This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft File: j7phV8tS0RaPUIRsXlB5IkDt8-A.mft (raw, json) Hash identifier: HRugD9JQbBaAYIRcq0Zaxfww0On+dI9EaIyvuNhLm9I= Subject key identifier: 17:72:22:FB:7E:F9:2D:E7:DC:83:4D:BB:89:E7:76:DB:D3:D0:67:06 Authority key identifier: 8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0 Certificate issuer: /CN=8fba6157cb52d1168f50846c5e50792240edf3e0 Certificate serial: 019C41A169BED646AB1DB6DB9B34E51DBAF6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft Manifest number: 0B3F Signing time: Mon 09 Feb 2026 09:00:23 +0000 Manifest this update: Mon 09 Feb 2026 09:00:23 +0000 Manifest next update: Tue 10 Feb 2026 09:00:23 +0000 Files and hashes: 1: j7phV8tS0RaPUIRsXlB5IkDt8-A.crl (hash: dtl+RYyNwWMv5FeoQsJLcphWtqKKFlWpUqNA5eJvOzQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:69:be:d6:46:ab:1d:b6:db:9b:34:e5:1d:ba:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8fba6157cb52d1168f50846c5e50792240edf3e0 Validity Not Before: Feb 9 09:00:23 2026 GMT Not After : Feb 10 09:00:23 2026 GMT Subject: CN=177222fb7ef92de7dc834dbb89e776dbd3d06706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b2:5d:50:e0:69:b4:62:35:79:0d:e3:1c:7d: 6d:2c:82:e1:d5:95:5c:8d:90:cc:f9:63:c1:3e:f4: a1:08:ef:42:ec:c4:bb:34:18:c0:5f:43:6d:f8:b2: 93:e8:3c:d1:2d:38:22:b4:7f:79:eb:24:80:5b:09: 2a:74:6e:fa:4b:aa:b3:d0:b1:4f:f6:18:ad:16:77: 97:3c:e3:53:d4:cf:ec:51:79:42:ad:36:63:eb:42: 82:61:33:8c:42:93:83:a5:96:9a:9a:98:30:d1:40: 51:42:46:4f:14:c5:9d:2f:b4:ba:55:e1:c6:ff:23: c3:c2:79:1f:21:0a:fe:6c:78:d5:0c:25:b6:2a:7c: 46:c9:c9:a6:76:c1:a5:b9:6d:6b:50:36:13:94:28: ac:fe:ad:61:9e:c6:7a:64:67:53:00:02:40:4a:c4: ab:6a:2e:c9:0a:81:d5:26:9b:2d:9b:a8:0b:a4:e4: fb:4d:89:cc:b2:72:51:24:d2:1f:fa:e7:63:00:ed: 24:44:4d:02:c3:6b:03:77:c7:86:5d:28:df:11:ec: 51:44:5b:c4:d3:57:7f:61:65:43:0f:af:65:2a:e1: 4b:e4:3c:4d:d6:ec:5d:e0:9b:15:00:38:b5:8f:7c: ab:30:8a:3d:56:54:92:90:71:cc:d6:2e:0b:aa:29: 1f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:72:22:FB:7E:F9:2D:E7:DC:83:4D:BB:89:E7:76:DB:D3:D0:67:06 X509v3 Authority Key Identifier: keyid:8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:2a:ad:74:1a:a1:f5:1e:9f:7d:43:1c:e1:e1:30:85:c2:7b: 96:2f:7a:b1:dd:71:9e:3a:74:66:e0:5c:e7:b3:14:9b:70:b4: c8:fc:b7:ff:95:85:72:49:8f:a3:3a:b2:d2:e9:68:0d:bd:cc: d2:d9:8c:86:41:bd:d0:34:e0:a3:66:44:ef:8b:78:e8:54:e9: 4f:53:3f:8a:6a:c4:52:68:bd:c4:79:45:8d:36:c8:18:a5:ad: a5:6c:fc:73:fb:6b:78:ec:ee:4e:d1:06:9c:35:2c:9b:05:6f: ff:dd:45:17:e4:f3:13:0d:46:35:97:72:f7:58:05:fd:35:31: 75:0c:94:26:fe:3d:73:86:03:89:b7:53:28:0d:71:3c:8e:e1: 75:20:d4:84:c1:83:1d:7e:9d:33:29:26:c3:35:ed:0a:08:02: 91:25:9d:f5:15:c5:2c:ea:1f:43:8c:6c:a6:d0:69:c3:6c:46: d4:8e:df:d1:0a:93:77:eb:01:8b:e0:6c:c7:c3:42:63:7a:10: ad:97:d2:69:5f:cf:44:3e:da:8f:de:a0:bc:58:ae:53:7e:8a: 32:3f:b8:ba:5b:a5:5d:b3:e2:32:10:25:17:96:b2:77:01:07: dd:61:c5:e4:68:b5:72:1e:59:19:3c:f4:e1:ce:78:9e:09:e6: 17:1e:1c:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoWm+1karHbbbmzTlHbr2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmYmE2MTU3Y2I1MmQxMTY4ZjUwODQ2YzVlNTA3OTIyNDBl ZGYzZTAwHhcNMjYwMjA5MDkwMDIzWhcNMjYwMjEwMDkwMDIzWjAzMTEwLwYDVQQD EygxNzcyMjJmYjdlZjkyZGU3ZGM4MzRkYmI4OWU3NzZkYmQzZDA2NzA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2LJdUOBptGI1eQ3jHH1tLILh1ZVc jZDM+WPBPvShCO9C7MS7NBjAX0Nt+LKT6DzRLTgitH956ySAWwkqdG76S6qz0LFP 9hitFneXPONT1M/sUXlCrTZj60KCYTOMQpODpZaampgw0UBRQkZPFMWdL7S6VeHG /yPDwnkfIQr+bHjVDCW2KnxGycmmdsGluW1rUDYTlCis/q1hnsZ6ZGdTAAJASsSr ai7JCoHVJpstm6gLpOT7TYnMsnJRJNIf+udjAO0kRE0Cw2sDd8eGXSjfEexRRFvE 01d/YWVDD69lKuFL5DxN1uxd4JsVADi1j3yrMIo9VlSSkHHM1i4Lqikf4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBdyIvt++S3n3INNu4nndtvT0GcGMB8GA1UdIwQY MBaAFI+6YVfLUtEWj1CEbF5QeSJA7fPgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvajdwaFY4dFMwUmFQVUlSc1hsQjVJa0R0OC1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9lMjViNjMtN2I5NC00NzU5LTkxOTUt MjBmYWQ5NGNhYjE0LzEvajdwaFY4dFMwUmFQVUlSc1hsQjVJa0R0OC1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9lMjViNjMtN2I5NC00NzU5LTkxOTUtMjBmYWQ5NGNhYjE0 LzEvajdwaFY4dFMwUmFQVUlSc1hsQjVJa0R0OC1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQyqtdBqh 9R6ffUMc4eEwhcJ7li96sd1xnjp0ZuBc57MUm3C0yPy3/5WFckmPozqy0uloDb3M 0tmMhkG90DTgo2ZE74t46FTpT1M/imrEUmi9xHlFjTbIGKWtpWz8c/treOzuTtEG nDUsmwVv/91FF+TzEw1GNZdy91gF/TUxdQyUJv49c4YDibdTKA1xPI7hdSDUhMGD HX6dMykmwzXtCggCkSWd9RXFLOofQ4xsptBpw2xG1I7f0QqTd+sBi+Bsx8NCY3oQ rZfSaV/PRD7aj96gvFiuU36KMj+4ululXbPiMhAlF5aydwEH3WHF5Gi1ch5ZGTz0 4c54ngnmFx4cNQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:39 2026 by rpki-client