This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft File: JOuXPcgi1CNuy911UB0mxD4chzk.mft (raw, json) Hash identifier: gWplWptNKo/yzcenGeu8gO6RSqMCMovXBJPk2Xz4roI= Subject key identifier: 4D:0E:40:C5:38:DF:13:19:83:0C:1C:1A:00:7F:EB:70:6C:69:11:B5 Authority key identifier: 24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39 Certificate issuer: /CN=24eb973dc822d4236ecbdd75501d26c43e1c8739 Certificate serial: 019C43226F6EA00C0A874517329DDC89CBE1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft Manifest number: 0CB4 Signing time: Mon 09 Feb 2026 16:00:55 +0000 Manifest this update: Mon 09 Feb 2026 16:00:55 +0000 Manifest next update: Tue 10 Feb 2026 16:00:55 +0000 Files and hashes: 1: JOuXPcgi1CNuy911UB0mxD4chzk.crl (hash: dwgQog4OFA5BwqWpe0eAhqzL9MkD4Dex8KrIqtSLy+M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6f:6e:a0:0c:0a:87:45:17:32:9d:dc:89:cb:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24eb973dc822d4236ecbdd75501d26c43e1c8739 Validity Not Before: Feb 9 16:00:55 2026 GMT Not After : Feb 10 16:00:55 2026 GMT Subject: CN=4d0e40c538df1319830c1c1a007feb706c6911b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2c:e4:24:2a:27:bf:29:c7:e9:7a:8a:25:d1: ae:ba:4b:ca:9d:a6:58:a5:f8:7d:a8:f3:40:cf:8f: 0f:56:e3:22:9f:3d:05:d9:c1:b0:c6:bd:f6:3e:32: c2:bf:6b:07:8c:85:5e:30:db:45:b1:5e:6d:f7:d6: 81:42:21:f9:50:24:a2:e1:a1:37:c4:ce:7f:1b:9b: 04:9e:b3:31:1d:81:49:ee:93:69:9f:6d:3e:4d:ed: 79:a1:86:ca:ec:52:b8:2d:3a:bc:ae:6f:86:da:1a: 66:bf:67:21:74:a2:7c:04:e7:78:96:a5:3b:10:8f: 51:c1:4e:90:35:d1:90:71:6e:6c:31:c7:e4:88:dd: da:3e:cc:3b:09:c2:6d:9e:38:92:76:26:66:14:11: be:e0:55:0b:24:44:f4:76:7a:47:6c:7c:a5:f5:a6: 49:fe:9a:4b:33:9c:a8:31:f4:79:b3:49:f1:04:7e: ee:15:42:00:3d:d3:63:82:c7:39:4e:6a:0c:4e:d2: d5:02:f6:f4:1a:76:07:cb:84:dc:b9:4e:82:17:6c: 5a:6c:a0:c4:c1:c1:f6:d6:3e:8c:16:6b:0d:f5:bf: 1a:aa:56:94:1f:fc:09:8b:e8:be:11:b3:94:ec:36: 9d:cc:97:ee:37:05:7d:9b:40:6e:cf:c7:5e:f1:ad: 15:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:0E:40:C5:38:DF:13:19:83:0C:1C:1A:00:7F:EB:70:6C:69:11:B5 X509v3 Authority Key Identifier: keyid:24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:e5:07:0c:b5:a5:41:c9:5d:9d:b9:1f:36:94:dd:16:f3:5e: 1c:11:39:43:6b:f4:d9:e8:a5:a9:18:ff:59:d3:f0:42:df:9b: 72:92:64:79:a4:46:e4:20:a7:28:37:bf:b4:62:1e:d0:bf:2d: 