This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft File: jrsOsZ53d9cDgAD2wS053tEgQkI.mft (raw, json) Hash identifier: QEDCck2r3HNShOfHMph0rYhOEgJ4X0x+d7GpxUC5jrE= Subject key identifier: F7:68:DE:90:63:46:57:7F:A9:21:5B:5E:62:A1:94:15:E5:9F:1F:9C Authority key identifier: 8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42 Certificate issuer: /CN=8ebb0eb19e7777d7038000f6c12d39ded1204242 Certificate serial: 019C42B47D4F7233687E2CE5F3D054F2F98E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft Manifest number: 0E4A Signing time: Mon 09 Feb 2026 14:00:50 +0000 Manifest this update: Mon 09 Feb 2026 14:00:50 +0000 Manifest next update: Tue 10 Feb 2026 14:00:50 +0000 Files and hashes: 1: 1Q9fXglvsAmLyk7oBnnGROcZ55Q.roa (hash: 8sGtUkhkFlICQ8XRP+JZAkWRdlSZS/aRM+3p/w/Efdw=) 2: jrsOsZ53d9cDgAD2wS053tEgQkI.crl (hash: O8QYv/b/xjaZQxzg7pifwGc5yEqEODRrIUqZmg/+wzI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:7d:4f:72:33:68:7e:2c:e5:f3:d0:54:f2:f9:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ebb0eb19e7777d7038000f6c12d39ded1204242 Validity Not Before: Feb 9 14:00:50 2026 GMT Not After : Feb 10 14:00:50 2026 GMT Subject: CN=f768de906346577fa9215b5e62a19415e59f1f9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ca:44:d2:50:0c:2e:72:ed:3f:98:9c:44:14: f5:44:d9:b6:d6:ea:fa:2b:9f:cc:a3:e5:b4:e7:67: 21:ec:9f:91:38:bb:07:bb:6c:da:13:d3:1f:b1:98: ef:ee:84:1e:a4:b8:6c:99:ae:8c:14:31:cd:7a:31: 5c:e6:57:89:99:d7:94:82:58:42:0e:73:5a:0a:dd: 2a:b5:18:9a:72:7f:82:95:89:5f:4b:a5:eb:c5:fc: eb:af:31:ed:ef:a1:2c:8a:06:b9:bc:96:18:74:59: 63:99:61:f8:9c:50:09:c3:b0:9c:a7:73:14:dd:6c: 51:e0:a3:5b:c2:99:81:77:db:cc:23:d6:b1:2b:13: 4c:8e:62:67:f3:af:53:14:86:c1:f5:cc:22:ec:51: 39:1d:b0:2c:7d:c0:11:cc:c3:2a:92:b9:13:d7:07: 69:91:60:5d:bf:f9:aa:32:4b:e9:9c:6b:48:06:11: 1f:ca:b1:8d:ca:63:37:be:a7:5f:ad:ff:da:f9:35: c6:8a:e4:65:7b:b9:3b:59:da:83:e6:1c:06:9f:d5: a4:5f:aa:d8:3e:80:14:0e:6f:c9:27:f4:85:ad:6b: 87:18:77:91:14:6d:b4:f9:89:ee:3a:fc:a8:7e:6f: 4a:be:a3:36:1a:3f:e8:49:8f:ea:01:53:46:b5:2c: 60:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:68:DE:90:63:46:57:7F:A9:21:5B:5E:62:A1:94:15:E5:9F:1F:9C X509v3 Authority Key Identifier: keyid:8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:e9:71:80:0f:78:30:8e:73:12:e1:d3:e8:80:12:67:9f:e6: e6:69:13:bb:96:5e:94:5f:14:b2:ab:d1:3f:92:52:4d:2a:5d: 