This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft File: CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft (raw, json) Hash identifier: 2h8JGCRjfU8RF8jUQB2u5S3WBnOHatn9klgU1+17bNA= Subject key identifier: 16:73:97:C6:91:D0:20:B7:C1:C2:8B:02:8F:FD:40:8C:6E:EB:69:15 Authority key identifier: 08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0 Certificate issuer: /CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0 Certificate serial: 019C4322305A248ECCEAEF11C1689F8A8488 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft Manifest number: 0CA9 Signing time: Mon 09 Feb 2026 16:00:39 +0000 Manifest this update: Mon 09 Feb 2026 16:00:39 +0000 Manifest next update: Tue 10 Feb 2026 16:00:39 +0000 Files and hashes: 1: CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl (hash: kG1WP8s+Ur1YaUhCZHZpxR+J7BGD4J4GH0Rj5X64erI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:30:5a:24:8e:cc:ea:ef:11:c1:68:9f:8a:84:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0 Validity Not Before: Feb 9 16:00:39 2026 GMT Not After : Feb 10 16:00:39 2026 GMT Subject: CN=167397c691d020b7c1c28b028ffd408c6eeb6915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:78:3b:40:96:f3:81:ff:8a:23:15:54:f5:85: 27:33:14:8e:c0:00:c1:a0:c1:50:71:33:34:57:58: 62:fb:36:d4:38:d7:37:8c:67:95:70:fd:01:52:68: 60:52:be:a8:86:db:95:04:3e:5c:5d:96:2c:b4:7e: b1:76:06:9a:32:98:7a:13:ab:c3:f4:7e:ab:82:bf: ea:06:87:39:6f:64:7d:ae:ba:47:37:b2:2e:69:21: ca:fe:46:14:71:62:70:a4:df:1c:51:f2:1d:3e:3c: 83:fc:a6:56:54:00:ef:0f:8b:c2:48:22:fb:04:9d: 24:17:93:67:a6:01:bf:b1:9e:11:de:42:af:54:94: fb:00:31:c5:c6:7a:74:b4:45:2d:ae:75:48:2d:64: fb:2b:7b:72:26:ea:a0:ad:36:c8:89:ed:1a:e4:74: 26:88:b5:4e:95:7a:d4:de:61:cd:d7:15:a1:ac:a0: 01:65:a6:4c:59:41:3f:d5:3b:0f:6e:61:3b:73:0e: c8:ca:35:d2:35:bd:6b:f9:d5:a8:b3:20:48:b7:95: 8b:92:e6:ee:c9:09:32:d4:57:a2:75:cf:8f:53:2f: 87:62:c9:b8:ca:f4:84:a7:d9:68:ae:69:6f:cd:bc: e9:f7:33:42:51:d4:71:fc:99:d6:29:67:03:c4:5b: 10:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:73:97:C6:91:D0:20:B7:C1:C2:8B:02:8F:FD:40:8C:6E:EB:69:15 X509v3 Authority Key Identifier: keyid:08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:31:28:24:6d:02:7c:06:03:7d:6a:8b:d0:14:22:9f:b9:18: 1b:95:ed:cc:0c:d7:60:76:74:09:c0:ae:7c:1d:e4:5b:1b:f8: ec:dd:94:75:1c:1a:4b:20:51:9f:e8:61:fb:a9:af:60:fd:59: bc:c2:82:c6:23:d1:30:44:af:cf:fb:91:d1:8c:62:1c:6b:a4: 7d:37:79:8d:a3:3a:e5:82:b4:31:f4:b8:1e:72:c1:ce:f9:56: 98:48:e7:42:d1:02:32:79:6b:44:73:59:bd:69:de:dc:bf:ce: e9:7f:7b:48:58:7c:ea:4f:8d:87:c6:33:e6:8a:e1:af:45:b4: 77:50:7b:b1:05:98:c8:71:77:0c:33:bf:a1:a6:59:4c:b3:b8: 73:22:ad:aa:2b:ef:9d:16:c5:dd:13:3e:06:a0:a4:3e:9b:8b: 4b:55:fa:d9:f5:00:1a:b6:73:95:43:19:17:01:0d:45:3b:62: 39:c8:9e:f5:09:e4:d1:ea:aa:24:88:34:81:f0:cf:84:b1:ea: b0:0d:19:9e:08:02:c1:03:06:0c:33:d7:78:6d:1c:50:84:d5: 1c:dd:29:81:29:ce:cc:a9:66:c2:cd:c6:1e:af:d5:de:80:b6: 5f:9a:10:34:24:5f:f0:49:2b:f4:c0:8b:b6:a4:f0:c2:34:bd: 07:e9:b9:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIjBaJI7M6u8RwWifioSIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4ZDI3ZmRjOTBmODBmODA5NzJjMTI1YmQ0MWVkYjBhZTgz MzRhYTAwHhcNMjYwMjA5MTYwMDM5WhcNMjYwMjEwMTYwMDM5WjAzMTEwLwYDVQQD EygxNjczOTdjNjkxZDAyMGI3YzFjMjhiMDI4ZmZkNDA4YzZlZWI2OTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Hg7QJbzgf+KIxVU9YUnMxSOwADB oMFQcTM0V1hi+zbUONc3jGeVcP0BUmhgUr6ohtuVBD5cXZYstH6xdgaaMph6E6vD 9H6rgr/qBoc5b2R9rrpHN7IuaSHK/kYUcWJwpN8cUfIdPjyD/KZWVADvD4vCSCL7 BJ0kF5NnpgG/sZ4R3kKvVJT7ADHFxnp0tEUtrnVILWT7K3tyJuqgrTbIie0a5HQm iLVOlXrU3mHN1xWhrKABZaZMWUE/1TsPbmE7cw7IyjXSNb1r+dWosyBIt5WLkubu yQky1Feidc+PUy+HYsm4yvSEp9lormlvzbzp9zNCUdRx/JnWKWcDxFsQDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBZzl8aR0CC3wcKLAo/9QIxu62kVMB8GA1UdIwQY MBaAFAjSf9yQ+A+AlywSW9Qe2wroM0qgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ05KXzNKRDRENENYTEJKYjFCN2JDdWd6U3FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC82NjJkYmUtNTkzNy00NmZhLThkOTYt OTEwNTQxMTU1ZmVmLzEvQ05KXzNKRDRENENYTEJKYjFCN2JDdWd6U3FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC82NjJkYmUtNTkzNy00NmZhLThkOTYtOTEwNTQxMTU1ZmVm LzEvQ05KXzNKRDRENENYTEJKYjFCN2JDdWd6U3FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwjEoJG0C fAYDfWqL0BQin7kYG5XtzAzXYHZ0CcCufB3kWxv47N2UdRwaSyBRn+hh+6mvYP1Z vMKCxiPRMESvz/uR0YxiHGukfTd5jaM65YK0MfS4HnLBzvlWmEjnQtECMnlrRHNZ vWne3L/O6X97SFh86k+Nh8Yz5orhr0W0d1B7sQWYyHF3DDO/oaZZTLO4cyKtqivv nRbF3RM+BqCkPpuLS1X62fUAGrZzlUMZFwENRTtiOcie9Qnk0eqqJIg0gfDPhLHq sA0ZnggCwQMGDDPXeG0cUITVHN0pgSnOzKlmws3GHq/V3oC2X5oQNCRf8Ekr9MCL tqTwwjS9B+m5uw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:17 2026 by rpki-client