This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft File: 1jND98xsI32j-LgROMBR2Pk8nE0.mft (raw, json) Hash identifier: j1tjAvgf7aTiBzn6EAAWxwNbalYG1873WrvV1q2DHoI= Subject key identifier: CA:42:07:AA:82:69:7C:EA:6E:8C:22:7B:35:8F:97:71:54:F4:86:30 Authority key identifier: D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D Certificate issuer: /CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d Certificate serial: 019C420FC388055D7FC5F3B7F18EDCB6D221 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 11:00:55 +0000 Manifest this update: Mon 09 Feb 2026 11:00:55 +0000 Manifest next update: Tue 10 Feb 2026 11:00:55 +0000 Files and hashes: 1: 1jND98xsI32j-LgROMBR2Pk8nE0.crl (hash: e20aT2M3o0veNUverPKMFmhL2PjqyOgmXUy6mZM+4oA=) 2: EP-Dzz1NsbE3FdE9FqHYCykGClM.roa (hash: j4hgB5ZXwadY27nb0X3WLEn8DWlc84cj5g+efdOnuH8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:c3:88:05:5d:7f:c5:f3:b7:f1:8e:dc:b6:d2:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d Validity Not Before: Feb 9 11:00:55 2026 GMT Not After : Feb 10 11:00:55 2026 GMT Subject: CN=ca4207aa82697cea6e8c227b358f977154f48630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fe:01:7a:e4:6c:1a:ab:52:f6:06:e0:ba:d5: 0a:3c:e3:e2:4f:7d:fc:a8:8a:75:69:86:c8:4e:c7: 7f:b4:b3:65:19:d7:03:46:47:b0:9c:ff:2a:11:80: 45:ff:00:9c:93:6d:18:c4:eb:ab:15:13:45:48:bd: 6a:b2:aa:56:88:f2:da:24:8c:7e:85:c8:bb:fb:1e: ff:7a:c0:61:c7:aa:5b:50:c3:ee:b7:88:04:59:ce: a4:e9:24:c7:8d:b3:b8:e3:23:bd:24:94:9b:7a:6b: b3:d5:32:3e:e3:1c:9b:1a:75:08:d9:09:37:61:cc: bc:3f:91:f7:47:b6:04:0b:74:95:2b:be:58:ed:8b: e0:6f:92:c9:ab:73:e6:95:77:37:54:13:a5:5f:8d: 10:33:35:d3:15:b7:62:84:f4:50:ac:50:85:93:39: 2c:9b:9f:75:5b:83:e0:de:e8:ad:c1:63:31:80:83: c7:86:d5:91:df:d6:5f:b5:e7:3d:78:f5:67:b6:6e: bb:ea:00:65:3e:30:fb:fb:ab:18:a7:87:ca:4a:e7: 41:38:16:b5:4f:53:00:cc:82:a0:c9:0b:7e:80:82: b5:27:da:fe:c9:6e:ee:f1:40:49:b7:39:c0:35:ab: 55:a3:4e:78:40:d1:74:c4:d1:86:4a:b9:7a:91:08: 17:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:42:07:AA:82:69:7C:EA:6E:8C:22:7B:35:8F:97:71:54:F4:86:30 X509v3 Authority Key Identifier: keyid:D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:e0:22:86:fa:40:85:01:d8:df:e0:1c:66:48:60:7b:66:4b: ba:19:75:35:44:db:be:73:f7:19:4c:7e:f0:4d:06:ae:bb:d4: 97:e9:92:8f:2a:bd:9d:b1:4c:49:fc:b3:b0:02:ec:21:38:fa: 9f:6a:b4:54:22:7b:87:a1:35:24:f8:ec:e5:67:32:da:b4:33: de:ca:b3:05:9f:14:6c:91:0d:8a:3b:39:12:81:b5:9e:d0:0f: 9a:c6:4e:7c:d0:d2:d0:e5:6a:7b:8c:38:09:46:92:61:b8:62: e9:de:e4:4c:4a:04:10:27:09:c8:de:1a:e0:cf:3c:44:6a:c4: fa:9a:d5:0a:b9:0d:34:73:eb:b9:87:98:e7:4f:7d:ff:5a:cb: 93:3e:a8:19:86:99:a1:c2:07:d5:8f:92:fe:12:af:42:9b:af: 9a:0b:7e:74:0c:ad:76:26:c7:2a:a7:2a:60:04:21:9d:b5:a0: 80:47:93:d7:8c:14:9c:b2:f6:6d:95:21:0b:53:82:5c:c5:7b: 1b:66:83:b9:86:a9:f1:f4:73:71:be:05:a0:5e:0c:bc:15:5b: 7d:37:f5:f0:30:d7:d4:cb:20:b0:60:f5:8c:dd:5d:a8:49:8e: e0:e8:fe:56:93:ce:a0:95:6e:90:33:f9:d6:30:69:c0:4b:dc: fe:02:f0:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD8OIBV1/xfO38Y7cttIhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2MzM0M2Y3Y2M2YzIzN2RhM2Y4YjgxMTM4YzA1MWQ4Zjkz YzljNGQwHhcNMjYwMjA5MTEwMDU1WhcNMjYwMjEwMTEwMDU1WjAzMTEwLwYDVQQD EyhjYTQyMDdhYTgyNjk3Y2VhNmU4YzIyN2IzNThmOTc3MTU0ZjQ4NjMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArf4BeuRsGqtS9gbgutUKPOPiT338 qIp1aYbITsd/tLNlGdcDRkewnP8qEYBF/wCck20YxOurFRNFSL1qsqpWiPLaJIx+ hci7+x7/esBhx6pbUMPut4gEWc6k6STHjbO44yO9JJSbemuz1TI+4xybGnUI2Qk3 Ycy8P5H3R7YEC3SVK75Y7Yvgb5LJq3PmlXc3VBOlX40QMzXTFbdihPRQrFCFkzks m591W4Pg3uitwWMxgIPHhtWR39Zftec9ePVntm676gBlPjD7+6sYp4fKSudBOBa1 T1MAzIKgyQt+gIK1J9r+yW7u8UBJtznANatVo054QNF0xNGGSrl6kQgXpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMpCB6qCaXzqbowiezWPl3FU9IYwMB8GA1UdIwQY MBaAFNYzQ/fMbCN9o/i4ETjAUdj5PJxNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS84ZWI1ODEtOWM3NC00OGUxLTgyMWEt NTMxODBlZWM1NmZiLzEvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS84ZWI1ODEtOWM3NC00OGUxLTgyMWEtNTMxODBlZWM1NmZi LzEvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi+AihvpA hQHY3+AcZkhge2ZLuhl1NUTbvnP3GUx+8E0GrrvUl+mSjyq9nbFMSfyzsALsITj6 n2q0VCJ7h6E1JPjs5Wcy2rQz3sqzBZ8UbJENijs5EoG1ntAPmsZOfNDS0OVqe4w4 CUaSYbhi6d7kTEoEECcJyN4a4M88RGrE+prVCrkNNHPruYeY5099/1rLkz6oGYaZ ocIH1Y+S/hKvQpuvmgt+dAytdibHKqcqYAQhnbWggEeT14wUnLL2bZUhC1OCXMV7 G2aDuYap8fRzcb4FoF4MvBVbfTf18DDX1MsgsGD1jN1dqEmO4Oj+VpPOoJVukDP5 1jBpwEvc/gLwSQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:53 2026 by rpki-client