This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/ecdb18-8d3b-4a72-a883-3284684ac7ec/1/JmQ9Xo5785a-PNTesdkvYBtRFp8.mft File: JmQ9Xo5785a-PNTesdkvYBtRFp8.mft (raw, json) Hash identifier: bJCtoBZBou2w4NB5xykUYSe3dk7NJICqCSsJ3nM1hig= Subject key identifier: F5:80:D5:99:B1:D8:48:8D:0F:F8:BE:93:72:4D:83:0B:22:96:84:90 Authority key identifier: 26:64:3D:5E:8E:7B:F3:96:BE:3C:D4:DE:B1:D9:2F:60:1B:51:16:9F Certificate issuer: /CN=26643d5e8e7bf396be3cd4deb1d92f601b51169f Certificate serial: 019C446BCE219758E373A055167F24A87EAB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmQ9Xo5785a-PNTesdkvYBtRFp8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/ecdb18-8d3b-4a72-a883-3284684ac7ec/1/JmQ9Xo5785a-PNTesdkvYBtRFp8.mft Manifest number: 0EA4 Signing time: Mon 09 Feb 2026 22:00:41 +0000 Manifest this update: Mon 09 Feb 2026 22:00:41 +0000 Manifest next update: Tue 10 Feb 2026 22:00:41 +0000 Files and hashes: 1: JmQ9Xo5785a-PNTesdkvYBtRFp8.crl (hash: ZDBGWZ+O8h3Trtl+HqIBC26cQydnk63tys1z1tRAe9s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/ecdb18-8d3b-4a72-a883-3284684ac7ec/1/JmQ9Xo5785a-PNTesdkvYBtRFp8.crl rsync://rpki.ripe.net/repository/DEFAULT/48/ecdb18-8d3b-4a72-a883-3284684ac7ec/1/JmQ9Xo5785a-PNTesdkvYBtRFp8.mft rsync://rpki.ripe.net/repository/DEFAULT/JmQ9Xo5785a-PNTesdkvYBtRFp8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:ce:21:97:58:e3:73:a0:55:16:7f:24:a8:7e:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26643d5e8e7bf396be3cd4deb1d92f601b51169f Validity Not Before: Feb 9 22:00:41 2026 GMT Not After : Feb 10 22:00:41 2026 GMT Subject: CN=f580d599b1d8488d0ff8be93724d830b22968490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ad:b7:70:38:d3:71:08:82:a8:07:70:a5:ad: 5f:ba:bb:d5:7b:76:80:ed:94:68:09:02:52:2e:49: 79:c5:a7:17:bf:98:ab:34:82:6e:3d:10:91:89:e9: 9b:c4:cb:08:af:0b:5c:04:49:3a:34:97:41:15:37: 90:c0:82:aa:6b:8f:b2:cc:e8:c7:dd:13:52:b3:4e: dd:25:54:6e:e3:8b:d4:ce:71:8b:f4:9b:e9:3d:e5: 6c:eb:d3:65:4c:95:73:b4:ac:b7:0d:ce:ee:8f:54: 17:d9:a6:bd:21:09:d2:0f:05:7a:a4:27:14:d3:75: ea:41:c9:b3:2e:7c:8a:2e:b2:03:15:b6:a9:c2:25: 92:8a:26:07:61:b2:1b:43:06:1a:1d:e4:a7:a0:09: 94:43:fc:ea:a3:d4:45:b1:e7:e7:78:b9:07:43:0e: 67:1b:18:5f:6a:00:5c:37:b6:11:69:54:13:8d:23: a3:33:92:d7:95:28:3d:9b:f2:03:22:1d:af:48:ec: 40:0a:80:c2:6c:dd:49:17:5b:41:c8:b5:9b:c7:36: 1e:96:2b:56:6a:3c:71:35:61:74:92:67:ab:76:25: 00:87:de:86:bc:14:85:40:65:79:2e:2c:ea:37:1a: 63:87:55:89:eb:33:3b:21:a4:20:c7:66:8f:69:ce: f0:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:80:D5:99:B1:D8:48:8D:0F:F8:BE:93:72:4D:83:0B:22:96:84:90 X509v3 Authority Key Identifier: