This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft File: orzYisPgLP-tPADeRrXaM2vWRwI.mft (raw, json) Hash identifier: 8CLKSA4zT1TIn9F/rl/pDH8gYCEmJeYLxvww4qOyOmM= Subject key identifier: 63:9F:AE:86:2E:B3:2E:11:81:62:FC:21:4C:58:74:58:30:8F:90:C5 Authority key identifier: A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02 Certificate issuer: /CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702 Certificate serial: 019C42101C593FED7581BD4E4B46086180B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft Manifest number: 151E Signing time: Mon 09 Feb 2026 11:01:17 +0000 Manifest this update: Mon 09 Feb 2026 11:01:17 +0000 Manifest next update: Tue 10 Feb 2026 11:01:17 +0000 Files and hashes: 1: orzYisPgLP-tPADeRrXaM2vWRwI.crl (hash: Q2OOLKoOVlqlfdIb+joauYDf0dfeuG9Qp6jhCYBbE4g=) 2: qUQtHHzlZlnAdpcBQCFJU2QvkX0.roa (hash: qu1JzAxBAaT1Zxg22q0d5br8OX9u/IStZcSKhmMoN5I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.crl rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:1c:59:3f:ed:75:81:bd:4e:4b:46:08:61:80:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702 Validity Not Before: Feb 9 11:01:17 2026 GMT Not After : Feb 10 11:01:17 2026 GMT Subject: CN=639fae862eb32e118162fc214c587458308f90c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ad:5d:a4:18:35:61:58:5b:13:7c:0e:40:a6: 29:a4:5c:9b:64:e1:66:83:d4:a6:d0:c1:51:ca:33: aa:6b:5d:8a:40:87:5c:9f:68:b8:82:64:4b:ef:d6: 53:5c:59:27:f0:02:0b:8d:8f:52:23:98:7c:c9:30: 54:b6:c0:bb:f6:3b:cb:45:b8:89:ea:dc:fe:af:ad: 97:65:98:a1:73:2b:4a:38:e0:d6:ec:6f:63:16:bb: b3:09:40:05:69:82:f8:6c:9a:e5:ba:e3:cd:84:c2: a6:a7:56:e4:06:87:74:e7:29:94:25:a5:35:41:af: 92:be:84:1b:81:c3:57:d8:eb:f7:e6:81:39:30:2a: da:8d:39:7d:4e:97:9c:64:06:00:80:d3:f4:17:ea: 3d:32:1f:d6:d1:a8:bd:1f:ef:59:42:f9:d0:52:a1: b1:7d:5b:45:48:ad:fa:22:c3:94:a9:d7:13:20:ea: 2f:0e:ca:7f:a7:88:6c:82:ef:d3:b1:f2:d4:66:b5: d7:fa:0d:ea:03:6f:a3:64:de:19:73:7a:fb:e2:14: 24:e5:eb:60:1d:58:53:b7:8f:21:29:51:35:db:ae: fc:3e:15:bc:a4:88:87:58:c9:0f:c9:f8:b7:e5:13: 96:7e:92:f4:ae:63:a8:b7:6e:25:aa:91:4b:dd:be: ab:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9F:AE:86:2E:B3:2E:11:81:62:FC:21:4C:58:74:58:30:8F:90:C5 X509v3 Authority Key Identifier: keyid:A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:86:6e:1f:67:a2:8e:89:04:6f:b2:f9:77:de:07:41:18:6c: a9:50:c2:32:fd:fc:0d:21:96:23:58:72:0e:be:9d:fb:34:21: 