29:9c:59:50:57:37:e1:41:4f:61:3b:93:47:e1:b4:63:33:0b: 95:51:27:82:e2:05:07:c3:d7:09:97:f1:b9:04:98:46:a4:08: 2f:e1:e0:5d:48:a9:4e:c8:15:df:5a:d8:cb:1e:cd:30:c7:42: b4:c5:71:45:3e:47:10:e1:1a:05:21:23:0b:37:98:8d:6e:a9: 40:6b:c5:c0:2d:6f:df:7e:f1:7a:e4:50:13:4d:d9:78:6b:10: 1f:15:db:b0:28:2b:2b:b0:e7:30:6a:61:7a:45:20:d5:96:69: 33:e4:70:f0:c2:25:b1:8e:45:1b:63:3e:4c:40:8c:42:c9:ae: 85:38:f2:70:53:4d:07:e4:72:c1:4c:8e:a6:dd:e8:7a:7e:fc: b5:25:c1:96:c7:92:07:9c:42:db:31:6f:b5:97:d2:d9:e8:86: f6:82:57:bd:8c:d4:0b:69:b0:5d:5f:22:e9:9d:75:ea:ca:cd: 1f:9e:ed:98:85:5c:80:32:1f:6a:f0:49:0d:f8:62:36:63:ba: d1:26:df:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIm9uoAwKh0UXMp3cicvhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0ZWI5NzNkYzgyMmQ0MjM2ZWNiZGQ3NTUwMWQyNmM0M2Ux Yzg3MzkwHhcNMjYwMjA5MTYwMDU1WhcNMjYwMjEwMTYwMDU1WjAzMTEwLwYDVQQD Eyg0ZDBlNDBjNTM4ZGYxMzE5ODMwYzFjMWEwMDdmZWI3MDZjNjkxMWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CzkJConvynH6XqKJdGuukvKnaZY pfh9qPNAz48PVuMinz0F2cGwxr32PjLCv2sHjIVeMNtFsV5t99aBQiH5UCSi4aE3 xM5/G5sEnrMxHYFJ7pNpn20+Te15oYbK7FK4LTq8rm+G2hpmv2chdKJ8BOd4lqU7 EI9RwU6QNdGQcW5sMcfkiN3aPsw7CcJtnjiSdiZmFBG+4FULJET0dnpHbHyl9aZJ /ppLM5yoMfR5s0nxBH7uFUIAPdNjgsc5TmoMTtLVAvb0GnYHy4TcuU6CF2xabKDE wcH21j6MFmsN9b8aqlaUH/wJi+i+EbOU7DadzJfuNwV9m0Buz8de8a0VsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE0OQMU43xMZgwwcGgB/63BsaRG1MB8GA1UdIwQY MBaAFCTrlz3IItQjbsvddVAdJsQ+HIc5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSk91WFBjZ2kxQ051eTkxMVVCMG14RDRjaHprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny85Y2VkZDktMTEzYi00MDYxLWE2MzIt NGUxZDE2N2YwYTljLzEvSk91WFBjZ2kxQ051eTkxMVVCMG14RDRjaHprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny85Y2VkZDktMTEzYi00MDYxLWE2MzItNGUxZDE2N2YwYTlj LzEvSk91WFBjZ2kxQ051eTkxMVVCMG14RDRjaHprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATOUHDLWl QcldnbkfNpTdFvNeHBE5Q2v02eilqRj/WdPwQt+bcpJkeaRG5CCnKDe/tGIe0L8t KZxZUFc34UFPYTuTR+G0YzMLlVEnguIFB8PXCZfxuQSYRqQIL+HgXUipTsgV31rY yx7NMMdCtMVxRT5HEOEaBSEjCzeYjW6pQGvFwC1v337xeuRQE03ZeGsQHxXbsCgr K7DnMGphekUg1ZZpM+Rw8MIlsY5FG2M+TECMQsmuhTjycFNNB+RywUyOpt3oen78 tSXBlseSB5xC2zFvtZfS2eiG9oJXvYzUC2mwXV8i6Z116srNH57tmIVcgDIfavBJ DfhiNmO60SbfYg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:30 2026 by rpki-client