This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft File: jhTxdhHOtBMYStycGa71CKhJubI.mft (raw, json) Hash identifier: tj6mVRzqc3bM1WlOX011z/3wOtk3n18O7tb0NZ+XDUA= Subject key identifier: A4:04:64:13:5B:66:F8:A9:30:30:4D:97:C5:8A:92:60:DE:2D:92:2D Authority key identifier: 8E:14:F1:76:11:CE:B4:13:18:4A:DC:9C:19:AE:F5:08:A8:49:B9:B2 Certificate issuer: /CN=8e14f17611ceb413184adc9c19aef508a849b9b2 Certificate serial: 019C43231620FD6BEF1317255A444F4BFF57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhTxdhHOtBMYStycGa71CKhJubI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 16:01:38 +0000 Manifest this update: Mon 09 Feb 2026 16:01:38 +0000 Manifest next update: Tue 10 Feb 2026 16:01:38 +0000 Files and hashes: 1: jhTxdhHOtBMYStycGa71CKhJubI.crl (hash: JdobPtvqS4Ul3MzphVar7u3kaiX4aSvAddUt0U6HblY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft rsync://rpki.ripe.net/repository/DEFAULT/jhTxdhHOtBMYStycGa71CKhJubI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:23:16:20:fd:6b:ef:13:17:25:5a:44:4f:4b:ff:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e14f17611ceb413184adc9c19aef508a849b9b2 Validity Not Before: Feb 9 16:01:38 2026 GMT Not After : Feb 10 16:01:38 2026 GMT Subject: CN=a40464135b66f8a930304d97c58a9260de2d922d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b3:79:c0:17:d7:02:0d:86:22:4b:8c:d4:a0: 2a:42:11:95:d8:96:70:4e:80:03:c0:4a:77:0a:41: db:e2:c9:7f:c1:2b:ab:33:2f:2b:50:bf:dc:1b:c6: 6a:9d:dd:49:8a:bf:de:14:be:71:75:c7:15:98:50: 14:d1:23:0c:67:d3:86:3c:9f:09:6a:6b:d9:b2:c5: 97:31:fd:39:46:4a:f9:5b:7b:a1:de:c0:fd:90:30: cb:13:ee:7c:af:71:32:0a:11:48:62:85:a1:6e:05: 60:56:24:12:63:26:93:ca:44:e8:c0:7e:02:f6:85: 4c:dc:2c:3e:02:f7:c2:35:eb:3f:0c:4f:1e:3d:73: 4a:84:c5:57:ee:3e:f9:ff:f0:48:45:7d:1f:4d:20: 30:e5:11:13:cc:10:15:cd:a4:c3:be:57:cb:42:1e: ae:43:81:ee:12:a2:a2:a9:e9:da:8d:2d:a3:2a:ac: 00:76:ad:47:c7:46:1e:42:23:23:35:4f:f1:53:fc: a5:b2:6f:69:0f:cf:28:d8:06:4d:5c:84:8d:29:8a: de:19:ec:2b:ce:fb:13:b2:b5:70:32:ae:0c:ed:0a: 8d:f4:b9:f1:f3:ed:8c:7c:f3:6e:98:13:35:09:54: 1a:da:bb:8b:8d:99:f6:1d:86:0e:cb:2d:b8:3a:e8: 78:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:04:64:13:5B:66:F8:A9:30:30:4D:97:C5:8A:92:60:DE:2D:92:2D X509v3 Authority Key Identifier: keyid:8E:14:F1:76:11:CE:B4:13:18:4A:DC:9C:19:AE:F5:08:A8:49:B9:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhTxdhHOtBMYStycGa71CKhJubI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:2a:4f:01:08:29:d4:fd:41:76:fe:2c:94:c2:ea:58:13:78: 