This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft File: Os5p2XnZoNxneVEGweVayhVHCH8.mft (raw, json) Hash identifier: B9e6sBgEPEfvGtKmBi7cQqwsiaSbBZbUxbFsOk2ITko= Subject key identifier: 95:F6:A3:6F:BC:FF:BE:35:34:98:A0:B3:6A:1D:6A:47:E2:0E:17:4E Authority key identifier: 3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F Certificate issuer: /CN=3ace69d979d9a0dc67795106c1e55aca1547087f Certificate serial: 019C43C76A1109A416621AC8D3C39F6250B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft Manifest number: 180A Signing time: Mon 09 Feb 2026 19:01:08 +0000 Manifest this update: Mon 09 Feb 2026 19:01:08 +0000 Manifest next update: Tue 10 Feb 2026 19:01:08 +0000 Files and hashes: 1: Os5p2XnZoNxneVEGweVayhVHCH8.crl (hash: +PkqRvjn8Y7MdxlEK/1eImCVv/z2TSRxicGLC4wnnl8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:6a:11:09:a4:16:62:1a:c8:d3:c3:9f:62:50:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ace69d979d9a0dc67795106c1e55aca1547087f Validity Not Before: Feb 9 19:01:08 2026 GMT Not After : Feb 10 19:01:08 2026 GMT Subject: CN=95f6a36fbcffbe353498a0b36a1d6a47e20e174e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:24:6e:a5:4a:5a:af:ce:df:f9:98:1f:b0:bb: e7:26:4d:cb:5e:7f:90:4d:8a:d1:00:f1:3b:f2:5e: 04:a1:02:42:f8:ef:0e:57:f8:94:03:c8:62:fe:35: 40:32:f4:d4:97:21:b7:ec:36:1e:75:7a:24:eb:ca: 72:21:70:e8:c9:00:62:1c:ea:20:07:25:c6:3e:9c: c4:77:7d:c7:64:3c:6f:a1:41:8a:48:81:1e:38:32: 39:84:6f:38:bb:a1:0a:4a:3a:26:ee:d5:b9:7a:fb: 9e:2d:89:68:cc:79:8c:96:1d:83:da:9a:6a:66:16: 92:16:5d:e4:44:7f:b2:1d:84:f6:82:33:b7:53:b0: a0:54:7e:cb:3c:f7:46:89:28:6a:f7:85:c0:90:34: e5:52:8c:ba:3d:75:e5:e5:f2:fe:ec:ea:53:59:67: 60:c0:4a:f0:59:35:e6:19:9c:9d:57:da:d2:80:00: d9:c8:6d:2d:51:a0:99:1b:0d:fc:c7:22:fb:46:cb: 8e:88:19:9d:93:47:26:03:d3:00:6b:50:92:b1:af: d7:88:09:65:18:92:10:7b:da:ff:28:a1:82:70:9f: df:41:29:d8:89:6a:3c:1a:e8:01:3b:8b:70:75:9d: 3e:c1:c5:67:d6:26:ab:ac:f6:05:7f:65:f6:86:f6: 88:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F6:A3:6F:BC:FF:BE:35:34:98:A0:B3:6A:1D:6A:47:E2:0E:17:4E X509v3 Authority Key Identifier: keyid:3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:0c:3b:d1:11:d7:e0:5d:ba:8c:d1:32:b2:b7:d6:98:c9:ce: 1e:d1:89:bf:1a:05:70:80:6e:7f:42:54:a8:c6:5a:9b:f3:40: 69:e9:c3:9a:6b:53:e7:0f:28:da:7c:03:53:9c:e9:f2:a8:b0: 