This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft File: JCH_to6rl-JKkGJtkEmL5-1wZvA.mft (raw, json) Hash identifier: boRYz8eXngsxbqspteaF/MNRnCGSUyfjcDevUTs7sn8= Subject key identifier: C6:AF:C0:B2:50:4C:5F:B5:98:92:4E:C9:18:EC:B9:6B:29:30:BA:4B Authority key identifier: 24:21:FF:B6:8E:AB:97:E2:4A:90:62:6D:90:49:8B:E7:ED:70:66:F0 Certificate issuer: /CN=2421ffb68eab97e24a90626d90498be7ed7066f0 Certificate serial: 019C42463A3236845E0D993D36047EB9AE65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 12:00:24 +0000 Manifest this update: Mon 09 Feb 2026 12:00:24 +0000 Manifest next update: Tue 10 Feb 2026 12:00:24 +0000 Files and hashes: 1: JCH_to6rl-JKkGJtkEmL5-1wZvA.crl (hash: uixyu5ACDrvY2XWUjgQhjJVy3csm+WfyyvB5hr9sJVY=) 2: VnCUFpdYn6p9SWgBKCYPBMB_uag.roa (hash: CTE/bVTVJxivSVfHlKssz3gbLXyaKsvtaNtZL1+VzWQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:3a:32:36:84:5e:0d:99:3d:36:04:7e:b9:ae:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2421ffb68eab97e24a90626d90498be7ed7066f0 Validity Not Before: Feb 9 12:00:24 2026 GMT Not After : Feb 10 12:00:24 2026 GMT Subject: CN=c6afc0b2504c5fb598924ec918ecb96b2930ba4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ef:d2:28:0c:d7:7d:a1:66:50:43:24:d5:6c: a2:1e:8f:96:9e:4d:cd:95:ca:c0:68:70:5c:96:63: 63:b4:4b:e7:05:a8:ec:ec:7e:18:19:75:1a:2d:74: b1:f3:79:14:a9:81:22:ec:3e:97:53:59:3d:b7:c5: 1c:99:3c:94:db:af:07:8d:6f:8c:ee:56:32:ff:1c: 6e:64:f5:36:f7:1f:09:e3:84:22:0e:1f:b0:09:d7: be:dc:4c:82:02:6d:4e:b9:fd:09:3d:f4:60:72:af: 11:ce:d1:73:59:1e:ba:0c:29:ba:75:15:56:60:51: 30:db:d2:fa:97:26:b6:06:11:ff:05:39:aa:70:88: f3:79:f6:fe:28:5f:ce:5c:73:f5:02:a5:c7:97:05: cb:ca:9a:64:97:49:2a:39:7c:9c:11:a2:80:7e:23: 37:31:39:b7:1a:d2:04:ed:c1:d2:71:ac:5c:d8:ab: 4f:ef:72:97:0e:83:d7:87:19:c2:45:f2:0c:e2:83: 51:60:86:60:e5:c5:66:14:20:d0:e9:97:4d:de:99: 81:0f:d8:2f:85:fd:9e:8e:77:1c:8a:c6:5e:2c:d3: 8f:e2:bb:5d:5d:58:ff:0d:1b:b1:15:06:bd:b0:8c: 94:a0:e6:24:bb:a6:2a:bb:bd:5c:85:5f:ce:7c:6f: 62:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:AF:C0:B2:50:4C:5F:B5:98:92:4E:C9:18:EC:B9:6B:29:30:BA:4B X509v3 Authority Key Identifier: keyid:24:21:FF:B6:8E:AB:97:E2:4A:90:62:6D:90:49:8B:E7:ED:70:66:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:cd:e5:e6:e2:1e:e4:53:57:9c:96:e0:4f:4c:8b:f2:5a:86: b5:2a:42:49:3f:4a:05:ff:3d:3a:42:48:35:5c:f9:36:13:ef: ad:f4:0f:be:39:3f:ab:75:e3:05:d4:50:8a:3b:8c:b9:5d:06: 22:6a:3e:b4:6c:15:8e:37:04:68:c0:f3:d3:05:d8:b8:99:83: dd:9e:9a:14:ca:9b:2e:19:42:db:8f:f2:57:a6:4a:34:ac:1f: b5:76:16:e2:01:ad:a6:be:f2:0a:d8:f0:e9:cf:dc:b0:71:31: 8a:35:9e:a5:b7:60:0b:22:0e:5f:2e:b7:3e:88:05:14:a5:87: 83:68:4f:1c:a0:b8:26:78:b3:ff:3c:7a:23:1d:10:2c:5e:0a: f3:74:bb:5c:83:2d:96:9d:e5:a7:4c:9c:89:bc:b7:1c:0d:bc: 34:08:ee:1b:06:0f:dd:6f:fe:1e:07:f3:98:ff:ca:8e:39:63: 3c:fd:a5:39:6a:7f:60:8d:86:b4:b2:de:5e:64:68:92:22:91: 2e:8d:52:f3:21:bc:1c:3f:e0:0a:d4:0a:df:41:53:30:59:1b: 90:50:db:52:76:25:70:5a:fb:95:fe:05:13:bf:82:79:ff:44: 23:26:a1:e9:5a:4b:00:66:d9:ac:d6:a5:31:35:24:fe:a5:c4: d5:93:05:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRjoyNoReDZk9NgR+ua5lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0MjFmZmI2OGVhYjk3ZTI0YTkwNjI2ZDkwNDk4YmU3ZWQ3 MDY2ZjAwHhcNMjYwMjA5MTIwMDI0WhcNMjYwMjEwMTIwMDI0WjAzMTEwLwYDVQQD EyhjNmFmYzBiMjUwNGM1ZmI1OTg5MjRlYzkxOGVjYjk2YjI5MzBiYTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+/SKAzXfaFmUEMk1WyiHo+Wnk3N lcrAaHBclmNjtEvnBajs7H4YGXUaLXSx83kUqYEi7D6XU1k9t8UcmTyU268HjW+M 7lYy/xxuZPU29x8J44QiDh+wCde+3EyCAm1Ouf0JPfRgcq8RztFzWR66DCm6dRVW YFEw29L6lya2BhH/BTmqcIjzefb+KF/OXHP1AqXHlwXLyppkl0kqOXycEaKAfiM3 MTm3GtIE7cHScaxc2KtP73KXDoPXhxnCRfIM4oNRYIZg5cVmFCDQ6ZdN3pmBD9gv hf2ejnccisZeLNOP4rtdXVj/DRuxFQa9sIyUoOYku6Yqu71chV/OfG9iwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMavwLJQTF+1mJJOyRjsuWspMLpLMB8GA1UdIwQY MBaAFCQh/7aOq5fiSpBibZBJi+ftcGbwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkNIX3RvNnJsLUpLa0dKdGtFbUw1LTF3WnZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9hZTAyMGItZTBkNy00NTFkLWJiMDUt ZDkwOGZhZjM0ZWY4LzEvSkNIX3RvNnJsLUpLa0dKdGtFbUw1LTF3WnZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC9hZTAyMGItZTBkNy00NTFkLWJiMDUtZDkwOGZhZjM0ZWY4 LzEvSkNIX3RvNnJsLUpLa0dKdGtFbUw1LTF3WnZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAls3l5uIe 5FNXnJbgT0yL8lqGtSpCST9KBf89OkJINVz5NhPvrfQPvjk/q3XjBdRQijuMuV0G Imo+tGwVjjcEaMDz0wXYuJmD3Z6aFMqbLhlC24/yV6ZKNKwftXYW4gGtpr7yCtjw 6c/csHExijWepbdgCyIOXy63PogFFKWHg2hPHKC4Jniz/zx6Ix0QLF4K83S7XIMt lp3lp0yciby3HA28NAjuGwYP3W/+HgfzmP/KjjljPP2lOWp/YI2GtLLeXmRokiKR Lo1S8yG8HD/gCtQK30FTMFkbkFDbUnYlcFr7lf4FE7+Cef9EIyah6VpLAGbZrNal MTUk/qXE1ZMFeA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:50 2026 by rpki-client