This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f7c14b-4115-4a92-81b5-738940810adf/1/j3phc572fsR6X9EOVvx6NNy3PHA.mft File: j3phc572fsR6X9EOVvx6NNy3PHA.mft (raw, json) Hash identifier: ToUI/IR+t1KYtvGksbJHuf8OAOxk7B56W+sx3A1aqPY= Subject key identifier: F4:F0:2D:4E:3A:1B:B8:FD:D6:95:CB:0F:98:C0:E4:75:72:B0:83:DD Authority key identifier: 8F:7A:61:73:9E:F6:7E:C4:7A:5F:D1:0E:56:FC:7A:34:DC:B7:3C:70 Certificate issuer: /CN=8f7a61739ef67ec47a5fd10e56fc7a34dcb73c70 Certificate serial: 019C41D862D4C269037AE70BD387CFD0B07B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j3phc572fsR6X9EOVvx6NNy3PHA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f7c14b-4115-4a92-81b5-738940810adf/1/j3phc572fsR6X9EOVvx6NNy3PHA.mft Manifest number: 1062 Signing time: Mon 09 Feb 2026 10:00:25 +0000 Manifest this update: Mon 09 Feb 2026 10:00:25 +0000 Manifest next update: Tue 10 Feb 2026 10:00:25 +0000 Files and hashes: 1: j3phc572fsR6X9EOVvx6NNy3PHA.crl (hash: rMxSwIZWpSBnYTsb0+QiPaj950w3/MoGsLeK9jeQz4I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f7c14b-4115-4a92-81b5-738940810adf/1/j3phc572fsR6X9EOVvx6NNy3PHA.crl rsync://rpki.ripe.net/repository/DEFAULT/43/f7c14b-4115-4a92-81b5-738940810adf/1/j3phc572fsR6X9EOVvx6NNy3PHA.mft rsync://rpki.ripe.net/repository/DEFAULT/j3phc572fsR6X9EOVvx6NNy3PHA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:62:d4:c2:69:03:7a:e7:0b:d3:87:cf:d0:b0:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8f7a61739ef67ec47a5fd10e56fc7a34dcb73c70 Validity Not Before: Feb 9 10:00:25 2026 GMT Not After : Feb 10 10:00:25 2026 GMT Subject: CN=f4f02d4e3a1bb8fdd695cb0f98c0e47572b083dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:71:81:c0:9b:88:c3:62:bb:05:9f:d5:21:38: 93:16:aa:ff:25:db:ca:6c:0e:5f:46:64:e6:80:71: 06:4d:9e:8e:54:e9:b5:13:eb:f5:fb:e1:41:23:fe: c5:65:c4:79:3e:29:a5:18:a3:d5:5c:56:bb:4c:0e: e5:3f:97:3f:4a:5e:cf:90:4e:ed:c9:14:f0:7a:22: 80:ef:30:e7:69:59:09:39:37:57:3a:80:e0:15:a7: a5:e8:8f:bd:1f:fb:45:a7:7e:0d:ca:ab:81:53:78: 5a:0c:71:89:28:86:7b:4e:dc:cc:5e:f3:8c:54:71: b4:94:4b:01:32:53:1a:b7:2a:9c:48:22:66:14:c5: 16:b0:55:9c:7e:3c:ce:b2:81:44:a1:74:ca:eb:aa: fa:40:c9:81:8d:a8:4b:7e:d1:3e:01:3e:6c:4c:12: c2:77:35:22:40:fc:fd:04:7e:5c:81:78:85:a2:5f: 8a:9b:0a:f6:0b:c1:18:54:91:12:93:84:bc:49:f9: de:62:6c:99:1b:6b:fb:c2:74:a4:7f:0d:22:a3:ce: 26:52:61:03:58:de:09:5e:0d:d9:1f:d3:27:ab:3c: 3e:35:ea:26:01:4f:9b:fe:6c:45:b2:91:b6:29:6e: f7:87:87:44:c6:e7:6d:01:a8:b5:8b:22:63:8a:53: ee:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F0:2D:4E:3A:1B:B8:FD:D6:95:CB:0F:98:C0:E4:75:72:B0:83:DD X509v3 Authority Key Identifier: keyid:8F:7A:61:73:9E:F6:7E:C4:7A:5F:D1:0E:56:FC:7A:34:DC:B7:3C:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j3phc572fsR6X9EOVvx6NNy3PHA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f7c14b-4115-4a92-81b5-738940810adf/1/j3phc572fsR6X9EOVvx6NNy3PHA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f7c14b-4115-4a92-81b5-738940810adf/1/j3phc572fsR6X9EOVvx6NNy3PHA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:ce:f2:fe:09:bf:5f:7f:28:c1:ec:2c:30:61:0d:aa:3e:fe: 8d:ac:d5:8a:27:e7:cc:a5:88:7a:e3:6c:41:b2:11:44:d8:8c: b8:28:2e:12:9e:ae:ad:02:78:6f:21:c2:52:3c:1f:84:bf:b7: d5:6f:d4:47:6c:db:c2:4c:db:21:e1:60:67:6d:b2:9a:9a:24: 6d:82:0b:c2:e7:2c:da:e1:c7:35:7f:09:5d:53:b0:ef:3f:b0: 6b:37:32:3e:26:7b:69:7a:6d:81:cc:ad:b6:9d:a9:b1:45:c3: 16:0b:f9:f4:2f:39:00:c0:fb:99:ab:0e:2a:ff:72:49:9e:6d: 9b:fe:c3:67:40:0b:37:24:97:7f:b8:55:b0:50:10:5e:e2:21: 74:c4:a2:9f:9a:de:2e:d8:61:15:5a:d6:10:51:48:9f:a1:42: d9:a5:9d:3b:df:3a:ea:bc:02:9a:71:dc:d9:09:8b:c2:59:2a: 34:02:e6:5e:2f:28:ec:b4:5f:97:ca:8b:59:c3:2b:f2:bb:8a: b2:5a:df:1c:e4:51:86:d9:14:54:c4:66:19:81:60:d2:e0:13: 74:1a:bd:20:01:88:90:db:59:eb:0d:5a:7c:72:c1:0c:f0:26: 7a:59:e8:3f:f0:ad:17:29:7d:b8:1e:ee:8d:72:97:bd:9a:b9: 79:97:a6:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2GLUwmkDeucL04fP0LB7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmN2E2MTczOWVmNjdlYzQ3YTVmZDEwZTU2ZmM3YTM0ZGNi NzNjNzAwHhcNMjYwMjA5MTAwMDI1WhcNMjYwMjEwMTAwMDI1WjAzMTEwLwYDVQQD EyhmNGYwMmQ0ZTNhMWJiOGZkZDY5NWNiMGY5OGMwZTQ3NTcyYjA4M2RkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHGBwJuIw2K7BZ/VITiTFqr/JdvK bA5fRmTmgHEGTZ6OVOm1E+v1++FBI/7FZcR5PimlGKPVXFa7TA7lP5c/Sl7PkE7t yRTweiKA7zDnaVkJOTdXOoDgFael6I+9H/tFp34NyquBU3haDHGJKIZ7TtzMXvOM VHG0lEsBMlMatyqcSCJmFMUWsFWcfjzOsoFEoXTK66r6QMmBjahLftE+AT5sTBLC dzUiQPz9BH5cgXiFol+Kmwr2C8EYVJESk4S8SfneYmyZG2v7wnSkfw0io84mUmED WN4JXg3ZH9Mnqzw+NeomAU+b/mxFspG2KW73h4dExudtAai1iyJjilPuuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPTwLU46G7j91pXLD5jA5HVysIPdMB8GA1UdIwQY MBaAFI96YXOe9n7Eel/RDlb8ejTctzxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvajNwaGM1NzJmc1I2WDlFT1Z2eDZOTnkzUEhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9mN2MxNGItNDExNS00YTkyLTgxYjUt NzM4OTQwODEwYWRmLzEvajNwaGM1NzJmc1I2WDlFT1Z2eDZOTnkzUEhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9mN2MxNGItNDExNS00YTkyLTgxYjUtNzM4OTQwODEwYWRm LzEvajNwaGM1NzJmc1I2WDlFT1Z2eDZOTnkzUEhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhs7y/gm/ X38owewsMGENqj7+jazViifnzKWIeuNsQbIRRNiMuCguEp6urQJ4byHCUjwfhL+3 1W/UR2zbwkzbIeFgZ22ympokbYILwucs2uHHNX8JXVOw7z+wazcyPiZ7aXptgcyt tp2psUXDFgv59C85AMD7masOKv9ySZ5tm/7DZ0ALNySXf7hVsFAQXuIhdMSin5re LthhFVrWEFFIn6FC2aWdO9866rwCmnHc2QmLwlkqNALmXi8o7LRfl8qLWcMr8ruK slrfHORRhtkUVMRmGYFg0uATdBq9IAGIkNtZ6w1afHLBDPAmelnoP/CtFyl9uB7u jXKXvZq5eZemqQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:11 2026 by rpki-client