This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft File: OBXtD6YgyAGqqabxT2WW1-yXUKE.mft (raw, json) Hash identifier: 9xC7Q6pS66UA+60TOK3QswHr4pnrh/WG2jvcWVf7gg8= Subject key identifier: 12:8F:51:FE:EA:70:D1:1F:EB:7D:57:95:48:A1:42:52:6D:2C:D9:6A Authority key identifier: 38:15:ED:0F:A6:20:C8:01:AA:A9:A6:F1:4F:65:96:D7:EC:97:50:A1 Certificate issuer: /CN=3815ed0fa620c801aaa9a6f14f6596d7ec9750a1 Certificate serial: 019C42464432921F16146C88E162DF82DAED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 12:00:27 +0000 Manifest this update: Mon 09 Feb 2026 12:00:27 +0000 Manifest next update: Tue 10 Feb 2026 12:00:27 +0000 Files and hashes: 1: J5zzAtbu7OO84foJkjfo9mnqe4E.roa (hash: iT6yzwPu2JR2wJ7myEmKqPOSCKR+ROL2NO3QjEH64jQ=) 2: OBXtD6YgyAGqqabxT2WW1-yXUKE.crl (hash: CMQWAgdlXv4g2H0U5Ovttm7rp9XT6GUPGUaNoQRe460=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.crl rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:44:32:92:1f:16:14:6c:88:e1:62:df:82:da:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3815ed0fa620c801aaa9a6f14f6596d7ec9750a1 Validity Not Before: Feb 9 12:00:27 2026 GMT Not After : Feb 10 12:00:27 2026 GMT Subject: CN=128f51feea70d11feb7d579548a142526d2cd96a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a0:93:86:13:ed:1a:2d:9c:9b:2d:2a:72:ba: ea:9c:8f:60:2d:e7:dc:42:f9:0c:fa:cd:fc:7f:f1: 56:0d:88:5d:2a:b7:b0:09:a0:8a:44:29:db:f6:33: 30:0e:7a:f7:4c:a0:c8:99:27:24:ee:ee:91:40:b3: 0e:ec:93:fc:37:6b:60:f2:1a:6b:d8:ca:5c:7b:d2: 5c:29:23:5a:da:8d:39:be:e4:df:a8:eb:4a:23:2c: 75:f5:d0:52:3d:98:8d:5f:81:c7:bf:98:8a:3b:ad: 70:75:b2:5a:8c:37:a3:fc:9a:6b:e4:a7:ac:17:46: 7f:ba:34:6e:31:be:5f:b1:82:c2:07:07:79:61:1b: aa:62:f5:c4:ee:11:d2:a7:c5:a0:c9:ca:2b:6a:88: af:bf:a4:bb:cf:98:6e:0e:90:f5:6b:79:84:c9:58: 23:f3:df:fb:e2:25:5f:c7:0e:17:95:f9:93:84:52: 33:45:86:56:bf:9a:d2:d3:4e:e0:0c:b9:a0:ef:8c: d9:79:d6:39:1d:98:17:e8:89:1f:c7:08:a1:56:8d: 3e:53:69:4f:60:4a:65:a9:97:85:5d:38:ad:12:1b: 89:83:4a:88:fb:d9:77:09:02:c5:ba:d9:20:2d:1e: 58:6e:f3:e2:b2:5a:45:ef:c9:8f:be:0b:b7:9b:e8: 41:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:8F:51:FE:EA:70:D1:1F:EB:7D:57:95:48:A1:42:52:6D:2C:D9:6A X509v3 Authority Key Identifier: keyid:38:15:ED:0F:A6:20:C8:01:AA:A9:A6:F1:4F:65:96:D7:EC:97:50:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:b4:f1:46:7e:8a:53:8f:0b:5a:06:95:1a:d3:68:4c:85:d7: 