This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/c9d7de-7b7b-4f7d-998b-2f57dcce46c7/1/OpYsbtKgSaKpOg08VHHGBrqOUlw.mft File: OpYsbtKgSaKpOg08VHHGBrqOUlw.mft (raw, json) Hash identifier: /lk2W7PhkIMH4V9FedV5ey7RcCiladWSHHNRdXNw1CI= Subject key identifier: 6F:28:2F:E7:1F:BA:2E:19:D1:3B:11:98:A4:CC:2D:29:28:FE:42:11 Authority key identifier: 3A:96:2C:6E:D2:A0:49:A2:A9:3A:0D:3C:54:71:C6:06:BA:8E:52:5C Certificate issuer: /CN=3a962c6ed2a049a2a93a0d3c5471c606ba8e525c Certificate serial: 019C416AD8E4B4CF093662BA1FE5AC0A54C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpYsbtKgSaKpOg08VHHGBrqOUlw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/c9d7de-7b7b-4f7d-998b-2f57dcce46c7/1/OpYsbtKgSaKpOg08VHHGBrqOUlw.mft Manifest number: 21 Signing time: Mon 09 Feb 2026 08:00:47 +0000 Manifest this update: Mon 09 Feb 2026 08:00:47 +0000 Manifest next update: Tue 10 Feb 2026 08:00:47 +0000 Files and hashes: 1: OpYsbtKgSaKpOg08VHHGBrqOUlw.crl (hash: 8U9Jmen/QKIgXZsgA/QwhXp2t1qnCAck5nSCvM8Fnfs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/c9d7de-7b7b-4f7d-998b-2f57dcce46c7/1/OpYsbtKgSaKpOg08VHHGBrqOUlw.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/c9d7de-7b7b-4f7d-998b-2f57dcce46c7/1/OpYsbtKgSaKpOg08VHHGBrqOUlw.mft rsync://rpki.ripe.net/repository/DEFAULT/OpYsbtKgSaKpOg08VHHGBrqOUlw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:d8:e4:b4:cf:09:36:62:ba:1f:e5:ac:0a:54:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a962c6ed2a049a2a93a0d3c5471c606ba8e525c Validity Not Before: Feb 9 08:00:47 2026 GMT Not After : Feb 10 08:00:47 2026 GMT Subject: CN=6f282fe71fba2e19d13b1198a4cc2d2928fe4211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:56:62:8b:53:12:45:47:6c:e9:d9:bc:d2:43: 93:db:69:c6:ec:45:ad:14:b2:08:e3:ca:07:a5:80: 17:7e:f7:e8:75:69:8c:05:dd:58:bf:f9:f1:bc:a6: 2c:b4:f6:96:89:7c:57:9d:df:80:ef:5a:38:3d:a3: 98:73:d0:cc:8c:38:85:04:5e:74:a7:9c:57:9d:ea: e6:0d:51:2b:de:3b:ed:84:68:c3:5f:00:a1:e5:37: fc:be:36:ca:22:4d:4e:02:71:e0:4b:a6:9c:18:a4: 78:ec:96:6c:d2:98:d4:7c:93:b3:4b:70:89:92:94: 95:bb:8f:f6:b8:92:90:35:2c:60:ec:55:8c:f8:0a: 2d:99:ec:f5:b3:05:e6:f0:87:9c:4c:98:11:6d:c6: 69:5a:98:f3:86:a5:17:94:3b:56:e1:0b:df:54:6c: b3:ae:87:2f:cd:f6:29:de:45:3b:04:97:94:63:30: f6:0f:ba:c6:c1:8c:3a:63:3c:87:78:66:8f:c4:b7: 07:0b:48:95:45:b0:e8:2d:b2:d8:9f:8f:3b:88:1b: 61:73:bd:d0:d0:d5:17:16:71:d2:ce:eb:71:a7:02: d4:1d:27:07:29:52:3e:f7:52:44:5c:fd:ae:c9:f6: bc:bf:9c:14:1f:1f:86:a2:8a:5f:7e:8a:5e:17:cc: 5c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:28:2F:E7:1F:BA:2E:19:D1:3B:11:98:A4:CC:2D:29:28:FE:42:11 X509v3 Authority Key Identifier: keyid:3A:96:2C:6E:D2:A0:49:A2:A9:3A:0D:3C:54:71:C6:06:BA:8E:52:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpYsbtKgSaKpOg08VHHGBrqOUlw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/c9d7de-7b7b-4f7d-998b-2f57dcce46c7/1/OpYsbtKgSaKpOg08VHHGBrqOUlw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/c9d7de-7b7b-4f7d-998b-2f57dcce46c7/1/OpYsbtKgSaKpOg08VHHGBrqOUlw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:ba:12:c8:49:94:6d:74:f2:de:99:89:fd:e0:a2:82:bd:5b: d7:7f:f2:52:29:ad:57:8d:80:96:51:7a:80:1c:bf:9c:71:8e: 46:67:be:b4:35:8d:d4:07:57:f3:a1:38:e8:f8:1e:ea:19:cb: 8a:62:5a:fd:71:8e:97:85:af:81:9a:80:bd:8b:d8:43:91:d4: ac:4c:32:02:8c:04:95:c1:23:2c:7d:f7:2b:e4:81:c5:7a:f8: da:74:47:ef:22:c0:99:22:2e:8a:3a:1e:4d:0b:34:ec:66:8e: 32:65:87:a6:6b:4f:e7:19:1a:34:5d:4a:0b:cb:07:92:eb:5b: 03:d8:1a:29:26:dd:6d:eb:87:90:fa:b2:83:02:1d:7a:3c:c2: 7b:3f:4c:36:c1:22:56:75:05:20:e8:f3:44:6a:47:2e:70:1c: 91:a3:53:91:6d:99:ba:a9:6c:1b:9a:ef:14:3a:26:b2:d5:0c: c6:3b:1e:5e:af:ba:44:08:32:24:4c:34:e0:3f:b7:11:0d:a4: 8b:e3:0a:1d:36:dc:99:62:8f:69:67:3c:ea:40:5c:49:91:87: 1b:86:91:60:a9:c6:70:ac:6d:6a:7e:e9:c5:7c:34:fa:48:56: 86:66:34:7f:67:fd:c8:6e:07:43:81:81:fa:c2:bd:91:f0:34: 2a:06:a2:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBatjktM8JNmK6H+WsClTBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhOTYyYzZlZDJhMDQ5YTJhOTNhMGQzYzU0NzFjNjA2YmE4 ZTUyNWMwHhcNMjYwMjA5MDgwMDQ3WhcNMjYwMjEwMDgwMDQ3WjAzMTEwLwYDVQQD Eyg2ZjI4MmZlNzFmYmEyZTE5ZDEzYjExOThhNGNjMmQyOTI4ZmU0MjExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVZii1MSRUds6dm80kOT22nG7EWt FLII48oHpYAXfvfodWmMBd1Yv/nxvKYstPaWiXxXnd+A71o4PaOYc9DMjDiFBF50 p5xXnermDVEr3jvthGjDXwCh5Tf8vjbKIk1OAnHgS6acGKR47JZs0pjUfJOzS3CJ kpSVu4/2uJKQNSxg7FWM+Aotmez1swXm8IecTJgRbcZpWpjzhqUXlDtW4QvfVGyz rocvzfYp3kU7BJeUYzD2D7rGwYw6YzyHeGaPxLcHC0iVRbDoLbLYn487iBthc73Q 0NUXFnHSzutxpwLUHScHKVI+91JEXP2uyfa8v5wUHx+GoopffopeF8xcYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG8oL+cfui4Z0TsRmKTMLSko/kIRMB8GA1UdIwQY MBaAFDqWLG7SoEmiqToNPFRxxga6jlJcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3BZc2J0S2dTYUtwT2cwOFZISEdCcnFPVWx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9jOWQ3ZGUtN2I3Yi00ZjdkLTk5OGIt MmY1N2RjY2U0NmM3LzEvT3BZc2J0S2dTYUtwT2cwOFZISEdCcnFPVWx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9jOWQ3ZGUtN2I3Yi00ZjdkLTk5OGItMmY1N2RjY2U0NmM3 LzEvT3BZc2J0S2dTYUtwT2cwOFZISEdCcnFPVWx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASboSyEmU bXTy3pmJ/eCigr1b13/yUimtV42AllF6gBy/nHGORme+tDWN1AdX86E46Pge6hnL imJa/XGOl4WvgZqAvYvYQ5HUrEwyAowElcEjLH33K+SBxXr42nRH7yLAmSIuijoe TQs07GaOMmWHpmtP5xkaNF1KC8sHkutbA9gaKSbdbeuHkPqygwIdejzCez9MNsEi VnUFIOjzRGpHLnAckaNTkW2ZuqlsG5rvFDomstUMxjseXq+6RAgyJEw04D+3EQ2k i+MKHTbcmWKPaWc86kBcSZGHG4aRYKnGcKxtan7pxXw0+khWhmY0f2f9yG4HQ4GB +sK9kfA0Kgaitg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:09 2026 by rpki-client