This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft File: cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft (raw, json) Hash identifier: 0YTRgzFCm5UkrwdlnXGGg9SAyqYnSHaemqtbvjktoX8= Subject key identifier: 99:0F:FE:BF:E6:50:93:A9:FB:37:10:EC:28:9C:86:05:62:B9:DC:EB Authority key identifier: 70:9A:8E:FA:FA:78:54:01:01:2C:45:90:DA:63:44:0A:34:56:D0:CE Certificate issuer: /CN=709a8efafa785401012c4590da63440a3456d0ce Certificate serial: 019C42B431E48DCF2E038217671CF688FE06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJqO-vp4VAEBLEWQ2mNECjRW0M4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft Manifest number: 05C8 Signing time: Mon 09 Feb 2026 14:00:31 +0000 Manifest this update: Mon 09 Feb 2026 14:00:31 +0000 Manifest next update: Tue 10 Feb 2026 14:00:31 +0000 Files and hashes: 1: cJqO-vp4VAEBLEWQ2mNECjRW0M4.crl (hash: HcdGq6sYjpbvTfuPKbXwxY5SBg1/KDzrVTVOl9KCxsw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.crl rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft rsync://rpki.ripe.net/repository/DEFAULT/cJqO-vp4VAEBLEWQ2mNECjRW0M4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:31:e4:8d:cf:2e:03:82:17:67:1c:f6:88:fe:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709a8efafa785401012c4590da63440a3456d0ce Validity Not Before: Feb 9 14:00:31 2026 GMT Not After : Feb 10 14:00:31 2026 GMT Subject: CN=990ffebfe65093a9fb3710ec289c860562b9dceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:de:b7:87:ee:a6:8d:38:b3:60:1f:04:ee:af: a9:9c:47:25:17:b9:e8:e3:23:98:34:22:53:92:59: 09:fd:cc:1e:73:e1:19:8a:b1:74:e9:c9:74:30:c5: 02:af:52:34:bc:b4:f9:f2:6f:a2:97:ec:bb:91:27: fb:08:76:67:4a:dd:f1:de:a5:c4:af:46:8f:26:37: ad:c3:18:13:91:6d:44:c3:e2:67:c5:de:44:56:62: dc:7c:86:06:31:d1:32:e4:0c:86:8d:d7:b6:ed:cf: d6:3b:d8:51:3d:38:f0:1c:a9:20:96:af:35:0b:12: 64:47:9e:54:21:b3:61:0e:54:da:93:05:20:c0:4e: 6c:1d:da:5a:a6:32:f2:84:91:ff:78:e8:f3:b9:3f: d6:e3:f2:b2:8e:aa:00:cd:43:31:3c:e7:f2:e2:86: e4:d5:98:16:b1:6e:0c:b5:63:57:0c:00:a9:70:fd: 6f:e0:49:5f:b5:c4:f7:38:e1:52:96:08:0f:44:dd: 76:94:7a:23:fe:ce:04:f9:74:bd:6b:7f:ef:3b:ab: 79:f7:f0:a7:8e:dd:70:26:d7:b0:95:f5:9a:6b:0e: 2e:be:04:f9:9d:f8:41:f4:82:17:37:ec:dd:2b:0e: f3:91:96:80:58:df:e3:dd:97:9c:d6:f4:f1:0b:38: ce:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0F:FE:BF:E6:50:93:A9:FB:37:10:EC:28:9C:86:05:62:B9:DC:EB X509v3 Authority Key Identifier: keyid:70:9A:8E:FA:FA:78:54:01:01:2C:45:90:DA:63:44:0A:34:56:D0:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJqO-vp4VAEBLEWQ2mNECjRW0M4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d6:06:d0:f2:1d:fe:60:f0:02:23:94:a9:07:31:1a:f8:0e:3e: 