This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft File: ESXJC-alxXrBYrVYE8_HZm7wg1o.mft (raw, json) Hash identifier: W17h85JuY4YI71VUKS1DOxjRq/xGjyOMr7pOkzbtUp0= Subject key identifier: 4C:55:14:A4:DF:AA:29:63:6A:A7:95:39:28:83:06:09:EB:18:44:C4 Authority key identifier: 11:25:C9:0B:E6:A5:C5:7A:C1:62:B5:58:13:CF:C7:66:6E:F0:83:5A Certificate issuer: /CN=1125c90be6a5c57ac162b55813cfc7666ef0835a Certificate serial: 019C41A20BD416707EE9FF84C45B000C6AE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESXJC-alxXrBYrVYE8_HZm7wg1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft Manifest number: 0627 Signing time: Mon 09 Feb 2026 09:01:04 +0000 Manifest this update: Mon 09 Feb 2026 09:01:04 +0000 Manifest next update: Tue 10 Feb 2026 09:01:04 +0000 Files and hashes: 1: ESXJC-alxXrBYrVYE8_HZm7wg1o.crl (hash: pbN20VYtnmMiQXeKGhJKBCTYQHTZeg3k55NnEWoBt8A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.crl rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft rsync://rpki.ripe.net/repository/DEFAULT/ESXJC-alxXrBYrVYE8_HZm7wg1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:0b:d4:16:70:7e:e9:ff:84:c4:5b:00:0c:6a:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1125c90be6a5c57ac162b55813cfc7666ef0835a Validity Not Before: Feb 9 09:01:04 2026 GMT Not After : Feb 10 09:01:04 2026 GMT Subject: CN=4c5514a4dfaa29636aa7953928830609eb1844c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:17:cc:dc:35:b2:1b:2a:67:16:12:40:2c:1c: 83:48:e3:b5:b5:48:d4:05:98:d7:bd:cb:15:14:4d: 1a:54:f1:fa:19:68:49:66:6c:57:36:fe:41:3d:b5: 31:67:95:ab:31:84:b7:56:43:f3:5b:d6:95:c3:51: 3d:09:c3:8e:d1:fe:71:fd:06:ff:a6:f1:53:ff:c1: 95:dc:7c:1f:52:54:73:ee:ee:ae:43:f6:0e:69:20: 00:15:b7:be:2a:19:30:8b:11:20:a7:f2:0f:8b:7f: ce:eb:fb:23:66:44:20:8f:ad:e5:6d:a2:47:79:c7: 18:6f:a8:ff:b0:81:f1:03:d6:9f:f4:8b:7e:fa:bc: 63:44:7d:d0:86:02:45:c8:9c:a5:47:c4:d1:8b:83: 87:1e:c8:38:04:c4:80:39:aa:e3:c0:02:6a:c0:cf: 76:0c:e5:70:59:4b:2b:80:3d:f8:84:7c:3a:80:b8: 0f:de:74:1e:50:5e:f8:67:6f:e2:f4:b7:51:bd:5e: 85:d6:1e:ff:51:b3:c2:6b:34:65:75:14:5d:36:d1: 9f:e3:b9:b4:b5:07:a7:02:48:9d:c6:f2:a3:1d:9c: 0e:54:bc:13:fc:c8:f1:2d:34:a0:66:fa:b3:d4:54: 31:6f:ca:65:fb:13:b1:e0:1b:8b:23:43:f8:69:84: 37:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:55:14:A4:DF:AA:29:63:6A:A7:95:39:28:83:06:09:EB:18:44:C4 X509v3 Authority Key Identifier: keyid:11:25:C9:0B:E6:A5:C5:7A:C1:62:B5:58:13:CF:C7:66:6E:F0:83:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESXJC-alxXrBYrVYE8_HZm7wg1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:98:0a:0b:b1:26:9f:49:8e:55:c0:5b:65:76:67:3c:ac:67: 