This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft File: 8oxp2pTIXt1I2cH9jjMq477mYAQ.mft (raw, json) Hash identifier: 4pHvs0RUsEsg+F2f9wB+C2Qg2ri4+3WVpFDqt8Ku1PQ= Subject key identifier: F0:E4:10:59:8F:B3:91:D5:62:80:D1:41:6F:91:A5:E7:BF:68:A6:13 Authority key identifier: F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04 Certificate issuer: /CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004 Certificate serial: 019C4322609AF8ACBA6AD6F0CCC630FECFF9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft Manifest number: 10DB Signing time: Mon 09 Feb 2026 16:00:52 +0000 Manifest this update: Mon 09 Feb 2026 16:00:52 +0000 Manifest next update: Tue 10 Feb 2026 16:00:52 +0000 Files and hashes: 1: 5AGKlldahfI2UQwePdR7aOZv59k.roa (hash: yineAINt5f0q9Dc8di7gq2DzeIUdj6NUc5yoND8zPYQ=) 2: 8oxp2pTIXt1I2cH9jjMq477mYAQ.crl (hash: Ys9pEh6TJ79zX8i66WX7Hgx9uqkropUOEWq5fS2QRiQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:60:9a:f8:ac:ba:6a:d6:f0:cc:c6:30:fe:cf:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004 Validity Not Before: Feb 9 16:00:52 2026 GMT Not After : Feb 10 16:00:52 2026 GMT Subject: CN=f0e410598fb391d56280d1416f91a5e7bf68a613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9e:c0:f3:07:e5:b6:75:88:66:ac:49:ee:e2: bc:d9:29:ef:5d:11:7f:0c:7f:b0:4f:25:20:a5:2e: 28:5c:89:eb:90:39:3d:ef:c8:65:44:8c:2d:82:71: ea:04:97:63:43:84:71:e0:72:2e:2d:be:21:b2:6c: 50:80:21:e9:19:f2:c5:73:19:45:9e:05:e0:9c:4c: 3e:59:38:94:ee:94:75:a8:a1:45:99:0d:c7:b9:7d: 16:1c:5c:8a:62:93:39:dc:a0:ed:5a:e3:6b:4d:2e: 56:09:9e:79:a1:ae:b2:bb:48:76:a3:3b:9f:a3:be: f4:a2:8c:78:39:ed:9c:ac:f2:bc:7e:4c:55:00:0d: f3:d5:ee:37:f2:0b:1d:f8:ae:5b:70:f7:f2:2d:5d: 94:33:75:7b:5f:1d:26:b4:10:33:f6:47:16:ee:d9: 01:22:e4:bf:91:ad:bd:b2:c4:5b:ab:e0:12:63:c7: 7c:34:2f:17:0e:51:24:97:09:0e:59:ac:f3:f4:ee: 72:69:91:90:18:df:f1:88:4e:99:8f:bd:13:7c:c8: a4:26:3e:ec:bd:e9:6b:99:08:e0:7a:4f:07:c7:aa: fa:5f:b8:93:45:43:9e:52:f2:f8:9c:1d:db:a3:75: 52:ec:0b:6c:f4:86:fa:78:27:ec:1c:b2:17:6f:3e: de:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E4:10:59:8F:B3:91:D5:62:80:D1:41:6F:91:A5:E7:BF:68:A6:13 X509v3 Authority Key Identifier: keyid:F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:fe:77:82:5e:b2:72:c8:6e:61:2a:82:70:ae:62:5f:71:43: 43:f6:76:13:be:c8:3e:8b:bd:85:53:9d:a3:75:2f:df:2b:aa: a8:77:a0:5b:3f:f4:4f:1e:5c:4d:cb:d4:ca:58:54:cb:12:39: 0b:34:af:0b:44:af:a0:a3:98:34:e9:fc:ce:f8:e5:1a:46:34: 78:f8:cc:8a:5d:b6:04:e3:e1:ad:4f:eb:96:df:15:06:c6:fe: 49:fd:ee:28:cd:60:46:f0:38:a0:ca:d1:a0:f0:0b:6a:0c:3e: ea:b8:83:7c:29:9f:d3:bf:7d:33:ba:0f:99:f9:85:5e:50:5f: 7a:c1:bd:0f:b6:10:fa:be:8d:7d:d5:44:05:7c:f1:c9:d5:31: 7a:da:1c:08:bc:9f:90:7f:fd:2b:d3:fc:b7:2c:a5:e6:31:b7: 34:3f:e8:b8:31:96:89:c1:5b:f4:e5:b5:69:ee:97:95:a0:c2: 2f:02:dc:8d:f5:37:eb:8a:10:ef:a7:83:90:48:5f:fd:dc:4b: 73:ba:67:6a:f6:99:f5:5f:f2:1e:cf:6a:1a:c4:94:ac:38:05: 1e:67:01:21:ec:0f:23:5c:90:ac:7c:86:ac:65:33:49:82:2d: 4b:ae:04:af:9f:e0:2b:c8:59:a3:9b:bf:8f:8b:3d:70:d4:13: dd:aa:01:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImCa+Ky6atbwzMYw/s/5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyOGM2OWRhOTRjODVlZGQ0OGQ5YzFmZDhlMzMyYWUzYmVl NjYwMDQwHhcNMjYwMjA5MTYwMDUyWhcNMjYwMjEwMTYwMDUyWjAzMTEwLwYDVQQD EyhmMGU0MTA1OThmYjM5MWQ1NjI4MGQxNDE2ZjkxYTVlN2JmNjhhNjEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt57A8wfltnWIZqxJ7uK82SnvXRF/ DH+wTyUgpS4oXInrkDk978hlRIwtgnHqBJdjQ4Rx4HIuLb4hsmxQgCHpGfLFcxlF ngXgnEw+WTiU7pR1qKFFmQ3HuX0WHFyKYpM53KDtWuNrTS5WCZ55oa6yu0h2ozuf o770oox4Oe2crPK8fkxVAA3z1e438gsd+K5bcPfyLV2UM3V7Xx0mtBAz9kcW7tkB IuS/ka29ssRbq+ASY8d8NC8XDlEklwkOWazz9O5yaZGQGN/xiE6Zj70TfMikJj7s velrmQjgek8Hx6r6X7iTRUOeUvL4nB3bo3VS7Ats9Ib6eCfsHLIXbz7esQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPDkEFmPs5HVYoDRQW+Rpee/aKYTMB8GA1UdIwQY MBaAFPKMadqUyF7dSNnB/Y4zKuO+5mAEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8wZGNkOTYtMGFlMy00ZjVjLThkMjEt YTkwMmIwMDk2Yjk5LzEvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8wZGNkOTYtMGFlMy00ZjVjLThkMjEtYTkwMmIwMDk2Yjk5 LzEvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnv53gl6y cshuYSqCcK5iX3FDQ/Z2E77IPou9hVOdo3Uv3yuqqHegWz/0Tx5cTcvUylhUyxI5 CzSvC0SvoKOYNOn8zvjlGkY0ePjMil22BOPhrU/rlt8VBsb+Sf3uKM1gRvA4oMrR oPALagw+6riDfCmf0799M7oPmfmFXlBfesG9D7YQ+r6NfdVEBXzxydUxetocCLyf kH/9K9P8tyyl5jG3ND/ouDGWicFb9OW1ae6XlaDCLwLcjfU364oQ76eDkEhf/dxL c7pnavaZ9V/yHs9qGsSUrDgFHmcBIewPI1yQrHyGrGUzSYItS64Er5/gK8hZo5u/ j4s9cNQT3aoBsg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:37 2026 by rpki-client