This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.mft File: gOtx0BmkgyJcMkyIxsSAIO-fEWg.mft (raw, json) Hash identifier: Vsjee0T1NK840Uc4i6dBv47Cl8syvVvnS2ynDupj9aA= Subject key identifier: F2:A4:D0:A6:8D:B1:2F:ED:67:17:FE:FB:04:74:43:42:9E:3A:1E:27 Authority key identifier: 80:EB:71:D0:19:A4:83:22:5C:32:4C:88:C6:C4:80:20:EF:9F:11:68 Certificate issuer: /CN=80eb71d019a483225c324c88c6c48020ef9f1168 Certificate serial: 019C43C6B57671C831D739D988B464D82899 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOtx0BmkgyJcMkyIxsSAIO-fEWg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 19:00:21 +0000 Manifest this update: Mon 09 Feb 2026 19:00:21 +0000 Manifest next update: Tue 10 Feb 2026 19:00:21 +0000 Files and hashes: 1: gOtx0BmkgyJcMkyIxsSAIO-fEWg.crl (hash: e1HQBUfoIHYMyKQv5lk3hocKqrM7lGZpDtYUJukZrcA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.mft rsync://rpki.ripe.net/repository/DEFAULT/gOtx0BmkgyJcMkyIxsSAIO-fEWg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:b5:76:71:c8:31:d7:39:d9:88:b4:64:d8:28:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80eb71d019a483225c324c88c6c48020ef9f1168 Validity Not Before: Feb 9 19:00:21 2026 GMT Not After : Feb 10 19:00:21 2026 GMT Subject: CN=f2a4d0a68db12fed6717fefb047443429e3a1e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bc:a3:40:96:3f:9e:f7:cd:52:25:95:fd:b5: de:ec:b0:ca:28:d8:b0:4b:6f:9e:24:d1:da:f0:42: 2e:9c:07:56:62:29:33:b5:15:af:c5:d0:06:86:f5: 1c:61:b4:90:18:00:c3:29:1d:70:2a:5d:ba:d6:40: 0d:84:2c:03:90:72:0f:f4:65:8a:eb:a6:84:81:3d: 05:9b:ee:b4:02:52:f9:02:44:5e:03:9f:82:f8:74: cf:59:8b:e1:ea:fd:8f:a5:7a:b4:f9:af:90:cc:d0: 3b:21:64:db:cf:85:a8:9a:df:9e:2f:16:8f:ae:2d: d9:a8:14:72:3f:29:58:03:4b:48:6b:46:ff:be:5f: a5:c8:69:83:02:5d:56:40:b3:f0:88:90:a5:4c:73: 31:9b:c9:ba:db:26:70:59:17:9f:d1:90:30:11:36: 30:9f:1a:e3:c7:e9:19:bb:ce:0a:21:f2:dc:97:b0: ee:0b:8a:02:a8:44:03:f9:10:30:5c:4e:ee:94:da: 41:80:87:dc:8a:30:c4:d0:90:1d:81:8a:00:81:eb: f0:df:70:61:ff:41:4f:2b:7d:32:70:5a:f5:29:33: 37:83:d7:ce:ac:6c:93:c9:4d:d5:49:f4:d9:fb:58: 82:2e:ee:b5:be:82:34:66:ab:80:51:52:bc:bc:35: 6e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A4:D0:A6:8D:B1:2F:ED:67:17:FE:FB:04:74:43:42:9E:3A:1E:27 X509v3 Authority Key Identifier: keyid:80:EB:71:D0:19:A4:83:22:5C:32:4C:88:C6:C4:80:20:EF:9F:11:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOtx0BmkgyJcMkyIxsSAIO-fEWg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:d1:67:2e:0f:b0:73:ac:41:d9:e4:ca:07:73:7d:8c:24:3c: 