This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft File: 0jhr7YO2RaK64TifU9llfZGedtE.mft (raw, json) Hash identifier: Oh6ZGZ40ckMXy/7C0nzmju02n0fo9GzmNpizOcxFG1w= Subject key identifier: 29:E8:5A:96:C4:FB:0A:76:8C:81:3A:80:96:1C:89:80:45:C7:C4:B9 Authority key identifier: D2:38:6B:ED:83:B6:45:A2:BA:E1:38:9F:53:D9:65:7D:91:9E:76:D1 Certificate issuer: /CN=d2386bed83b645a2bae1389f53d9657d919e76d1 Certificate serial: 019C4322513B3FD717E4593F9C1D1090A235 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft Manifest number: 0BD5 Signing time: Mon 09 Feb 2026 16:00:48 +0000 Manifest this update: Mon 09 Feb 2026 16:00:48 +0000 Manifest next update: Tue 10 Feb 2026 16:00:48 +0000 Files and hashes: 1: 0jhr7YO2RaK64TifU9llfZGedtE.crl (hash: SiZ73dtiWzE+RIBwdz0dshBMO2aariBRBI30rZZ9+lc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:51:3b:3f:d7:17:e4:59:3f:9c:1d:10:90:a2:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2386bed83b645a2bae1389f53d9657d919e76d1 Validity Not Before: Feb 9 16:00:48 2026 GMT Not After : Feb 10 16:00:48 2026 GMT Subject: CN=29e85a96c4fb0a768c813a80961c898045c7c4b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fd:bf:a2:da:ad:22:8e:e2:21:be:1c:72:67: 12:10:b4:69:19:6e:71:05:ee:d1:a8:8a:8e:e9:87: fa:c3:75:90:ed:5b:e4:af:88:ac:78:6f:d2:5d:54: 85:1a:7b:4b:96:3f:51:77:59:50:e3:8d:ca:0a:76: fc:d8:bc:b6:e4:1a:3a:55:e8:44:b4:64:90:fe:10: 47:64:aa:9a:60:e3:15:8b:a0:16:0d:61:c8:6f:4c: da:cb:f2:24:d4:54:fb:c3:5f:d1:2b:c6:9a:7b:96: 5c:db:b6:5f:d2:44:95:80:1a:00:11:8c:c8:d9:0c: db:35:10:83:d4:d5:f6:d5:86:e5:32:7a:f0:77:69: 89:7a:6d:e6:c4:f2:af:65:96:94:d5:4a:7a:05:97: 88:75:25:f2:ea:17:80:55:ae:2c:f7:5b:9b:ad:97: 2b:b0:e0:45:f8:d4:a6:c5:3e:4a:98:74:48:70:0e: d8:80:dd:dc:02:66:1a:64:91:da:28:59:64:38:81: 65:6e:cb:66:79:5d:d4:c9:8c:bd:e0:cf:41:15:7a: f6:cb:03:5f:e2:e3:17:33:fd:82:06:67:c3:70:ff: 23:4d:dd:f6:46:7b:e0:46:32:99:3d:45:2a:e5:63: ab:56:96:d3:78:d6:14:99:68:b4:94:56:a6:93:c2: 44:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E8:5A:96:C4:FB:0A:76:8C:81:3A:80:96:1C:89:80:45:C7:C4:B9 X509v3 Authority Key Identifier: keyid:D2:38:6B:ED:83:B6:45:A2:BA:E1:38:9F:53:D9:65:7D:91:9E:76:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:6e:aa:ff:8b:23:6c:eb:a7:03:15:9a:f9:f8:50:a0:66:ae: 1b:62:82:b1:d3:7d:1d:9f:c6:9a:4b:bd:bd:12:2d:2c:43:82: 