This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft File: JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft (raw, json) Hash identifier: Xu2ZBMg+SUMczMGwZliROICSflUqm5z0uc854W02K1I= Subject key identifier: 70:E7:ED:1C:07:BC:81:66:60:CB:50:2C:5A:55:B2:1B:1D:A1:67:65 Authority key identifier: 25:A2:90:55:9F:72:A7:01:23:1C:02:8E:70:A2:50:69:03:55:A6:39 Certificate issuer: /CN=25a290559f72a701231c028e70a250690355a639 Certificate serial: 019C41342FBE9A7EF0708F0E63E74F406632 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft Manifest number: 154E Signing time: Mon 09 Feb 2026 07:01:04 +0000 Manifest this update: Mon 09 Feb 2026 07:01:04 +0000 Manifest next update: Tue 10 Feb 2026 07:01:04 +0000 Files and hashes: 1: JaKQVZ9ypwEjHAKOcKJQaQNVpjk.crl (hash: O204lXeu0yOwMlu65IWWft1qDuyABUy99O2+cf9a2X0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.crl rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft rsync://rpki.ripe.net/repository/DEFAULT/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:2f:be:9a:7e:f0:70:8f:0e:63:e7:4f:40:66:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25a290559f72a701231c028e70a250690355a639 Validity Not Before: Feb 9 07:01:04 2026 GMT Not After : Feb 10 07:01:04 2026 GMT Subject: CN=70e7ed1c07bc816660cb502c5a55b21b1da16765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c5:d8:0a:61:1a:f7:c9:22:a6:d5:f2:1f:04: de:32:c3:dc:95:76:53:da:74:25:f7:df:4e:69:7d: d9:25:a7:78:68:4b:e3:45:49:65:a6:b5:32:45:eb: bc:ec:7f:dd:e7:70:ac:ca:1b:ff:ae:9d:cb:3a:19: f8:52:bf:4b:27:3a:56:7c:75:3f:b4:50:67:d2:c5: a4:90:36:ab:89:dc:ed:3d:b6:4d:eb:56:2a:26:3f: 4b:ee:66:d8:c3:2c:82:2b:a3:f8:20:36:5f:66:f1: 2b:5a:f9:25:09:61:dc:85:99:67:27:04:6e:66:a5: 31:69:bf:f6:e1:14:e0:bd:c2:a3:2e:7c:99:4b:27: 75:cc:ed:b1:2e:af:37:1e:e5:8b:29:1b:b7:0f:3d: 55:01:f5:07:62:38:ce:11:3c:89:9b:14:68:c7:35: 07:5c:52:18:84:1f:49:00:bc:17:bd:4b:62:c9:3b: 59:a0:70:20:c1:d3:11:c6:5e:a9:fa:41:b2:be:00: e4:6e:f3:6a:be:1c:9c:30:7c:1e:ce:09:17:18:38: a1:ca:ac:b6:de:6f:83:4e:97:d5:f6:07:01:3b:50: a8:e0:62:fa:0f:47:bd:f8:4e:45:01:42:b1:31:1e: 75:3b:61:99:9a:cd:a0:d9:23:75:0e:8d:81:e0:de: 68:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E7:ED:1C:07:BC:81:66:60:CB:50:2C:5A:55:B2:1B:1D:A1:67:65 X509v3 Authority Key Identifier: keyid:25:A2:90:55:9F:72:A7:01:23:1C:02:8E:70:A2:50:69:03:55:A6:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:92:30:6f:d3:a8:50:f8:17:b8:9d:42:5a:cb:69:ed:4a:f6: a9:70:f2:62:18:5f:72:dd:4e:6d:d9:be:89:55:3f:78:c2:ff: 54:38:53:4e:4f:9b:aa:87:ed:3d:2f:e8:1a:f4:a9:5d:0c:1f: aa:d0:89:d5:5c:6c:fc:9e:d9:88:93:0f:60:81:93:b7:e0:77: ef:d5:14:7c:f9:1e:20:b2:dc:ca:f5:44:31:a4:b7:41:2e:92: 48:8a:34:dc:22:06:4e:a9:e4:1b:e6:53:b7:0f:f3:f5:60:15: bc:9d:c6:bf:b2:99:04:e9:97:3a:69:22:60:b6:a4:99:85:43: f0:db:1a:39:4a:c8:45:11:36:77:6e:1c:70:65:86:51:df:23: d2:32:c4:4f:e0:a2:66:12:2b:0f:2d:64:9b:57:0c:ee:c3:86: fa:3b:f9:4e:39:35:b6:33:e9:08:31:b6:fc:60:7b:e3:b3:9a: 0c:64:2a:bc:78:fb:c1:e3:de:cf:9b:0b:70:14:df:2c:33:69: dc:93:ca:24:b7:1f:16:e9:ca:56:6c:a6:47:86:21:da:c1:35: e2:4c:9d:ad:4a:bf:03:00:85:0b:f9:03:4e:e5:f4:d5:02:c8: 71:e2:79:b2:cd:39:8d:2a:fb:93:b3:1a:92:c6:97:d6:c9:de: 01:97:2d:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNC++mn7wcI8OY+dPQGYyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1YTI5MDU1OWY3MmE3MDEyMzFjMDI4ZTcwYTI1MDY5MDM1 NWE2MzkwHhcNMjYwMjA5MDcwMTA0WhcNMjYwMjEwMDcwMTA0WjAzMTEwLwYDVQQD Eyg3MGU3ZWQxYzA3YmM4MTY2NjBjYjUwMmM1YTU1YjIxYjFkYTE2NzY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMXYCmEa98kiptXyHwTeMsPclXZT 2nQl999OaX3ZJad4aEvjRUllprUyReu87H/d53Csyhv/rp3LOhn4Ur9LJzpWfHU/ tFBn0sWkkDaridztPbZN61YqJj9L7mbYwyyCK6P4IDZfZvErWvklCWHchZlnJwRu ZqUxab/24RTgvcKjLnyZSyd1zO2xLq83HuWLKRu3Dz1VAfUHYjjOETyJmxRoxzUH XFIYhB9JALwXvUtiyTtZoHAgwdMRxl6p+kGyvgDkbvNqvhycMHwezgkXGDihyqy2 3m+DTpfV9gcBO1Co4GL6D0e9+E5FAUKxMR51O2GZms2g2SN1Do2B4N5oHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHDn7RwHvIFmYMtQLFpVshsdoWdlMB8GA1UdIwQY MBaAFCWikFWfcqcBIxwCjnCiUGkDVaY5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmFLUVZaOXlwd0VqSEFLT2NLSlFhUU5WcGprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9lN2ZlMDYtNGQ0NC00MzBmLTllY2It Mjk1ZmNmODdlYTI3LzEvSmFLUVZaOXlwd0VqSEFLT2NLSlFhUU5WcGprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9lN2ZlMDYtNGQ0NC00MzBmLTllY2ItMjk1ZmNmODdlYTI3 LzEvSmFLUVZaOXlwd0VqSEFLT2NLSlFhUU5WcGprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApJIwb9Oo UPgXuJ1CWstp7Ur2qXDyYhhfct1Obdm+iVU/eML/VDhTTk+bqoftPS/oGvSpXQwf qtCJ1Vxs/J7ZiJMPYIGTt+B379UUfPkeILLcyvVEMaS3QS6SSIo03CIGTqnkG+ZT tw/z9WAVvJ3Gv7KZBOmXOmkiYLakmYVD8NsaOUrIRRE2d24ccGWGUd8j0jLET+Ci ZhIrDy1km1cM7sOG+jv5Tjk1tjPpCDG2/GB747OaDGQqvHj7wePez5sLcBTfLDNp 3JPKJLcfFunKVmymR4Yh2sE14kydrUq/AwCFC/kDTuX01QLIceJ5ss05jSr7k7Ma ksaX1sneAZctRA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:50 2026 by rpki-client