This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft File: jh_mbZ9htuZFpEe28GvUm9PgC84.mft (raw, json) Hash identifier: YBCKsvu912xfmolewBkdjf2bCmrh3SW8upTbPpssToo= Subject key identifier: 23:EA:B8:EB:C4:FF:58:13:FA:51:40:98:B7:60:FB:02:BD:16:0B:4D Authority key identifier: 8E:1F:E6:6D:9F:61:B6:E6:45:A4:47:B6:F0:6B:D4:9B:D3:E0:0B:CE Certificate issuer: /CN=8e1fe66d9f61b6e645a447b6f06bd49bd3e00bce Certificate serial: 019C427D81EB62B1B572CF12F642E0FDC144 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jh_mbZ9htuZFpEe28GvUm9PgC84.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft Manifest number: 14A1 Signing time: Mon 09 Feb 2026 13:00:47 +0000 Manifest this update: Mon 09 Feb 2026 13:00:47 +0000 Manifest next update: Tue 10 Feb 2026 13:00:47 +0000 Files and hashes: 1: jh_mbZ9htuZFpEe28GvUm9PgC84.crl (hash: T2MKQk/4c+PW/oJa/g8yVlwQ85DybEGJ+4zKIDAM2FM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.crl rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft rsync://rpki.ripe.net/repository/DEFAULT/jh_mbZ9htuZFpEe28GvUm9PgC84.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:81:eb:62:b1:b5:72:cf:12:f6:42:e0:fd:c1:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e1fe66d9f61b6e645a447b6f06bd49bd3e00bce Validity Not Before: Feb 9 13:00:47 2026 GMT Not After : Feb 10 13:00:47 2026 GMT Subject: CN=23eab8ebc4ff5813fa514098b760fb02bd160b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a7:af:ee:80:c2:2e:00:9f:98:22:1d:a5:e8: 9f:10:eb:77:ec:f3:16:47:2a:03:12:4d:90:7a:20: f4:63:13:50:2c:a7:32:30:a3:f4:56:20:5a:c8:13: 23:22:64:7c:46:29:e1:ae:8a:bc:51:0e:8f:5f:08: 6b:53:c8:ac:21:9f:14:90:7b:01:e6:f2:d8:ff:ce: 47:a0:47:5d:9b:14:3b:11:93:da:c4:28:39:b6:86: c8:a3:76:78:04:6e:74:18:6e:e3:30:ee:aa:21:09: 2f:f5:dc:36:4e:0e:21:d6:0a:b3:8c:bb:00:ac:c5: a5:49:e8:08:07:43:b6:e9:a2:ae:47:64:40:15:6c: 72:71:a3:91:fc:1d:36:7f:da:48:35:f3:a5:2b:f5: 0a:02:bb:49:8c:cb:a1:72:49:18:60:62:06:66:88: 2e:30:49:47:4d:37:a4:9f:ba:cd:74:c0:16:64:67: 15:fc:cb:2d:3f:a6:e8:fb:f7:c9:fb:f4:44:c0:af: 53:f3:e2:73:a2:b4:7a:cd:01:aa:fa:ef:68:f3:16: ba:a6:6f:62:d3:f3:a2:94:df:a1:37:69:be:42:91: 9d:d2:d7:ab:67:b0:12:63:cb:ed:08:66:e1:1a:a9: 59:2f:78:bb:04:06:75:f6:20:85:40:4e:43:18:6e: f4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:EA:B8:EB:C4:FF:58:13:FA:51:40:98:B7:60:FB:02:BD:16:0B:4D X509v3 Authority Key Identifier: keyid:8E:1F:E6:6D:9F:61:B6:E6:45:A4:47:B6:F0:6B:D4:9B:D3:E0:0B:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jh_mbZ9htuZFpEe28GvUm9PgC84.