This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft File: oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft (raw, json) Hash identifier: nCbXIZvbCdii65d7KzjdUTV6DbZVW/HGQmiLrAsZB3A= Subject key identifier: 9E:D2:EE:84:72:B4:8A:44:04:C1:83:68:0F:48:29:91:F2:D9:6F:6D Authority key identifier: A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59 Certificate issuer: /CN=a0a647dac729f47b06369c4c9741cf943953dc59 Certificate serial: 019C44A25D916A129A0399E3D69485F56198 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft Manifest number: 0D74 Signing time: Mon 09 Feb 2026 23:00:17 +0000 Manifest this update: Mon 09 Feb 2026 23:00:17 +0000 Manifest next update: Tue 10 Feb 2026 23:00:17 +0000 Files and hashes: 1: 0MTbD1ZTQ8RkmGu_ThgOSCCcqRs.roa (hash: x8g3x8alA1GYm26r1ZPqCbnozd0RVhFDolwCkJFv3qc=) 2: oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl (hash: qh3AAxWd/BZ4aEEVv7AOevmrYw98fqHs+K56jRPI3hQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:5d:91:6a:12:9a:03:99:e3:d6:94:85:f5:61:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0a647dac729f47b06369c4c9741cf943953dc59 Validity Not Before: Feb 9 23:00:17 2026 GMT Not After : Feb 10 23:00:17 2026 GMT Subject: CN=9ed2ee8472b48a4404c183680f482991f2d96f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c5:44:60:3c:df:ed:c1:4e:c1:a3:21:07:b9: cd:71:0f:bc:9e:0e:76:67:2f:48:4e:e7:ec:4d:79: 36:ce:81:ee:f8:89:4b:b2:ed:76:51:0b:af:3b:51: 6c:16:74:db:b0:cf:c8:15:e1:50:99:dc:50:b5:2e: 41:3a:4a:fb:fc:3f:48:d6:1c:64:5f:c6:ae:dc:95: 0d:f1:6d:6a:51:f8:a4:07:c5:4b:e6:4f:38:52:10: 9e:02:cb:47:da:6b:b4:41:ff:ee:56:61:05:82:b8: 1f:35:b7:55:b0:38:1f:75:32:d7:0a:be:39:67:81: 25:aa:36:eb:f1:92:d6:b4:33:99:4d:fa:6f:ff:4f: 99:b1:10:78:fb:e1:09:62:98:e0:e1:52:19:35:69: 37:d2:da:75:38:20:fe:13:59:95:76:d2:49:9f:6d: 7f:b8:2e:46:86:f3:27:c2:9e:0a:3a:90:f7:6d:8c: 92:09:72:cc:2e:bc:9b:ba:fb:1a:34:02:4d:d5:40: 35:26:41:d2:f6:b3:16:7d:8b:5b:80:d2:c1:da:2d: 2b:b0:5d:78:48:9c:5c:a2:74:c8:91:44:9b:0c:e5: 9b:bf:0d:38:45:ce:db:56:99:79:71:8a:14:ed:a7: 0c:3a:47:a1:00:d2:82:61:a7:b4:53:b1:60:d8:57: 60:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D2:EE:84:72:B4:8A:44:04:C1:83:68:0F:48:29:91:F2:D9:6F:6D X509v3 Authority Key Identifier: keyid:A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:57:85:2f:84:b0:c6:3f:77:14:78:69:9b:a0:0e:1a:eb:71: