This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft File: rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft (raw, json) Hash identifier: jYU2aTnh0C+QsnFRWCuOTinDZNxaIlbiLjWWWRzZtM0= Subject key identifier: 97:D2:87:8C:03:3F:CA:72:E8:19:3D:14:49:0E:37:F6:62:63:B2:57 Authority key identifier: AC:9A:51:BE:A1:B5:70:FF:A7:2D:9C:52:D1:A5:18:C2:4B:C7:8C:02 Certificate issuer: /CN=ac9a51bea1b570ffa72d9c52d1a518c24bc78c02 Certificate serial: 019C420FEF626B95CBD8B51149D8DA774692 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft Manifest number: 142E Signing time: Mon 09 Feb 2026 11:01:06 +0000 Manifest this update: Mon 09 Feb 2026 11:01:06 +0000 Manifest next update: Tue 10 Feb 2026 11:01:06 +0000 Files and hashes: 1: 5BqcS5YAd2CqG1Bqr1DMz14XLBs.roa (hash: hc3I67ClpXYlhmM2IyIqXgYM+yQAnq3AX4m72or+MyQ=) 2: rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl (hash: YKpkw57CGJnEbXqy7r+Pr1hY9EJyTGj0bVvo5vdMcLE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:ef:62:6b:95:cb:d8:b5:11:49:d8:da:77:46:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac9a51bea1b570ffa72d9c52d1a518c24bc78c02 Validity Not Before: Feb 9 11:01:06 2026 GMT Not After : Feb 10 11:01:06 2026 GMT Subject: CN=97d2878c033fca72e8193d14490e37f66263b257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3a:21:d4:2a:00:9d:f2:83:7d:9f:1d:4f:75: c8:f4:36:d2:65:c9:19:24:26:d8:b1:b7:14:df:73: da:ff:d2:07:5f:a3:5d:94:cf:d2:b7:27:b2:21:1f: 84:f2:e1:a1:33:7c:39:40:36:f4:4b:f8:4a:3a:3f: f7:de:59:fd:7f:39:1e:92:38:30:05:b4:dd:c9:5c: 1c:6d:94:3a:37:b8:0b:cf:ff:31:17:27:85:79:cf: fc:2c:ab:3a:db:47:a1:53:59:ca:dd:9b:c2:46:7a: be:4a:2a:e6:d4:f5:f3:27:26:5b:3a:b1:f8:7d:b8: 11:71:0d:58:03:2e:8a:41:19:6f:e0:86:66:ea:6c: 24:91:1b:7c:c8:ca:3b:be:65:ac:ef:b4:fd:5a:cb: e8:b6:f9:f5:0b:57:23:66:00:00:b0:b4:8e:fc:ea: a5:89:8f:c0:74:26:8f:e4:d8:29:e0:6e:33:a1:d0: 15:ae:c3:20:5f:9c:1d:ce:75:db:e9:e9:ad:0c:d7: f5:60:3a:46:be:4e:f7:5e:f0:fb:ac:ac:da:e6:c3: b2:77:45:a2:2c:9f:55:c6:ee:c6:22:ab:65:f3:da: 71:6b:c3:f4:c1:a7:87:02:e3:c9:72:73:42:b4:bb: 82:d5:eb:16:8d:cc:e1:9d:34:5b:dc:b3:66:d7:92: 8a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:D2:87:8C:03:3F:CA:72:E8:19:3D:14:49:0E:37:F6:62:63:B2:57 X509v3 Authority Key Identifier: keyid:AC:9A:51:BE:A1:B5:70:FF:A7:2D:9C:52:D1:A5:18:C2:4B:C7:8C:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:58:dd:ea:e5:d4:51:ee:ab:5e:90:7a:02:9c:b7:81:23:66: bf:ff:ce:17:86:cb:51:d4:d1:21:9e:3b:b8:84:7d:01:5b:a7: 35:41:e0:42:aa:9d:5c:8b:b3:1f:03:94:1a:ff:d9:af:c1:db: 2c:5f:37:9c:7f:7a:d6:68:7d:27:32:21:0c:6f:2d:ed:f1:32: 24:70:c4:d5:c3:e0:25:11:a1:f3:b6:0e:52:ab:35:32:c9:d5: 76:c7:80:61:19:78:3c:b8:90:9e:9c:0e:b6:50:bb:16:2d:7d: ec:fd:35:cc:19:21:a9:13:43:a4:20:b5:d3:f6:f4:81:dc:2b: 01:b5:51:25:d6:ec:eb:5d:c4:74:47:0b:f1:e1:6d:98:0c:b5: 57:81:e7:a9:a4:97:c9:5d:ae:dd:65:4b:3f:61:5b:97:6d:8c: 23:20:08:bf:92:a5:7d:d5:55:ce:a5:b1:e8:66:b6:19:9d:ab: 0b:50:59:d1:8b:b5:29:d7:ba:40:06:90:cc:03:09:42:4e:fc: 21:d1:68:49:a0:d3:cd:ca:76:25:b0:c3:e9:bc:64:75:c5:73: 68:d3:91:cc:94:ff:d2:3b:b1:2b:e7:0a:44:de:bc:3e:e3:5c: d9:46:bb:b8:f7:eb:5e:dd:09:b2:b6:47:e8:b8:a7:6f:74:bb: 4c:33:fd:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD+9ia5XL2LURSdjad0aSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjOWE1MWJlYTFiNTcwZmZhNzJkOWM1MmQxYTUxOGMyNGJj NzhjMDIwHhcNMjYwMjA5MTEwMTA2WhcNMjYwMjEwMTEwMTA2WjAzMTEwLwYDVQQD Eyg5N2QyODc4YzAzM2ZjYTcyZTgxOTNkMTQ0OTBlMzdmNjYyNjNiMjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDoh1CoAnfKDfZ8dT3XI9DbSZckZ JCbYsbcU33Pa/9IHX6NdlM/StyeyIR+E8uGhM3w5QDb0S/hKOj/33ln9fzkekjgw BbTdyVwcbZQ6N7gLz/8xFyeFec/8LKs620ehU1nK3ZvCRnq+Sirm1PXzJyZbOrH4 fbgRcQ1YAy6KQRlv4IZm6mwkkRt8yMo7vmWs77T9Wsvotvn1C1cjZgAAsLSO/Oql iY/AdCaP5Ngp4G4zodAVrsMgX5wdznXb6emtDNf1YDpGvk73XvD7rKza5sOyd0Wi LJ9Vxu7GIqtl89pxa8P0waeHAuPJcnNCtLuC1esWjczhnTRb3LNm15KK1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJfSh4wDP8py6Bk9FEkON/ZiY7JXMB8GA1UdIwQY MBaAFKyaUb6htXD/py2cUtGlGMJLx4wCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckpwUnZxRzFjUC1uTFp4UzBhVVl3a3ZIakFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8yZGU4N2EtMDE3Ni00ZjE5LWIwZTgt YWI1NjMwMjExZjdhLzEvckpwUnZxRzFjUC1uTFp4UzBhVVl3a3ZIakFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8yZGU4N2EtMDE3Ni00ZjE5LWIwZTgtYWI1NjMwMjExZjdh LzEvckpwUnZxRzFjUC1uTFp4UzBhVVl3a3ZIakFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj1jd6uXU Ue6rXpB6Apy3gSNmv//OF4bLUdTRIZ47uIR9AVunNUHgQqqdXIuzHwOUGv/Zr8Hb LF83nH961mh9JzIhDG8t7fEyJHDE1cPgJRGh87YOUqs1MsnVdseAYRl4PLiQnpwO tlC7Fi197P01zBkhqRNDpCC10/b0gdwrAbVRJdbs613EdEcL8eFtmAy1V4HnqaSX yV2u3WVLP2Fbl22MIyAIv5KlfdVVzqWx6Ga2GZ2rC1BZ0Yu1Kde6QAaQzAMJQk78 IdFoSaDTzcp2JbDD6bxkdcVzaNORzJT/0juxK+cKRN68PuNc2Ua7uPfrXt0JsrZH 6Linb3S7TDP9QQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:58 2026 by rpki-client