74:a4:e8:f4:99:fd:2d:d4:17:51:50:e0:b4:e1:a0:ef:c8:bb: 4d:c9:b9:5a:d6:73:66:45:40:0a:d4:49:1a:fa:0b:33:d8:65: d3:9b:75:74:b5:70:04:6e:fd:48:54:49:70:e0:91:6c:fd:0c: 2c:4e:44:2a:b0:4d:ff:df:c5:f4:ac:44:73:87:bb:ae:38:e4: 5a:a1:dc:42:6c:7b:75:95:14:6e:ab:57:74:fe:8d:aa:ca:07: 91:c5:26:44:d2:f9:d4:03:da:55:81:eb:78:f3:66:00:a8:b4: 8d:5e:42:0c:0e:e1:72:97:3e:94:86:e8:86:af:df:9a:87:b8: e4:f3:5e:94:3e:1e:e6:a9:d1:36:9c:4b:c2:a0:6b:50:c6:b2: 3c:81:6e:0a:24:67:6e:e9:8e:dc:de:00:d6:bf:12:2b:37:2b: 12:1a:d9:db:20:6d:4c:57:b8:1b:4b:5b:0a:63:8b:a8:58:e9: 54:73:f5:ca:ff:5a:79:d4:bb:10:fa:64:5b:2f:1f:46:89:82: 8e:c4:33:4b:30:b9:6a:6b:87:38:2a:77:31:65:36:e1:e3:3f: 11:0e:fc:a3:d6:e9:be:09:ec:84:24:b8:45:c8:a6:9e:a1:1b: 0e:d6:e1:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBogvUFnB+6f+ExFsADGrnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMjVjOTBiZTZhNWM1N2FjMTYyYjU1ODEzY2ZjNzY2NmVm MDgzNWEwHhcNMjYwMjA5MDkwMTA0WhcNMjYwMjEwMDkwMTA0WjAzMTEwLwYDVQQD Eyg0YzU1MTRhNGRmYWEyOTYzNmFhNzk1MzkyODgzMDYwOWViMTg0NGM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxfM3DWyGypnFhJALByDSOO1tUjU BZjXvcsVFE0aVPH6GWhJZmxXNv5BPbUxZ5WrMYS3VkPzW9aVw1E9CcOO0f5x/Qb/ pvFT/8GV3HwfUlRz7u6uQ/YOaSAAFbe+KhkwixEgp/IPi3/O6/sjZkQgj63lbaJH eccYb6j/sIHxA9af9It++rxjRH3QhgJFyJylR8TRi4OHHsg4BMSAOarjwAJqwM92 DOVwWUsrgD34hHw6gLgP3nQeUF74Z2/i9LdRvV6F1h7/UbPCazRldRRdNtGf47m0 tQenAkidxvKjHZwOVLwT/MjxLTSgZvqz1FQxb8pl+xOx4BuLI0P4aYQ3wQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFExVFKTfqiljaqeVOSiDBgnrGETEMB8GA1UdIwQY MBaAFBElyQvmpcV6wWK1WBPPx2Zu8INaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVNYSkMtYWx4WHJCWXJWWUU4X0habTd3ZzFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81Mjc0MTYtZWUwNi00ODkwLTlmZTAt ZWNlZWViOTdhN2QxLzEvRVNYSkMtYWx4WHJCWXJWWUU4X0habTd3ZzFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi81Mjc0MTYtZWUwNi00ODkwLTlmZTAtZWNlZWViOTdhN2Qx LzEvRVNYSkMtYWx4WHJCWXJWWUU4X0habTd3ZzFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg5gKC7Em n0mOVcBbZXZnPKxndKTo9Jn9LdQXUVDgtOGg78i7Tcm5WtZzZkVACtRJGvoLM9hl 05t1dLVwBG79SFRJcOCRbP0MLE5EKrBN/9/F9KxEc4e7rjjkWqHcQmx7dZUUbqtX dP6NqsoHkcUmRNL51APaVYHrePNmAKi0jV5CDA7hcpc+lIbohq/fmoe45PNelD4e 5qnRNpxLwqBrUMayPIFuCiRnbumO3N4A1r8SKzcrEhrZ2yBtTFe4G0tbCmOLqFjp VHP1yv9aedS7EPpkWy8fRomCjsQzSzC5amuHOCp3MWU24eM/EQ78o9bpvgnshCS4 RcimnqEbDtbh7g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:50 2026 by rpki-client