This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft File: onxkG1MKfGuiNAIuMyckYjI2cQA.mft (raw, json) Hash identifier: AMSfXolfwYmNOagPikmRympLdIJ+iqP30weqVMj0qAM= Subject key identifier: 03:67:D5:F1:4B:0E:F8:FE:33:A7:4B:10:DC:59:B0:30:D3:8C:5A:AE Authority key identifier: A2:7C:64:1B:53:0A:7C:6B:A2:34:02:2E:33:27:24:62:32:36:71:00 Certificate issuer: /CN=a27c641b530a7c6ba234022e3327246232367100 Certificate serial: 019C420F714B1388C2719325D844EF14DA39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft Manifest number: 0D56 Signing time: Mon 09 Feb 2026 11:00:34 +0000 Manifest this update: Mon 09 Feb 2026 11:00:34 +0000 Manifest next update: Tue 10 Feb 2026 11:00:34 +0000 Files and hashes: 1: H3RmjMDhi-VIQKw953O9EUU-NrU.roa (hash: u8dYTQtYNEtT+hfaZbOUxQvhTTWTaktw3famZ+VPWSU=) 2: KHZ6X050RQpN8C-zU6JBaEYg3FI.roa (hash: TDPzA+FjAhUQy2Fbl/oOlKCfde+8XwBa4JB9fFqOvmY=) 3: onxkG1MKfGuiNAIuMyckYjI2cQA.crl (hash: XLE104qUMqXZpPJ57pw+dCika27FzrUtUtswvysOzcU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.crl rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:71:4b:13:88:c2:71:93:25:d8:44:ef:14:da:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a27c641b530a7c6ba234022e3327246232367100 Validity Not Before: Feb 9 11:00:34 2026 GMT Not After : Feb 10 11:00:34 2026 GMT Subject: CN=0367d5f14b0ef8fe33a74b10dc59b030d38c5aae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0c:55:4c:70:92:61:82:f6:02:9f:6e:ff:7f: 8c:eb:d2:fb:a5:c2:62:de:d3:65:9f:9f:85:1a:a0: 30:a8:79:bf:92:43:44:6f:84:2c:13:e4:d6:c9:dc: 31:c7:78:56:2b:4d:2e:9b:ed:be:cb:6d:0a:26:b0: 77:79:65:ab:3d:f3:7e:f7:d1:47:4f:2c:df:48:a0: f3:54:18:fc:79:0a:e4:0a:07:3b:b1:fa:f1:9c:d4: 78:10:71:c7:9f:e1:96:d7:13:2a:35:b3:fb:8c:cc: 12:e3:99:7c:f2:b8:58:39:8c:eb:bc:f9:5f:1d:fa: a6:11:65:09:39:2a:a6:a4:88:a1:20:c5:7f:87:3e: 6c:2b:0f:da:0f:4c:92:6f:98:9e:12:3f:8e:70:e2: 8f:5b:57:71:90:14:e7:d2:69:dd:46:ad:c1:69:7f: 76:4d:b8:95:07:83:5f:18:21:6f:75:19:38:76:ba: 14:a7:a3:42:9a:28:f2:80:a9:13:1d:47:48:b1:65: 43:2c:4c:37:4e:a5:b5:87:ef:ef:38:45:ff:ce:57: 9e:e0:d8:cb:e4:33:6a:0f:55:5a:be:80:2b:fa:0e: 52:75:d6:b0:33:a1:17:09:e0:f4:91:e1:2f:8a:3c: 8d:dc:50:ce:d1:a2:ed:76:9b:e6:b7:92:75:fb:b0: 4b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:67:D5:F1:4B:0E:F8:FE:33:A7:4B:10:DC:59:B0:30:D3:8C:5A:AE X509v3 Authority Key Identifier: keyid:A2:7C:64:1B:53:0A:7C:6B:A2:34:02:2E:33:27:24:62:32:36:71:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:16:80:d1:f2:78:61:58:4b:e4:af:5a:64:6c:7d:9a:f8:44: 