This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft File: jR4EozwylZxnL0X0a-EIZLgemEo.mft (raw, json) Hash identifier: lM7x8cFWZZ6hdvpy10oJqYyWBQXGpr+UPl8qtHmLCGg= Subject key identifier: CB:9F:CD:F5:86:90:70:B9:ED:17:8D:84:7A:73:1B:36:40:8B:F1:23 Authority key identifier: 8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A Certificate issuer: /CN=8d1e04a33c32959c672f45f46be10864b81e984a Certificate serial: 019C43C7312A3304EDD6C259314BE7F30A0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 19:00:53 +0000 Manifest this update: Mon 09 Feb 2026 19:00:53 +0000 Manifest next update: Tue 10 Feb 2026 19:00:53 +0000 Files and hashes: 1: jR4EozwylZxnL0X0a-EIZLgemEo.crl (hash: mJtRgCdkXMXdVDNyy2Ev2glh+MvRAx0S9aSk/PzwmAg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:31:2a:33:04:ed:d6:c2:59:31:4b:e7:f3:0a:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d1e04a33c32959c672f45f46be10864b81e984a Validity Not Before: Feb 9 19:00:53 2026 GMT Not After : Feb 10 19:00:53 2026 GMT Subject: CN=cb9fcdf5869070b9ed178d847a731b36408bf123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ea:e3:93:52:79:69:88:bf:b9:8b:e2:85:dd: 00:6a:2f:13:ea:b0:e5:3b:b9:94:f6:8f:6d:e1:d9: 37:9c:0c:0c:f2:a5:27:7d:c4:f4:04:a2:98:3e:f3: ae:dd:99:ed:16:0f:29:ba:7f:4d:97:a3:76:31:68: 95:30:ed:98:9d:cd:96:3d:1e:b1:33:ac:6d:37:f4: de:e9:30:5c:c3:9b:72:2f:3d:d8:ca:b4:c9:99:99: 58:fc:87:55:05:8a:cb:48:87:3f:01:48:45:21:6f: 0d:9c:74:09:6d:76:ce:fe:a4:e8:b7:d8:f7:35:fa: c0:73:38:53:eb:2a:55:1f:12:6b:fb:57:71:7a:16: 38:7e:0d:d4:ee:17:c5:68:51:04:36:bf:41:f4:cf: 9e:30:bf:e8:56:45:ed:23:45:f0:ce:e8:31:f2:4f: fd:c7:8f:34:52:0a:45:57:bb:30:fc:ca:92:ca:ab: eb:c1:82:89:b2:16:aa:65:70:82:a4:aa:dc:b7:c0: ed:b7:8d:69:8b:e8:fd:9d:2d:26:11:b6:0b:2d:90: 24:d6:74:75:7f:6e:f9:f5:aa:19:b8:5d:3a:2c:d7: 4b:1e:5a:28:ad:08:99:bb:47:16:6d:71:aa:84:d1: 2b:ea:c0:3c:62:c6:3f:f9:f2:ee:d0:81:13:74:53: a0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:9F:CD:F5:86:90:70:B9:ED:17:8D:84:7A:73:1B:36:40:8B:F1:23 X509v3 Authority Key Identifier: keyid:8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:48:7a:60:ad:a0:37:16:29:2e:43:75:6c:e3:e7:12:31:c4: d4:1f:22:e7:e2:6b:4f:52:d5:3c:d7:ba:1b:99:ab:28:a3:63: 77:a5:24:95:5d:52:ec:58:b4:7f:aa:dd:ea:00:9c:5d:d9:d3: 74:23:f7:01:7a:af:ab:47:fc:be:41:be:e9:90:24:8b:ae:11: e8:11:06:29:0e:7a:2c:17:d8:02:0a:ca:8f:fb:1c:da:d8:99: 0a:89:f5:df:2b:1b:2f:7b:02:8e:8f:1d:a2:51:11:28:10:1f: 58:b8:62:c0:88:63:c9:84:3a:da:f1:f4:9c:6c:7b:fb:59:b3: 88:f5:86:57:c6:59:1b:60:79:52:85:14:7d:70:a1:af:4f:53: 51:eb:11:3d:b3:ba:c5:77:be:02:3e:3f:ce:ea:cc:5c:c6:f6: 1a:e8:61:3d:87:49:34:4e:ef:66:65:8e:e8:80:e6:67:65:fe: a6:a0:bd:97:23:d6:1c:85:41:ea:6f:56:b2:6e:56:9b:ec:d7: 93:44:37:fa:25:4e:6b:37:f0:3e:95:f9:9c:7f:17:50:9f:b2: d5:19:c8:2c:99:96:92:72:77:84:62:34:7f:fd:93:57:41:7d: da:01:70:0f:c3:75:ae:15:d6:a6:a4:88:a6:27:98:64:5b:58: f8:ac:4a:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxzEqMwTt1sJZMUvn8woNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkMWUwNGEzM2MzMjk1OWM2NzJmNDVmNDZiZTEwODY0Yjgx ZTk4NGEwHhcNMjYwMjA5MTkwMDUzWhcNMjYwMjEwMTkwMDUzWjAzMTEwLwYDVQQD EyhjYjlmY2RmNTg2OTA3MGI5ZWQxNzhkODQ3YTczMWIzNjQwOGJmMTIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+rjk1J5aYi/uYvihd0Aai8T6rDl O7mU9o9t4dk3nAwM8qUnfcT0BKKYPvOu3ZntFg8pun9Nl6N2MWiVMO2Ync2WPR6x M6xtN/Te6TBcw5tyLz3YyrTJmZlY/IdVBYrLSIc/AUhFIW8NnHQJbXbO/qTot9j3 NfrAczhT6ypVHxJr+1dxehY4fg3U7hfFaFEENr9B9M+eML/oVkXtI0Xwzugx8k/9 x480UgpFV7sw/MqSyqvrwYKJshaqZXCCpKrct8Dtt41pi+j9nS0mEbYLLZAk1nR1 f2759aoZuF06LNdLHloorQiZu0cWbXGqhNEr6sA8YsY/+fLu0IETdFOgOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMufzfWGkHC57ReNhHpzGzZAi/EjMB8GA1UdIwQY MBaAFI0eBKM8MpWcZy9F9GvhCGS4HphKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalI0RW96d3lsWnhuTDBYMGEtRUlaTGdlbUVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9lZTYzZjMtN2Q0OC00OWU3LWFlYTct ZTI0OWU3M2VjY2YxLzEvalI0RW96d3lsWnhuTDBYMGEtRUlaTGdlbUVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9lZTYzZjMtN2Q0OC00OWU3LWFlYTctZTI0OWU3M2VjY2Yx LzEvalI0RW96d3lsWnhuTDBYMGEtRUlaTGdlbUVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ0h6YK2g NxYpLkN1bOPnEjHE1B8i5+JrT1LVPNe6G5mrKKNjd6UklV1S7Fi0f6rd6gCcXdnT dCP3AXqvq0f8vkG+6ZAki64R6BEGKQ56LBfYAgrKj/sc2tiZCon13ysbL3sCjo8d olERKBAfWLhiwIhjyYQ62vH0nGx7+1mziPWGV8ZZG2B5UoUUfXChr09TUesRPbO6 xXe+Aj4/zurMXMb2GuhhPYdJNE7vZmWO6IDmZ2X+pqC9lyPWHIVB6m9Wsm5Wm+zX k0Q3+iVOazfwPpX5nH8XUJ+y1RnILJmWknJ3hGI0f/2TV0F92gFwD8N1rhXWpqSI pieYZFtY+KxK6Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:37 2026 by rpki-client