87:98:76:44:5e:be:cd:b5:a9:1d:a9:63:d8:07:b6:4e:fa:71: 27:ba:00:22:83:22:1f:da:bf:a6:dd:c1:ab:39:c9:a0:c7:9e: 64:90:f7:72:5a:5b:4d:1f:3f:7d:90:9b:99:3a:8e:5b:cf:53: 9e:5f:db:e3:0d:71:9d:65:d5:6f:b1:c1:aa:27:90:a8:52:7c: 62:7f:c2:49:42:aa:13:86:8a:16:ff:cf:2b:ae:56:d3:10:f3: 5f:c3:0d:94:cd:da:97:3a:73:11:a3:fd:18:a3:64:ef:7e:74: b4:b1:c1:db:22:4a:1e:df:7c:b7:4a:42:db:57:84:84:06:e8: 8b:0e:a0:4c:71:03:4a:ff:7c:02:1b:91:1a:cf:07:b6:b9:47: a5:41:95:8e:25:c9:af:c2:37:ad:46:29:67:4d:bf:03:50:0d: f0:30:3e:99:d9:5d:1e:26:29:97:8a:a4:1a:dc:8a:a1:c3:b6: 27:d5:57:e4:af:a0:3e:c9:87:33:ec:54:f5:45:b0:9b:4d:d7: b4:a4:05:0d:c2:82:71:ba:97:80:c4:3c:94:48:ca:b4:49:27: be:31:e9:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEBxZP+11gb1OS0YIYYC3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyYmNkODhhYzNlMDJjZmZhZDNjMDBkZTQ2YjVkYTMzNmJk NjQ3MDIwHhcNMjYwMjA5MTEwMTE3WhcNMjYwMjEwMTEwMTE3WjAzMTEwLwYDVQQD Eyg2MzlmYWU4NjJlYjMyZTExODE2MmZjMjE0YzU4NzQ1ODMwOGY5MGM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwq1dpBg1YVhbE3wOQKYppFybZOFm g9Sm0MFRyjOqa12KQIdcn2i4gmRL79ZTXFkn8AILjY9SI5h8yTBUtsC79jvLRbiJ 6tz+r62XZZihcytKOODW7G9jFruzCUAFaYL4bJrluuPNhMKmp1bkBod05ymUJaU1 Qa+SvoQbgcNX2Ov35oE5MCrajTl9TpecZAYAgNP0F+o9Mh/W0ai9H+9ZQvnQUqGx fVtFSK36IsOUqdcTIOovDsp/p4hsgu/TsfLUZrXX+g3qA2+jZN4Zc3r74hQk5etg HVhTt48hKVE12678PhW8pIiHWMkPyfi35ROWfpL0rmOot24lqpFL3b6ryQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGOfroYusy4RgWL8IUxYdFgwj5DFMB8GA1UdIwQY MBaAFKK82IrD4Cz/rTwA3ka12jNr1kcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3J6WWlzUGdMUC10UEFEZVJyWGFNMnZXUndJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9jZjRkYjUtZmIyOS00YjJhLWEyMTUt YWFiODYyODYxYTA5LzEvb3J6WWlzUGdMUC10UEFEZVJyWGFNMnZXUndJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9jZjRkYjUtZmIyOS00YjJhLWEyMTUtYWFiODYyODYxYTA5 LzEvb3J6WWlzUGdMUC10UEFEZVJyWGFNMnZXUndJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF4ZuH2ei jokEb7L5d94HQRhsqVDCMv38DSGWI1hyDr6d+zQhh5h2RF6+zbWpHalj2Ae2Tvpx J7oAIoMiH9q/pt3BqznJoMeeZJD3clpbTR8/fZCbmTqOW89Tnl/b4w1xnWXVb7HB qieQqFJ8Yn/CSUKqE4aKFv/PK65W0xDzX8MNlM3alzpzEaP9GKNk7350tLHB2yJK Ht98t0pC21eEhAboiw6gTHEDSv98AhuRGs8HtrlHpUGVjiXJr8I3rUYpZ02/A1AN 8DA+mdldHiYpl4qkGtyKocO2J9VX5K+gPsmHM+xU9UWwm03XtKQFDcKCcbqXgMQ8 lEjKtEknvjHpzA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:41 2026 by rpki-client