This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft File: j_he_yRIxzZG41Sv6mQbz3nnx_k.mft (raw, json) Hash identifier: tqEIZQGQ8bl2Aj4103PlfBvr4n1m4Yq3RZsEj0xNEQI= Subject key identifier: FA:12:D1:82:11:DF:4F:0D:03:7F:D3:71:57:FA:C7:30:63:BD:37:04 Authority key identifier: 8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9 Certificate issuer: /CN=8ff85eff2448c73646e354afea641bcf79e7c7f9 Certificate serial: 019C41D8EB55928D87474EA3BABE00811455 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft Manifest number: 076C Signing time: Mon 09 Feb 2026 10:01:00 +0000 Manifest this update: Mon 09 Feb 2026 10:01:00 +0000 Manifest next update: Tue 10 Feb 2026 10:01:00 +0000 Files and hashes: 1: AN3xpl22PaRyPEelcwTSWgg5W5A.roa (hash: re4tuXpQRY9PMdfHT4O4lemkMyHNhEqfGaE5zniD/ZM=) 2: j_he_yRIxzZG41Sv6mQbz3nnx_k.crl (hash: uH7MAle14o+ISgg5maUFZZL/WvHLnncpfsW455rMMHA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:eb:55:92:8d:87:47:4e:a3:ba:be:00:81:14:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ff85eff2448c73646e354afea641bcf79e7c7f9 Validity Not Before: Feb 9 10:01:00 2026 GMT Not After : Feb 10 10:01:00 2026 GMT Subject: CN=fa12d18211df4f0d037fd37157fac73063bd3704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:dd:98:cb:01:69:7f:de:88:68:10:1c:6d:07: 56:5c:17:a4:53:37:2e:98:5c:aa:70:85:5b:15:8b: ed:7d:05:24:ce:e8:ff:1e:1e:65:19:8a:a5:b1:e7: 5e:7d:18:f2:e3:0b:62:16:a7:dc:dd:f9:af:d6:58: 56:a3:a7:ce:6f:52:8b:9f:4f:d6:b0:25:df:f3:b8: f7:0f:8c:a5:f5:a0:2f:5c:39:d5:03:ab:15:62:42: 31:8a:f2:73:05:98:10:0b:85:54:00:b0:07:21:d2: 12:08:59:bc:36:bd:16:79:68:8d:7a:7e:ae:9e:f7: ce:da:c0:10:4d:f4:da:aa:0d:26:30:e1:42:be:6a: 3e:12:0f:e8:d0:29:1d:08:09:87:98:74:3b:a0:3f: f3:30:de:56:0c:c5:a4:7c:28:1d:a3:1e:07:32:46: 9e:d6:fd:13:42:79:8b:47:c0:fb:a4:c1:e7:8f:4f: 06:25:06:81:c5:5f:30:e0:88:56:6a:4a:16:ce:37: 04:16:74:20:74:89:12:7c:85:a3:2a:3c:9a:7c:ae: 43:27:65:6e:af:b6:cf:9e:f8:9a:26:b1:28:2a:9b: cd:33:ec:bd:ad:b4:3e:63:75:bf:6b:24:43:7c:87: cc:dc:2d:c7:ae:4e:35:53:f4:d5:af:90:e0:1a:e0: 5b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:12:D1:82:11:DF:4F:0D:03:7F:D3:71:57:FA:C7:30:63:BD:37:04 X509v3 Authority Key Identifier: keyid:8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:98:e9:c0:cf:73:2c:43:32:01:52:d5:9d:5f:79:9b:5d:78: 00:e7:06:5c:8b:9b:45:2d:55:e7:a1:3d:05:6e:cd:96:97:d7: