This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft File: obfHtAmGdKBPsXeELOxO65v4nh4.mft (raw, json) Hash identifier: wpUtesAB2SX576rLYLRmWNhI1s5nXN431pNg/EeIb08= Subject key identifier: C2:42:A9:83:D3:18:3E:32:73:72:C5:AE:26:31:76:DB:44:3E:36:8C Authority key identifier: A1:B7:C7:B4:09:86:74:A0:4F:B1:77:84:2C:EC:4E:EB:9B:F8:9E:1E Certificate issuer: /CN=a1b7c7b4098674a04fb177842cec4eeb9bf89e1e Certificate serial: 019C43231E4983F865632C5E631BF7B83400 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:01:40 +0000 Manifest this update: Mon 09 Feb 2026 16:01:40 +0000 Manifest next update: Tue 10 Feb 2026 16:01:40 +0000 Files and hashes: 1: obfHtAmGdKBPsXeELOxO65v4nh4.crl (hash: bjX3ile/1q4TPE/r3WW8klHuo59Wlzav+0RTKSspcdo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.crl rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:23:1e:49:83:f8:65:63:2c:5e:63:1b:f7:b8:34:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1b7c7b4098674a04fb177842cec4eeb9bf89e1e Validity Not Before: Feb 9 16:01:40 2026 GMT Not After : Feb 10 16:01:40 2026 GMT Subject: CN=c242a983d3183e327372c5ae263176db443e368c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fb:f8:38:bc:e8:58:64:f9:c7:51:85:6f:1f: 0c:7d:9a:f0:0d:04:06:07:b6:45:c5:9a:de:22:8d: 01:ff:26:6e:1a:48:79:5e:b3:d3:5d:dc:1e:18:cb: d3:f8:5c:ed:d6:74:83:24:37:94:a6:b4:93:db:a6: fc:b3:ed:09:81:ec:e2:00:2f:47:cb:8f:9e:47:f6: 52:19:ab:fd:b1:9a:e4:28:92:f6:42:55:2c:a5:af: 41:9c:e6:0e:96:90:61:8a:d1:f8:bb:67:29:f0:9a: 48:b4:74:5d:21:7b:a1:af:a3:20:cb:97:38:1c:2f: 7c:4d:1c:4e:8d:51:79:cf:4c:8f:c7:6f:0d:3f:37: 8f:30:e1:a3:33:d1:21:7c:32:dd:90:de:a4:78:f6: 09:44:bb:ec:9e:4d:73:93:53:d4:23:86:ce:9d:af: 11:58:65:37:15:14:69:f8:13:05:ec:a3:dd:11:ed: ee:98:c4:22:df:b9:0a:d8:8c:34:9f:ac:fb:e3:81: b2:d8:59:57:db:0e:2a:dd:81:f4:4a:e8:b6:f1:06: 2e:39:cb:15:87:b2:20:e5:c8:28:43:0c:a5:07:44: b6:fe:57:e3:6c:b6:f2:0b:04:68:d8:87:0a:dd:a0: 2b:27:15:5a:86:4a:fc:b9:19:8a:d6:bf:25:24:18: 79:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:42:A9:83:D3:18:3E:32:73:72:C5:AE:26:31:76:DB:44:3E:36:8C X509v3 Authority Key Identifier: keyid:A1:B7:C7:B4:09:86:74:A0:4F:B1:77:84:2C:EC:4E:EB:9B:F8:9E:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:e4:df:cb:a0:f5:06:93:a0:f2:05:89:27:89:8b:75:25:f6: 07:99:62:08:ce:ff:a9:f3:ba:dd:1a:7e:fc:7b:91:dd:67:d6: 