1d:cf:d8:39:92:45:d4:51:c8:9a:4b:6f:e5:0d:de:01:f1:71: 23:00:67:4d:6b:8b:95:d3:68:47:ff:30:f5:df:e2:35:76:33: db:c2:20:b1:ab:33:51:03:75:75:53:be:fe:e1:99:d4:7b:b2: 3a:97:e8:36:3d:d7:8c:b6:08:13:11:38:4e:71:bf:46:68:7c: d8:b3:60:ef:e9:f6:6c:70:be:45:2f:fe:15:56:b5:4d:6a:31: 93:6b:d7:fd:9b:8a:8d:7b:04:8d:65:79:fa:9a:5f:1c:eb:8a: 2b:c4:2a:2c:08:a9:e3:46:09:d7:f9:e7:e1:da:62:8a:6e:b0: 32:37:b6:30:e9:fc:18:0c:c1:b8:af:71:39:b5:e2:86:23:99: 15:91:04:41:e2:4e:7f:cd:f8:9e:d9:88:aa:87:ad:79:96:c7: 84:67:0f:f3:68:dd:bd:87:79:d0:89:c2:eb:63:2d:ed:07:9f: 11:c6:cb:47:62:54:f1:cd:c5:05:d7:72:1e:1e:31:17:72:99: 58:08:aa:3a:00:a0:18:cd:58:43:e0:e2:15:b9:89:79:e7:2c: 4e:bc:82:fd:7a:d0:a0:8d:31:3c:5e:2a:7a:56:6f:90:50:7e: 72:3d:98:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD3FLE4jCcZMl2ETvFNo5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyN2M2NDFiNTMwYTdjNmJhMjM0MDIyZTMzMjcyNDYyMzIz NjcxMDAwHhcNMjYwMjA5MTEwMDM0WhcNMjYwMjEwMTEwMDM0WjAzMTEwLwYDVQQD EygwMzY3ZDVmMTRiMGVmOGZlMzNhNzRiMTBkYzU5YjAzMGQzOGM1YWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmwxVTHCSYYL2Ap9u/3+M69L7pcJi 3tNln5+FGqAwqHm/kkNEb4QsE+TWydwxx3hWK00um+2+y20KJrB3eWWrPfN+99FH TyzfSKDzVBj8eQrkCgc7sfrxnNR4EHHHn+GW1xMqNbP7jMwS45l88rhYOYzrvPlf HfqmEWUJOSqmpIihIMV/hz5sKw/aD0ySb5ieEj+OcOKPW1dxkBTn0mndRq3BaX92 TbiVB4NfGCFvdRk4droUp6NCmijygKkTHUdIsWVDLEw3TqW1h+/vOEX/zlee4NjL 5DNqD1VavoAr+g5SddawM6EXCeD0keEvijyN3FDO0aLtdpvmt5J1+7BLUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFANn1fFLDvj+M6dLENxZsDDTjFquMB8GA1UdIwQY MBaAFKJ8ZBtTCnxrojQCLjMnJGIyNnEAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb254a0cxTUtmR3VpTkFJdU15Y2tZakkyY1FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8wMDZmNTYtMWQ4ZS00NWNjLTg2OTQt MWYxODhmY2NlODU1LzEvb254a0cxTUtmR3VpTkFJdU15Y2tZakkyY1FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8wMDZmNTYtMWQ4ZS00NWNjLTg2OTQtMWYxODhmY2NlODU1 LzEvb254a0cxTUtmR3VpTkFJdU15Y2tZakkyY1FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZBaA0fJ4 YVhL5K9aZGx9mvhEHc/YOZJF1FHImktv5Q3eAfFxIwBnTWuLldNoR/8w9d/iNXYz 28IgsaszUQN1dVO+/uGZ1HuyOpfoNj3XjLYIExE4TnG/Rmh82LNg7+n2bHC+RS/+ FVa1TWoxk2vX/ZuKjXsEjWV5+ppfHOuKK8QqLAip40YJ1/nn4dpiim6wMje2MOn8 GAzBuK9xObXihiOZFZEEQeJOf834ntmIqoeteZbHhGcP82jdvYd50InC62Mt7Qef EcbLR2JU8c3FBddyHh4xF3KZWAiqOgCgGM1YQ+DiFbmJeecsTryC/XrQoI0xPF4q elZvkFB+cj2Y2Q== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:23 2026 by rpki-client