This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft File: jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft (raw, json) Hash identifier: RI/ed3/nZn41GgJi1WWbYVWFPPXEg2OnaCx46y6Epmc= Subject key identifier: C7:A6:03:B1:37:64:0B:B9:C8:4B:43:5B:20:72:B0:6F:2B:D4:69:69 Authority key identifier: 8C:43:78:B5:71:68:2D:34:77:3B:46:37:52:70:1C:94:05:FB:ED:78 Certificate issuer: /CN=8c4378b571682d34773b463752701c9405fbed78 Certificate serial: 019C43222C11597444F53697E82744168BC8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft Manifest number: 0706 Signing time: Mon 09 Feb 2026 16:00:38 +0000 Manifest this update: Mon 09 Feb 2026 16:00:38 +0000 Manifest next update: Tue 10 Feb 2026 16:00:38 +0000 Files and hashes: 1: jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl (hash: wJgOMraqcwOtrZ9a3+0UP/BfAASZBrBKmagbO1efCNY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:2c:11:59:74:44:f5:36:97:e8:27:44:16:8b:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c4378b571682d34773b463752701c9405fbed78 Validity Not Before: Feb 9 16:00:38 2026 GMT Not After : Feb 10 16:00:38 2026 GMT Subject: CN=c7a603b137640bb9c84b435b2072b06f2bd46969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:c9:53:bd:f4:f1:23:bf:4c:e5:cd:a6:c7:a7: 9d:26:ca:92:c4:9d:d8:fe:fc:05:76:78:f5:f7:c9: 93:68:bb:be:d5:d9:d2:af:dd:a8:c6:16:af:a4:22: fa:02:43:be:ea:f0:51:35:64:2c:c5:7b:a2:7e:c7: b1:82:c9:74:b3:68:ab:ef:98:02:84:d6:59:c3:5c: 2f:51:0a:44:e6:44:14:85:42:4f:7d:b8:e0:49:07: 0a:db:9f:35:53:c8:f6:2c:78:0a:94:ca:64:cd:11: 87:5e:c6:6c:90:20:d8:cc:6c:6e:14:e2:76:c2:0e: 1e:a4:78:f5:78:d3:77:ee:32:a1:bf:24:84:72:0f: f1:16:ef:c5:99:cd:4e:d9:a2:18:bc:ac:07:c3:fd: d1:8a:ba:c8:5f:16:64:fc:13:59:71:de:a6:db:60: 8a:a4:c8:0f:41:c5:ad:5b:09:6e:48:29:c6:02:90: eb:eb:36:1e:07:66:68:10:b9:cb:cb:d9:64:07:6a: 82:77:ff:c1:eb:89:06:73:9c:b4:c3:d4:23:cf:b6: 3b:e2:44:4a:d7:2f:6e:68:e7:85:bd:4c:3b:75:9f: 24:f1:98:a2:c9:6f:32:c3:52:b1:51:99:11:66:00: 19:25:03:57:8d:a3:e6:c9:92:45:d5:7a:d5:43:fc: 93:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A6:03:B1:37:64:0B:B9:C8:4B:43:5B:20:72:B0:6F:2B:D4:69:69 X509v3 Authority Key Identifier: keyid:8C:43:78:B5:71:68:2D:34:77:3B:46:37:52:70:1C:94:05:FB:ED:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:d0:bc:45:dc:b9:20:da:13:e5:bb:b1:69:14:6c:b5:63:f8: f0:c4:48:64:b8:b6:07:22:07:49:fd:11:0c:2d:06:d6:7e:8b: 