This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft File: JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft (raw, json) Hash identifier: LtKAWoAODbXRormrg1qkUWeYDmhDHV5PVcaFTYmCD8w= Subject key identifier: A1:E9:22:1D:0F:DE:75:ED:E8:78:DE:9F:D1:AE:6B:16:87:BC:AE:08 Authority key identifier: 25:57:2E:8F:93:B1:8A:40:1C:FE:CD:F6:25:86:78:38:58:CC:5F:14 Certificate issuer: /CN=25572e8f93b18a401cfecdf62586783858cc5f14 Certificate serial: 019C44DA5B9C8DDB18C82FD429ACA6E06359 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft Manifest number: 1812 Signing time: Tue 10 Feb 2026 00:01:26 +0000 Manifest this update: Tue 10 Feb 2026 00:01:26 +0000 Manifest next update: Wed 11 Feb 2026 00:01:26 +0000 Files and hashes: 1: JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl (hash: VI05wn4Ms6MYZ7O0S6ic1Jdrn1LHLuO59afEqfZeLew=) 2: SFUbqznmCnEJ3rKofq8VKf3iTTc.roa (hash: RPr3mwEf/YOEdxS9Rusypg0HUaq763lQcyOXM9sasq0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:da:5b:9c:8d:db:18:c8:2f:d4:29:ac:a6:e0:63:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25572e8f93b18a401cfecdf62586783858cc5f14 Validity Not Before: Feb 10 00:01:26 2026 GMT Not After : Feb 11 00:01:26 2026 GMT Subject: CN=a1e9221d0fde75ede878de9fd1ae6b1687bcae08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:10:3b:1b:4d:8f:fa:8a:b5:45:c4:5d:24:aa: 02:38:2c:a7:6c:64:80:c8:ef:54:33:02:c4:af:f5: ae:1b:3d:1f:63:1a:cc:47:7d:0d:e8:71:88:77:14: 15:c8:84:58:0a:9b:4a:31:af:4d:ec:6e:ea:9e:a8: 4b:e8:48:63:c2:c5:95:cb:b8:ec:bd:98:e5:9d:a2: 5a:a6:d2:32:41:e0:7d:6a:b1:10:24:b9:b8:9a:d2: 6b:9e:60:2f:fe:70:f1:44:8b:36:a8:b4:25:ce:07: 9f:00:f7:a0:23:4d:ad:2b:d2:27:61:82:9c:89:db: 4f:d6:a2:9b:4a:4f:52:f4:68:e0:5b:a9:c8:98:08: cf:1a:c6:c9:6b:6d:04:d8:9d:b5:00:8d:14:91:1a: 9c:ee:5e:6b:0c:16:ee:fb:2b:fe:ba:d7:67:e0:e5: 0c:0c:03:61:1a:4b:f1:36:d7:cd:46:b8:db:c0:bc: 48:a6:3b:f8:78:4b:3e:d1:6a:8c:09:02:ed:4b:18: 15:a0:3f:73:d1:be:a5:e2:2a:de:d9:a8:af:c9:7e: 0d:2c:22:54:9e:0e:53:dd:f0:e4:75:53:89:fd:1b: 22:9d:21:c8:f3:3c:3b:12:b5:df:f4:3b:15:b3:72: a7:ac:15:ef:0c:be:47:c5:54:f9:b4:81:3e:46:42: fb:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:E9:22:1D:0F:DE:75:ED:E8:78:DE:9F:D1:AE:6B:16:87:BC:AE:08 X509v3 Authority Key Identifier: keyid:25:57:2E:8F:93:B1:8A:40:1C:FE:CD:F6:25:86:78:38:58:CC:5F:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:05:c9:a7:a9:50:1a:1d:01:93:a2:42:cb:c4:1b:dd:39:8e: 