This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft File: 0jtkd-HIT1KQfNYMY-qD715Kx4I.mft (raw, json) Hash identifier: HLBxs+/k3qFx/fVPpa49VEu4/o3hrF3MTePlJ8RZUNw= Subject key identifier: BE:40:21:1D:7C:A6:A6:D8:81:3A:AC:09:22:E2:92:5E:CC:BD:0A:4F Authority key identifier: D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82 Certificate issuer: /CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782 Certificate serial: 019C420F8E8BEA14E753DD4CC604F863FE82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft Manifest number: 0B5C Signing time: Mon 09 Feb 2026 11:00:41 +0000 Manifest this update: Mon 09 Feb 2026 11:00:41 +0000 Manifest next update: Tue 10 Feb 2026 11:00:41 +0000 Files and hashes: 1: 0jtkd-HIT1KQfNYMY-qD715Kx4I.crl (hash: X6zHQL2CsGukBthrJjukvkg93NYdCX7S9ohAWY+cygk=) 2: u74Y2DtNYCrFLzeUZsDA2ek1RJQ.roa (hash: v4D4CGF7IK7jFQI/k7wDX6FIFSnqg7cuKSN4Jo5u5mc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:8e:8b:ea:14:e7:53:dd:4c:c6:04:f8:63:fe:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782 Validity Not Before: Feb 9 11:00:41 2026 GMT Not After : Feb 10 11:00:41 2026 GMT Subject: CN=be40211d7ca6a6d8813aac0922e2925eccbd0a4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bc:ef:68:f3:48:9f:2e:90:c5:9f:e0:89:6d: a9:13:c7:74:25:13:05:dc:65:3b:eb:41:ce:e5:55: 48:03:54:23:14:f8:2b:be:b4:80:d7:81:ed:ad:ec: 4c:03:6e:e2:74:b8:30:ca:ca:b4:58:2a:a8:ae:47: 14:cf:e4:38:ac:90:84:39:86:66:ca:c1:80:90:6a: a6:67:de:8e:83:22:c9:be:0d:45:08:77:be:d2:f0: 6c:e8:88:e9:04:9a:e6:28:73:21:f3:6c:69:43:b7: 5f:55:f4:e4:04:42:82:5b:f6:84:f7:3f:37:6a:c0: 86:39:5b:3a:f1:5a:b6:f4:c2:62:96:69:77:a2:50: d2:79:d1:08:8c:3a:d6:02:9c:7c:92:a8:df:89:60: 22:8b:71:b6:aa:0b:2d:98:ba:d2:64:7d:82:a3:2d: 8e:47:a7:ac:d6:3a:0f:0d:6d:6b:49:14:45:8b:04: c8:d1:96:ff:a9:61:93:94:51:d2:48:7b:44:bd:98: 4f:3e:8c:82:6e:d9:ab:80:d9:90:35:60:b8:ee:38: ea:5e:82:27:1a:aa:07:1c:f1:b3:08:eb:06:08:32: 7b:d7:de:09:a1:2b:a6:89:3a:d1:37:f9:33:74:40: 80:35:00:c5:3a:26:73:c8:e9:45:78:47:b3:1d:e9: 5a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:40:21:1D:7C:A6:A6:D8:81:3A:AC:09:22:E2:92:5E:CC:BD:0A:4F X509v3 Authority Key Identifier: keyid:D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:2d:2b:4d:65:37:a3:59:89:04:01:bd:06:4d:6c:dd:04:a7: 84:1a:f6:00:39:68:6e:bd:15:1a:ae:9e:0b:7a:1d:3f:9b:50: 