This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json) Hash identifier: FlL3gLWm2QYJyUC6CwGum5tI1y1LjUcdVCw6FE3aWLk= Subject key identifier: 20:CC:C8:77:43:94:66:41:3E:F0:0A:F3:05:98:32:96:CE:28:D0:9B Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75 Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75 Certificate serial: 019C432249023ADB45CDBADF62D3F50AEBC1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft Manifest number: 0E64 Signing time: Mon 09 Feb 2026 16:00:46 +0000 Manifest this update: Mon 09 Feb 2026 16:00:46 +0000 Manifest next update: Tue 10 Feb 2026 16:00:46 +0000 Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: 0sxIQk2cB0bim2poMApD3qiaTZgG9RvIYsQsOqjt+80=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:49:02:3a:db:45:cd:ba:df:62:d3:f5:0a:eb:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75 Validity Not Before: Feb 9 16:00:46 2026 GMT Not After : Feb 10 16:00:46 2026 GMT Subject: CN=20ccc877439466413ef00af305983296ce28d09b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:83:8b:fb:63:84:76:d5:54:f8:6c:84:ec:7f: 14:55:44:cc:6a:17:74:20:25:8c:57:1a:cc:3a:53: 14:ce:7a:c5:83:57:6f:4a:36:f2:8e:9f:d6:63:40: 7e:8c:30:dc:22:87:30:87:35:48:22:1d:22:98:7c: c5:0b:78:af:6b:4d:1a:cc:0a:b2:78:9f:8b:04:20: d7:8d:30:b0:66:01:54:da:0e:83:2b:10:30:2b:a8: 87:0a:92:51:4b:69:39:04:88:a6:e8:29:1d:9c:57: a9:c3:81:86:31:a9:6a:1f:1c:cf:26:3f:13:af:89: 1f:6c:31:e7:59:50:aa:2c:d7:5c:6e:1f:28:ad:5f: c7:43:88:e8:0e:71:e8:15:9f:38:5f:2d:d0:00:7e: 9e:17:1d:c7:e9:c6:07:39:ff:63:1b:4e:bd:e8:52: 1e:1b:ad:6e:72:b4:57:ea:d7:0e:57:07:bb:82:8c: 6d:d9:48:09:93:75:69:1c:68:d4:66:62:f9:e0:16: 0e:5e:ff:f8:48:d9:7b:e3:9c:f5:f0:fa:a8:13:c3: 29:6b:7e:e4:ee:a9:2f:61:18:4e:a1:dc:2c:f6:58: bb:ab:6b:3a:7a:fe:e0:ce:8f:8f:e1:f0:02:26:eb: b7:c7:d0:c4:53:06:b1:aa:41:1d:d3:73:08:37:e6: 85:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CC:C8:77:43:94:66:41:3E:F0:0A:F3:05:98:32:96:CE:28:D0:9B X509v3 Authority Key Identifier: keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:f4:8e:09:f4:d1:d5:ae:25:da:9a:8a:41:40:22:1f:48:8d: 08:a4:97:60:cb:79:0a:08:35:95:03:33:aa:4a:a7:72:40:89: 06:52:f5:e9:d6:ea:1b:b3:07:e6:00:c1:1f:67:7a:bf:0b:f4: b5:78:bb:ca:00:4c:14:46:7e:e4:90:c2:ea:a5:f3:63:d4:ee: 78:a8:71:b7:f5:19:81:3a:1f:7d:36:1e:13:9f:4e:77:fe:8e: 96:2d:7b:74:e3:46:fb:81:66:5a:51:9b:23:4c:24:2f:b7:0d: ee:63:65:c0:b9:69:ff:c0:e5:82:0a:35:d6:b6:0d:b0:a3:63: 31:6e:a0:57:6b:46:8e:a9:c1:3f:b0:76:ad:e4:df:8b:a7:70: df:71:a4:df:76:bc:81:2f:ba:82:4a:8a:23:16:96:b8:6c:bd: 15:b9:6b:7c:21:b6:2d:22:cb:74:de:0e:2c:20:43:d0:de:83: df:4b:66:35:c7:84:35:66:11:e9:0c:7e:0a:83:82:dd:67:7b: 17:0a:da:ad:3e:63:91:b6:8f:0f:14:ab:98:09:76:b0:2f:77: c0:08:81:43:2d:f2:41:10:2d:95:00:52:d7:da:eb:d6:a9:bb: 54:6a:85:a2:8f:04:7f:a6:d7:81:d9:08:9e:2e:a6:bc:5b:02: 5e:a9:d9:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkkCOttFzbrfYtP1CuvBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY2M2ZlOWMxMzQwNDFjZWJkYTU2OGI5ZjkwOGUyYWVmMzhh YjdmNzUwHhcNMjYwMjA5MTYwMDQ2WhcNMjYwMjEwMTYwMDQ2WjAzMTEwLwYDVQQD EygyMGNjYzg3NzQzOTQ2NjQxM2VmMDBhZjMwNTk4MzI5NmNlMjhkMDliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5YOL+2OEdtVU+GyE7H8UVUTMahd0 ICWMVxrMOlMUznrFg1dvSjbyjp/WY0B+jDDcIocwhzVIIh0imHzFC3iva00azAqy eJ+LBCDXjTCwZgFU2g6DKxAwK6iHCpJRS2k5BIim6CkdnFepw4GGMalqHxzPJj8T r4kfbDHnWVCqLNdcbh8orV/HQ4joDnHoFZ84Xy3QAH6eFx3H6cYHOf9jG0696FIe G61ucrRX6tcOVwe7goxt2UgJk3VpHGjUZmL54BYOXv/4SNl745z18PqoE8Mpa37k 7qkvYRhOodws9li7q2s6ev7gzo+P4fACJuu3x9DEUwaxqkEd03MIN+aFFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCDMyHdDlGZBPvAK8wWYMpbOKNCbMB8GA1UdIwQY MBaAFPY/6cE0BBzr2laLn5COKu84q391MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYt NWFlYzc2NmE0OWI0LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYtNWFlYzc2NmE0OWI0 LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ/SOCfTR 1a4l2pqKQUAiH0iNCKSXYMt5Cgg1lQMzqkqnckCJBlL16dbqG7MH5gDBH2d6vwv0 tXi7ygBMFEZ+5JDC6qXzY9TueKhxt/UZgToffTYeE59Od/6Oli17dONG+4FmWlGb I0wkL7cN7mNlwLlp/8Dlggo11rYNsKNjMW6gV2tGjqnBP7B2reTfi6dw33Gk33a8 gS+6gkqKIxaWuGy9FblrfCG2LSLLdN4OLCBD0N6D30tmNceENWYR6Qx+CoOC3Wd7 FwrarT5jkbaPDxSrmAl2sC93wAiBQy3yQRAtlQBS19rr1qm7VGqFoo8Ef6bXgdkI ni6mvFsCXqnZOg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:06 2026 by rpki-client