keyid:26:64:3D:5E:8E:7B:F3:96:BE:3C:D4:DE:B1:D9:2F:60:1B:51:16:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmQ9Xo5785a-PNTesdkvYBtRFp8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/ecdb18-8d3b-4a72-a883-3284684ac7ec/1/JmQ9Xo5785a-PNTesdkvYBtRFp8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/ecdb18-8d3b-4a72-a883-3284684ac7ec/1/JmQ9Xo5785a-PNTesdkvYBtRFp8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:c4:bd:b0:a8:28:3b:58:de:19:9c:3d:ba:47:a2:5c:e0:62: 25:40:94:b9:7d:24:11:5d:a6:9b:bd:67:08:5f:8a:c7:c5:6c: 16:a9:95:73:e9:5f:14:cc:55:54:03:da:08:48:45:10:75:96: 97:69:3a:cd:6b:62:17:1a:b2:28:a6:77:5a:d1:06:a5:87:a5: 5e:1b:15:57:ac:f1:de:45:76:e3:d1:5c:25:6f:e6:46:99:f5: a3:c2:4f:8e:0c:c2:e9:50:fb:22:99:b3:4f:bc:1f:e6:b0:09: bb:e8:06:f1:c3:0d:4f:95:98:a5:ff:61:41:7c:5a:22:14:58: 29:77:51:88:3f:a6:bb:34:11:d2:94:ce:81:74:f3:db:8d:c5: 9a:77:28:08:10:6d:f5:0f:96:d9:3e:63:88:e7:f0:88:4f:08: c7:3f:55:55:4c:40:b3:5d:07:61:58:96:a0:0a:77:e9:cd:28: 72:09:dd:80:99:a7:fe:e1:20:c1:c6:75:d3:f3:4f:39:9a:ed: 4f:bd:ba:2b:2b:03:ef:75:75:a4:7d:72:e4:94:a9:d5:f7:76: a9:7d:04:09:69:05:41:dc:3e:a3:aa:b4:59:1d:96:9c:07:3d: 2e:c3:15:95:78:98:f1:05:fa:6f:43:cb:a8:1c:b6:52:03:f7: 97:69:f3:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa84hl1jjc6BVFn8kqH6rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2NjQzZDVlOGU3YmYzOTZiZTNjZDRkZWIxZDkyZjYwMWI1 MTE2OWYwHhcNMjYwMjA5MjIwMDQxWhcNMjYwMjEwMjIwMDQxWjAzMTEwLwYDVQQD EyhmNTgwZDU5OWIxZDg0ODhkMGZmOGJlOTM3MjRkODMwYjIyOTY4NDkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3K23cDjTcQiCqAdwpa1furvVe3aA 7ZRoCQJSLkl5xacXv5irNIJuPRCRiembxMsIrwtcBEk6NJdBFTeQwIKqa4+yzOjH 3RNSs07dJVRu44vUznGL9JvpPeVs69NlTJVztKy3Dc7uj1QX2aa9IQnSDwV6pCcU 03XqQcmzLnyKLrIDFbapwiWSiiYHYbIbQwYaHeSnoAmUQ/zqo9RFsefneLkHQw5n GxhfagBcN7YRaVQTjSOjM5LXlSg9m/IDIh2vSOxACoDCbN1JF1tByLWbxzYelitW ajxxNWF0kmerdiUAh96GvBSFQGV5LizqNxpjh1WJ6zM7IaQgx2aPac7wcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPWA1Zmx2EiND/i+k3JNgwsiloSQMB8GA1UdIwQY MBaAFCZkPV6Oe/OWvjzU3rHZL2AbURafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSm1ROVhvNTc4NWEtUE5UZXNka3ZZQnRSRnA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9lY2RiMTgtOGQzYi00YTcyLWE4ODMt MzI4NDY4NGFjN2VjLzEvSm1ROVhvNTc4NWEtUE5UZXNka3ZZQnRSRnA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9lY2RiMTgtOGQzYi00YTcyLWE4ODMtMzI4NDY4NGFjN2Vj LzEvSm1ROVhvNTc4NWEtUE5UZXNka3ZZQnRSRnA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASMS9sKgo O1jeGZw9ukeiXOBiJUCUuX0kEV2mm71nCF+Kx8VsFqmVc+lfFMxVVAPaCEhFEHWW l2k6zWtiFxqyKKZ3WtEGpYelXhsVV6zx3kV249FcJW/mRpn1o8JPjgzC6VD7Ipmz T7wf5rAJu+gG8cMNT5WYpf9hQXxaIhRYKXdRiD+muzQR0pTOgXTz243FmncoCBBt 9Q+W2T5jiOfwiE8Ixz9VVUxAs10HYViWoAp36c0ocgndgJmn/uEgwcZ10/NPOZrt T726KysD73V1pH1y5JSp1fd2qX0ECWkFQdw+o6q0WR2WnAc9LsMVlXiY8QX6b0PL qBy2UgP3l2nzPA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:58 2026 by rpki-client