1c:13:83:6d:26:10:3a:55:73:1c:18:0d:77:26:02:42:68:de: b1:3b:c6:d1:9a:14:86:e1:44:51:42:1c:2c:be:ba:2a:25:27: 04:7f:a6:bc:a8:18:57:6f:c0:6d:29:91:23:42:a1:a0:0c:dc: 07:04:e5:7e:45:63:35:d1:9f:49:f7:e3:b6:eb:86:ed:00:6e: 02:e5:a3:dc:50:6f:d2:5d:ad:d3:42:20:0b:af:4e:65:4c:17: 2e:ce:65:d4:f8:c0:76:ba:83:46:90:0b:70:71:c4:97:c9:2c: 2e:5d:66:7f:1f:00:54:b0:e2:7b:f1:5e:7e:eb:fd:73:3a:7d: 79:fb:50:b0:6a:8d:cc:07:05:4c:0a:b6:93:04:73:65:18:13: b7:98:23:8f:f5:1d:93:19:e8:68:ba:d5:ce:fc:17:bb:37:1f: 91:bd:40:0f:78:87:37:a0:34:7f:d3:66:c3:11:46:5a:b7:51: 39:7b:ac:a8:98:98:83:ab:87:29:24:9c:49:55:88:65:87:bc: c8:c0:57:7d:2c:66:78:80:c2:f6:87:11:70:4d:cd:7b:a8:06: 03:76:58:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtH1PcjNofizl89BU8vmOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlYmIwZWIxOWU3Nzc3ZDcwMzgwMDBmNmMxMmQzOWRlZDEy MDQyNDIwHhcNMjYwMjA5MTQwMDUwWhcNMjYwMjEwMTQwMDUwWjAzMTEwLwYDVQQD EyhmNzY4ZGU5MDYzNDY1NzdmYTkyMTViNWU2MmExOTQxNWU1OWYxZjljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMpE0lAMLnLtP5icRBT1RNm21ur6 K5/Mo+W052ch7J+ROLsHu2zaE9MfsZjv7oQepLhsma6MFDHNejFc5leJmdeUglhC DnNaCt0qtRiacn+ClYlfS6XrxfzrrzHt76Esiga5vJYYdFljmWH4nFAJw7Ccp3MU 3WxR4KNbwpmBd9vMI9axKxNMjmJn869TFIbB9cwi7FE5HbAsfcARzMMqkrkT1wdp kWBdv/mqMkvpnGtIBhEfyrGNymM3vqdfrf/a+TXGiuRle7k7WdqD5hwGn9WkX6rY PoAUDm/JJ/SFrWuHGHeRFG20+YnuOvyofm9KvqM2Gj/oSY/qAVNGtSxg0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPdo3pBjRld/qSFbXmKhlBXlnx+cMB8GA1UdIwQY MBaAFI67DrGed3fXA4AA9sEtOd7RIEJCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvanJzT3NaNTNkOWNEZ0FEMndTMDUzdEVnUWtJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8zYjE1N2QtODE5Ni00ZTQwLWFiMzYt MTUxNDFjNjY4NTRkLzEvanJzT3NaNTNkOWNEZ0FEMndTMDUzdEVnUWtJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8zYjE1N2QtODE5Ni00ZTQwLWFiMzYtMTUxNDFjNjY4NTRk LzEvanJzT3NaNTNkOWNEZ0FEMndTMDUzdEVnUWtJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeelxgA94 MI5zEuHT6IASZ5/m5mkTu5ZelF8UsqvRP5JSTSpdHBODbSYQOlVzHBgNdyYCQmje sTvG0ZoUhuFEUUIcLL66KiUnBH+mvKgYV2/AbSmRI0KhoAzcBwTlfkVjNdGfSffj tuuG7QBuAuWj3FBv0l2t00IgC69OZUwXLs5l1PjAdrqDRpALcHHEl8ksLl1mfx8A VLDie/Fefuv9czp9eftQsGqNzAcFTAq2kwRzZRgTt5gjj/UdkxnoaLrVzvwXuzcf kb1AD3iHN6A0f9NmwxFGWrdROXusqJiYg6uHKSScSVWIZYe8yMBXfSxmeIDC9ocR cE3Ne6gGA3ZYsQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:15 2026 by rpki-client