This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft File: 6ocBJxa2bugiZCwvChuQFItceyk.mft (raw, json) Hash identifier: TncG0qFIusDx91bWots5pXYd79uoYSq3Rt0ex1FimMk= Subject key identifier: 5D:47:77:CA:26:63:3C:4F:E9:F6:6F:96:D0:71:DD:0D:E6:5D:C7:61 Authority key identifier: EA:87:01:27:16:B6:6E:E8:22:64:2C:2F:0A:1B:90:14:8B:5C:7B:29 Certificate issuer: /CN=ea87012716b66ee822642c2f0a1b90148b5c7b29 Certificate serial: 019C43226785229028E6A9A82F435EE591E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft Manifest number: 0F5F Signing time: Mon 09 Feb 2026 16:00:54 +0000 Manifest this update: Mon 09 Feb 2026 16:00:54 +0000 Manifest next update: Tue 10 Feb 2026 16:00:54 +0000 Files and hashes: 1: 6ocBJxa2bugiZCwvChuQFItceyk.crl (hash: JJx7zQXSqscYnnUCQW9SDIoS77ioqvmbwzB7D9xFhfI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:67:85:22:90:28:e6:a9:a8:2f:43:5e:e5:91:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea87012716b66ee822642c2f0a1b90148b5c7b29 Validity Not Before: Feb 9 16:00:54 2026 GMT Not After : Feb 10 16:00:54 2026 GMT Subject: CN=5d4777ca26633c4fe9f66f96d071dd0de65dc761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ed:52:6b:40:3e:33:16:fc:18:66:4f:12:f3: 3d:4d:ed:e4:a1:58:ee:aa:ce:17:48:b2:9d:fa:e0: 8c:5d:73:8f:42:77:e1:67:07:57:22:cf:61:c9:2c: 0b:79:4e:18:2d:50:f0:00:9e:ed:84:67:26:8d:a7: 8a:17:5d:4a:ca:f4:ac:90:33:22:8c:8b:6e:81:8f: fe:9f:cc:b8:eb:d6:77:8f:db:f4:2b:04:df:02:9c: bd:c1:00:2f:4e:a5:74:f4:68:60:a1:3e:29:ad:b3: 06:78:2d:90:02:7f:c4:cc:7e:8b:87:fa:39:c3:28: de:77:65:2c:42:95:4e:6f:df:84:71:a2:2d:48:e4: bd:81:73:1a:60:c7:0b:d8:51:41:74:bd:2f:70:9f: 04:a2:2a:23:f9:5a:7c:76:fc:35:6e:f1:cf:94:11: ae:0a:91:27:24:89:6f:db:f0:94:7a:57:66:d5:08: c4:31:fd:82:fc:b2:67:2a:dd:da:ba:2d:99:80:de: 81:77:0d:eb:1d:d0:8c:41:ee:73:21:14:e3:c5:7a: 78:37:b2:13:68:bd:8d:a7:2b:92:5d:e5:20:86:de: e2:18:3d:a6:7d:48:58:21:13:b3:82:f6:c1:09:42: 6f:f1:29:8b:d5:45:1e:fa:b6:0e:17:f3:bd:a3:0d: 1b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:47:77:CA:26:63:3C:4F:E9:F6:6F:96:D0:71:DD:0D:E6:5D:C7:61 X509v3 Authority Key Identifier: keyid:EA:87:01:27:16:B6:6E:E8:22:64:2C:2F:0A:1B:90:14:8B:5C:7B:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:1e:cc:f7:54:fa:fc:75:16:1b:b8:43:4a:c7:ae:03:9c:8a: 1b:f4:34:67:64:70:c4:a4:50:34:77:53:e7:13:13:f9:ef:30: 