This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft File: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft (raw, json) Hash identifier: kIYX/Et+FwlOsB8BMjChNO/ZqbirY3T5XDXNGxLf9wo= Subject key identifier: DC:A0:2A:DA:9A:A0:B6:6C:7F:A1:27:BE:59:3B:03:01:E4:E3:92:87 Authority key identifier: 8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4 Certificate issuer: /CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4 Certificate serial: 019C42EB4DD1A7630BC177F1FA34625C76EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft Manifest number: 1531 Signing time: Mon 09 Feb 2026 15:00:42 +0000 Manifest this update: Mon 09 Feb 2026 15:00:42 +0000 Manifest next update: Tue 10 Feb 2026 15:00:42 +0000 Files and hashes: 1: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl (hash: D3JAvmR3XiQn8bI9PCKy6TT1m5vu/9iyhE9bdZlB6xI=) 2: n2cwiplK4QxCrTwGBHLplO2ULeU.roa (hash: 7aeKHzASb9QXAHN2dhVECcGoHU8aQKfp4EYYcWeuYiY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:4d:d1:a7:63:0b:c1:77:f1:fa:34:62:5c:76:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4 Validity Not Before: Feb 9 15:00:42 2026 GMT Not After : Feb 10 15:00:42 2026 GMT Subject: CN=dca02ada9aa0b66c7fa127be593b0301e4e39287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:69:a4:3d:4e:6a:f3:24:65:7e:99:a5:00:27: d9:99:bb:24:96:ee:18:7e:dc:f7:50:d8:16:9a:bc: 3a:62:f1:e8:9b:69:74:03:48:4d:44:b5:d8:bd:dd: 88:5c:ac:4a:95:a0:fa:e3:b6:c7:6d:cc:59:2f:7a: ae:60:7d:10:8c:ee:27:58:9e:87:c8:92:a4:62:be: c3:bd:5e:c1:08:7b:60:b4:19:ca:c3:90:f1:4c:8a: 6c:e9:99:b0:5f:a6:db:7a:e7:bd:73:69:72:60:26: 9a:ca:b3:b1:47:b3:2d:9d:b3:fa:9c:74:5f:2c:68: 41:c1:3a:bc:3f:7e:37:9d:7e:d0:b8:6b:49:e0:2a: 57:d6:58:3b:aa:5e:0b:19:9d:30:9c:9d:19:0d:8b: 47:5e:0a:db:87:3b:a3:11:88:06:99:3c:a0:0e:32: db:8a:fc:01:41:55:74:92:fd:3f:05:de:f1:1a:ad: 5e:f1:fd:fd:af:12:4e:45:41:d5:b4:cb:07:c8:17: 13:a7:b2:6f:b6:69:2f:e1:5c:78:f5:93:0b:f3:b7: f6:c5:1a:09:18:a5:86:54:03:86:8c:38:2c:48:01: 5c:24:57:58:b7:86:15:fc:d3:67:26:e9:45:06:c8: 54:8d:82:62:74:76:4d:54:54:d5:04:46:c5:dd:74: c3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A0:2A:DA:9A:A0:B6:6C:7F:A1:27:BE:59:3B:03:01:E4:E3:92:87 X509v3 Authority Key Identifier: keyid:8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:8a:64:69:1a:94:d7:ab:71:6f:76:43:c3:86:84:7d:9f:06: d1:f6:ab:b1:72:af:33:b0:2c:a3:ba:66:3a:64:c7:d0:50:e5: dd:92:4a:83:81:4c:a5:b4:ab:da:97:90:10:52:50:27:69:68: 0c:ef:f4:1f:70:45:f6:97:a6:2b:8a:c0:19:9b:86:08:d4:f6: 30:ad:ad:4d:f9:89:70:a9:3f:cf:47:00:36:c4:72:fe:8d:9d: 56:7d:2d:0b:b0:46:19:46:ce:01:30:e0:3a:f4:e5:28:78:0c: 66:98:b3:26:3c:81:d1:5c:bc:c8:4c:f4:0e:29:d2:8c:64:30: 6a:9c:99:e7:19:2e:88:74:2d:a4:b7:cb:f6:84:66:8d:02:aa: 55:a0:8c:5c:cb:de:84:59:86:df:24:1b:5f:f2:5c:3c:ab:62: a2:6a:61:cf:42:22:b6:05:bd:b7:01:2f:0a:b1:e6:56:b8:7f: 1f:93:6a:9d:70:99:17:c3:af:69:b2:92:20:09:6c:1c:b4:81: 19:fb:d3:ba:9c:b5:59:db:ba:65:3c:3f:0a:a5:9f:cd:fc:d3: 6f:f5:8f:ce:a6:3a:1b:6e:52:86:9d:55:65:e1:5b:03:99:ff: 26:fe:15:11:34:a0:b6:67:d8:58:49:30:60:32:26:3a:8f:8b: 57:14:98:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC603Rp2MLwXfx+jRiXHbsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkZDA5ODE3ZGZlYTRjNjZjOTQxOGY5ZjM5MDZmMWQwZTA3 Y2M5ZDQwHhcNMjYwMjA5MTUwMDQyWhcNMjYwMjEwMTUwMDQyWjAzMTEwLwYDVQQD EyhkY2EwMmFkYTlhYTBiNjZjN2ZhMTI3YmU1OTNiMDMwMWU0ZTM5Mjg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWmkPU5q8yRlfpmlACfZmbsklu4Y ftz3UNgWmrw6YvHom2l0A0hNRLXYvd2IXKxKlaD647bHbcxZL3quYH0QjO4nWJ6H yJKkYr7DvV7BCHtgtBnKw5DxTIps6ZmwX6bbeue9c2lyYCaayrOxR7MtnbP6nHRf LGhBwTq8P343nX7QuGtJ4CpX1lg7ql4LGZ0wnJ0ZDYtHXgrbhzujEYgGmTygDjLb ivwBQVV0kv0/Bd7xGq1e8f39rxJORUHVtMsHyBcTp7Jvtmkv4Vx49ZML87f2xRoJ GKWGVAOGjDgsSAFcJFdYt4YV/NNnJulFBshUjYJidHZNVFTVBEbF3XTD9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNygKtqaoLZsf6Envlk7AwHk45KHMB8GA1UdIwQY MBaAFI3QmBff6kxmyUGPnzkG8dDgfMnUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamRDWUY5X3FUR2JKUVktZk9RYngwT0I4eWRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85MzM3ZWMtYjRkZS00NDlhLWI2MDct ZWE5Y2I1MjdhZTcxLzEvamRDWUY5X3FUR2JKUVktZk9RYngwT0I4eWRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy85MzM3ZWMtYjRkZS00NDlhLWI2MDctZWE5Y2I1MjdhZTcx LzEvamRDWUY5X3FUR2JKUVktZk9RYngwT0I4eWRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQIpkaRqU 16txb3ZDw4aEfZ8G0farsXKvM7Aso7pmOmTH0FDl3ZJKg4FMpbSr2peQEFJQJ2lo DO/0H3BF9pemK4rAGZuGCNT2MK2tTfmJcKk/z0cANsRy/o2dVn0tC7BGGUbOATDg OvTlKHgMZpizJjyB0Vy8yEz0DinSjGQwapyZ5xkuiHQtpLfL9oRmjQKqVaCMXMve hFmG3yQbX/JcPKtiomphz0IitgW9twEvCrHmVrh/H5NqnXCZF8OvabKSIAlsHLSB GfvTupy1Wdu6ZTw/CqWfzfzTb/WPzqY6G25Shp1VZeFbA5n/Jv4VETSgtmfYWEkw YDImOo+LVxSYwQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:25 2026 by rpki-client