22:6b:2a:52:d3:2b:72:4a:64:f5:82:e6:67:ec:42:3a:07:69: 11:05:aa:0f:18:af:ec:b5:e2:03:70:33:e9:a7:f2:b5:78:08: 34:c9:cd:af:05:db:7f:92:8c:eb:36:71:90:7f:e8:10:cd:b8: 80:77:e5:85:98:b6:a2:e1:c9:fe:a8:32:15:2a:03:82:29:d8: cb:38:86:0b:a6:73:53:f6:0c:88:b5:87:58:69:75:53:85:5d: 04:e7:f5:3b:68:3d:0a:97:18:40:db:c0:f6:56:05:44:70:b2: d7:83:a5:0e:75:6c:c7:ff:0b:ae:2b:8a:71:89:4c:f3:04:c6: 1c:11:a4:f5:fd:51:d1:95:60:2f:9d:cf:34:67:23:a3:02:61: 25:b2:e3:99:eb:1f:be:6d:5c:3f:25:34:8a:66:fb:71:3a:b5: 6a:f4:84:fc:fd:01:ad:c6:2f:da:6a:a7:5f:08:29:a9:ff:75: b3:6d:1a:95:e2:59:60:9f:92:c3:48:4f:21:4e:ab:4d:64:97: 95:55:93:58:45:82:ed:b5:86:e8:6b:7e:09:55:84:35:85:59: bf:7a:7c:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD46L6hTnU91MxgT4Y/6CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyM2I2NDc3ZTFjODRmNTI5MDdjZDYwYzYzZWE4M2VmNWU0 YWM3ODIwHhcNMjYwMjA5MTEwMDQxWhcNMjYwMjEwMTEwMDQxWjAzMTEwLwYDVQQD EyhiZTQwMjExZDdjYTZhNmQ4ODEzYWFjMDkyMmUyOTI1ZWNjYmQwYTRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7zvaPNIny6QxZ/giW2pE8d0JRMF 3GU760HO5VVIA1QjFPgrvrSA14HtrexMA27idLgwysq0WCqorkcUz+Q4rJCEOYZm ysGAkGqmZ96OgyLJvg1FCHe+0vBs6IjpBJrmKHMh82xpQ7dfVfTkBEKCW/aE9z83 asCGOVs68Vq29MJilml3olDSedEIjDrWApx8kqjfiWAii3G2qgstmLrSZH2Coy2O R6es1joPDW1rSRRFiwTI0Zb/qWGTlFHSSHtEvZhPPoyCbtmrgNmQNWC47jjqXoIn GqoHHPGzCOsGCDJ7194JoSumiTrRN/kzdECANQDFOiZzyOlFeEezHela1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL5AIR18pqbYgTqsCSLikl7MvQpPMB8GA1UdIwQY MBaAFNI7ZHfhyE9SkHzWDGPqg+9eSseCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGp0a2QtSElUMUtRZk5ZTVktcUQ3MTVLeDRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS80NTU5ZmQtYjQwOS00NzljLWE0MGYt MjI1NTU4NWRkZWNiLzEvMGp0a2QtSElUMUtRZk5ZTVktcUQ3MTVLeDRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS80NTU5ZmQtYjQwOS00NzljLWE0MGYtMjI1NTU4NWRkZWNi LzEvMGp0a2QtSElUMUtRZk5ZTVktcUQ3MTVLeDRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEy0rTWU3 o1mJBAG9Bk1s3QSnhBr2ADlobr0VGq6eC3odP5tQImsqUtMrckpk9YLmZ+xCOgdp EQWqDxiv7LXiA3Az6afytXgINMnNrwXbf5KM6zZxkH/oEM24gHflhZi2ouHJ/qgy FSoDginYyziGC6ZzU/YMiLWHWGl1U4VdBOf1O2g9CpcYQNvA9lYFRHCy14OlDnVs x/8LriuKcYlM8wTGHBGk9f1R0ZVgL53PNGcjowJhJbLjmesfvm1cPyU0imb7cTq1 avSE/P0BrcYv2mqnXwgpqf91s20aleJZYJ+Sw0hPIU6rTWSXlVWTWEWC7bWG6Gt+ CVWENYVZv3p82g== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:55 2026 by rpki-client