This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft File: JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft (raw, json) Hash identifier: 3Apc9In7WdAkPZIFdNsbOeJVkIsEps6xzTJSZQo3A4c= Subject key identifier: 7B:D0:55:14:E8:26:44:C6:25:A3:34:3F:78:19:AC:9F:08:29:3A:14 Authority key identifier: 25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF Certificate issuer: /CN=258906554d8c8b428ede8cb35026860d3d7771df Certificate serial: 019C41A1FF283664567EA16EE588977BCB97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft Manifest number: 0EEF Signing time: Mon 09 Feb 2026 09:01:01 +0000 Manifest this update: Mon 09 Feb 2026 09:01:01 +0000 Manifest next update: Tue 10 Feb 2026 09:01:01 +0000 Files and hashes: 1: JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl (hash: BFlkarWx2KZ/FGoEdzT9y2Is/0mdY5f1OaK1+kPiFS8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:ff:28:36:64:56:7e:a1:6e:e5:88:97:7b:cb:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=258906554d8c8b428ede8cb35026860d3d7771df Validity Not Before: Feb 9 09:01:01 2026 GMT Not After : Feb 10 09:01:01 2026 GMT Subject: CN=7bd05514e82644c625a3343f7819ac9f08293a14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:25:62:22:27:26:d9:15:c7:bf:03:cc:e1:30: 1c:96:95:ba:d4:ff:3d:f7:ac:a6:f7:12:41:10:95: e0:ff:ef:c8:d9:b4:a3:91:96:7c:50:f5:91:71:e2: 7f:59:51:fb:9c:98:de:71:55:c7:e0:25:41:54:bd: e0:f9:c1:f6:26:ad:26:b9:d4:b5:c7:d5:8a:3c:98: 55:95:1c:d0:06:6b:8f:25:55:59:04:68:a5:66:42: 54:65:3e:96:db:2c:83:6f:e4:9d:84:55:a6:c1:9a: da:60:95:42:2b:b2:ca:33:81:a7:b3:57:62:12:41: 73:8e:c7:68:c9:c0:b1:26:88:d0:a4:67:70:81:f6: 17:1e:fd:95:34:a6:cc:c8:da:23:69:8a:d7:cf:f9: 53:9d:01:36:98:05:a3:a4:db:2c:b3:92:81:2d:75: a4:a2:0b:20:4e:c1:58:5c:64:e2:c1:5f:83:73:da: 24:0b:b5:99:19:47:11:1a:da:e3:af:a5:c2:5e:a2: 26:0e:4b:75:d2:83:14:b1:e5:3d:b3:b4:74:c0:fd: 9b:6a:94:2d:28:c2:0d:3d:24:d2:41:71:35:bd:cf: e9:02:e1:1e:ff:97:8b:e1:ee:af:49:7a:8a:33:32: a7:7c:02:03:be:1d:e4:f9:3d:d7:d2:9f:f9:bb:fc: 4f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D0:55:14:E8:26:44:C6:25:A3:34:3F:78:19:AC:9F:08:29:3A:14 X509v3 Authority Key Identifier: keyid:25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:68:0b:c6:fc:79:2d:15:7d:be:ff:bc:7e:ad:f6:d3:cf:b2: c4:73:03:c5:fc:73:72:b7:7e:1e:24:71:61:b6:b4:d9:76:df: 8c:ff:05:7c:2a:96:85:23:ea:cc:d2:05:50:a3:5f:1a:1a:a0: 22:3e:82:52:6e:8f:ef:4c:39:c5:ca:fc:9e:4f:0e:a2:4a:09: 64:eb:e7:18:e0:19:f2:f3:90:e9:8a:0b:9b:b5:77:f4:63:a1: d6:99:68:d0:ec:47:b0:2b:ec:bb:ff:9e:ab:b6:11:64:5b:55: a2:ef:2a:17:65:ba:b1:c0:6a:48:81:1e:b5:19:a6:d1:7a:10: 15:c9:88:c7:79:37:15:18:c9:f7:da:2c:d3:5c:5e:5b:31:80: f4:f3:c7:1c:40:bc:11:6d:e9:b0:e3:4a:65:4d:be:d9:7f:13: e1:c8:21:53:a9:7c:ed:94:16:ac:07:db:40:fa:35:d5:26:14: 40:97:c9:c6:56:07:bf:27:ac:99:67:8e:9f:88:62:b7:6b:89: 7a:56:8e:a6:d7:33:54:6d:cb:06:5a:04:b4:66:a2:43:56:de: 59:8d:de:33:ea:b7:fc:b7:0d:cb:ce:21:08:9f:7e:f1:3b:80: 19:77:57:7c:19:20:be:7f:ae:22:eb:84:59:c6:51:65:fc:15: 98:e9:c6:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBof8oNmRWfqFu5YiXe8uXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1ODkwNjU1NGQ4YzhiNDI4ZWRlOGNiMzUwMjY4NjBkM2Q3 NzcxZGYwHhcNMjYwMjA5MDkwMTAxWhcNMjYwMjEwMDkwMTAxWjAzMTEwLwYDVQQD Eyg3YmQwNTUxNGU4MjY0NGM2MjVhMzM0M2Y3ODE5YWM5ZjA4MjkzYTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyiViIicm2RXHvwPM4TAclpW61P89 96ym9xJBEJXg/+/I2bSjkZZ8UPWRceJ/WVH7nJjecVXH4CVBVL3g+cH2Jq0mudS1 x9WKPJhVlRzQBmuPJVVZBGilZkJUZT6W2yyDb+SdhFWmwZraYJVCK7LKM4Gns1di EkFzjsdoycCxJojQpGdwgfYXHv2VNKbMyNojaYrXz/lTnQE2mAWjpNsss5KBLXWk ogsgTsFYXGTiwV+Dc9okC7WZGUcRGtrjr6XCXqImDkt10oMUseU9s7R0wP2bapQt KMINPSTSQXE1vc/pAuEe/5eL4e6vSXqKMzKnfAIDvh3k+T3X0p/5u/xPFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHvQVRToJkTGJaM0P3gZrJ8IKToUMB8GA1UdIwQY MBaAFCWJBlVNjItCjt6Ms1Amhg09d3HfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSllrR1ZVMk1pMEtPM295elVDYUdEVDEzY2Q4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi85YjU3YWItNmNhMi00YWE4LTgzODct YWZkZDUzODI3ZTkzLzEvSllrR1ZVMk1pMEtPM295elVDYUdEVDEzY2Q4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi85YjU3YWItNmNhMi00YWE4LTgzODctYWZkZDUzODI3ZTkz LzEvSllrR1ZVMk1pMEtPM295elVDYUdEVDEzY2Q4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaWgLxvx5 LRV9vv+8fq3208+yxHMDxfxzcrd+HiRxYba02XbfjP8FfCqWhSPqzNIFUKNfGhqg Ij6CUm6P70w5xcr8nk8OokoJZOvnGOAZ8vOQ6YoLm7V39GOh1plo0OxHsCvsu/+e q7YRZFtVou8qF2W6scBqSIEetRmm0XoQFcmIx3k3FRjJ99os01xeWzGA9PPHHEC8 EW3psONKZU2+2X8T4cghU6l87ZQWrAfbQPo11SYUQJfJxlYHvyesmWeOn4hit2uJ elaOptczVG3LBloEtGaiQ1beWY3eM+q3/LcNy84hCJ9+8TuAGXdXfBkgvn+uIuuE WcZRZfwVmOnGlg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:41 2026 by rpki-client