaNwEpOL1/IjrByHDp1HEEqt2bISmBaf/p8taoqWvK 2SS2+2/vp5ab0AzgZYfhha9ergT7qff+/KDmXQ1AftKNNKnX0EECOk1KfuyAKIR6 mRBaeQdJpariUx0hFmQRSq2fxptbi6fRlPVDFsCkZclJjLiNsq3L2n73BGFSFPBd v19q6zVpgVK5ikx/vLzhkQbIsSFTWxjMNVs7EZieXKgvO2UqRXuy52NkGSYsPOLk 0VzEjE0XynLJSsDujtppiwS2tAJxRCEApYoGFrJOO4R80w2ITmmfoEYU2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFINLp9ZMX49rjs4iMvevI3kf1OFZMB8GA1UdIwQY MBaAFLY/FN/zVIWplZQShjA3uF36nxPYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGo4VTNfTlVoYW1WbEJLR01EZTRYZnFmRTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8zYmM4NjUtMzg2Yi00YmVhLWFiYTAt NjZjOThjMDFkZmQ3LzEvdGo4VTNfTlVoYW1WbEJLR01EZTRYZnFmRTlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8zYmM4NjUtMzg2Yi00YmVhLWFiYTAtNjZjOThjMDFkZmQ3 LzEvdGo4VTNfTlVoYW1WbEJLR01EZTRYZnFmRTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAuzwG5oz D6Cv2s3yzzmaG1wp8doFJi8YAQJpAW9EfXNJhvmgoOn99ZYnpsXmMI9yTzqBgync 5a2OOVjrpMN7RhcC8HR1Knr5KUpiozFwAVUGAqKF9oKSqg8bTQBh99weR8V4ZdVY HSUpWCTQXsGkLSVG+znr0HNYFof7mbYzNBxNaOhKIdTWVF7a8bE7bOmByPz8gNeG nef3Wm88mJKxee3aJkfTkmP92CXBbBYJgcuCVYjov84gzvWwboP4ael9QWBDrttx o6VAm0WOViaxo+r0GnIcOvr4fgeUhHuCEqTXRoFRX65piPC3YSB+C5pHfqrsNd6x 8UwwVoOUe7x8/A== -----END CERTIFICATE-----Generated at Thu Jan 1 19:47:30 2026 by rpki-client