66:5b:d4:67:a8:2b:9d:da:ae:f8:57:18:af:5a:e5:10:ef:f9: 58:43:65:f0:3c:4c:12:a5:c6:e9:48:57:05:a3:84:4e:3c:1c: 7a:c7:9f:e1:af:e4:b6:a1:d7:77:b7:df:9b:69:83:0f:ef:71: 13:3b:1a:ad:b3:79:44:54:19:35:ec:4f:a7:55:7d:a1:60:98: 2f:ff:ab:10:db:2e:1e:f1:50:18:67:e7:54:38:b1:13:d9:bf: 78:cd:9e:56:48:5b:34:49:d3:06:44:dc:39:cd:78:c1:55:aa: f6:9a:38:d9:34:93:5a:87:94:25:8c:65:53:2e:1b:82:fe:85: 4c:63:8d:6b:3b:fc:82:0b:f9:d0:5c:71:65:8a:a3:15:cf:92: 54:14:19:a6:b7:74:fe:b2:de:35:11:d8:3b:fc:13:1a:e7:0d: 9b:7f:c7:78:8f:8b:ae:a3:8f:32:27:b9:08:c5:f7:96:4d:ad: 74:16:09:cb:f8:99:7a:49:10:df:4b:92:37:43:32:e7:0c:5a: b3:cf:e1:2d:42:66:8b:0b:a1:87:38:bd:96:03:c7:93:fe:5f: f2:10:67:fb:56:b3:1a:e5:2e:6b:28:38:1c:50:2c:f6:10:29: 26:f7:90:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxrV2ccgx1znZiLRk2CiZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwZWI3MWQwMTlhNDgzMjI1YzMyNGM4OGM2YzQ4MDIwZWY5 ZjExNjgwHhcNMjYwMjA5MTkwMDIxWhcNMjYwMjEwMTkwMDIxWjAzMTEwLwYDVQQD EyhmMmE0ZDBhNjhkYjEyZmVkNjcxN2ZlZmIwNDc0NDM0MjllM2ExZTI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtryjQJY/nvfNUiWV/bXe7LDKKNiw S2+eJNHa8EIunAdWYikztRWvxdAGhvUcYbSQGADDKR1wKl261kANhCwDkHIP9GWK 66aEgT0Fm+60AlL5AkReA5+C+HTPWYvh6v2PpXq0+a+QzNA7IWTbz4Womt+eLxaP ri3ZqBRyPylYA0tIa0b/vl+lyGmDAl1WQLPwiJClTHMxm8m62yZwWRef0ZAwETYw nxrjx+kZu84KIfLcl7DuC4oCqEQD+RAwXE7ulNpBgIfcijDE0JAdgYoAgevw33Bh /0FPK30ycFr1KTM3g9fOrGyTyU3VSfTZ+1iCLu61voI0ZquAUVK8vDVuSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPKk0KaNsS/tZxf++wR0Q0KeOh4nMB8GA1UdIwQY MBaAFIDrcdAZpIMiXDJMiMbEgCDvnxFoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ090eDBCbWtneUpjTWt5SXhzU0FJTy1mRVdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8yOTA3ODktMTkyMi00ZWIwLThhZDQt ZmVkODlkMTcwZGE0LzEvZ090eDBCbWtneUpjTWt5SXhzU0FJTy1mRVdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC8yOTA3ODktMTkyMi00ZWIwLThhZDQtZmVkODlkMTcwZGE0 LzEvZ090eDBCbWtneUpjTWt5SXhzU0FJTy1mRVdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGdFnLg+w c6xB2eTKB3N9jCQ8ZlvUZ6grndqu+FcYr1rlEO/5WENl8DxMEqXG6UhXBaOETjwc esef4a/ktqHXd7ffm2mDD+9xEzsarbN5RFQZNexPp1V9oWCYL/+rENsuHvFQGGfn VDixE9m/eM2eVkhbNEnTBkTcOc14wVWq9po42TSTWoeUJYxlUy4bgv6FTGONazv8 ggv50FxxZYqjFc+SVBQZprd0/rLeNRHYO/wTGucNm3/HeI+LrqOPMie5CMX3lk2t dBYJy/iZekkQ30uSN0My5wxas8/hLUJmiwuhhzi9lgPHk/5f8hBn+1azGuUuayg4 HFAs9hApJveQ/g== -----END CERTIFICATE-----Generated at Tue Feb 10 02:51:20 2026 by rpki-client