This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/c96090-91d4-4403-bbfd-47ba33ba3c05/1/jkFZeSO5geHA1Pyi_9CozcNme30.mft File: jkFZeSO5geHA1Pyi_9CozcNme30.mft (raw, json) Hash identifier: 0+6/po9jBTEE8q2YGGGzpQfxUuwjHnqiYKw6J0EAvHs= Subject key identifier: 7C:A8:1E:B0:33:C1:5F:6C:B4:E8:26:0F:B1:08:88:ED:1F:B0:4D:9B Authority key identifier: 8E:41:59:79:23:B9:81:E1:C0:D4:FC:A2:FF:D0:A8:CD:C3:66:7B:7D Certificate issuer: /CN=8e41597923b981e1c0d4fca2ffd0a8cdc3667b7d Certificate serial: 019C43C6D966EFC4E677C1DA9F57D0203CE4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jkFZeSO5geHA1Pyi_9CozcNme30.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/c96090-91d4-4403-bbfd-47ba33ba3c05/1/jkFZeSO5geHA1Pyi_9CozcNme30.mft Manifest number: 01A5 Signing time: Mon 09 Feb 2026 19:00:30 +0000 Manifest this update: Mon 09 Feb 2026 19:00:30 +0000 Manifest next update: Tue 10 Feb 2026 19:00:30 +0000 Files and hashes: 1: jkFZeSO5geHA1Pyi_9CozcNme30.crl (hash: mgAvkrrrtvJCX1CWT3ejFD80mQjpB8ihPM4Kj8D50OY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/c96090-91d4-4403-bbfd-47ba33ba3c05/1/jkFZeSO5geHA1Pyi_9CozcNme30.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/c96090-91d4-4403-bbfd-47ba33ba3c05/1/jkFZeSO5geHA1Pyi_9CozcNme30.mft rsync://rpki.ripe.net/repository/DEFAULT/jkFZeSO5geHA1Pyi_9CozcNme30.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:d9:66:ef:c4:e6:77:c1:da:9f:57:d0:20:3c:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e41597923b981e1c0d4fca2ffd0a8cdc3667b7d Validity Not Before: Feb 9 19:00:30 2026 GMT Not After : Feb 10 19:00:30 2026 GMT Subject: CN=7ca81eb033c15f6cb4e8260fb10888ed1fb04d9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1e:17:65:24:17:50:70:da:85:73:f6:92:53: 85:b8:5d:4f:c4:9c:4b:15:53:10:aa:57:c8:cb:ae: a6:e2:e1:91:cb:eb:88:ff:0b:43:06:87:93:e1:43: f5:81:47:be:b3:5a:2e:60:00:23:84:8b:9d:83:73: 2b:79:79:48:b8:3a:7f:47:cf:ee:bd:37:a2:db:d8: 44:11:ac:15:55:4d:9e:ad:82:3b:55:9e:94:23:4c: 06:81:20:40:f1:10:d1:b3:61:26:64:22:3e:e6:60: 8e:5a:6e:fd:b8:e0:ba:38:d4:57:cb:7c:a5:52:38: c1:26:a0:fd:be:37:01:23:cb:45:83:fd:6c:27:a2: a2:1a:b0:97:ba:c4:29:de:49:09:c7:8f:07:4e:c7: dd:13:44:ff:43:c6:04:52:fa:3b:34:f3:e4:fe:a7: 70:19:b2:69:26:6f:b1:4e:97:b4:39:55:f4:9c:f9: 39:d7:41:ce:bf:b8:73:da:32:3c:39:8e:dd:f7:e0: cd:c8:45:fe:14:03:dd:a7:2d:97:b8:8c:98:37:a3: 34:cc:37:2c:17:4a:0b:17:15:63:2a:a0:cd:4a:2e: 1c:e2:d6:cf:b9:ea:38:65:f5:1a:75:a3:50:a5:58: 95:31:76:f3:f7:c4:11:7f:f4:08:98:f8:16:47:76: ec:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:A8:1E:B0:33:C1:5F:6C:B4:E8:26:0F:B1:08:88:ED:1F:B0:4D:9B X509v3 Authority Key Identifier: keyid:8E:41:59:79:23:B9:81:E1:C0:D4:FC:A2:FF:D0:A8:CD:C3:66:7B:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jkFZeSO5geHA1Pyi_9CozcNme30.