This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft File: J83PK9CaINK63Tq2yMft-h_Vwsw.mft (raw, json) Hash identifier: GniA6FfLlQfED4f1fBHnNLITHPglaT7Cd/FD+bHBHpM= Subject key identifier: 8E:4C:06:35:70:D1:6E:4F:D0:91:20:B4:15:BF:49:8E:B9:96:66:9B Authority key identifier: 27:CD:CF:2B:D0:9A:20:D2:BA:DD:3A:B6:C8:C7:ED:FA:1F:D5:C2:CC Certificate issuer: /CN=27cdcf2bd09a20d2badd3ab6c8c7edfa1fd5c2cc Certificate serial: 019C420FC24A513DD37C37329B4F4B90AD9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft Manifest number: 0529 Signing time: Mon 09 Feb 2026 11:00:54 +0000 Manifest this update: Mon 09 Feb 2026 11:00:54 +0000 Manifest next update: Tue 10 Feb 2026 11:00:54 +0000 Files and hashes: 1: J83PK9CaINK63Tq2yMft-h_Vwsw.crl (hash: Mm6I3N5orpEOrzTAs4HHACMHkghJXiNdyLVGHXA1OOA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.crl rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:c2:4a:51:3d:d3:7c:37:32:9b:4f:4b:90:ad:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27cdcf2bd09a20d2badd3ab6c8c7edfa1fd5c2cc Validity Not Before: Feb 9 11:00:54 2026 GMT Not After : Feb 10 11:00:54 2026 GMT Subject: CN=8e4c063570d16e4fd09120b415bf498eb996669b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:6a:3c:be:a6:c7:0b:dc:0a:86:28:1d:6c:35: b0:8b:26:4d:23:35:b7:4b:71:f1:ca:c7:c2:40:64: 22:42:b1:16:0c:29:d2:33:18:40:53:74:6c:ba:05: 1e:35:32:92:f2:c7:a0:48:33:04:02:34:c9:56:29: e5:42:05:15:b7:c8:d6:67:5e:d0:00:0a:ad:4f:b4: 77:03:5b:cb:4a:2b:6e:bb:1f:f7:5d:2c:f3:e2:8a: a7:ef:43:b3:d0:c9:45:7a:53:40:b6:2f:61:f9:d9: 33:35:1f:f7:d5:6c:c5:b2:f4:b7:c6:37:91:91:05: 9a:19:6d:fd:7a:f8:3a:58:c0:1f:65:42:28:6d:2e: e4:ad:19:76:88:46:71:d6:ce:5a:70:6a:42:dd:96: f7:7e:e8:d7:26:20:11:9e:9b:c0:7d:97:40:02:40: 11:9b:6e:0f:5e:60:6d:dc:da:b6:4e:34:ff:9b:25: f2:6b:5b:81:e2:3c:e8:7e:7c:36:fd:d2:b3:0f:9e: c9:1c:8a:e4:d1:23:13:59:9d:e3:0a:d6:54:4b:1c: 60:71:e9:d1:84:82:8a:a5:b4:18:89:1e:17:63:a7: 2d:51:7b:a4:d3:e2:ca:ce:c1:b7:95:a6:6e:e3:a3: 75:58:f9:e2:3a:1f:81:1f:ff:b5:1f:f4:84:55:02: 46:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:4C:06:35:70:D1:6E:4F:D0:91:20:B4:15:BF:49:8E:B9:96:66:9B X509v3 Authority Key Identifier: keyid:27:CD:CF:2B:D0:9A:20:D2:BA:DD:3A:B6:C8:C7:ED:FA:1F:D5:C2:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:67:54:6b:70:0c:72:db:08:4a:2c:dc:99:b9:96:04:8a:f5: 5d:d4:73:3b:67:eb:d1:b4:2b:49:f1:9c:ef:59:34:32:4d:64: c7:a5:b6:5e:71:c2:59:e6:48:7d:0f:3d:60:16:81:f9:87:f6: 9d:b0:c5:fe:18:47:68:0c:3a:5e:ae:33:6f:72:40:36:d4:a4: aa:eb:7f:b1:ae:83:0e:9e:05:40:dc:3e:44:14:d8:f8:83:71: d7:5a:11:cb:1d:aa:20:5d:bf:1e:4c:ed:91:44:77:c9:70:16: a1:3a:14:81:12:3d:64:78:1e:d6:7b:01:11:34:0d:8f:15:d7: a9:a9:22:68:42:7b:48:b8:e0:2b:eb:94:fe:d2:a7:01:6b:3e: c2:9e:87:a8:42:51:d1:a5:a4:21:b0:01:dc:31:96:42:da:37: c5:76:ad:51:c6:ad:fc:82:77:31:c9:95:00:5b:99:d4:8f:3b: b8:d7:64:00:e7:12:b0:8b:71:de:34:28:27:11:78:ef:cf:67: b4:5c:90:0b:9a:33:11:fb:d5:3f:9f:d2:72:d3:ec:09:a6:9f: 34:39:dc:70:ab:13:ad:f9:9f:cb:82:7d:10:e0:28:30:f0:e2: dd:90:d5:8a:6f:4d:b8:8f:1d:a4:e9:46:66:d9:05:1f:b7:a1: cc:82:d9:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD8JKUT3TfDcym09LkK2cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3Y2RjZjJiZDA5YTIwZDJiYWRkM2FiNmM4YzdlZGZhMWZk NWMyY2MwHhcNMjYwMjA5MTEwMDU0WhcNMjYwMjEwMTEwMDU0WjAzMTEwLwYDVQQD Eyg4ZTRjMDYzNTcwZDE2ZTRmZDA5MTIwYjQxNWJmNDk4ZWI5OTY2NjliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkmo8vqbHC9wKhigdbDWwiyZNIzW3 S3HxysfCQGQiQrEWDCnSMxhAU3RsugUeNTKS8segSDMEAjTJVinlQgUVt8jWZ17Q AAqtT7R3A1vLSituux/3XSzz4oqn70Oz0MlFelNAti9h+dkzNR/31WzFsvS3xjeR kQWaGW39evg6WMAfZUIobS7krRl2iEZx1s5acGpC3Zb3fujXJiARnpvAfZdAAkAR m24PXmBt3Nq2TjT/myXya1uB4jzofnw2/dKzD57JHIrk0SMTWZ3jCtZUSxxgcenR hIKKpbQYiR4XY6ctUXuk0+LKzsG3laZu46N1WPniOh+BH/+1H/SEVQJGMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI5MBjVw0W5P0JEgtBW/SY65lmabMB8GA1UdIwQY MBaAFCfNzyvQmiDSut06tsjH7fof1cLMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjgzUEs5Q2FJTks2M1RxMnlNZnQtaF9Wd3N3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kMmJjOTAtMjk1MC00MzIyLWE5MmUt YzYzZmNkMDNhODliLzEvSjgzUEs5Q2FJTks2M1RxMnlNZnQtaF9Wd3N3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9kMmJjOTAtMjk1MC00MzIyLWE5MmUtYzYzZmNkMDNhODli LzEvSjgzUEs5Q2FJTks2M1RxMnlNZnQtaF9Wd3N3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAGdUa3AM ctsISizcmbmWBIr1XdRzO2fr0bQrSfGc71k0Mk1kx6W2XnHCWeZIfQ89YBaB+Yf2 nbDF/hhHaAw6Xq4zb3JANtSkqut/sa6DDp4FQNw+RBTY+INx11oRyx2qIF2/Hkzt kUR3yXAWoToUgRI9ZHge1nsBETQNjxXXqakiaEJ7SLjgK+uU/tKnAWs+wp6HqEJR 0aWkIbAB3DGWQto3xXatUcat/IJ3McmVAFuZ1I87uNdkAOcSsItx3jQoJxF4789n tFyQC5ozEfvVP5/SctPsCaafNDnccKsTrfmfy4J9EOAoMPDi3ZDVim9NuI8dpOlG ZtkFH7ehzILZRQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:23 2026 by rpki-client