86:91:5a:c3:78:c0:d9:c1:a2:86:0e:f2:1c:21:5f:eb:5f:2e: 44:c5:7e:15:43:44:39:3f:d6:7e:ad:52:5f:da:ad:ea:ae:af: fe:73:fe:2d:66:41:f6:e6:a1:4f:ea:10:c9:ec:51:a8:77:fb: 51:dd:be:fc:a2:61:fd:8b:4f:9f:b1:7c:42:fb:5f:a8:7d:be: 25:6c:bd:c6:07:05:61:50:ee:b2:bf:d3:16:5c:f5:c6:f4:62: e1:4b:61:1b:da:2f:a7:8f:e2:25:78:2d:19:11:4c:57:7f:b7: 20:dc:eb:0f:7c:5b:da:95:03:e6:3a:00:05:78:1b:9e:76:50: 50:3c:03:f9:75:3c:1e:fd:76:02:fd:09:4c:fc:13:4b:67:50: 43:07:7a:8f:4f:16:0b:76:2a:09:51:44:ba:33:da:25:9b:43: 10:95:d4:0e:2c:08:7f:94:e0:b4:93:4a:a9:ca:5e:a9:21:1b: 35:dc:6a:68:23:59:2f:ef:d5:51:84:b7:4c:56:98:84:5c:9f: 12:e9:3e:f5:43:36:95:ce:63:d2:d5:04:9c:b1:11:83:ba:22: 27:3c:0c:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlE7P9cX5Fk/nB0QkKI1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyMzg2YmVkODNiNjQ1YTJiYWUxMzg5ZjUzZDk2NTdkOTE5 ZTc2ZDEwHhcNMjYwMjA5MTYwMDQ4WhcNMjYwMjEwMTYwMDQ4WjAzMTEwLwYDVQQD EygyOWU4NWE5NmM0ZmIwYTc2OGM4MTNhODA5NjFjODk4MDQ1YzdjNGI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1f2/otqtIo7iIb4ccmcSELRpGW5x Be7RqIqO6Yf6w3WQ7Vvkr4iseG/SXVSFGntLlj9Rd1lQ443KCnb82Ly25Bo6VehE tGSQ/hBHZKqaYOMVi6AWDWHIb0zay/Ik1FT7w1/RK8aae5Zc27Zf0kSVgBoAEYzI 2QzbNRCD1NX21YblMnrwd2mJem3mxPKvZZaU1Up6BZeIdSXy6heAVa4s91ubrZcr sOBF+NSmxT5KmHRIcA7YgN3cAmYaZJHaKFlkOIFlbstmeV3UyYy94M9BFXr2ywNf 4uMXM/2CBmfDcP8jTd32RnvgRjKZPUUq5WOrVpbTeNYUmWi0lFamk8JEAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCnoWpbE+wp2jIE6gJYciYBFx8S5MB8GA1UdIwQY MBaAFNI4a+2DtkWiuuE4n1PZZX2RnnbRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGpocjdZTzJSYUs2NFRpZlU5bGxmWkdlZHRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi81NjMyOTctNjA1Ni00Njc1LTgzOTkt MDM0MzgzNTFhMzY5LzEvMGpocjdZTzJSYUs2NFRpZlU5bGxmWkdlZHRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi81NjMyOTctNjA1Ni00Njc1LTgzOTktMDM0MzgzNTFhMzY5 LzEvMGpocjdZTzJSYUs2NFRpZlU5bGxmWkdlZHRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWG6q/4sj bOunAxWa+fhQoGauG2KCsdN9HZ/Gmku9vRItLEOChpFaw3jA2cGihg7yHCFf618u RMV+FUNEOT/Wfq1SX9qt6q6v/nP+LWZB9uahT+oQyexRqHf7Ud2+/KJh/YtPn7F8 QvtfqH2+JWy9xgcFYVDusr/TFlz1xvRi4UthG9ovp4/iJXgtGRFMV3+3INzrD3xb 2pUD5joABXgbnnZQUDwD+XU8Hv12Av0JTPwTS2dQQwd6j08WC3YqCVFEujPaJZtD EJXUDiwIf5TgtJNKqcpeqSEbNdxqaCNZL+/VUYS3TFaYhFyfEuk+9UM2lc5j0tUE nLERg7oiJzwMCA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:28 2026 by rpki-client