e3:a7:01:a4:1a:34:fc:05:48:31:81:73:28:bc:11:6b:ce:39: c8:24:86:0f:ff:08:e3:1c:11:94:4f:03:d5:56:67:43:b5:02: 2f:e8:4f:f4:eb:04:4e:be:b5:61:ff:fb:28:72:8b:77:5a:fd: fc:e0:e6:d5:b6:a4:e2:c0:a9:ac:0b:9b:3d:b0:0a:b4:7c:8d: 6a:e3:e8:ef:7b:3a:3f:2d:1e:fd:5a:b3:60:17:c4:0e:f4:39: ad:74:15:f7:c3:d8:dd:b0:9c:58:d6:af:89:23:d5:f7:70:bf: 6f:b8:ce:0c:60:c6:5d:22:ef:a9:41:35:99:50:80:91:ba:05: e3:45:c3:d8:e2:3d:10:f1:9b:42:8a:91:21:78:38:2f:c1:69: 3c:77:c2:9e:72:2c:dc:f2:09:0d:bb:92:47:d8:61:d2:95:45: 9d:18:f7:6c:dd:01:a6:b2:a1:c9:29:06:c6:07:ab:a2:63:3d: 28:ea:82:ff:00:d6:05:28:5a:f9:43:e3:86:5e:67:61:2c:31: 13:6a:44:dc:1a:ed:25:91:37:15:94:c8:24:14:65:f3:8c:bd: f2:6c:52:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2OtVko2HR06jur4AgRRVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmZjg1ZWZmMjQ0OGM3MzY0NmUzNTRhZmVhNjQxYmNmNzll N2M3ZjkwHhcNMjYwMjA5MTAwMTAwWhcNMjYwMjEwMTAwMTAwWjAzMTEwLwYDVQQD EyhmYTEyZDE4MjExZGY0ZjBkMDM3ZmQzNzE1N2ZhYzczMDYzYmQzNzA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3t2YywFpf96IaBAcbQdWXBekUzcu mFyqcIVbFYvtfQUkzuj/Hh5lGYqlsedefRjy4wtiFqfc3fmv1lhWo6fOb1KLn0/W sCXf87j3D4yl9aAvXDnVA6sVYkIxivJzBZgQC4VUALAHIdISCFm8Nr0WeWiNen6u nvfO2sAQTfTaqg0mMOFCvmo+Eg/o0CkdCAmHmHQ7oD/zMN5WDMWkfCgdox4HMkae 1v0TQnmLR8D7pMHnj08GJQaBxV8w4IhWakoWzjcEFnQgdIkSfIWjKjyafK5DJ2Vu r7bPnviaJrEoKpvNM+y9rbQ+Y3W/ayRDfIfM3C3Hrk41U/TVr5DgGuBbmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPoS0YIR308NA3/TcVf6xzBjvTcEMB8GA1UdIwQY MBaAFI/4Xv8kSMc2RuNUr+pkG89558f5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQval9oZV95Ukl4elpHNDFTdjZtUWJ6M25ueF9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC85ZmU1M2QtZWI0ZS00ZTZiLTkwMjIt ZTMyMjA4Nzg3MGQyLzEval9oZV95Ukl4elpHNDFTdjZtUWJ6M25ueF9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC85ZmU1M2QtZWI0ZS00ZTZiLTkwMjItZTMyMjA4Nzg3MGQy LzEval9oZV95Ukl4elpHNDFTdjZtUWJ6M25ueF9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK5jpwM9z LEMyAVLVnV95m114AOcGXIubRS1V56E9BW7NlpfX46cBpBo0/AVIMYFzKLwRa845 yCSGD/8I4xwRlE8D1VZnQ7UCL+hP9OsETr61Yf/7KHKLd1r9/ODm1bak4sCprAub PbAKtHyNauPo73s6Py0e/VqzYBfEDvQ5rXQV98PY3bCcWNaviSPV93C/b7jODGDG XSLvqUE1mVCAkboF40XD2OI9EPGbQoqRIXg4L8FpPHfCnnIs3PIJDbuSR9hh0pVF nRj3bN0BprKhySkGxgeromM9KOqC/wDWBSha+UPjhl5nYSwxE2pE3BrtJZE3FZTI JBRl84y98mxSRQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:46 2026 by rpki-client