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c96090-91d4-4403-bbfd-47ba33ba3c05/1/jkFZeSO5geHA1Pyi_9CozcNme30.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c96090-91d4-4403-bbfd-47ba33ba3c05/1/jkFZeSO5geHA1Pyi_9CozcNme30.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:e0:a9:1e:c1:dd:d3:60:f9:33:68:10:68:7c:27:98:31:74: 14:fc:a4:32:44:24:91:1a:df:e7:76:b1:0d:e1:9d:2d:d7:4b: cf:f7:5b:18:ce:6a:14:b2:db:8e:1e:5e:2d:08:59:04:b8:fd: f8:86:9a:cc:89:aa:7b:3f:b9:89:78:ed:f7:c0:1a:1b:a5:3c: e2:63:41:5b:bf:f7:16:ff:15:a1:4b:d7:c3:b7:9c:1f:2c:59: 22:d4:d3:ab:2d:66:c9:7b:29:d3:87:34:52:be:66:03:e9:05: 50:90:c2:d8:98:3e:c5:5b:cb:b9:e9:1c:fc:cd:2f:eb:12:ae: a4:cb:da:1c:02:15:65:f6:85:ae:d5:53:ff:14:72:d6:f6:4a: 60:c0:8e:cf:09:92:9b:4a:f5:8a:5c:aa:d1:3c:c2:27:c3:2f: b4:18:08:eb:7a:f9:47:17:05:14:09:ff:ec:a0:d2:cb:70:5f: b5:ac:7c:e0:15:69:b4:eb:fc:cf:07:22:dd:e3:fa:3c:27:74: 00:4f:03:2f:a7:29:31:7d:64:0c:8f:7a:28:ef:35:6d:94:ac: 1c:7b:a3:2d:90:bd:d8:6a:0f:bb:a5:86:de:b2:94:b9:f2:14: 59:c4:c7:ca:69:44:9e:ee:1a:b9:f0:b2:6d:d5:17:63:11:3a: 8b:45:09:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxtlm78Tmd8Han1fQIDzkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlNDE1OTc5MjNiOTgxZTFjMGQ0ZmNhMmZmZDBhOGNkYzM2 NjdiN2QwHhcNMjYwMjA5MTkwMDMwWhcNMjYwMjEwMTkwMDMwWjAzMTEwLwYDVQQD Eyg3Y2E4MWViMDMzYzE1ZjZjYjRlODI2MGZiMTA4ODhlZDFmYjA0ZDliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzR4XZSQXUHDahXP2klOFuF1PxJxL FVMQqlfIy66m4uGRy+uI/wtDBoeT4UP1gUe+s1ouYAAjhIudg3MreXlIuDp/R8/u vTei29hEEawVVU2erYI7VZ6UI0wGgSBA8RDRs2EmZCI+5mCOWm79uOC6ONRXy3yl UjjBJqD9vjcBI8tFg/1sJ6KiGrCXusQp3kkJx48HTsfdE0T/Q8YEUvo7NPPk/qdw GbJpJm+xTpe0OVX0nPk510HOv7hz2jI8OY7d9+DNyEX+FAPdpy2XuIyYN6M0zDcs F0oLFxVjKqDNSi4c4tbPueo4ZfUadaNQpViVMXbz98QRf/QImPgWR3bsEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHyoHrAzwV9stOgmD7EIiO0fsE2bMB8GA1UdIwQY MBaAFI5BWXkjuYHhwNT8ov/QqM3DZnt9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamtGWmVTTzVnZUhBMVB5aV85Q296Y05tZTMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS9jOTYwOTAtOTFkNC00NDAzLWJiZmQt NDdiYTMzYmEzYzA1LzEvamtGWmVTTzVnZUhBMVB5aV85Q296Y05tZTMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS9jOTYwOTAtOTFkNC00NDAzLWJiZmQtNDdiYTMzYmEzYzA1 LzEvamtGWmVTTzVnZUhBMVB5aV85Q296Y05tZTMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALOCpHsHd 02D5M2gQaHwnmDF0FPykMkQkkRrf53axDeGdLddLz/dbGM5qFLLbjh5eLQhZBLj9 +IaazImqez+5iXjt98AaG6U84mNBW7/3Fv8VoUvXw7ecHyxZItTTqy1myXsp04c0 Ur5mA+kFUJDC2Jg+xVvLuekc/M0v6xKupMvaHAIVZfaFrtVT/xRy1vZKYMCOzwmS m0r1ilyq0TzCJ8MvtBgI63r5RxcFFAn/7KDSy3Bftax84BVptOv8zwci3eP6PCd0 AE8DL6cpMX1kDI96KO81bZSsHHujLZC92GoPu6WG3rKUufIUWcTHymlEnu4aufCy bdUXYxE6i0UJVg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:47:05 2026 by rpki-client