6f:6d:e7:82:aa:f6:0a:78:28:f5:5c:cd:4c:49:82:47:6a:4c: a4:a1:80:21:6d:86:e2:5f:ff:2f:47:50:c2:65:9d:ae:24:5f: 4e:21:fe:d7:93:21:3e:2d:2c:27:95:c9:30:4b:51:d3:3c:5d: ae:96:e9:eb:85:f9:f1:4e:fc:f2:47:eb:25:a4:9c:02:d1:03: 2d:ec:cf:dc:fe:c5:51:60:cb:43:8f:9c:fb:a7:a3:77:8a:bb: eb:ad:e4:76:9d:78:f0:1a:32:6f:74:63:2b:c4:28:f1:1f:45: f8:07:71:4a:62:01:f0:b6:f2:96:ba:58:2f:a1:27:dd:2f:09: a4:a0:f5:b1:5d:3f:30:13:a7:e2:31:fe:03:61:3c:9d:50:54: 02:40:c8:bb:ca:ee:ed:92:e6:dd:b1:7a:36:fe:a2:6e:17:ba: ec:05:11:3d:ab:aa:5d:6d:48:56:d1:7f:94:9c:7f:64:19:7d: 65:b6:95:2d:0a:a7:e1:9a:cb:63:f9:e3:57:66:55:79:11:72: cd:a5:6b:5f:9b:51:56:7d:34:77:56:be:e0:30:14:3c:b4:71: ee:41:98:3b:d4:1f:e9:2a:4b:bd:b2:c6:e2:28:f5:08:d9:fe: 86:fe:31:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2lucjdsYyC/UKaym4GNZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NTcyZThmOTNiMThhNDAxY2ZlY2RmNjI1ODY3ODM4NThj YzVmMTQwHhcNMjYwMjEwMDAwMTI2WhcNMjYwMjExMDAwMTI2WjAzMTEwLwYDVQQD EyhhMWU5MjIxZDBmZGU3NWVkZTg3OGRlOWZkMWFlNmIxNjg3YmNhZTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxA7G02P+oq1RcRdJKoCOCynbGSA yO9UMwLEr/WuGz0fYxrMR30N6HGIdxQVyIRYCptKMa9N7G7qnqhL6EhjwsWVy7js vZjlnaJaptIyQeB9arEQJLm4mtJrnmAv/nDxRIs2qLQlzgefAPegI02tK9InYYKc idtP1qKbSk9S9GjgW6nImAjPGsbJa20E2J21AI0UkRqc7l5rDBbu+yv+utdn4OUM DANhGkvxNtfNRrjbwLxIpjv4eEs+0WqMCQLtSxgVoD9z0b6l4ire2aivyX4NLCJU ng5T3fDkdVOJ/RsinSHI8zw7ErXf9DsVs3KnrBXvDL5HxVT5tIE+RkL7RwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKHpIh0P3nXt6Hjen9GuaxaHvK4IMB8GA1UdIwQY MBaAFCVXLo+TsYpAHP7N9iWGeDhYzF8UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlZjdWo1T3hpa0FjX3MzMkpZWjRPRmpNWHhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC80YjFhMzUtNGE4NC00MTRiLWIwNzMt NjZkMzVlNTI1MDM5LzEvSlZjdWo1T3hpa0FjX3MzMkpZWjRPRmpNWHhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC80YjFhMzUtNGE4NC00MTRiLWIwNzMtNjZkMzVlNTI1MDM5 LzEvSlZjdWo1T3hpa0FjX3MzMkpZWjRPRmpNWHhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASgXJp6lQ Gh0Bk6JCy8Qb3TmOb23ngqr2Cngo9VzNTEmCR2pMpKGAIW2G4l//L0dQwmWdriRf TiH+15MhPi0sJ5XJMEtR0zxdrpbp64X58U788kfrJaScAtEDLezP3P7FUWDLQ4+c +6ejd4q7663kdp148Boyb3RjK8Qo8R9F+AdxSmIB8LbylrpYL6En3S8JpKD1sV0/ MBOn4jH+A2E8nVBUAkDIu8ru7ZLm3bF6Nv6ibhe67AURPauqXW1IVtF/lJx/ZBl9 ZbaVLQqn4ZrLY/njV2ZVeRFyzaVrX5tRVn00d1a+4DAUPLRx7kGYO9Qf6SpLvbLG 4ij1CNn+hv4x0w== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:07 2026 by rpki-client