This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft File: jR3ulkqib4m9ECJ21GVjP7guqig.mft (raw, json) Hash identifier: /X30n78+iSAYaIeJsUT3V/NH07mrv9rJL6wZfCC08YA= Subject key identifier: 52:52:45:42:05:B6:F7:A2:1F:1F:2D:0F:6A:E2:5E:EE:9E:4F:75:7E Authority key identifier: 8D:1D:EE:96:4A:A2:6F:89:BD:10:22:76:D4:65:63:3F:B8:2E:AA:28 Certificate issuer: /CN=8d1dee964aa26f89bd102276d465633fb82eaa28 Certificate serial: 019C41D8DEA4A829BF93DAA960701255AC24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft Manifest number: 0C6F Signing time: Mon 09 Feb 2026 10:00:57 +0000 Manifest this update: Mon 09 Feb 2026 10:00:57 +0000 Manifest next update: Tue 10 Feb 2026 10:00:57 +0000 Files and hashes: 1: jR3ulkqib4m9ECJ21GVjP7guqig.crl (hash: GJFmxGs7FfKrwe0RYKiowR28uGwkXTQgde0F34SbolU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:de:a4:a8:29:bf:93:da:a9:60:70:12:55:ac:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d1dee964aa26f89bd102276d465633fb82eaa28 Validity Not Before: Feb 9 10:00:57 2026 GMT Not After : Feb 10 10:00:57 2026 GMT Subject: CN=5252454205b6f7a21f1f2d0f6ae25eee9e4f757e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:12:33:b8:b5:74:40:dd:6b:5c:2a:34:e2:b0: d5:64:16:4b:37:45:6b:57:c1:1e:d1:61:76:7c:f3: 93:1f:d0:ed:4d:fd:c3:62:6e:b9:29:5e:5a:be:c0: f6:3b:b7:4e:4c:1e:b7:78:8a:de:e8:b3:0b:8f:0d: 62:84:46:c3:ff:4e:5d:e6:d2:d6:ef:29:fb:c5:1a: 69:29:ca:ba:e9:3c:03:f8:aa:89:05:c0:d2:c7:0f: a3:df:bb:26:d4:59:b5:9e:75:97:b7:ba:35:7e:16: e3:5e:65:04:af:5f:a9:a2:7f:d1:44:e0:74:50:77: 7b:e4:9f:57:b9:12:9c:98:a9:3d:36:a4:bd:24:1d: b4:55:90:ad:8d:27:5c:b9:25:02:a6:34:c0:d9:72: 0a:68:4b:59:f1:dc:ab:41:f0:08:b9:70:1a:b9:67: c5:b4:49:83:ce:46:f4:07:8d:88:e6:c8:93:5e:aa: 6f:ac:4d:a3:67:c3:73:1c:8a:14:3b:1a:b9:d5:35: b1:89:f9:44:53:29:cf:22:7e:43:75:76:bc:31:1a: 8b:fd:6f:d0:9e:43:69:e5:bc:81:40:6c:60:01:c2: f3:b6:62:5b:b0:ab:7f:87:33:bf:d6:76:0a:61:9a: ad:ce:f3:ba:7d:de:27:7f:0f:9a:72:43:d0:89:73: 85:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:52:45:42:05:B6:F7:A2:1F:1F:2D:0F:6A:E2:5E:EE:9E:4F:75:7E X509v3 Authority Key Identifier: keyid:8D:1D:EE:96:4A:A2:6F:89:BD:10:22:76:D4:65:63:3F:B8:2E:AA:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:f9:e8:f9:01:4e:22:09:d0:6e:d6:69:fd:11:b9:c6:01:5f: 60:97:08:c8:99:79:3a:28:d8:8b:a3:57:fb:29:83:cb:09:93: 