8c:79:9b:f7:0a:8a:90:43:c3:34:9e:0e:ca:dd:67:ea:55:7b: 1d:d3:7b:33:2a:c0:e0:5b:2d:c2:99:18:94:92:06:f6:a2:ac: c2:97:cf:43:2b:e6:7f:62:54:dd:e6:0c:08:1c:61:6a:24:06: aa:fc:0f:77:46:c1:c8:b8:61:80:c3:ab:25:b1:99:96:11:27: 01:f6:2e:1d:19:c4:29:dd:01:c4:69:f1:7d:dd:dc:5a:a7:da: 23:1e:9d:3e:2a:4c:a9:42:3d:30:55:49:b5:ea:12:66:e4:8c: 76:4e:84:57:78:ae:b9:04:65:3f:6a:66:13:bb:46:45:ca:ec: 41:a5:4d:f3:af:d4:7e:1d:0e:7d:28:ad:13:c2:0f:89:62:60: 0d:19:1e:70:45:bf:be:78:29:35:da:29:3d:bb:5d:6f:90:53: 7d:3f:42:5f:01:4d:73:6f:13:3f:86:77:ac:d8:e6:96:5c:af: e5:d4:56:4e:6d:f9:3c:1c:01:72:e9:62:57:63:8d:dd:ad:93: e2:41:dd:b0:64:42:4b:46:e4:87:72:30:d8:ed:ad:21:28:96: 70:3c:45:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImeFIpAo5qmoL0Ne5ZHgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhODcwMTI3MTZiNjZlZTgyMjY0MmMyZjBhMWI5MDE0OGI1 YzdiMjkwHhcNMjYwMjA5MTYwMDU0WhcNMjYwMjEwMTYwMDU0WjAzMTEwLwYDVQQD Eyg1ZDQ3NzdjYTI2NjMzYzRmZTlmNjZmOTZkMDcxZGQwZGU2NWRjNzYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwu1Sa0A+Mxb8GGZPEvM9Te3koVju qs4XSLKd+uCMXXOPQnfhZwdXIs9hySwLeU4YLVDwAJ7thGcmjaeKF11KyvSskDMi jItugY/+n8y469Z3j9v0KwTfApy9wQAvTqV09GhgoT4prbMGeC2QAn/EzH6Lh/o5 wyjed2UsQpVOb9+EcaItSOS9gXMaYMcL2FFBdL0vcJ8Eoioj+Vp8dvw1bvHPlBGu CpEnJIlv2/CUeldm1QjEMf2C/LJnKt3aui2ZgN6Bdw3rHdCMQe5zIRTjxXp4N7IT aL2NpyuSXeUght7iGD2mfUhYIROzgvbBCUJv8SmL1UUe+rYOF/O9ow0bgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF1Hd8omYzxP6fZvltBx3Q3mXcdhMB8GA1UdIwQY MBaAFOqHAScWtm7oImQsLwobkBSLXHspMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNm9jQkp4YTJidWdpWkN3dkNodVFGSXRjZXlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS83MjlmY2QtNzA0Yi00MDgxLThkMjUt YzlmZjFlZTZhZDk1LzEvNm9jQkp4YTJidWdpWkN3dkNodVFGSXRjZXlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS83MjlmY2QtNzA0Yi00MDgxLThkMjUtYzlmZjFlZTZhZDk1 LzEvNm9jQkp4YTJidWdpWkN3dkNodVFGSXRjZXlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxR7M91T6 /HUWG7hDSseuA5yKG/Q0Z2RwxKRQNHdT5xMT+e8wjHmb9wqKkEPDNJ4Oyt1n6lV7 HdN7MyrA4FstwpkYlJIG9qKswpfPQyvmf2JU3eYMCBxhaiQGqvwPd0bByLhhgMOr JbGZlhEnAfYuHRnEKd0BxGnxfd3cWqfaIx6dPipMqUI9MFVJteoSZuSMdk6EV3iu uQRlP2pmE7tGRcrsQaVN86/Ufh0OfSitE8IPiWJgDRkecEW/vngpNdopPbtdb5BT fT9CXwFNc28TP4Z3rNjmllyv5dRWTm35PBwBculiV2ON3a2T4kHdsGRCS0bkh3Iw 2O2tISiWcDxF5w== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:31 2026 by rpki-client