48:5d:93:35:7b:f7:78:6b:fb:cf:fc:a9:d0:8d:61:34:8a:57: 40:44:ad:41:dc:6a:ce:88:49:8e:a6:74:b0:34:0a:fc:c2:c6: 10:48:84:46:b2:4b:a0:e4:24:41:8c:9c:50:33:1e:fd:d3:a1: 97:5f:0c:d1:70:ad:b8:6f:26:73:53:a1:3f:83:fb:a3:48:80: e7:d1:9f:52:d1:5d:8a:67:44:c9:58:f2:1a:9a:c8:46:30:ed: d1:43:8c:a4:1e:40:85:58:6c:a4:9f:8c:e7:4b:44:94:71:c6: cf:b8:fa:fd:9d:e4:d7:68:52:26:1d:55:00:92:b8:e0:4d:97: ea:dd:bf:17:90:de:15:c3:59:eb:16:05:a1:84:77:2b:d1:c5: 90:ad:f4:a4:99:86:58:d1:21:fd:ae:25:93:d2:0b:4c:8f:4b: 12:89:3a:df:c3:9f:b4:91:ef:3e:56:62:c0:7c:6d:36:86:28: 8d:bd:8f:45:f8:16:70:60:49:2e:7b:ed:de:03:04:eb:fd:34: fb:57:38:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx2oRCaQWYhrI08OfYlC4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhY2U2OWQ5NzlkOWEwZGM2Nzc5NTEwNmMxZTU1YWNhMTU0 NzA4N2YwHhcNMjYwMjA5MTkwMTA4WhcNMjYwMjEwMTkwMTA4WjAzMTEwLwYDVQQD Eyg5NWY2YTM2ZmJjZmZiZTM1MzQ5OGEwYjM2YTFkNmE0N2UyMGUxNzRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyRupUpar87f+ZgfsLvnJk3LXn+Q TYrRAPE78l4EoQJC+O8OV/iUA8hi/jVAMvTUlyG37DYedXok68pyIXDoyQBiHOog ByXGPpzEd33HZDxvoUGKSIEeODI5hG84u6EKSjom7tW5evueLYlozHmMlh2D2ppq ZhaSFl3kRH+yHYT2gjO3U7CgVH7LPPdGiShq94XAkDTlUoy6PXXl5fL+7OpTWWdg wErwWTXmGZydV9rSgADZyG0tUaCZGw38xyL7RsuOiBmdk0cmA9MAa1CSsa/XiAll GJIQe9r/KKGCcJ/fQSnYiWo8GugBO4twdZ0+wcVn1iarrPYFf2X2hvaIqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJX2o2+8/741NJigs2odakfiDhdOMB8GA1UdIwQY MBaAFDrOadl52aDcZ3lRBsHlWsoVRwh/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3M1cDJYblpvTnhuZVZFR3dlVmF5aFZIQ0g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9hZmQ5OWYtZGY1NS00ZTk3LTg4NmEt YTk3NzVhYThkODEyLzEvT3M1cDJYblpvTnhuZVZFR3dlVmF5aFZIQ0g4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9hZmQ5OWYtZGY1NS00ZTk3LTg4NmEtYTk3NzVhYThkODEy LzEvT3M1cDJYblpvTnhuZVZFR3dlVmF5aFZIQ0g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEgw70RHX 4F26jNEysrfWmMnOHtGJvxoFcIBuf0JUqMZam/NAaenDmmtT5w8o2nwDU5zp8qiw SF2TNXv3eGv7z/yp0I1hNIpXQEStQdxqzohJjqZ0sDQK/MLGEEiERrJLoOQkQYyc UDMe/dOhl18M0XCtuG8mc1OhP4P7o0iA59GfUtFdimdEyVjyGprIRjDt0UOMpB5A hVhspJ+M50tElHHGz7j6/Z3k12hSJh1VAJK44E2X6t2/F5DeFcNZ6xYFoYR3K9HF kK30pJmGWNEh/a4lk9ILTI9LEok638OftJHvPlZiwHxtNoYojb2PRfgWcGBJLnvt 3gME6/00+1c4ng== -----END CERTIFICATE-----Generated at Tue Feb 10 02:51:15 2026 by rpki-client