This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json) Hash identifier: I63rLkArXnlItR0Pr4utfpLzLmO60urpf6/o62nALas= Subject key identifier: D4:B0:7B:17:D8:7C:60:7D:3E:63:74:2B:BE:B9:CD:C8:BD:C2:93:E4 Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf Certificate serial: 019BF4D0B3994B5CF71378E4B3CCD1996BD5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft Manifest number: 0B7C Signing time: Sun 25 Jan 2026 11:01:16 +0000 Manifest this update: Sun 25 Jan 2026 11:01:16 +0000 Manifest next update: Mon 26 Jan 2026 11:01:16 +0000 Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: lO2CPFfcDwvxBFDzO6O/ptQopPXu6un1HpSj5Ls/YdY=) 2: rIbppOfNfFYdHELW2Brc9R0i8ZQ.roa (hash: 6K2aNO9ERJucL5JHeR5DeWEg9tZjVrX7Cr/llqySGJ4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:b3:99:4b:5c:f7:13:78:e4:b3:cc:d1:99:6b:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf Validity Not Before: Jan 25 11:01:16 2026 GMT Not After : Jan 26 11:01:16 2026 GMT Subject: CN=d4b07b17d87c607d3e63742bbeb9cdc8bdc293e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bf:17:04:8e:68:84:d5:80:c7:98:d3:5c:4e: 59:c4:ca:c4:33:bb:e7:af:9d:12:c1:2e:b7:67:b0: b7:22:d5:77:75:37:5f:6b:95:fa:f7:68:76:30:a1: 19:62:aa:14:30:db:5c:ad:6e:56:73:25:e2:07:f7: e0:4e:09:fb:9f:63:d2:93:02:8f:bb:7c:92:b8:17: 28:bc:ad:00:69:a4:c9:68:3f:5f:ea:d8:e6:85:8a: 69:06:d5:c3:fb:9f:c8:f7:8b:2e:0d:83:67:04:7c: 65:b6:b4:6c:32:13:c2:a2:a3:77:11:e4:0d:89:1b: 19:7b:f3:79:26:4e:af:eb:a1:64:38:48:5c:e1:07: 1e:7c:55:4f:68:54:b2:19:95:aa:9e:20:99:72:5b: bf:21:7d:e6:71:6c:72:70:3b:29:58:09:a8:23:77: 01:43:f1:a4:eb:d1:7d:73:e0:5a:6d:a3:6f:db:98: 0b:93:4e:b6:26:12:a6:77:24:5a:79:db:bc:0c:8c: 94:4a:e2:ca:5e:03:b6:2d:9e:2a:f2:33:47:c0:5e: 8f:27:6a:3a:bc:ad:58:28:5d:40:8d:a8:23:e1:66: 4c:46:02:d7:e0:71:5a:2a:75:3c:8c:62:a4:e5:31: e4:19:8f:35:66:40:08:6b:24:8c:67:5a:4d:af:3a: be:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B0:7B:17:D8:7C:60:7D:3E:63:74:2B:BE:B9:CD:C8:BD:C2:93:E4 X509v3 Authority Key Identifier: keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:5b:6c:91:43:03:23:31:52:a4:d9:38:b7:9f:c4:5b:a5:da: bc:09:83:20:62:8f:df:67:36:4f:83:b4:83:82:66:62:4b:99: 55:d6:4b:ef:5a:e1:77:6a:a6:9a:e5:66:c6:5d:64:1a:94:e5: 1b:f2:43:52:13:c8:e4:0b:42:ed:e0:24:42:e5:19:1f:ae:59: 8b:f4:2a:86:29:0c:8e:0b:e7:17:22:d5:e5:1d:98:91:9c:49: 01:ee:20:d5:eb:82:b5:7e:10:14:76:44:1d:ce:23:84:7b:ff: a7:90:32:cd:02:9d:c8:36:09:20:d5:c2:21:b2:67:db:64:f4: af:dd:f8:3f:49:5a:4c:67:39:cd:ff:94:aa:80:61:0a:2c:fc: de:d5:cb:9b:48:58:29:e0:75:6f:b8:d7:b8:f3:88:ca:20:0e: a7:3c:ba:08:57:14:ed:41:e0:0c:57:88:32:a4:1b:06:2e:ff: 25:51:bb:ee:d4:f3:75:f6:74:0c:5b:c3:cb:c4:74:42:e9:af: 92:61:4c:f9:fc:3e:d9:9d:ad:9e:5a:a6:11:13:b4:f8:cd:35: f7:85:8b:1f:7d:07:fb:61:bb:90:0b:6e:38:c2:a3:22:4b:dc: 25:d8:86:4b:e1:fb:1f:9e:a5:49:32:9d:0a:8a:d7:d6:6a:6a: 70:b4:1b:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00LOZS1z3E3jks8zRmWvVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlMTZiZGU2NGE5YTliYmEzZmZhMTQzOGExOTdhYzNmOTQ5 ODlmYWYwHhcNMjYwMTI1MTEwMTE2WhcNMjYwMTI2MTEwMTE2WjAzMTEwLwYDVQQD EyhkNGIwN2IxN2Q4N2M2MDdkM2U2Mzc0MmJiZWI5Y2RjOGJkYzI5M2U0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxb8XBI5ohNWAx5jTXE5ZxMrEM7vn r50SwS63Z7C3ItV3dTdfa5X692h2MKEZYqoUMNtcrW5WcyXiB/fgTgn7n2PSkwKP u3ySuBcovK0AaaTJaD9f6tjmhYppBtXD+5/I94suDYNnBHxltrRsMhPCoqN3EeQN iRsZe/N5Jk6v66FkOEhc4QcefFVPaFSyGZWqniCZclu/IX3mcWxycDspWAmoI3cB Q/Gk69F9c+BabaNv25gLk062JhKmdyRaedu8DIyUSuLKXgO2LZ4q8jNHwF6PJ2o6 vK1YKF1Ajagj4WZMRgLX4HFaKnU8jGKk5THkGY81ZkAIaySMZ1pNrzq+hQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNSwexfYfGB9PmN0K765zci9wpPkMB8GA1UdIwQY MBaAFI4WveZKmpu6P/oUOKGXrD+UmJ+vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8zOWFiMmUtZmVlYi00YTBlLTg3NDAt NDUyOTZjMzJmMGEzLzEvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS8zOWFiMmUtZmVlYi00YTBlLTg3NDAtNDUyOTZjMzJmMGEz LzEvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlltskUMD IzFSpNk4t5/EW6XavAmDIGKP32c2T4O0g4JmYkuZVdZL71rhd2qmmuVmxl1kGpTl G/JDUhPI5AtC7eAkQuUZH65Zi/QqhikMjgvnFyLV5R2YkZxJAe4g1euCtX4QFHZE Hc4jhHv/p5AyzQKdyDYJINXCIbJn22T0r934P0laTGc5zf+UqoBhCiz83tXLm0hY KeB1b7jXuPOIyiAOpzy6CFcU7UHgDFeIMqQbBi7/JVG77tTzdfZ0DFvDy8R0Qumv kmFM+fw+2Z2tnlqmERO0+M0194WLH30H+2G7kAtuOMKjIkvcJdiGS+H7H56lSTKd CorX1mpqcLQbVw== -----END CERTIFICATE-----Generated at Sun Jan 25 20:53:22 2026 by rpki-client