07:2c:93:00:dd:bf:2b:64:80:c6:8e:19:41:ba:33:25:29:79: 68:86:2b:16:c0:e0:06:8f:58:78:b5:c1:02:68:f3:16:1d:e0: ce:0d:ce:73:0a:4e:89:0c:49:bd:c8:53:0a:ee:57:0d:5d:b8: 06:15:56:70:10:8c:6f:10:50:f5:95:82:36:a5:78:d5:44:aa: a2:39:36:dc:dc:37:59:c1:d2:e6:ff:72:f2:2f:b5:fc:5a:46: 9e:e1:bc:2c:74:ac:60:df:90:9b:e2:bc:a5:90:86:14:f7:be: 8e:be:db:b8:19:cd:b1:bf:bd:10:ef:97:46:e3:96:4e:8e:d0: 99:46:14:5f:ea:67:d9:8c:c5:2f:0e:b6:48:06:b1:60:fa:77: 9c:23:c7:54:a1:9a:bc:12:e7:9d:f0:3c:0d:97:1c:ce:0c:e3: 00:a2:26:b2:5c:a2:ea:ee:ad:63:10:25:d4:4f:cb:ff:3a:06: 3a:36:6e:9b:e8:4d:81:f7:7b:68:fd:db:44:4d:3f:a6:c6:ae: 69:0c:a4:f0:46:e8:fb:94:db:d4:39:27:1c:fa:3d:82:78:c0: c1:6b:c4:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2N6kqCm/k9qpYHASVawkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkMWRlZTk2NGFhMjZmODliZDEwMjI3NmQ0NjU2MzNmYjgy ZWFhMjgwHhcNMjYwMjA5MTAwMDU3WhcNMjYwMjEwMTAwMDU3WjAzMTEwLwYDVQQD Eyg1MjUyNDU0MjA1YjZmN2EyMWYxZjJkMGY2YWUyNWVlZTllNGY3NTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshIzuLV0QN1rXCo04rDVZBZLN0Vr V8Ee0WF2fPOTH9DtTf3DYm65KV5avsD2O7dOTB63eIre6LMLjw1ihEbD/05d5tLW 7yn7xRppKcq66TwD+KqJBcDSxw+j37sm1Fm1nnWXt7o1fhbjXmUEr1+pon/RROB0 UHd75J9XuRKcmKk9NqS9JB20VZCtjSdcuSUCpjTA2XIKaEtZ8dyrQfAIuXAauWfF tEmDzkb0B42I5siTXqpvrE2jZ8NzHIoUOxq51TWxiflEUynPIn5DdXa8MRqL/W/Q nkNp5byBQGxgAcLztmJbsKt/hzO/1nYKYZqtzvO6fd4nfw+ackPQiXOF+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFJSRUIFtveiHx8tD2riXu6eT3V+MB8GA1UdIwQY MBaAFI0d7pZKom+JvRAidtRlYz+4LqooMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalIzdWxrcWliNG05RUNKMjFHVmpQN2d1cWlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy81NDkzNjMtMTIyOS00MTE0LWE5OTYt MjU5NDIwZDMyNDcyLzEvalIzdWxrcWliNG05RUNKMjFHVmpQN2d1cWlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy81NDkzNjMtMTIyOS00MTE0LWE5OTYtMjU5NDIwZDMyNDcy LzEvalIzdWxrcWliNG05RUNKMjFHVmpQN2d1cWlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVfno+QFO IgnQbtZp/RG5xgFfYJcIyJl5OijYi6NX+ymDywmTByyTAN2/K2SAxo4ZQbozJSl5 aIYrFsDgBo9YeLXBAmjzFh3gzg3OcwpOiQxJvchTCu5XDV24BhVWcBCMbxBQ9ZWC NqV41USqojk23Nw3WcHS5v9y8i+1/FpGnuG8LHSsYN+Qm+K8pZCGFPe+jr7buBnN sb+9EO+XRuOWTo7QmUYUX+pn2YzFLw62SAaxYPp3nCPHVKGavBLnnfA8DZcczgzj AKImslyi6u6tYxAl1E/L/zoGOjZum+hNgfd7aP3bRE0/psauaQyk8Ebo+5Tb1Dkn HPo9gnjAwWvE5w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:24 2026 by rpki-client