69:39:8b:88:3a:cf:0b:02:f0:14:00:5e:6c:a7:1e:83:52:03: af:7d:c1:a1:fc:a6:89:08:a3:7a:18:20:c8:90:93:c9:41:fb: 61:a1:ef:16:4c:2d:82:e9:38:f1:bb:63:35:e0:63:fa:7c:db: 9c:bf:f6:9e:4e:93:e4:42:ac:16:bc:34:12:f8:17:92:f9:c7: ee:df:c5:8a:ed:a1:8c:cf:c5:1c:26:85:f9:e0:12:ba:1f:3c: 1f:31:1a:59:7f:ef:91:ba:e1:11:00:ec:46:95:09:53:88:e0: 1d:e5:a9:15:4c:7c:1c:c1:5f:e4:42:56:4a:06:8e:6f:de:4c: d9:80:75:e4:c2:d1:95:dc:29:31:79:5f:51:d5:6f:12:d7:64: 6c:e2:55:7d:b2:a7:cc:79:ce:14:d8:0f:30:cb:34:0c:9c:5b: bd:35:19:66:e9:50:9b:73:e8:b9:96:83:8a:37:44:c0:24:0e: 20:1a:9c:3e:3b:05:25:d0:7f:96:27:94:d8:8b:81:d5:ad:d4: 6a:22:7a:b9:81:00:8c:72:1c:80:97:07:b8:bc:db:c2:73:54: 5c:3d:09:aa:47:2b:22:fe:8a:f5:27:c7:5e:48:49:c6:a9:01: bc:b7:c9:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRkQykh8WFGyI4WLfgtrtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MTVlZDBmYTYyMGM4MDFhYWE5YTZmMTRmNjU5NmQ3ZWM5 NzUwYTEwHhcNMjYwMjA5MTIwMDI3WhcNMjYwMjEwMTIwMDI3WjAzMTEwLwYDVQQD EygxMjhmNTFmZWVhNzBkMTFmZWI3ZDU3OTU0OGExNDI1MjZkMmNkOTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqCThhPtGi2cmy0qcrrqnI9gLefc QvkM+s38f/FWDYhdKrewCaCKRCnb9jMwDnr3TKDImSck7u6RQLMO7JP8N2tg8hpr 2Mpce9JcKSNa2o05vuTfqOtKIyx19dBSPZiNX4HHv5iKO61wdbJajDej/Jpr5Kes F0Z/ujRuMb5fsYLCBwd5YRuqYvXE7hHSp8Wgycoraoivv6S7z5huDpD1a3mEyVgj 89/74iVfxw4XlfmThFIzRYZWv5rS007gDLmg74zZedY5HZgX6IkfxwihVo0+U2lP YEplqZeFXTitEhuJg0qI+9l3CQLFutkgLR5YbvPislpF78mPvgu3m+hB+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBKPUf7qcNEf631XlUihQlJtLNlqMB8GA1UdIwQY MBaAFDgV7Q+mIMgBqqmm8U9lltfsl1ChMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0JYdEQ2WWd5QUdxcWFieFQyV1cxLXlYVUtFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8zMmRhNDAtMGNiZi00MjQ0LWIxYTQt ZjM1YTQ0NTYzNWNhLzEvT0JYdEQ2WWd5QUdxcWFieFQyV1cxLXlYVUtFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC8zMmRhNDAtMGNiZi00MjQ0LWIxYTQtZjM1YTQ0NTYzNWNh LzEvT0JYdEQ2WWd5QUdxcWFieFQyV1cxLXlYVUtFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn7TxRn6K U48LWgaVGtNoTIXXaTmLiDrPCwLwFABebKceg1IDr33BofymiQijehggyJCTyUH7 YaHvFkwtguk48btjNeBj+nzbnL/2nk6T5EKsFrw0EvgXkvnH7t/Fiu2hjM/FHCaF +eASuh88HzEaWX/vkbrhEQDsRpUJU4jgHeWpFUx8HMFf5EJWSgaOb95M2YB15MLR ldwpMXlfUdVvEtdkbOJVfbKnzHnOFNgPMMs0DJxbvTUZZulQm3PouZaDijdEwCQO IBqcPjsFJdB/lieU2IuB1a3UaiJ6uYEAjHIcgJcHuLzbwnNUXD0JqkcrIv6K9SfH XkhJxqkBvLfJ5w== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:37 2026 by rpki-client