This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json) Hash identifier: lVL02D1QyT3AdA90wAdPp89Uixrkg/nLUdTlzkum/4k= Subject key identifier: 92:78:E8:88:76:F4:C0:DE:8E:99:2E:18:5D:29:71:44:6A:D6:14:FD Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4 Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4 Certificate serial: 019C435955694D61C5BEDCC243754615EF54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft Manifest number: 0BC2 Signing time: Mon 09 Feb 2026 17:00:53 +0000 Manifest this update: Mon 09 Feb 2026 17:00:53 +0000 Manifest next update: Tue 10 Feb 2026 17:00:53 +0000 Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: 9DuEq2c8FcNWApDvvbKydCN7/d32c9jetYFs8VDKTME=) 2: mcYH2WbtharfS1cKE4nDVc9cSUQ.roa (hash: 6NNnIl4fnOkglhpxTOXbgmIwZY5zvuF1yTHWpVT47EM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:55:69:4d:61:c5:be:dc:c2:43:75:46:15:ef:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4 Validity Not Before: Feb 9 17:00:53 2026 GMT Not After : Feb 10 17:00:53 2026 GMT Subject: CN=9278e88876f4c0de8e992e185d2971446ad614fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:7c:28:af:99:70:3b:90:11:c4:46:d8:71: 04:20:27:25:5d:30:95:fb:17:d7:49:79:db:69:dd: 66:82:7e:22:fd:7e:6e:9b:48:ad:c5:75:96:66:14: 67:6b:41:78:e4:27:f3:c9:f3:91:9e:96:96:da:2d: b3:a4:55:97:c0:99:da:07:46:d8:bd:9b:50:c6:26: 65:01:b9:0f:c3:f1:82:62:39:cf:71:76:a9:67:9c: e9:cb:ab:25:a1:1e:73:27:38:28:19:1b:f3:3c:00: 5f:8e:22:dd:74:20:cf:29:a7:0b:b6:57:5a:b7:c2: 46:3d:75:47:9a:c2:a3:06:64:9a:5c:f8:b2:de:4f: 26:70:49:30:6d:1e:c9:12:88:31:3c:c2:90:85:58: 97:a8:c3:c3:ed:3e:ee:16:fe:6c:b3:f2:a3:e3:01: 39:c1:27:3b:62:7b:26:dc:84:c9:89:fa:bd:55:e4: 89:47:86:1a:d8:6e:6e:ac:86:d2:08:08:fa:82:7c: 21:6d:ab:65:14:9f:ba:b2:75:67:ab:ed:c3:5b:7f: 39:a4:2f:9e:fc:fa:39:23:3b:1a:cb:58:e9:25:c4: f9:67:5e:71:1d:a0:f2:91:14:76:d4:75:f6:71:dc: fb:f0:0b:65:e9:52:7b:b3:ec:62:90:28:05:b9:a8: d4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:78:E8:88:76:F4:C0:DE:8E:99:2E:18:5D:29:71:44:6A:D6:14:FD X509v3 Authority Key Identifier: keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:cb:93:f4:78:06:0b:68:1c:04:1a:34:6e:22:97:cd:a4:86: 4d:ed:30:39:57:44:8e:97:6c:7b:59:62:a8:f0:c7:76:a2:b2: e1:58:a6:93:90:1d:d1:53:26:87:c8:ad:2c:a1:7f:8c:62:e4: ca:a5:dd:d5:19:6b:b3:da:9b:61:c6:c9:2c:a0:a8:a5:0d:9f: 4f:66:5c:aa:5d:56:25:10:42:e9:f7:7a:3d:0e:4b:86:20:00: 4c:c1:b9:99:30:88:c2:8b:05:1d:9f:43:c7:53:2a:d4:f7:70: 25:4c:29:45:0c:97:2c:20:a9:19:ff:51:2b:d8:c2:0c:c1:6f: 61:87:9a:17:1e:28:2a:11:30:93:55:4a:0c:e5:83:76:9e:c0: 59:da:10:64:e2:e7:30:2e:d1:1f:3a:5c:0b:72:29:4f:c9:7b: ce:d3:11:79:fe:1f:f3:e6:e8:88:65:4d:c2:84:1a:5c:4a:00: 2b:dd:a4:23:fc:97:70:6e:e1:54:cb:99:0a:39:b6:e3:5b:ef: d3:a6:e4:c2:a5:6d:28:38:3d:a0:43:60:c8:60:42:10:7f:ce: 7f:4c:22:6a:bf:4a:e9:3e:5b:93:22:98:8f:08:26:88:05:46: 96:fe:75:53:b3:06:fa:79:a4:0a:73:cd:a3:34:c0:a2:be:ce: aa:11:74:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWVVpTWHFvtzCQ3VGFe9UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0YTlkODRjNmQxNmMwODMwOTNjMzM3MWI0NTc1ZDM2ZWY0 NDhmZTQwHhcNMjYwMjA5MTcwMDUzWhcNMjYwMjEwMTcwMDUzWjAzMTEwLwYDVQQD Eyg5Mjc4ZTg4ODc2ZjRjMGRlOGU5OTJlMTg1ZDI5NzE0NDZhZDYxNGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt098KK+ZcDuQEcRG2HEEICclXTCV +xfXSXnbad1mgn4i/X5um0itxXWWZhRna0F45CfzyfORnpaW2i2zpFWXwJnaB0bY vZtQxiZlAbkPw/GCYjnPcXapZ5zpy6sloR5zJzgoGRvzPABfjiLddCDPKacLtlda t8JGPXVHmsKjBmSaXPiy3k8mcEkwbR7JEogxPMKQhViXqMPD7T7uFv5ss/Kj4wE5 wSc7Ynsm3ITJifq9VeSJR4Ya2G5urIbSCAj6gnwhbatlFJ+6snVnq+3DW385pC+e /Po5Izsay1jpJcT5Z15xHaDykRR21HX2cdz78Atl6VJ7s+xikCgFuajUpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJJ46Ih29MDejpkuGF0pcURq1hT9MB8GA1UdIwQY MBaAFCSp2ExtFsCDCTwzcbRXXTbvRI/kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSktuWVRHMFd3SU1KUEROeHRGZGROdTlFai1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8wNWNhMWQtYzM1Ny00OGJjLTk2MDkt NDVhNTM0ZjIyMmY0LzEvSktuWVRHMFd3SU1KUEROeHRGZGROdTlFai1RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS8wNWNhMWQtYzM1Ny00OGJjLTk2MDktNDVhNTM0ZjIyMmY0 LzEvSktuWVRHMFd3SU1KUEROeHRGZGROdTlFai1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUcuT9HgG C2gcBBo0biKXzaSGTe0wOVdEjpdse1liqPDHdqKy4Vimk5Ad0VMmh8itLKF/jGLk yqXd1Rlrs9qbYcbJLKCopQ2fT2Zcql1WJRBC6fd6PQ5LhiAATMG5mTCIwosFHZ9D x1Mq1PdwJUwpRQyXLCCpGf9RK9jCDMFvYYeaFx4oKhEwk1VKDOWDdp7AWdoQZOLn MC7RHzpcC3IpT8l7ztMRef4f8+boiGVNwoQaXEoAK92kI/yXcG7hVMuZCjm241vv 06bkwqVtKDg9oENgyGBCEH/Of0wiar9K6T5bkyKYjwgmiAVGlv51U7MG+nmkCnPN ozTAor7OqhF0Sw== -----END CERTIFICATE-----Generated at Tue Feb 10 03:15:01 2026 by rpki-client