This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft File: miIdT5cAcYIi7es06TinZjQ_JOE.mft (raw, json) Hash identifier: 2NzmxXuR8SoWUP7MHWfb9UFJLFOkO2wMXyoNTolb3QY= Subject key identifier: 89:55:DD:94:BB:23:A6:22:37:27:63:66:5F:85:F8:D6:08:86:56:AD Authority key identifier: 9A:22:1D:4F:97:00:71:82:22:ED:EB:34:E9:38:A7:66:34:3F:24:E1 Certificate issuer: /CN=9a221d4f9700718222edeb34e938a766343f24e1 Certificate serial: 019C4322FACFE2C07EA1767F2E80ABC9633B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft Manifest number: 16BA Signing time: Mon 09 Feb 2026 16:01:31 +0000 Manifest this update: Mon 09 Feb 2026 16:01:31 +0000 Manifest next update: Tue 10 Feb 2026 16:01:31 +0000 Files and hashes: 1: miIdT5cAcYIi7es06TinZjQ_JOE.crl (hash: +JI53cjTgFqzwC7vVJIBRC7cKk7GHf2PiUmEn3YBNPw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:fa:cf:e2:c0:7e:a1:76:7f:2e:80:ab:c9:63:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a221d4f9700718222edeb34e938a766343f24e1 Validity Not Before: Feb 9 16:01:31 2026 GMT Not After : Feb 10 16:01:31 2026 GMT Subject: CN=8955dd94bb23a622372763665f85f8d6088656ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:05:27:33:2c:17:8e:bb:39:e1:11:0b:a7:e0: 33:50:69:93:bd:8e:69:f2:f9:19:ce:c4:52:25:a5: 3c:f8:6b:ce:76:38:49:b7:d9:0e:d9:4e:69:d4:f6: 5c:9b:a2:5a:04:98:c7:d4:6a:07:a0:f0:db:ab:52: 3e:8f:89:81:60:c1:a7:cd:fe:4d:5f:91:6a:8d:57: ff:3b:4e:a3:54:f9:5b:53:a4:95:9c:f5:03:4f:dd: 95:09:80:ce:7f:93:cf:d9:ec:fb:09:aa:76:7c:e3: ae:f7:74:32:b2:e7:e7:95:fd:33:c8:74:47:34:8c: 58:e9:97:47:68:55:b2:7b:a1:63:e2:00:48:7b:c3: 9f:62:96:25:c1:b6:97:98:09:86:2d:74:73:38:e9: 84:04:19:74:72:a0:14:a7:fd:bf:14:a6:a6:15:f3: c4:ce:08:61:67:24:4c:33:df:1f:3a:84:6e:95:ee: 6b:ca:74:58:a2:51:2b:fc:da:4e:da:24:eb:62:dd: ce:18:5c:af:b4:52:1b:ae:1d:aa:1c:16:00:90:5f: 69:d5:92:4e:8e:24:48:e0:0a:b0:4f:92:b5:ae:3c: e7:9c:c2:6e:08:42:a7:ab:0a:10:e6:65:b9:4a:31: 23:55:ea:75:4b:0f:7a:35:3b:62:a6:18:25:22:db: 5d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:55:DD:94:BB:23:A6:22:37:27:63:66:5F:85:F8:D6:08:86:56:AD X509v3 Authority Key Identifier: keyid:9A:22:1D:4F:97:00:71:82:22:ED:EB:34:E9:38:A7:66:34:3F:24:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:7c:a1:fc:8b:bd:6d:07:b8:81:59:f9:06:50:b8:a1:56:36: 74:46:af:3f:f0:a8:76:e1:bc:df:9b:4d:e3:f7:33:ae:bf:f1: 