This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/e5fe85-c5c0-4271-99c1-5456e15d4671/1/jNspNdndDVhbZVEYdkwBxtdvdMI.mft File: jNspNdndDVhbZVEYdkwBxtdvdMI.mft (raw, json) Hash identifier: D1jyPmT4QL+lBZYnQtowyrIvAuIQ7w9Idl4ntpPj4Xs= Subject key identifier: F6:93:4B:3B:94:01:DB:C9:0D:80:0D:D5:1D:0F:28:CA:36:31:D0:45 Authority key identifier: 8C:DB:29:35:D9:DD:0D:58:5B:65:51:18:76:4C:01:C6:D7:6F:74:C2 Certificate issuer: /CN=8cdb2935d9dd0d585b655118764c01c6d76f74c2 Certificate serial: 019C42465CC7FBCC3A1D0C5DCA2121F919E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jNspNdndDVhbZVEYdkwBxtdvdMI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/e5fe85-c5c0-4271-99c1-5456e15d4671/1/jNspNdndDVhbZVEYdkwBxtdvdMI.mft Manifest number: 0917 Signing time: Mon 09 Feb 2026 12:00:33 +0000 Manifest this update: Mon 09 Feb 2026 12:00:33 +0000 Manifest next update: Tue 10 Feb 2026 12:00:33 +0000 Files and hashes: 1: jNspNdndDVhbZVEYdkwBxtdvdMI.crl (hash: NTc9gXHgfq5loCwQk20koG9weh+5eCjrW1SorGKvQJ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/e5fe85-c5c0-4271-99c1-5456e15d4671/1/jNspNdndDVhbZVEYdkwBxtdvdMI.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/e5fe85-c5c0-4271-99c1-5456e15d4671/1/jNspNdndDVhbZVEYdkwBxtdvdMI.mft rsync://rpki.ripe.net/repository/DEFAULT/jNspNdndDVhbZVEYdkwBxtdvdMI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:5c:c7:fb:cc:3a:1d:0c:5d:ca:21:21:f9:19:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8cdb2935d9dd0d585b655118764c01c6d76f74c2 Validity Not Before: Feb 9 12:00:33 2026 GMT Not After : Feb 10 12:00:33 2026 GMT Subject: CN=f6934b3b9401dbc90d800dd51d0f28ca3631d045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e2:f0:b0:2b:64:f1:ab:20:20:0a:17:bc:d1: e2:e9:ae:76:de:01:56:8b:00:79:76:f9:3b:f2:1b: 98:3e:56:4b:eb:ab:56:46:8f:54:17:e8:8e:5e:9b: e5:d0:03:09:6b:72:d1:93:1d:0b:c1:71:17:be:79: 1a:89:db:d5:02:5f:80:e2:dd:e6:1c:10:cb:42:31: 66:4d:fd:d2:39:48:19:db:35:29:38:08:37:4c:a0: 64:d8:af:9f:3d:35:e3:09:89:88:79:80:0c:35:39: 93:f1:81:be:ee:25:3f:b0:98:f8:ef:e8:c3:6e:fa: 4f:a9:68:3f:16:70:52:f0:4e:fc:e2:3f:2e:0f:96: 7a:a3:06:c6:59:ef:77:e2:0e:fe:24:38:a6:52:0f: fa:86:e3:2d:b7:e1:2e:e3:8d:e0:c4:af:67:f7:05: a6:b6:1b:0f:23:b6:e2:85:c2:f5:62:ca:80:1a:60: bf:96:0c:1f:aa:f0:4a:98:ac:ae:6e:48:81:28:5e: 4c:50:07:a0:eb:6c:9a:1e:bd:a1:5d:26:e2:f8:98: 3d:f9:6a:6c:4e:42:28:74:e4:c0:82:5f:30:2c:09: 74:7e:52:c5:24:3e:63:c8:5d:3e:01:0c:fb:1c:38: ba:55:d2:3e:61:e0:9f:6e:fa:29:39:5b:92:55:9d: 44:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:93:4B:3B:94:01:DB:C9:0D:80:0D:D5:1D:0F:28:CA:36:31:D0:45 X509v3 Authority Key Identifier: keyid:8C:DB:29:35:D9:DD:0D:58:5B:65:51:18:76:4C:01:C6:D7:6F:74:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jNspNdndDVhbZVEYdkwBxtdvdMI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/e5fe85-c5c0-4271-99c1-5456e15d4671/1/jNspNdndDVhbZVEYdkwBxtdvdMI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/e5fe85-c5c0-4271-99c1-5456e15d4671/1/jNspNdndDVhbZVEYdkwBxtdvdMI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:c6:e3:9e:68:41:5d:05:13:86:fe:f1:49:cf:bd:80:b9:1f: 8a:0b:b0:38:eb:51:06:06:1b:c3:97:6e:45:8f:58:af:5f:df: 05:bd:5c:5c:e0:80:08:57:c7:fd:16:12:76:58:8b:c3:8b:59: ff:77:2d:86:f3:d8:2c:24:3c:53:54:dc:23:93:c7:11:cf:d8: 74:b2:f2:22:98:3f:e2:5b:4f:27:fd:5f:c3:d7:9b:94:2b:11: 51:bc:1c:59:01:b2:1a:04:e1:85:3c:1d:04:c9:94:02:f2:ec: b6:90:e5:eb:84:07:1f:ed:9c:5b:64:22:94:87:4c:48:c3:a3: 07:86:fb:15:fc:a1:93:e3:45:b4:e1:2d:75:fd:d9:f2:df:20: d6:e9:61:f3:af:83:e2:17:db:b0:65:84:5a:09:7d:e1:d0:aa: d6:30:ab:d3:4f:11:9a:26:16:30:71:05:8f:0d:d1:88:a1:2b: 32:cf:a4:37:00:7b:56:6e:43:10:6e:74:6c:d5:fa:26:5c:1f: fe:2f:4a:5b:23:b8:66:c6:53:55:d9:f9:b5:87:51:46:78:f5: e3:72:af:d0:89:3d:4d:eb:d7:93:49:ea:d6:5a:07:9f:ad:e5: 04:f3:74:5d:05:42:7d:5b:cf:0e:d1:e7:a9:60:a8:52:ed:8c: 9a:bd:49:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRlzH+8w6HQxdyiEh+RnnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhjZGIyOTM1ZDlkZDBkNTg1YjY1NTExODc2NGMwMWM2ZDc2 Zjc0YzIwHhcNMjYwMjA5MTIwMDMzWhcNMjYwMjEwMTIwMDMzWjAzMTEwLwYDVQQD EyhmNjkzNGIzYjk0MDFkYmM5MGQ4MDBkZDUxZDBmMjhjYTM2MzFkMDQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyeLwsCtk8asgIAoXvNHi6a523gFW iwB5dvk78huYPlZL66tWRo9UF+iOXpvl0AMJa3LRkx0LwXEXvnkaidvVAl+A4t3m HBDLQjFmTf3SOUgZ2zUpOAg3TKBk2K+fPTXjCYmIeYAMNTmT8YG+7iU/sJj47+jD bvpPqWg/FnBS8E784j8uD5Z6owbGWe934g7+JDimUg/6huMtt+Eu443gxK9n9wWm thsPI7bihcL1YsqAGmC/lgwfqvBKmKyubkiBKF5MUAeg62yaHr2hXSbi+Jg9+Wps TkIodOTAgl8wLAl0flLFJD5jyF0+AQz7HDi6VdI+YeCfbvopOVuSVZ1ESwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPaTSzuUAdvJDYAN1R0PKMo2MdBFMB8GA1UdIwQY MBaAFIzbKTXZ3Q1YW2VRGHZMAcbXb3TCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvak5zcE5kbmREVmhiWlZFWWRrd0J4dGR2ZE1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS9lNWZlODUtYzVjMC00MjcxLTk5YzEt NTQ1NmUxNWQ0NjcxLzEvak5zcE5kbmREVmhiWlZFWWRrd0J4dGR2ZE1JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS9lNWZlODUtYzVjMC00MjcxLTk5YzEtNTQ1NmUxNWQ0Njcx LzEvak5zcE5kbmREVmhiWlZFWWRrd0J4dGR2ZE1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWMbjnmhB XQUThv7xSc+9gLkfiguwOOtRBgYbw5duRY9Yr1/fBb1cXOCACFfH/RYSdliLw4tZ /3cthvPYLCQ8U1TcI5PHEc/YdLLyIpg/4ltPJ/1fw9eblCsRUbwcWQGyGgThhTwd BMmUAvLstpDl64QHH+2cW2QilIdMSMOjB4b7Ffyhk+NFtOEtdf3Z8t8g1ulh86+D 4hfbsGWEWgl94dCq1jCr008RmiYWMHEFjw3RiKErMs+kNwB7Vm5DEG50bNX6Jlwf /i9KWyO4ZsZTVdn5tYdRRnj143Kv0Ik9TevXk0nq1loHn63lBPN0XQVCfVvPDtHn qWCoUu2Mmr1J5w== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:23 2026 by rpki-client