f9:fa:a1:51:b0:9d:02:56:a7:2a:e2:51:89:70:53:28:bb:49: 04:51:26:a7:81:a0:ad:6f:1d:b3:bf:b4:29:66:85:c2:5e:68: d7:59:1c:13:f9:4f:56:a8:3d:68:ef:f2:d0:89:49:03:8f:08: 85:13:23:82:07:f2:df:40:aa:44:70:a0:b1:a8:2e:9f:db:91: b7:5d:8d:1c:da:59:d2:ad:89:01:41:ac:f0:63:a1:6e:ce:e1: da:f4:16:60:15:d7:5f:cd:97:85:03:e6:86:cc:b8:d3:9d:5f: 80:d7:aa:df:36:cf:ee:77:3a:8f:73:b1:52:5b:38:a7:61:96: 7f:20:52:1c:fc:63:a7:2f:d3:ef:a1:8b:a9:08:7d:c4:7f:f3: 6f:e2:a2:da:6a:f9:ad:28:3e:a4:97:b5:ea:9b:78:90:6a:8b: ce:a8:18:0c:16:45:de:e6:ac:c1:c7:4f:73:b5:c3:8a:05:b2: 3d:bb:3b:01:d1:35:fb:04:0b:bb:41:31:2c:49:47:01:0f:d5: a8:c7:e3:62:e7:cc:b0:37:0f:b5:34:4a:04:13:81:87:95:e9: 6f:36:c2:f5:60:78:d0:5c:d8:83:d9:88:10:65:14:f2:a7:7a: 03:a6:b9:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEol2RahKaA5nj1pSF9WGYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYTY0N2RhYzcyOWY0N2IwNjM2OWM0Yzk3NDFjZjk0Mzk1 M2RjNTkwHhcNMjYwMjA5MjMwMDE3WhcNMjYwMjEwMjMwMDE3WjAzMTEwLwYDVQQD Eyg5ZWQyZWU4NDcyYjQ4YTQ0MDRjMTgzNjgwZjQ4Mjk5MWYyZDk2ZjZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmcVEYDzf7cFOwaMhB7nNcQ+8ng52 Zy9ITufsTXk2zoHu+IlLsu12UQuvO1FsFnTbsM/IFeFQmdxQtS5BOkr7/D9I1hxk X8au3JUN8W1qUfikB8VL5k84UhCeAstH2mu0Qf/uVmEFgrgfNbdVsDgfdTLXCr45 Z4Elqjbr8ZLWtDOZTfpv/0+ZsRB4++EJYpjg4VIZNWk30tp1OCD+E1mVdtJJn21/ uC5GhvMnwp4KOpD3bYySCXLMLrybuvsaNAJN1UA1JkHS9rMWfYtbgNLB2i0rsF14 SJxconTIkUSbDOWbvw04Rc7bVpl5cYoU7acMOkehANKCYae0U7Fg2FdgDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ7S7oRytIpEBMGDaA9IKZHy2W9tMB8GA1UdIwQY MBaAFKCmR9rHKfR7BjacTJdBz5Q5U9xZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0taSDJzY3A5SHNHTnB4TWwwSFBsRGxUM0ZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iYTFmODgtNzA3Zi00MWJkLWI5YmQt ZmI2OTgzY2U5ZGZmLzEvb0taSDJzY3A5SHNHTnB4TWwwSFBsRGxUM0ZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9iYTFmODgtNzA3Zi00MWJkLWI5YmQtZmI2OTgzY2U5ZGZm LzEvb0taSDJzY3A5SHNHTnB4TWwwSFBsRGxUM0ZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABleFL4Sw xj93FHhpm6AOGutx+fqhUbCdAlanKuJRiXBTKLtJBFEmp4GgrW8ds7+0KWaFwl5o 11kcE/lPVqg9aO/y0IlJA48IhRMjggfy30CqRHCgsagun9uRt12NHNpZ0q2JAUGs 8GOhbs7h2vQWYBXXX82XhQPmhsy4051fgNeq3zbP7nc6j3OxUls4p2GWfyBSHPxj py/T76GLqQh9xH/zb+Ki2mr5rSg+pJe16pt4kGqLzqgYDBZF3uaswcdPc7XDigWy Pbs7AdE1+wQLu0ExLElHAQ/VqMfjYufMsDcPtTRKBBOBh5XpbzbC9WB40FzYg9mI EGUU8qd6A6a5pg== -----END CERTIFICATE-----Generated at Tue Feb 10 02:58:57 2026 by rpki-client