58:a3:b6:1a:ed:f0:a8:df:b6:64:39:28:6e:e9:b2:bf:b5:a3: ba:7e:cf:fa:e2:6d:0c:a5:1d:e5:b6:28:01:ab:5d:b9:36:09: d7:7f:7e:12:cb:6a:9c:49:bd:23:94:08:cc:98:af:bb:07:5c: cc:81:7c:d9:bf:07:a1:d9:82:9d:57:06:26:d8:f7:3f:ca:97: c5:c6:3b:c3:74:28:f9:c0:9c:c4:3f:b1:7d:0d:b2:b2:fe:3d: fe:68:06:f6:06:81:c1:c6:56:c6:8b:19:4d:74:4e:f7:52:e1: 53:88:19:b7:1f:67:c5:ce:d0:22:c6:4c:86:49:60:2c:b8:20: d1:ea:47:d9:00:2d:46:b1:6f:ad:06:4e:99:72:8d:de:dd:8a: 24:cf:ea:5a:3c:05:81:9d:5e:f9:ed:ae:00:1f:50:70:1b:48: 24:11:74:0f:1f:29:4c:4f:ab:27:0d:a1:de:be:80:99:11:6e: 44:01:36:52:87:c1:cf:7f:31:54:90:85:be:21:86:6b:7b:89: 89:25:a5:55:c3:a3:59:63:1d:89:b7:f1:f7:da:90:b1:e7:7a: 1a:92:1e:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIvrP4sB+oXZ/LoCryWM7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhMjIxZDRmOTcwMDcxODIyMmVkZWIzNGU5MzhhNzY2MzQz ZjI0ZTEwHhcNMjYwMjA5MTYwMTMxWhcNMjYwMjEwMTYwMTMxWjAzMTEwLwYDVQQD Eyg4OTU1ZGQ5NGJiMjNhNjIyMzcyNzYzNjY1Zjg1ZjhkNjA4ODY1NmFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQUnMywXjrs54RELp+AzUGmTvY5p 8vkZzsRSJaU8+GvOdjhJt9kO2U5p1PZcm6JaBJjH1GoHoPDbq1I+j4mBYMGnzf5N X5FqjVf/O06jVPlbU6SVnPUDT92VCYDOf5PP2ez7Cap2fOOu93Qysufnlf0zyHRH NIxY6ZdHaFWye6Fj4gBIe8OfYpYlwbaXmAmGLXRzOOmEBBl0cqAUp/2/FKamFfPE zghhZyRMM98fOoRule5rynRYolEr/NpO2iTrYt3OGFyvtFIbrh2qHBYAkF9p1ZJO jiRI4AqwT5K1rjznnMJuCEKnqwoQ5mW5SjEjVep1Sw96NTtiphglIttdtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIlV3ZS7I6YiNydjZl+F+NYIhlatMB8GA1UdIwQY MBaAFJoiHU+XAHGCIu3rNOk4p2Y0PyThMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWlJZFQ1Y0FjWUlpN2VzMDZUaW5aalFfSk9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hYzYzYjYtNTVjNi00NmRmLThjMTEt N2RlN2E3YzViZjcyLzEvbWlJZFQ1Y0FjWUlpN2VzMDZUaW5aalFfSk9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9hYzYzYjYtNTVjNi00NmRmLThjMTEtN2RlN2E3YzViZjcy LzEvbWlJZFQ1Y0FjWUlpN2VzMDZUaW5aalFfSk9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGnyh/Iu9 bQe4gVn5BlC4oVY2dEavP/CoduG835tN4/czrr/xWKO2Gu3wqN+2ZDkobumyv7Wj un7P+uJtDKUd5bYoAatduTYJ139+EstqnEm9I5QIzJivuwdczIF82b8HodmCnVcG Jtj3P8qXxcY7w3Qo+cCcxD+xfQ2ysv49/mgG9gaBwcZWxosZTXRO91LhU4gZtx9n xc7QIsZMhklgLLgg0epH2QAtRrFvrQZOmXKN3t2KJM/qWjwFgZ1e+e2uAB9QcBtI JBF0Dx8pTE+rJw2h3r6AmRFuRAE2UofBz38xVJCFviGGa3uJiSWlVcOjWWMdibfx 99qQsed6GpIeeA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:57 2026 by rpki-client