This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft File: jmcNnjgoGVjuocw46s67vcM4HTY.mft (raw, json) Hash identifier: MMDkLrAuvQgprw9tzk2Si218s79HiAoz3lSJ54gI/dk= Subject key identifier: B2:2B:9E:07:85:5D:5B:EC:4E:DB:9F:5F:C2:C2:EF:8C:4B:A9:0F:33 Authority key identifier: 8E:67:0D:9E:38:28:19:58:EE:A1:CC:38:EA:CE:BB:BD:C3:38:1D:36 Certificate issuer: /CN=8e670d9e38281958eea1cc38eacebbbdc3381d36 Certificate serial: 019C432237FCCBBAF7F2ABA22215C62FB09D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmcNnjgoGVjuocw46s67vcM4HTY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft Manifest number: 0CEA Signing time: Mon 09 Feb 2026 16:00:41 +0000 Manifest this update: Mon 09 Feb 2026 16:00:41 +0000 Manifest next update: Tue 10 Feb 2026 16:00:41 +0000 Files and hashes: 1: jmcNnjgoGVjuocw46s67vcM4HTY.crl (hash: xAHnLXzIwy0GNapACqdTVaP7+UOMVpCm2WeOMRYYtcY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.crl rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft rsync://rpki.ripe.net/repository/DEFAULT/jmcNnjgoGVjuocw46s67vcM4HTY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:37:fc:cb:ba:f7:f2:ab:a2:22:15:c6:2f:b0:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e670d9e38281958eea1cc38eacebbbdc3381d36 Validity Not Before: Feb 9 16:00:41 2026 GMT Not After : Feb 10 16:00:41 2026 GMT Subject: CN=b22b9e07855d5bec4edb9f5fc2c2ef8c4ba90f33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:42:95:22:00:43:3e:b3:e2:6b:0e:21:6c:e4: d6:47:44:8e:c9:42:fe:24:04:b4:f3:ef:7b:f2:a9: b8:2c:07:65:b6:e8:c2:22:ff:5a:0b:54:fe:24:de: 3e:0e:73:3d:49:2d:8c:88:36:4c:e6:0a:90:c1:cc: 81:f8:d4:fa:8f:1a:d6:f1:84:c1:e6:99:f6:1e:25: 4a:f0:44:0a:3e:ad:50:a1:76:cd:81:e1:c8:50:48: c4:fe:8f:23:df:53:f6:52:5a:78:8d:14:17:60:f8: 00:a3:99:bc:3a:88:39:97:a2:17:e2:60:53:83:c6: a2:0f:78:5b:83:3b:5d:c2:64:7b:e6:0c:50:ce:e2: 61:fe:20:00:45:77:88:93:52:51:2c:2f:1f:22:c9: 39:a3:41:bd:f9:90:9d:e9:c1:2f:99:27:25:1c:b7: 91:c8:01:f4:78:db:68:ae:44:26:c9:88:e1:2e:18: 2f:f6:6c:b5:79:83:e1:b5:54:1f:f1:c0:5e:aa:ea: 8d:f0:52:f0:8a:6c:d3:2a:3f:da:8a:35:f1:97:04: ba:20:01:93:90:9e:0c:46:87:8f:97:20:a1:aa:99: 15:53:dd:8c:69:e2:2f:fc:7e:14:49:9c:d6:65:8a: 95:35:5e:45:03:c3:88:ab:99:29:70:93:98:4a:46: 15:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2B:9E:07:85:5D:5B:EC:4E:DB:9F:5F:C2:C2:EF:8C:4B:A9:0F:33 X509v3 Authority Key Identifier: keyid:8E:67:0D:9E:38:28:19:58:EE:A1:CC:38:EA:CE:BB:BD:C3:38:1D:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmcNnjgoGVjuocw46s67vcM4HTY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:fb:2e:14:d5:7d:63:72:b9:59:12:b4:a3:63:37:79:25:26: 