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:01:38:c6:e8:ed:01:55:75:c1:08:fb:cd:bd:1e:c8:07:0a: 4b:e1:c1:c4:3c:0a:a4:a9:84:20:23:22:e2:f9:15:2b:ff:62: 1d:5e:fd:64:21:8c:ed:91:1f:f0:5a:85:bf:35:04:86:8e:0b: 87:7e:ee:06:05:b0:ee:64:1f:93:1c:6a:19:26:27:0a:25:92: aa:2e:39:79:a4:88:dd:d0:4f:a1:45:30:e8:92:1d:3e:81:a7: c0:52:8e:f9:ca:41:43:8a:ba:65:54:f8:4e:e4:0a:84:86:7b: 5a:3b:41:b9:ef:af:d3:be:01:ad:15:28:b8:34:37:25:d6:7f: a7:9c:5b:b3:26:38:3d:f3:57:0f:f1:ee:d2:23:a6:40:48:55: 29:53:db:63:d9:17:e9:3d:e6:8c:16:84:cb:60:68:39:e2:ff: e5:6f:a0:c1:5c:61:2f:bf:c5:b5:47:4f:a5:e1:28:c8:41:a0: e6:2d:0e:58:15:ad:4f:f0:5d:fd:7a:65:f7:95:e3:2a:74:79: 01:7e:f1:77:f7:6f:2d:7e:ce:d6:61:47:f4:77:5d:36:ef:f1: 24:ab:78:df:7e:c6:37:9d:50:5b:dd:26:6e:7b:a7:f3:97:02: a1:40:31:66:85:70:16:47:f2:df:f3:43:a8:7a:a8:d3:fe:0e: 64:45:62:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfYHrYrG1cs8S9kLg/cFEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlMWZlNjZkOWY2MWI2ZTY0NWE0NDdiNmYwNmJkNDliZDNl MDBiY2UwHhcNMjYwMjA5MTMwMDQ3WhcNMjYwMjEwMTMwMDQ3WjAzMTEwLwYDVQQD EygyM2VhYjhlYmM0ZmY1ODEzZmE1MTQwOThiNzYwZmIwMmJkMTYwYjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqev7oDCLgCfmCIdpeifEOt37PMW RyoDEk2QeiD0YxNQLKcyMKP0ViBayBMjImR8Rinhroq8UQ6PXwhrU8isIZ8UkHsB 5vLY/85HoEddmxQ7EZPaxCg5tobIo3Z4BG50GG7jMO6qIQkv9dw2Tg4h1gqzjLsA rMWlSegIB0O26aKuR2RAFWxycaOR/B02f9pINfOlK/UKArtJjMuhckkYYGIGZogu MElHTTekn7rNdMAWZGcV/MstP6bo+/fJ+/REwK9T8+JzorR6zQGq+u9o8xa6pm9i 0/OilN+hN2m+QpGd0terZ7ASY8vtCGbhGqlZL3i7BAZ19iCFQE5DGG70GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCPquOvE/1gT+lFAmLdg+wK9FgtNMB8GA1UdIwQY MBaAFI4f5m2fYbbmRaRHtvBr1JvT4AvOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamhfbWJaOWh0dVpGcEVlMjhHdlVtOVBnQzg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83ZDIwZWQtM2Q0YS00NGQzLWEyZDct ZDY0ZDcwNjEyYTE3LzEvamhfbWJaOWh0dVpGcEVlMjhHdlVtOVBnQzg0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS83ZDIwZWQtM2Q0YS00NGQzLWEyZDctZDY0ZDcwNjEyYTE3 LzEvamhfbWJaOWh0dVpGcEVlMjhHdlVtOVBnQzg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfgE4xujt AVV1wQj7zb0eyAcKS+HBxDwKpKmEICMi4vkVK/9iHV79ZCGM7ZEf8FqFvzUEho4L h37uBgWw7mQfkxxqGSYnCiWSqi45eaSI3dBPoUUw6JIdPoGnwFKO+cpBQ4q6ZVT4 TuQKhIZ7WjtBue+v074BrRUouDQ3JdZ/p5xbsyY4PfNXD/Hu0iOmQEhVKVPbY9kX 6T3mjBaEy2BoOeL/5W+gwVxhL7/FtUdPpeEoyEGg5i0OWBWtT/Bd/Xpl95XjKnR5 AX7xd/dvLX7O1mFH9HddNu/xJKt4337GN51QW90mbnun85cCoUAxZoVwFkfy3/ND qHqo0/4OZEViNA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:35 2026 by rpki-client