87:22:48:84:28:e0:13:b4:73:ed:8b:6d:0f:4f:4d:3b:0f:90: 3e:c1:6c:e8:eb:4a:df:b2:a9:3f:f3:d9:5a:3d:bb:25:13:e1: e0:be:cf:7e:65:09:5c:a8:94:3e:b2:c2:54:90:ed:54:31:99: 06:cb:20:11:2f:15:da:61:b1:d0:a2:77:99:75:b3:06:c4:97: 9e:85:ca:97:a5:53:07:5d:2d:ec:f6:10:52:d5:9a:74:fa:ab: f9:4a:74:52:11:c8:4b:98:c4:2e:89:70:36:62:c5:b3:3f:c6: f3:31:b2:a9:87:fb:b8:d1:04:86:fd:6b:e6:de:cf:f9:28:2e: c7:9d:8b:34:49:ff:ba:23:f5:b0:45:2a:49:54:30:88:d2:5e: d8:d0:d3:17:5d:45:48:c6:1c:2b:aa:50:83:61:d8:19:cb:b9: f8:69:b0:80:73:bd:69:2e:48:bc:16:5b:0d:4e:85:f4:62:69: 02:85:85:f1:97:80:49:4c:2d:69:c7:63:8f:4d:50:c2:58:60: a5:46:8f:4b:37:eb:98:44:d6:14:c1:8b:ef:1b:26:ea:d3:54: 8b:5c:9a:1d:b4:11:21:44:b7:b3:ca:b8:f0:a1:b3:20:c8:80: 2b:5b:ae:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIxYg/WvvExclWkRPS/9XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlMTRmMTc2MTFjZWI0MTMxODRhZGM5YzE5YWVmNTA4YTg0 OWI5YjIwHhcNMjYwMjA5MTYwMTM4WhcNMjYwMjEwMTYwMTM4WjAzMTEwLwYDVQQD EyhhNDA0NjQxMzViNjZmOGE5MzAzMDRkOTdjNThhOTI2MGRlMmQ5MjJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7N5wBfXAg2GIkuM1KAqQhGV2JZw ToADwEp3CkHb4sl/wSurMy8rUL/cG8Zqnd1Jir/eFL5xdccVmFAU0SMMZ9OGPJ8J amvZssWXMf05Rkr5W3uh3sD9kDDLE+58r3EyChFIYoWhbgVgViQSYyaTykTowH4C 9oVM3Cw+AvfCNes/DE8ePXNKhMVX7j75//BIRX0fTSAw5RETzBAVzaTDvlfLQh6u Q4HuEqKiqenajS2jKqwAdq1Hx0YeQiMjNU/xU/ylsm9pD88o2AZNXISNKYreGewr zvsTsrVwMq4M7QqN9Lnx8+2MfPNumBM1CVQa2ruLjZn2HYYOyy24Ouh4yQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKQEZBNbZvipMDBNl8WKkmDeLZItMB8GA1UdIwQY MBaAFI4U8XYRzrQTGErcnBmu9QioSbmyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamhUeGRoSE90Qk1ZU3R5Y0dhNzFDS2hKdWJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS84MWQ1NmQtMWY1Mi00YTliLTk1OTEt NzIwZmQzYTFlZWYzLzEvamhUeGRoSE90Qk1ZU3R5Y0dhNzFDS2hKdWJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS84MWQ1NmQtMWY1Mi00YTliLTk1OTEtNzIwZmQzYTFlZWYz LzEvamhUeGRoSE90Qk1ZU3R5Y0dhNzFDS2hKdWJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfypPAQgp 1P1Bdv4slMLqWBN4hyJIhCjgE7Rz7YttD09NOw+QPsFs6OtK37KpP/PZWj27JRPh 4L7PfmUJXKiUPrLCVJDtVDGZBssgES8V2mGx0KJ3mXWzBsSXnoXKl6VTB10t7PYQ UtWadPqr+Up0UhHIS5jELolwNmLFsz/G8zGyqYf7uNEEhv1r5t7P+Sgux52LNEn/ uiP1sEUqSVQwiNJe2NDTF11FSMYcK6pQg2HYGcu5+GmwgHO9aS5IvBZbDU6F9GJp AoWF8ZeASUwtacdjj01QwlhgpUaPSzfrmETWFMGL7xsm6tNUi1yaHbQRIUS3s8q4 8KGzIMiAK1uuDA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:15 2026 by rpki-client