This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft File: clOCbDGl92CXvNwqL2UZiKE2flM.mft (raw, json) Hash identifier: cl8l6iTlGNAf2e7GuUlYVfD2VnCoohUhlUET5DxXY1s= Subject key identifier: 62:E9:09:8B:B0:47:46:DA:6E:82:A6:2D:00:23:79:A2:A3:03:11:E3 Authority key identifier: 72:53:82:6C:31:A5:F7:60:97:BC:DC:2A:2F:65:19:88:A1:36:7E:53 Certificate issuer: /CN=7253826c31a5f76097bcdc2a2f651988a1367e53 Certificate serial: 019C439064B4B440FE6F68504E47A0F906A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/clOCbDGl92CXvNwqL2UZiKE2flM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft Manifest number: 0AE8 Signing time: Mon 09 Feb 2026 18:01:02 +0000 Manifest this update: Mon 09 Feb 2026 18:01:02 +0000 Manifest next update: Tue 10 Feb 2026 18:01:02 +0000 Files and hashes: 1: clOCbDGl92CXvNwqL2UZiKE2flM.crl (hash: ZWM+DLtekTmL+7cp49F4DRghtDIXSyhenTEV/dH6r+8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft rsync://rpki.ripe.net/repository/DEFAULT/clOCbDGl92CXvNwqL2UZiKE2flM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:64:b4:b4:40:fe:6f:68:50:4e:47:a0:f9:06:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7253826c31a5f76097bcdc2a2f651988a1367e53 Validity Not Before: Feb 9 18:01:02 2026 GMT Not After : Feb 10 18:01:02 2026 GMT Subject: CN=62e9098bb04746da6e82a62d002379a2a30311e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5d:0c:4e:8b:39:21:aa:bc:18:24:83:c0:18: 88:64:32:27:bc:38:0f:5e:88:96:16:81:05:15:73: 05:a9:cb:16:2f:40:d0:e9:64:eb:95:83:c4:97:f9: 9c:2f:03:5e:79:62:83:0b:a3:81:21:cf:d3:63:33: 30:ad:ee:94:54:c6:de:40:72:4a:32:85:ae:1f:6d: 4a:3b:3f:fc:18:a1:b8:04:ee:39:16:69:74:8f:c0: 5e:a1:d8:af:ee:b5:d5:d2:d8:6b:6f:f6:94:2f:b2: 84:ba:0d:61:fe:0b:72:e9:64:9a:8f:d6:ef:65:87: 39:97:84:01:37:ff:33:78:bd:94:ab:7b:c7:18:02: f4:0c:e4:d3:ce:67:59:ac:92:6c:37:af:ad:e8:5c: 0c:0b:13:dd:49:df:68:b8:ed:07:5e:be:d9:59:c9: 18:d7:71:08:78:08:a9:79:19:35:21:90:18:f1:f7: c7:a2:b5:86:94:54:cf:cc:34:00:8d:29:39:4d:94: 41:23:42:4b:f0:3c:90:b8:58:b6:fd:69:3d:88:e3: 3f:6f:31:61:dc:fc:9a:a4:ba:ff:f0:b3:a5:21:15: f8:6d:a8:2f:2a:1a:28:1c:92:4b:00:6e:5a:1a:1a: aa:54:0f:65:62:da:e9:ee:05:59:6f:44:27:54:77: f7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E9:09:8B:B0:47:46:DA:6E:82:A6:2D:00:23:79:A2:A3:03:11:E3 X509v3 Authority Key Identifier: keyid:72:53:82:6C:31:A5:F7:60:97:BC:DC:2A:2F:65:19:88:A1:36:7E:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/clOCbDGl92CXvNwqL2UZiKE2flM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d9:62:62:6c:fc:4f:18:56:9b:ff:e6:1f:68:9a:40:95:d5:2c: b6:86:72:33:c8:7c:ee:52:58:78:2f:1f:56:32:a1:e4:54:71: 7e:91:11:b6:c4:d9:e0:a1:4d:bc:b8:4b:d1:53:5a:57:52:4e: 40:36:db:24:4f:80:06:d2:d5:fc:09:6a:06:e1:0d:ba:a6:17: 86:35:46:21:ee:ba:4e:0a:30:47:14:27:99:ac:fa:f7:52:d5: 08:f9:b6:5a:f8:88:d1:03:11:dd:a3:67:0a:03:c4:8f:0a:86: 03:63:59:ec:cf:b3:4f:55:aa:67:10:0a:bb:3b:57:09:8c:bf: ad:14:2a:1f:14:65:c0:62:6c:bf:b1:c7:4e:65:2e:e0:95:a3: 63:9b:f5:27:8c:57:71:b5:fe:33:de:13:88:9e:70:16:36:5d: fa:d8:c3:9f:fc:dc:8d:60:85:72:a0:d4:11:18:ac:fe:3d:bb: f7:ed:65:f5:ab:81:b4:eb:ea:9f:7f:aa:a2:d4:66:81:0f:6e: 52:f0:13:5e:9b:86:16:81:ea:45:79:74:58:87:99:c0:46:4f: f2:52:cc:f1:4a:86:5a:b8:91:06:f5:83:06:97:ef:32:88:82: 96:62:86:b1:be:08:3b:71:93:cb:06:71:37:dd:d9:b9:30:3c: 56:86:77:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkGS0tED+b2hQTkeg+QahMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNTM4MjZjMzFhNWY3NjA5N2JjZGMyYTJmNjUxOTg4YTEz NjdlNTMwHhcNMjYwMjA5MTgwMTAyWhcNMjYwMjEwMTgwMTAyWjAzMTEwLwYDVQQD Eyg2MmU5MDk4YmIwNDc0NmRhNmU4MmE2MmQwMDIzNzlhMmEzMDMxMWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu10MTos5Iaq8GCSDwBiIZDInvDgP XoiWFoEFFXMFqcsWL0DQ6WTrlYPEl/mcLwNeeWKDC6OBIc/TYzMwre6UVMbeQHJK MoWuH21KOz/8GKG4BO45Fml0j8Beodiv7rXV0thrb/aUL7KEug1h/gty6WSaj9bv ZYc5l4QBN/8zeL2Uq3vHGAL0DOTTzmdZrJJsN6+t6FwMCxPdSd9ouO0HXr7ZWckY 13EIeAipeRk1IZAY8ffHorWGlFTPzDQAjSk5TZRBI0JL8DyQuFi2/Wk9iOM/bzFh 3PyapLr/8LOlIRX4bagvKhooHJJLAG5aGhqqVA9lYtrp7gVZb0QnVHf3swIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGLpCYuwR0baboKmLQAjeaKjAxHjMB8GA1UdIwQY MBaAFHJTgmwxpfdgl7zcKi9lGYihNn5TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2xPQ2JER2w5MkNYdk53cUwyVVppS0UyZmxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy83YTRhNDItN2RjNS00MGMwLTgwNGIt ZjNmNTFjMTA3MGI5LzEvY2xPQ2JER2w5MkNYdk53cUwyVVppS0UyZmxNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy83YTRhNDItN2RjNS00MGMwLTgwNGItZjNmNTFjMTA3MGI5 LzEvY2xPQ2JER2w5MkNYdk53cUwyVVppS0UyZmxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2WJibPxP GFab/+YfaJpAldUstoZyM8h87lJYeC8fVjKh5FRxfpERtsTZ4KFNvLhL0VNaV1JO QDbbJE+ABtLV/AlqBuENuqYXhjVGIe66TgowRxQnmaz691LVCPm2WviI0QMR3aNn CgPEjwqGA2NZ7M+zT1WqZxAKuztXCYy/rRQqHxRlwGJsv7HHTmUu4JWjY5v1J4xX cbX+M94TiJ5wFjZd+tjDn/zcjWCFcqDUERis/j279+1l9auBtOvqn3+qotRmgQ9u UvATXpuGFoHqRXl0WIeZwEZP8lLM8UqGWriRBvWDBpfvMoiClmKGsb4IO3GTywZx N93ZuTA8VoZ39A== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:55 2026 by rpki-client