9d:f6:79:8c:41:11:9b:9a:a6:42:fe:bd:dc:88:2e:45:a3:86: 87:93:8a:6a:ca:2f:5a:d6:ef:f0:28:4f:cd:9a:42:56:e3:55: 2c:d8:46:f0:a1:70:56:90:e8:e9:4e:42:c9:f0:66:95:da:34: 39:f2:68:01:c5:4b:21:77:3b:31:06:8e:3c:88:a0:a4:06:27: fc:a5:1a:d3:96:4d:f7:8d:ad:cb:17:b0:2a:40:95:f5:1d:c7: b5:16:70:ec:2e:cc:7c:92:69:90:3f:58:61:7f:79:52:39:5f: 0a:eb:b5:fd:97:5d:bc:2c:1e:b6:40:3c:3c:ee:8f:8c:ca:dc: 83:dc:9a:ee:f1:fb:63:59:bc:ef:0b:6d:8d:c1:e4:7a:0d:eb: a7:a8:a9:5d:56:86:1a:50:13:65:e7:33:d4:47:9f:80:af:32: 59:c2:5f:62:07:db:73:6a:ca:7f:43:81:b1:d3:83:c1:89:2c: 16:d4:1b:bd:e6:f6:c5:ed:ed:a7:bf:9f:5f:31:58:1a:92:6f: c9:8c:98:e3:b1:8d:e4:17:ee:1b:99:39:51:f6:75:63:93:98: 1f:1e:90:ef:45:f9:b9:27:60:3b:b8:14:a4:89:0e:e6:d1:9f: 52:a8:8c:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIjf8y7r38quiIhXGL7CdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlNjcwZDllMzgyODE5NThlZWExY2MzOGVhY2ViYmJkYzMz ODFkMzYwHhcNMjYwMjA5MTYwMDQxWhcNMjYwMjEwMTYwMDQxWjAzMTEwLwYDVQQD EyhiMjJiOWUwNzg1NWQ1YmVjNGVkYjlmNWZjMmMyZWY4YzRiYTkwZjMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5UKVIgBDPrPiaw4hbOTWR0SOyUL+ JAS08+978qm4LAdltujCIv9aC1T+JN4+DnM9SS2MiDZM5gqQwcyB+NT6jxrW8YTB 5pn2HiVK8EQKPq1QoXbNgeHIUEjE/o8j31P2Ulp4jRQXYPgAo5m8Oog5l6IX4mBT g8aiD3hbgztdwmR75gxQzuJh/iAARXeIk1JRLC8fIsk5o0G9+ZCd6cEvmSclHLeR yAH0eNtorkQmyYjhLhgv9my1eYPhtVQf8cBequqN8FLwimzTKj/aijXxlwS6IAGT kJ4MRoePlyChqpkVU92MaeIv/H4USZzWZYqVNV5FA8OIq5kpcJOYSkYVpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLIrngeFXVvsTtufX8LC74xLqQ8zMB8GA1UdIwQY MBaAFI5nDZ44KBlY7qHMOOrOu73DOB02MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvam1jTm5qZ29HVmp1b2N3NDZzNjd2Y000SFRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS81YTFjYWQtMGM2NS00ODAwLTg4NjUt Y2NhOWRmNmUxOWUzLzEvam1jTm5qZ29HVmp1b2N3NDZzNjd2Y000SFRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS81YTFjYWQtMGM2NS00ODAwLTg4NjUtY2NhOWRmNmUxOWUz LzEvam1jTm5qZ29HVmp1b2N3NDZzNjd2Y000SFRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc/suFNV9 Y3K5WRK0o2M3eSUmnfZ5jEERm5qmQv693IguRaOGh5OKasovWtbv8ChPzZpCVuNV LNhG8KFwVpDo6U5CyfBmldo0OfJoAcVLIXc7MQaOPIigpAYn/KUa05ZN942tyxew KkCV9R3HtRZw7C7MfJJpkD9YYX95UjlfCuu1/ZddvCwetkA8PO6PjMrcg9ya7vH7 Y1m87wttjcHkeg3rp6ipXVaGGlATZecz1EefgK8yWcJfYgfbc2rKf0OBsdODwYks FtQbveb2xe3tp7+fXzFYGpJvyYyY47GN5BfuG5k5UfZ1Y5OYHx6Q70X5uSdgO7gU pIkO5tGfUqiM5Q== -----END CERTIFICATE-----Generated at Mon Feb 9 20:57:16 2026 by rpki-client