01:45:cd:b0:38:72:02:4a:48:56:ba:7a:21:6f:ed:04:1e:6b: e0:23:47:75:d6:17:b6:46:5d:43:26:ae:9b:cf:53:32:91:02: 44:58:92:2b:b8:1e:ce:08:81:44:39:16:c5:08:4e:bf:c0:aa: 96:63:c1:76:f9:e6:5d:93:7b:29:a3:82:57:b2:a3:ed:76:d5: b9:d6:f9:da:00:82:ea:53:83:67:41:90:e9:1d:f1:8c:68:70: 6f:10:6e:8c:e5:65:60:a1:ff:9d:a7:71:82:ef:36:9d:7a:97: ba:e5:a0:f5:d0:72:bf:84:45:90:44:70:d0:c4:1b:1a:be:fe: 7c:56:9a:98:80:f8:6b:6f:88:5b:33:03:3e:86:b2:2b:c2:d9: 23:ac:ad:db:89:ef:f1:1b:14:02:6d:de:a2:c3:e5:99:22:d2: 80:67:16:a4:ab:de:01:e1:84:3d:b9:19:34:04:db:f3:a0:5a: cc:ad:89:fe:07:5d:a6:ed:1d:dc:21:db:b8:0d:49:a3:a8:6b: cc:a7:02:dd:99:a0:ec:48:e9:e6:d5:0a:1f:fc:61:66:4a:34: aa:79:7c:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIiwRWXRE9TaX6CdEFovIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhjNDM3OGI1NzE2ODJkMzQ3NzNiNDYzNzUyNzAxYzk0MDVm YmVkNzgwHhcNMjYwMjA5MTYwMDM4WhcNMjYwMjEwMTYwMDM4WjAzMTEwLwYDVQQD EyhjN2E2MDNiMTM3NjQwYmI5Yzg0YjQzNWIyMDcyYjA2ZjJiZDQ2OTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgslTvfTxI79M5c2mx6edJsqSxJ3Y /vwFdnj198mTaLu+1dnSr92oxhavpCL6AkO+6vBRNWQsxXuifsexgsl0s2ir75gC hNZZw1wvUQpE5kQUhUJPfbjgSQcK2581U8j2LHgKlMpkzRGHXsZskCDYzGxuFOJ2 wg4epHj1eNN37jKhvySEcg/xFu/Fmc1O2aIYvKwHw/3RirrIXxZk/BNZcd6m22CK pMgPQcWtWwluSCnGApDr6zYeB2ZoELnLy9lkB2qCd//B64kGc5y0w9Qjz7Y74kRK 1y9uaOeFvUw7dZ8k8ZiiyW8yw1KxUZkRZgAZJQNXjaPmyZJF1XrVQ/yTjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMemA7E3ZAu5yEtDWyBysG8r1GlpMB8GA1UdIwQY MBaAFIxDeLVxaC00dztGN1JwHJQF++14MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvakVONHRYRm9MVFIzTzBZM1VuQWNsQVg3N1hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny83NmI0NDUtMzQ2MS00ZjRmLTliNDIt NzRmMDFiMjU4NmY1LzEvakVONHRYRm9MVFIzTzBZM1VuQWNsQVg3N1hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny83NmI0NDUtMzQ2MS00ZjRmLTliNDItNzRmMDFiMjU4NmY1 LzEvakVONHRYRm9MVFIzTzBZM1VuQWNsQVg3N1hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALNC8Rdy5 INoT5buxaRRstWP48MRIZLi2ByIHSf0RDC0G1n6LAUXNsDhyAkpIVrp6IW/tBB5r 4CNHddYXtkZdQyaum89TMpECRFiSK7gezgiBRDkWxQhOv8CqlmPBdvnmXZN7KaOC V7Kj7XbVudb52gCC6lODZ0GQ6R3xjGhwbxBujOVlYKH/nadxgu82nXqXuuWg9dBy v4RFkERw0MQbGr7+fFaamID4a2+IWzMDPoayK8LZI6yt24nv8RsUAm3eosPlmSLS gGcWpKveAeGEPbkZNATb86BazK2J/gddpu0d3CHbuA1Jo6hrzKcC3Zmg7Ejp5tUK H/xhZko0qnl8cg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:39 2026 by rpki-client