63:c0:f3:4c:ff:0b:3c:d0:0d:25:4b:e7:f4:6c:c4:da:70:ca: 27:af:8b:ab:a6:e6:b4:f4:38:81:33:ae:af:9e:c9:47:89:d2: d8:93:a4:a1:95:98:b6:e8:01:7d:25:88:d3:85:ae:63:c4:86: 6b:44:de:1f:8d:16:04:6d:22:a1:27:87:bc:2d:40:c2:17:b1: c6:92:62:2d:89:20:e4:01:22:c1:78:5e:ff:7b:21:b2:b4:14: a0:16:d8:d9:a9:90:15:d8:05:21:b5:c7:f2:b5:66:a3:9e:be: 7f:2e:7d:2b:e0:7a:79:92:d0:ac:b5:61:e7:5a:32:82:03:51: 47:7c:26:fc:73:33:2e:49:2d:d0:45:08:b1:77:a1:97:88:a8: 7a:d7:a2:fa:16:46:7f:e5:76:4e:92:6d:b3:9f:b3:5d:6b:39: 51:b2:06:be:2c:ba:e4:f1:e3:b5:99:25:26:cd:53:27:a7:a8: 3d:38:fc:f3:f0:d6:e0:ad:d5:85:1d:c7:bf:9a:a9:39:f7:c7: 44:60:71:0f:83:9f:9c:ef:30:9e:fc:a0:94:fa:af:d7:67:8d: b7:3e:ab:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIx5Jg/hlYyxeYxv3uDQAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExYjdjN2I0MDk4Njc0YTA0ZmIxNzc4NDJjZWM0ZWViOWJm ODllMWUwHhcNMjYwMjA5MTYwMTQwWhcNMjYwMjEwMTYwMTQwWjAzMTEwLwYDVQQD EyhjMjQyYTk4M2QzMTgzZTMyNzM3MmM1YWUyNjMxNzZkYjQ0M2UzNjhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPv4OLzoWGT5x1GFbx8MfZrwDQQG B7ZFxZreIo0B/yZuGkh5XrPTXdweGMvT+Fzt1nSDJDeUprST26b8s+0JgeziAC9H y4+eR/ZSGav9sZrkKJL2QlUspa9BnOYOlpBhitH4u2cp8JpItHRdIXuhr6Mgy5c4 HC98TRxOjVF5z0yPx28NPzePMOGjM9EhfDLdkN6kePYJRLvsnk1zk1PUI4bOna8R WGU3FRRp+BMF7KPdEe3umMQi37kK2Iw0n6z744Gy2FlX2w4q3YH0Sui28QYuOcsV h7Ig5cgoQwylB0S2/lfjbLbyCwRo2IcK3aArJxVahkr8uRmK1r8lJBh5sQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMJCqYPTGD4yc3LFriYxdttEPjaMMB8GA1UdIwQY MBaAFKG3x7QJhnSgT7F3hCzsTuub+J4eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2JmSHRBbUdkS0JQc1hlRUxPeE82NXY0bmg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS84NWFlMWItYjA3Ny00NDhlLWEzMjgt N2MwNWExZmY1NDliLzEvb2JmSHRBbUdkS0JQc1hlRUxPeE82NXY0bmg0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS84NWFlMWItYjA3Ny00NDhlLWEzMjgtN2MwNWExZmY1NDli LzEvb2JmSHRBbUdkS0JQc1hlRUxPeE82NXY0bmg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV+Tfy6D1 BpOg8gWJJ4mLdSX2B5liCM7/qfO63Rp+/HuR3WfWY8DzTP8LPNANJUvn9GzE2nDK J6+Lq6bmtPQ4gTOur57JR4nS2JOkoZWYtugBfSWI04WuY8SGa0TeH40WBG0ioSeH vC1AwhexxpJiLYkg5AEiwXhe/3shsrQUoBbY2amQFdgFIbXH8rVmo56+fy59K+B6 eZLQrLVh51oyggNRR3wm/HMzLkkt0EUIsXehl4ioetei+hZGf+V2TpJts5+zXWs5 UbIGviy65PHjtZklJs1TJ6eoPTj88/DW4K3VhR3Hv5qpOffHRGBxD4OfnO8wnvyg lPqv12eNtz6rew== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:26 2026 by rpki-client