This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json) Hash identifier: Xizdg9ZuufvfyfJgU+XzINXfgZ2Jl4OsRlT74cP9n1I= Subject key identifier: AA:A8:1E:05:E3:CC:02:C4:A3:F0:58:E2:61:9E:C1:CB:F4:52:0B:1D Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a Certificate serial: 019C427DCB22A089308E00C7C5CCBA035DD6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft Manifest number: 12CE Signing time: Mon 09 Feb 2026 13:01:05 +0000 Manifest this update: Mon 09 Feb 2026 13:01:05 +0000 Manifest next update: Tue 10 Feb 2026 13:01:05 +0000 Files and hashes: 1: OhJpimseggO-Y4_hoEiI1nB-3a4.roa (hash: zDlcOi1opjdDim5XNlXyOBikBSD080S2FUrAKbWMWcM=) 2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: U7TLcfsGuGE8pCKSwwMcY+qkqJwTI/MS4mArTb+ENnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:cb:22:a0:89:30:8e:00:c7:c5:cc:ba:03:5d:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a Validity Not Before: Feb 9 13:01:05 2026 GMT Not After : Feb 10 13:01:05 2026 GMT Subject: CN=aaa81e05e3cc02c4a3f058e2619ec1cbf4520b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1c:7b:83:0f:b6:2c:3d:7f:92:45:c4:a9:83: 4f:69:d5:21:78:ab:e1:d7:c4:44:9f:6d:e6:4e:2e: f0:9c:ac:b4:44:cd:5c:4e:3e:e6:dd:ae:aa:e9:51: 31:44:92:73:af:b9:c3:04:39:e8:ec:12:ac:96:c3: fe:ea:9c:95:35:e2:99:7f:46:16:b8:16:dc:58:08: f6:6c:4f:be:ae:ae:2f:1d:c6:b8:5a:b5:c7:8b:42: 79:c1:b6:f0:ac:cd:1d:7f:1a:9d:f2:53:da:2f:00: cf:13:76:2f:14:83:c5:ab:8f:94:87:a9:49:de:b9: 63:9f:12:e5:0c:3d:61:31:74:65:75:72:f0:6d:52: 5d:27:45:34:75:bd:34:a4:ae:8c:85:eb:5b:4c:d8: 47:d3:05:94:d7:56:ed:d4:1c:c9:34:6f:26:1f:8b: 03:c0:db:e6:9b:36:0c:b1:8c:32:2d:e5:2e:34:b0: 9b:32:59:cf:b8:af:99:be:27:dd:c5:c8:8b:12:7e: 3f:b1:e8:db:ef:1c:83:ea:21:5e:49:c9:e5:04:29: 6b:5a:dd:07:29:72:5c:09:b8:d0:85:18:15:83:40: 10:e8:ef:4b:a9:74:b6:d9:27:37:b8:3d:af:ab:b4: 06:7f:4a:d2:84:09:04:13:c3:2a:f5:15:cb:41:b0: cd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A8:1E:05:E3:CC:02:C4:A3:F0:58:E2:61:9E:C1:CB:F4:52:0B:1D X509v3 Authority Key Identifier: keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:c5:19:b6:fa:3f:1c:a5:26:0b:b2:95:f6:0e:c8:74:a7:a3: a0:aa:92:25:4b:21:e3:1f:7a:8a:4d:21:e8:07:57:0d:96:ac: 03:0c:f3:a1:a5:8f:11:0d:76:d0:43:b2:f8:d5:96:5d:e1:ce: 28:c6:58:0f:56:b5:47:4c:62:68:7f:79:05:13:ee:55:7f:5a: f1:2a:e2:cc:11:13:48:f8:c3:59:e7:e3:66:cb:e8:01:04:24: a7:dd:42:3b:a0:04:50:e2:6d:c0:62:b0:b3:b7:ee:70:94:d1: 73:61:31:9f:a6:cd:0c:d7:ed:42:d9:cc:55:97:96:5d:2c:8a: 66:cb:67:6d:dc:f1:7c:71:de:42:83:1d:40:92:bc:ca:6f:5a: 61:22:43:52:1b:7e:b4:63:b5:db:53:ef:a5:25:88:d0:e7:b3: 27:de:2e:24:45:5e:ae:49:ba:14:f9:d1:f5:61:8a:0c:8a:9d: e1:dc:b2:7f:69:2a:5f:5f:2e:e6:69:8e:c4:a3:d5:83:33:04: 74:64:ed:58:a3:4c:85:5c:04:74:a7:b4:20:c7:52:84:e3:74: 74:8d:e6:49:85:50:1f:fc:70:8e:9d:b7:3a:52:dc:1e:a2:12: 95:b5:30:df:c9:f2:95:b8:97:91:38:2b:15:e9:a3:03:00:b9: 89:89:31:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfcsioIkwjgDHxcy6A13WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3YmQ4ZWFlMTY2OWRlYjNhM2ZhNDE4NjQ5MWUwNWNiMzJj ZTA5MmEwHhcNMjYwMjA5MTMwMTA1WhcNMjYwMjEwMTMwMTA1WjAzMTEwLwYDVQQD EyhhYWE4MWUwNWUzY2MwMmM0YTNmMDU4ZTI2MTllYzFjYmY0NTIwYjFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhx7gw+2LD1/kkXEqYNPadUheKvh 18REn23mTi7wnKy0RM1cTj7m3a6q6VExRJJzr7nDBDno7BKslsP+6pyVNeKZf0YW uBbcWAj2bE++rq4vHca4WrXHi0J5wbbwrM0dfxqd8lPaLwDPE3YvFIPFq4+Uh6lJ 3rljnxLlDD1hMXRldXLwbVJdJ0U0db00pK6MhetbTNhH0wWU11bt1BzJNG8mH4sD wNvmmzYMsYwyLeUuNLCbMlnPuK+ZvifdxciLEn4/sejb7xyD6iFeScnlBClrWt0H KXJcCbjQhRgVg0AQ6O9LqXS22Sc3uD2vq7QGf0rShAkEE8Mq9RXLQbDNFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKqoHgXjzALEo/BY4mGewcv0UgsdMB8GA1UdIwQY MBaAFLe9jq4Wad6zo/pBhkkeBcsyzgkqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9iMGJkYmQtODAxYy00YjBiLTlmYmUt YWUxNWQ1MDc1OTBlLzEvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9iMGJkYmQtODAxYy00YjBiLTlmYmUtYWUxNWQ1MDc1OTBl LzEvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMMUZtvo/ HKUmC7KV9g7IdKejoKqSJUsh4x96ik0h6AdXDZasAwzzoaWPEQ120EOy+NWWXeHO KMZYD1a1R0xiaH95BRPuVX9a8SrizBETSPjDWefjZsvoAQQkp91CO6AEUOJtwGKw s7fucJTRc2Exn6bNDNftQtnMVZeWXSyKZstnbdzxfHHeQoMdQJK8ym9aYSJDUht+ tGO121PvpSWI0OezJ94uJEVerkm6FPnR9WGKDIqd4dyyf2kqX18u5mmOxKPVgzME dGTtWKNMhVwEdKe0IMdShON0dI3mSYVQH/xwjp23OlLcHqISlbUw38nylbiXkTgr FemjAwC5iYkxfQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:40:35 2026 by rpki-client