This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/5a82a7-8f61-4749-9118-cbf34ebca4b9/1/OstMHbOigqLFrhaULo1gYb50UWs.mft File: OstMHbOigqLFrhaULo1gYb50UWs.mft (raw, json) Hash identifier: qxv0TkgNYGVSw5VOd+Un4WQBnQ78tTwNVyULo4eHJds= Subject key identifier: F5:19:17:52:B8:26:1F:F7:4D:53:28:5D:2C:F5:5B:5F:5B:14:B3:03 Authority key identifier: 3A:CB:4C:1D:B3:A2:82:A2:C5:AE:16:94:2E:8D:60:61:BE:74:51:6B Certificate issuer: /CN=3acb4c1db3a282a2c5ae16942e8d6061be74516b Certificate serial: 019C4321ED03F377A4F9C748DFF9B8187BD4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OstMHbOigqLFrhaULo1gYb50UWs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/5a82a7-8f61-4749-9118-cbf34ebca4b9/1/OstMHbOigqLFrhaULo1gYb50UWs.mft Manifest number: 107E Signing time: Mon 09 Feb 2026 16:00:22 +0000 Manifest this update: Mon 09 Feb 2026 16:00:22 +0000 Manifest next update: Tue 10 Feb 2026 16:00:22 +0000 Files and hashes: 1: OstMHbOigqLFrhaULo1gYb50UWs.crl (hash: oobAooOJce3q1+O6kAtcd2hsu6zmAsc0EFQZaRFtypA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/5a82a7-8f61-4749-9118-cbf34ebca4b9/1/OstMHbOigqLFrhaULo1gYb50UWs.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/5a82a7-8f61-4749-9118-cbf34ebca4b9/1/OstMHbOigqLFrhaULo1gYb50UWs.mft rsync://rpki.ripe.net/repository/DEFAULT/OstMHbOigqLFrhaULo1gYb50UWs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:ed:03:f3:77:a4:f9:c7:48:df:f9:b8:18:7b:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3acb4c1db3a282a2c5ae16942e8d6061be74516b Validity Not Before: Feb 9 16:00:22 2026 GMT Not After : Feb 10 16:00:22 2026 GMT Subject: CN=f5191752b8261ff74d53285d2cf55b5f5b14b303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:53:c0:16:65:34:44:f2:cb:a4:44:a7:33:ec: a9:e3:58:94:28:41:74:91:ab:19:ee:27:b0:2c:98: d7:f0:b6:5c:02:bf:db:f4:92:7c:06:fe:55:1d:d0: 8b:e4:9d:2d:ba:e1:7c:30:d4:55:36:76:3b:7f:7e: b7:9d:bb:08:c5:a1:1a:aa:e7:39:25:50:3c:cd:1a: 80:c3:73:9c:c6:aa:de:64:c7:3b:c1:55:40:51:0b: 34:50:92:3d:73:5d:f3:2a:d3:0b:36:ac:5f:64:9c: 50:29:6f:8f:6f:32:11:95:00:3f:57:27:0c:ab:7a: 1d:6b:5b:12:a0:6a:84:1f:4b:d3:d2:a3:49:c3:e3: 03:da:e9:b3:9a:97:7b:04:fb:94:bd:cb:8f:14:a8: fc:d3:5e:3b:82:05:eb:74:c2:c1:24:a7:d4:b8:29: 8a:99:54:b1:7c:13:ef:ee:c3:25:f3:6a:df:d7:40: 29:f9:00:3c:3f:44:fc:6d:cc:28:16:bc:d0:74:11: 8f:d7:c2:ec:7e:7b:c5:b1:1f:69:09:69:a7:36:bb: 9d:98:25:c9:e1:94:58:3f:f3:52:a8:c1:0c:44:65: 57:e2:d3:25:b8:e3:e4:29:ec:f1:69:18:a5:d1:57: 66:c1:e0:ef:eb:d5:f2:cb:9b:f3:f9:8f:82:a7:05: f7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:19:17:52:B8:26:1F:F7:4D:53:28:5D:2C:F5:5B:5F:5B:14:B3:03 X509v3 Authority Key Identifier: keyid:3A:CB:4C:1D:B3:A2:82:A2:C5:AE:16:94:2E:8D:60:61:BE:74:51:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OstMHbOigqLFrhaULo1gYb50UWs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/5a82a7-8f61-4749-9118-cbf34ebca4b9/1/OstMHbOigqLFrhaULo1gYb50UWs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/5a82a7-8f61-4749-9118-cbf34ebca4b9/1/OstMHbOigqLFrhaULo1gYb50UWs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:c4:31:75:4a:ba:08:c1:50:48:80:39:c1:f6:20:ac:a6:0c: 9f:13:e4:7f:39:fd:37:ae:ca:8d:d2:e6:11:18:df:26:88:2b: 9c:05:f4:d6:cc:46:87:52:1f:3f:87:63:05:ee:0d:5c:25:95: 84:ba:95:58:a5:51:a6:44:47:3f:cf:d7:8e:60:b1:9d:cb:38: e0:83:6c:71:04:38:32:8f:93:32:1d:23:82:64:16:d9:03:4f: 53:b9:2a:95:10:0e:36:db:d2:8b:89:50:f1:aa:8e:0a:47:d0: 79:a3:ad:ae:8b:a7:67:4f:6c:11:1d:97:21:08:6d:a4:7e:f0: 51:3e:76:5f:d5:9f:a3:b1:b2:2d:eb:e5:1e:fa:81:79:2b:1a: 81:14:cc:ed:13:0b:bc:3a:fa:b0:34:b4:6c:d6:01:5c:43:aa: 71:07:c4:c5:9d:f9:b5:46:2b:16:23:87:87:5d:91:0e:f6:cd: 33:b7:dc:51:5c:50:be:28:40:2f:af:9b:2e:77:49:61:96:5c: 9f:b7:81:23:ac:ed:22:78:4e:49:b4:c7:2f:a9:af:45:31:27: f1:47:89:26:bf:42:98:13:cf:05:dc:8f:96:7d:ef:ea:ed:ca: e7:20:c0:fa:e9:b1:d8:83:5a:df:bc:26:22:7b:1c:4f:a0:ec: cd:27:59:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIe0D83ek+cdI3/m4GHvUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhY2I0YzFkYjNhMjgyYTJjNWFlMTY5NDJlOGQ2MDYxYmU3 NDUxNmIwHhcNMjYwMjA5MTYwMDIyWhcNMjYwMjEwMTYwMDIyWjAzMTEwLwYDVQQD EyhmNTE5MTc1MmI4MjYxZmY3NGQ1MzI4NWQyY2Y1NWI1ZjViMTRiMzAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVPAFmU0RPLLpESnM+yp41iUKEF0 kasZ7iewLJjX8LZcAr/b9JJ8Bv5VHdCL5J0tuuF8MNRVNnY7f363nbsIxaEaquc5 JVA8zRqAw3OcxqreZMc7wVVAUQs0UJI9c13zKtMLNqxfZJxQKW+PbzIRlQA/VycM q3oda1sSoGqEH0vT0qNJw+MD2umzmpd7BPuUvcuPFKj80147ggXrdMLBJKfUuCmK mVSxfBPv7sMl82rf10Ap+QA8P0T8bcwoFrzQdBGP18LsfnvFsR9pCWmnNrudmCXJ 4ZRYP/NSqMEMRGVX4tMluOPkKezxaRil0VdmweDv69Xyy5vz+Y+CpwX3nQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPUZF1K4Jh/3TVMoXSz1W19bFLMDMB8GA1UdIwQY MBaAFDrLTB2zooKixa4WlC6NYGG+dFFrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3N0TUhiT2lncUxGcmhhVUxvMWdZYjUwVVdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi81YTgyYTctOGY2MS00NzQ5LTkxMTgt Y2JmMzRlYmNhNGI5LzEvT3N0TUhiT2lncUxGcmhhVUxvMWdZYjUwVVdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi81YTgyYTctOGY2MS00NzQ5LTkxMTgtY2JmMzRlYmNhNGI5 LzEvT3N0TUhiT2lncUxGcmhhVUxvMWdZYjUwVVdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGMQxdUq6 CMFQSIA5wfYgrKYMnxPkfzn9N67KjdLmERjfJogrnAX01sxGh1IfP4djBe4NXCWV hLqVWKVRpkRHP8/XjmCxncs44INscQQ4Mo+TMh0jgmQW2QNPU7kqlRAONtvSi4lQ 8aqOCkfQeaOtrounZ09sER2XIQhtpH7wUT52X9Wfo7GyLevlHvqBeSsagRTM7RML vDr6sDS0bNYBXEOqcQfExZ35tUYrFiOHh12RDvbNM7fcUVxQvihAL6+bLndJYZZc n7eBI6ztInhOSbTHL6mvRTEn8UeJJr9CmBPPBdyPln3v6u3K5yDA+umx2INa37wm InscT6DszSdZFQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:54 2026 by rpki-client