This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft File: JchJyqV3LJi4E8E7TzD85PSNLa4.mft (raw, json) Hash identifier: haFCrEVF1PAtNgbGN4pJcUD91njf55lmhpfZBBNV7vA= Subject key identifier: A6:73:18:60:8B:B0:10:61:45:E5:54:B9:F6:D0:A5:9F:D6:04:8B:60 Authority key identifier: 25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE Certificate issuer: /CN=25c849caa5772c98b813c13b4f30fce4f48d2dae Certificate serial: 019C43C6D2AAEFF07906918F205656DB9EBA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft Manifest number: 0BE5 Signing time: Mon 09 Feb 2026 19:00:29 +0000 Manifest this update: Mon 09 Feb 2026 19:00:29 +0000 Manifest next update: Tue 10 Feb 2026 19:00:29 +0000 Files and hashes: 1: JchJyqV3LJi4E8E7TzD85PSNLa4.crl (hash: G6gwPRksfTnQMh2BtD6XRsVV5+N/UDsSmn+WzL7pKp0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:d2:aa:ef:f0:79:06:91:8f:20:56:56:db:9e:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25c849caa5772c98b813c13b4f30fce4f48d2dae Validity Not Before: Feb 9 19:00:29 2026 GMT Not After : Feb 10 19:00:29 2026 GMT Subject: CN=a67318608bb0106145e554b9f6d0a59fd6048b60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:c1:66:11:f2:a1:a7:26:76:e2:ff:f3:5f:fa: e6:7b:34:36:e9:9c:1f:f9:8c:fc:42:07:5d:fc:d6: 61:aa:36:72:18:c1:57:e3:7c:af:16:93:37:dd:50: f2:13:25:ea:59:8f:c1:cf:b3:a4:3c:1d:82:77:ea: 15:18:8a:13:24:ae:8b:ce:76:16:43:85:23:a3:8f: 58:96:db:48:66:82:bf:1c:47:5f:06:2d:f3:0c:c2: 81:e8:d8:a4:21:6e:04:f8:d0:13:a5:a2:aa:7b:3b: 96:d5:34:13:74:4a:5a:ae:6f:21:26:6b:a0:bb:fe: 30:70:92:f9:b3:38:13:03:e5:94:b4:04:f1:f7:23: aa:9a:bd:58:70:20:55:40:66:0f:58:4f:e4:01:13: bd:07:bb:f7:cf:bf:ba:fc:67:47:9d:3a:77:41:c7: c9:94:31:27:4c:b2:b8:30:9f:a0:4e:66:98:35:82: e4:c6:0d:2e:21:7b:05:fd:9a:3f:5e:05:21:d3:67: ed:e9:c4:a7:5b:9c:b8:6e:30:36:1d:52:6e:a8:fc: 4a:61:05:a7:81:02:3c:a1:1a:4d:f1:6c:f3:ca:68: df:55:f0:9a:40:f7:07:43:a1:40:79:69:26:dd:a6: 45:a9:45:8b:da:f9:bd:7f:81:f5:97:34:73:38:d1: 2b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:73:18:60:8B:B0:10:61:45:E5:54:B9:F6:D0:A5:9F:D6:04:8B:60 X509v3 Authority Key Identifier: keyid:25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:7b:cb:f2:93:42:bc:f5:ef:fc:f2:0d:28:b9:6b:16:6c:e2: f5:b9:48:ac:80:38:ef:33:45:e5:4d:d8:2c:1c:2d:ca:12:f0: 39:6b:c5:81:0f:0e:81:bc:7d:88:6c:95:b5:0a:2a:e0:11:1f: 43:44:21:ca:6a:16:4c:37:de:61:41:43:73:3b:00:5d:f4:f8: 6c:58:bc:22:ec:64:43:2e:77:df:f6:9b:dc:a4:14:2b:de:39: 22:1b:fa:f1:24:8e:2f:59:33:c6:eb:cd:d7:24:d6:d4:c7:e3: 24:a6:4d:ad:55:f3:fe:05:a8:09:c7:30:8f:7b:f7:61:71:2c: 4a:fa:7e:58:05:ba:83:70:fc:93:af:d4:1f:90:7d:82:97:45: 3a:21:ae:14:1f:58:7d:64:ab:96:df:af:21:af:b1:6b:48:08: 36:4a:5f:a5:17:30:3f:4a:b0:d3:ca:0e:1b:2e:ad:1e:2b:d9: 3c:1c:5f:e7:05:7c:3c:44:dd:b8:75:13:8f:78:b5:40:7a:87: 89:26:b4:67:0f:f9:36:c7:1d:ba:00:03:e8:86:21:a5:c1:25: ae:b1:bb:7c:cc:85:f8:be:9c:96:f6:0e:36:88:5e:aa:38:90: 86:b7:fd:32:d2:5d:51:c0:24:c2:50:25:c0:00:12:c0:5b:e9: 1f:a5:72:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxtKq7/B5BpGPIFZW2566MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1Yzg0OWNhYTU3NzJjOThiODEzYzEzYjRmMzBmY2U0ZjQ4 ZDJkYWUwHhcNMjYwMjA5MTkwMDI5WhcNMjYwMjEwMTkwMDI5WjAzMTEwLwYDVQQD EyhhNjczMTg2MDhiYjAxMDYxNDVlNTU0YjlmNmQwYTU5ZmQ2MDQ4YjYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAicFmEfKhpyZ24v/zX/rmezQ26Zwf +Yz8Qgdd/NZhqjZyGMFX43yvFpM33VDyEyXqWY/Bz7OkPB2Cd+oVGIoTJK6LznYW Q4Ujo49YlttIZoK/HEdfBi3zDMKB6NikIW4E+NATpaKqezuW1TQTdEparm8hJmug u/4wcJL5szgTA+WUtATx9yOqmr1YcCBVQGYPWE/kARO9B7v3z7+6/GdHnTp3QcfJ lDEnTLK4MJ+gTmaYNYLkxg0uIXsF/Zo/XgUh02ft6cSnW5y4bjA2HVJuqPxKYQWn gQI8oRpN8WzzymjfVfCaQPcHQ6FAeWkm3aZFqUWL2vm9f4H1lzRzONEr5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKZzGGCLsBBhReVUufbQpZ/WBItgMB8GA1UdIwQY MBaAFCXIScqldyyYuBPBO08w/OT0jS2uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS84NTQ0YTAtYWU0Ni00ZGEyLWFkMmQt ZTg5M2IxM2IyYzlmLzEvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS84NTQ0YTAtYWU0Ni00ZGEyLWFkMmQtZTg5M2IxM2IyYzlm LzEvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIHvL8pNC vPXv/PINKLlrFmzi9blIrIA47zNF5U3YLBwtyhLwOWvFgQ8Ogbx9iGyVtQoq4BEf Q0QhymoWTDfeYUFDczsAXfT4bFi8IuxkQy533/ab3KQUK945Ihv68SSOL1kzxuvN 1yTW1MfjJKZNrVXz/gWoCccwj3v3YXEsSvp+WAW6g3D8k6/UH5B9gpdFOiGuFB9Y fWSrlt+vIa+xa0gINkpfpRcwP0qw08oOGy6tHivZPBxf5wV8PETduHUTj3i1QHqH iSa0Zw/5NscdugAD6IYhpcElrrG7fMyF+L6clvYONoheqjiQhrf9MtJdUcAkwlAl wAASwFvpH6VyHw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:31 2026 by rpki-client