71:8b:99:a9:41:6e:c4:20:a8:0d:98:82:a6:3b:77:83:d2:5a: 36:c1:6a:54:b5:50:38:7d:d5:ce:7b:0f:c8:90:97:a0:e7:04: 01:9d:b1:3c:55:ea:91:36:0f:2e:6c:ae:d4:dd:04:06:c0:0f: cc:42:0a:bd:18:62:ac:1e:28:7d:d2:5c:e0:a2:58:28:de:eb: 03:79:87:15:13:f0:82:10:61:11:fb:fb:3a:53:d2:a0:f5:12: 77:0d:39:29:77:86:25:d7:67:dc:38:7a:66:79:bb:59:ef:e6: 86:64:42:d8:18:4c:0b:72:48:81:e5:b6:dc:63:bf:23:34:2f: 64:dd:f1:ee:e0:0b:94:61:ae:1b:d1:92:c5:62:9f:d4:9f:2f: b8:ad:8f:c6:a3:39:07:88:e5:3a:04:6c:93:e8:d3:e6:a1:00: 69:fb:84:63:82:40:ef:eb:2d:73:36:ef:2b:4c:c8:d0:37:9d: f8:bf:63:7b:18:96:10:3e:d2:51:58:6c:94:3e:3c:14:ca:04: c2:8f:1d:53:6d:3f:64:ec:b3:58:98:bb:10:ef:4c:a6:ea:5b: d1:fb:b3:0b:b1:82:3b:fc:16:c7:c1:b2:52:b8:25:5c:0f:d8: e8:7c:74:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtDHkjc8uA4IXZxz2iP4GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwOWE4ZWZhZmE3ODU0MDEwMTJjNDU5MGRhNjM0NDBhMzQ1 NmQwY2UwHhcNMjYwMjA5MTQwMDMxWhcNMjYwMjEwMTQwMDMxWjAzMTEwLwYDVQQD Eyg5OTBmZmViZmU2NTA5M2E5ZmIzNzEwZWMyODljODYwNTYyYjlkY2ViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxt63h+6mjTizYB8E7q+pnEclF7no 4yOYNCJTklkJ/cwec+EZirF06cl0MMUCr1I0vLT58m+il+y7kSf7CHZnSt3x3qXE r0aPJjetwxgTkW1Ew+Jnxd5EVmLcfIYGMdEy5AyGjde27c/WO9hRPTjwHKkglq81 CxJkR55UIbNhDlTakwUgwE5sHdpapjLyhJH/eOjzuT/W4/KyjqoAzUMxPOfy4obk 1ZgWsW4MtWNXDACpcP1v4ElftcT3OOFSlggPRN12lHoj/s4E+XS9a3/vO6t59/Cn jt1wJtewlfWaaw4uvgT5nfhB9IIXN+zdKw7zkZaAWN/j3Zec1vTxCzjOzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJkP/r/mUJOp+zcQ7CichgViudzrMB8GA1UdIwQY MBaAFHCajvr6eFQBASxFkNpjRAo0VtDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0pxTy12cDRWQUVCTEVXUTJtTkVDalJXME00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS9mYjVhNGYtMTk4Yi00NzExLTlhNzMt YzAyOTQ1YjQ4M2VlLzEvY0pxTy12cDRWQUVCTEVXUTJtTkVDalJXME00Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS9mYjVhNGYtMTk4Yi00NzExLTlhNzMtYzAyOTQ1YjQ4M2Vl LzEvY0pxTy12cDRWQUVCTEVXUTJtTkVDalJXME00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1gbQ8h3+ YPACI5SpBzEa+A4+cYuZqUFuxCCoDZiCpjt3g9JaNsFqVLVQOH3VznsPyJCXoOcE AZ2xPFXqkTYPLmyu1N0EBsAPzEIKvRhirB4ofdJc4KJYKN7rA3mHFRPwghBhEfv7 OlPSoPUSdw05KXeGJddn3Dh6Znm7We/mhmRC2BhMC3JIgeW23GO/IzQvZN3x7uAL lGGuG9GSxWKf1J8vuK2PxqM5B4jlOgRsk+jT5qEAafuEY4JA7+stczbvK0zI0Ded +L9jexiWED7SUVhslD48FMoEwo8dU20/ZOyzWJi7EO9Mpupb0fuzC7GCO/wWx8Gy UrglXA/Y6Hx05g== -----END CERTIFICATE-----Generated at Mon Feb 9 20:56:05 2026 by rpki-client